$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00096550-9146-49e8-a27a-307c65c0661e.roa File: 00096550-9146-49e8-a27a-307c65c0661e.roa (raw, json) Hash identifier: Pe6AbD0CZiqiGmQPA67ckPl/AEqMoErGsk7HeUuukQU= Subject key identifier: 5C:ED:16:3F:E6:C5:08:ED:09:26:89:97:F7:F2:49:57:9F:AC:16:C7 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 25D43717DDC618C62D38D25139289F9B3D0BDF22 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00096550-9146-49e8-a27a-307c65c0661e.roa Signing time: Tue 19 Aug 2025 15:50:21 +0000 ROA not before: Tue 19 Aug 2025 15:50:21 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.68.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:d4:37:17:dd:c6:18:c6:2d:38:d2:51:39:28:9f:9b:3d:0b:df:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 19 15:50:21 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=f43765061d72af77558f3b2b8c3961280988c2e672c01773404dc063371f61d4, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:18:d2:43:68:ec:1c:f3:09:0a:81:c8:d0:12: 01:64:c3:ad:ac:6a:ba:27:19:4c:a7:f9:93:61:0e: cc:67:c1:5b:8a:a1:c5:6f:7a:68:b1:bb:60:44:ea: 81:d2:2b:b3:5e:a9:19:eb:09:7a:29:9e:b7:ba:61: 8d:71:c6:3f:a1:38:89:50:6c:1c:d4:6d:8f:bc:47: 19:80:00:17:e2:46:0d:cf:49:55:7a:bf:d3:ac:db: 0c:bb:f4:67:f8:21:10:47:11:43:88:7d:ba:04:9c: 5a:06:35:a0:f4:50:ff:47:cc:e7:ea:80:8b:42:ff: b0:ba:14:88:4f:ca:b3:5d:a9:54:02:d3:fa:37:db: a9:6f:13:b0:c7:36:7f:f4:88:e9:ae:aa:23:fc:0b: ad:5f:58:ff:6e:1a:fb:61:33:08:74:18:fc:d7:5c: 57:32:12:d9:a6:35:54:35:10:eb:d2:74:98:6a:13: 97:11:60:bc:b8:bd:7c:39:76:ad:b4:1a:8f:71:c0: e6:ca:d9:f8:6d:4d:ca:c6:92:3d:57:71:33:90:4c: 96:5b:fe:7d:4c:9c:70:ea:96:40:e8:5b:06:0a:70: 87:4f:45:f5:d3:19:17:1b:e4:30:dd:28:3e:c9:86: 3c:13:ca:d0:60:aa:5b:fd:54:50:5d:77:07:72:54: 28:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:ED:16:3F:E6:C5:08:ED:09:26:89:97:F7:F2:49:57:9F:AC:16:C7 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00096550-9146-49e8-a27a-307c65c0661e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.68.0.0/15 Signature Algorithm: sha256WithRSAEncryption 0f:33:a9:f8:9e:37:99:ed:fc:40:00:c8:f3:fb:e6:ea:62:a5: d2:92:9a:f6:04:3b:9c:99:8c:63:b8:66:8d:7c:4e:45:a5:0b: 54:22:cf:fd:ac:d8:2a:a4:b8:e4:fc:9f:13:0b:20:c5:95:35: 1b:b1:14:db:bb:bc:24:d5:fc:f9:ef:97:99:f3:03:7c:4f:fb: cb:cb:64:50:88:bc:61:63:52:1f:59:b5:53:a3:03:2e:fb:b6: c8:a6:f4:78:0c:34:7d:06:2e:d9:30:fa:1d:03:d2:a2:49:5c: 95:b2:0a:ea:b3:71:fb:19:64:41:93:bb:20:4b:e6:48:ea:39: dd:c7:5e:d2:0b:48:6a:e4:b1:b5:f4:02:63:79:da:f9:e6:cf: bb:fa:f1:69:13:c9:e8:f3:b1:bf:74:42:cb:68:1a:a1:60:15: dc:9c:d4:88:84:0a:b1:ff:75:32:cb:20:a0:25:e9:2f:46:ce: b5:14:29:ca:cb:69:59:52:49:6f:a4:1b:2f:6b:45:26:a9:d8: a0:81:fe:99:e1:6c:a2:4d:c8:ad:2d:3c:50:49:59:97:9c:63: 2d:7e:80:7c:fe:d8:e6:ff:73:0d:b0:93:eb:a6:0b:95:38:48: 28:f6:73:67:5d:d7:dc:ea:cc:ef:41:b6:f9:64:7c:2c:c5:99: 89:0d:f8:5d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJdQ3F93GGMYtONJROSifmz0L3yIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODE5MTU1MDIxWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNDM3NjUwNjFkNzJhZjc3NTU4ZjNiMmI4YzM5NjEyODA5 ODhjMmU2NzJjMDE3NzM0MDRkYzA2MzM3MWY2MWQ0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFGNJDaOwc8wkKgcjQEgFkw62saronGUyn+ZNhDsxnwVuK ocVvemixu2BE6oHSK7NeqRnrCXopnre6YY1xxj+hOIlQbBzUbY+8RxmAABfiRg3P SVV6v9Os2wy79Gf4IRBHEUOIfboEnFoGNaD0UP9HzOfqgItC/7C6FIhPyrNdqVQC 0/o326lvE7DHNn/0iOmuqiP8C61fWP9uGvthMwh0GPzXXFcyEtmmNVQ1EOvSdJhq E5cRYLy4vXw5dq20Go9xwObK2fhtTcrGkj1XcTOQTJZb/n1MnHDqlkDoWwYKcIdP RfXTGRcb5DDdKD7JhjwTytBgqlv9VFBddwdyVCixAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUXO0WP+bFCO0JJomX9/JJV5+sFscwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzAwMDk2NTUwLTkxNDYtNDllOC1hMjdhLTMwN2M2NWMwNjYxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwE0RDANBgkqhkiG9w0BAQsFAAOCAQEADzOp+J43me38QADI8/vm6mKl0pKa 9gQ7nJmMY7hmjXxORaULVCLP/azYKqS45PyfEwsgxZU1G7EU27u8JNX8+e+XmfMD fE/7y8tkUIi8YWNSH1m1U6MDLvu2yKb0eAw0fQYu2TD6HQPSoklclbIK6rNx+xlk QZO7IEvmSOo53cde0gtIauSxtfQCY3na+ebPu/rxaRPJ6POxv3RCy2gaoWAV3JzU iIQKsf91MssgoCXpL0bOtRQpystpWVJJb6QbL2tFJqnYoIH+meFsok3IrS08UElZ l5xjLX6AfP7Y5v9zDbCT66YLlThIKPZzZ13X3OrM70G2+WR8LMWZiQ34XQ== -----END CERTIFICATE-----Generated at Wed Aug 20 10:39:07 2025 by rpki-client