$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/12d30afd-7657-4d7b-996a-bf7a313920f5.roa File: 12d30afd-7657-4d7b-996a-bf7a313920f5.roa (raw, json) Hash identifier: 8kufs7pg1YyQd7nqI++KZQnWg0xiVja4pZqjOmX7uO4= Subject key identifier: 90:E7:3E:1A:44:AB:A3:17:C7:C6:B0:1E:ED:AA:25:C9:DF:7F:09:14 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 799A581A5A572B3709FD30FB93D27A2406645DAE Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/12d30afd-7657-4d7b-996a-bf7a313920f5.roa Signing time: Wed 21 May 2025 00:41:53 +0000 ROA not before: Wed 21 May 2025 00:41:53 +0000 ROA not after: Wed 25 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.239.64.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Jun 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:9a:58:1a:5a:57:2b:37:09:fd:30:fb:93:d2:7a:24:06:64:5d:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 21 00:41:53 2025 GMT Not After : Jun 25 23:59:59 2025 GMT Subject: serialNumber=89dd84858b83ac7e0ee689fba135438317728b15c94091a5a8f3bf757d88dbd3, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4c:14:de:99:1e:45:ab:0a:f3:96:e0:86:cc: 24:e1:3e:18:26:e4:ba:b4:63:03:70:2f:c9:c4:ed: 86:0a:8a:e8:94:89:0b:da:c4:04:04:af:0b:c3:61: 50:01:f0:08:66:69:b2:9c:94:2a:7a:df:1b:fe:b2: a2:29:88:bb:4a:13:5a:32:de:00:a0:bf:7b:72:2e: cf:01:c2:8d:aa:32:62:c7:4a:81:8e:26:90:e7:d6: 92:7c:b9:ba:dd:fa:df:1c:79:7a:f1:d3:6a:b7:4a: 7c:43:47:93:33:b4:3e:44:46:f5:89:2a:be:f2:8d: f0:3f:75:6c:b3:65:7c:97:40:0a:a7:40:3d:f4:3e: 84:98:91:90:14:97:8c:db:7e:34:85:37:7d:0b:b9: d1:94:4a:5f:32:14:01:17:54:f3:16:a7:80:90:75: 71:5c:34:08:d0:96:7d:fe:f4:7a:31:d9:81:dc:d3: e1:67:20:4b:99:fa:61:84:a6:fa:01:bb:fc:d4:ad: 18:fb:71:79:b8:69:81:77:da:43:d7:b7:68:d8:8e: 1d:f9:ec:5b:8e:dd:3b:3a:9f:97:80:cb:5f:4b:d5: c5:a8:ca:4a:25:7f:3d:d4:10:29:d6:d1:a2:3b:d2: 6f:7d:31:78:10:00:c3:59:c1:75:ae:5c:d4:db:aa: 74:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:E7:3E:1A:44:AB:A3:17:C7:C6:B0:1E:ED:AA:25:C9:DF:7F:09:14 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/12d30afd-7657-4d7b-996a-bf7a313920f5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.239.64.0/21 Signature Algorithm: sha256WithRSAEncryption 52:b8:a4:ce:ee:70:3b:bc:1b:ab:c7:e9:8f:21:c3:fa:48:94: 43:bd:ba:7b:6f:9d:b2:51:17:43:cd:ed:ff:84:78:29:04:d1: 3a:73:20:44:66:48:ea:b9:6a:26:8c:60:10:29:c0:e8:40:00: 7f:bc:97:72:df:2e:76:5f:34:99:34:4d:ad:a7:1d:b2:65:b3: 9f:3d:5b:00:76:e5:bd:f7:6e:9d:0b:68:72:d8:40:92:c9:d0: 7a:1b:21:47:b7:ec:98:67:2c:2f:14:2d:47:7f:c8:be:3e:51: 21:bd:a0:11:b1:29:af:65:77:d4:5f:93:c5:87:55:a5:6a:a5: 11:ed:25:6a:30:05:77:18:71:2b:91:79:08:ae:05:17:2d:d8: f1:84:51:2c:f4:b3:22:31:fd:28:66:a9:29:9a:7c:02:0b:49: f7:55:2e:d1:76:fe:c6:33:18:0d:36:0f:09:7a:3e:f1:56:62: 8f:11:15:08:a5:23:ad:60:ff:6c:00:5d:c0:0c:f1:4f:15:46: 01:71:a6:0a:0b:3f:7f:b7:c2:b4:75:2c:8b:3a:e7:d2:d3:e6: d3:99:df:c9:31:b0:e7:1c:f7:0e:24:68:f4:86:c1:ea:59:44: 4d:e6:eb:85:8d:d6:29:08:fc:70:7b:78:b7:59:c0:ba:8d:81: be:50:22:df -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeZpYGlpXKzcJ/TD7k9J6JAZkXa4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTIxMDA0MTUzWhcNMjUwNjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4OWRkODQ4NThiODNhYzdlMGVlNjg5ZmJhMTM1NDM4MzE3 NzI4YjE1Yzk0MDkxYTVhOGYzYmY3NTdkODhkYmQzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDTBTemR5FqwrzluCGzCThPhgm5Lq0YwNwL8nE7YYKiuiU iQvaxAQErwvDYVAB8AhmabKclCp63xv+sqIpiLtKE1oy3gCgv3tyLs8Bwo2qMmLH SoGOJpDn1pJ8ubrd+t8ceXrx02q3SnxDR5MztD5ERvWJKr7yjfA/dWyzZXyXQAqn QD30PoSYkZAUl4zbfjSFN30LudGUSl8yFAEXVPMWp4CQdXFcNAjQln3+9Hox2YHc 0+FnIEuZ+mGEpvoBu/zUrRj7cXm4aYF32kPXt2jYjh357FuO3Ts6n5eAy19L1cWo ykolfz3UECnW0aI70m99MXgQAMNZwXWuXNTbqnQpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkOc+GkSroxfHxrAe7aolyd9/CRQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzEyZDMwYWZkLTc2NTctNGQ3Yi05OTZhLWJmN2EzMTM5MjBmNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM270AwDQYJKoZIhvcNAQELBQADggEBAFK4pM7ucDu8G6vH6Y8hw/pIlEO9 untvnbJRF0PN7f+EeCkE0TpzIERmSOq5aiaMYBApwOhAAH+8l3LfLnZfNJk0Ta2n HbJls589WwB25b33bp0LaHLYQJLJ0HobIUe37JhnLC8ULUd/yL4+USG9oBGxKa9l d9Rfk8WHVaVqpRHtJWowBXcYcSuReQiuBRct2PGEUSz0syIx/ShmqSmafAILSfdV LtF2/sYzGA02Dwl6PvFWYo8RFQilI61g/2wAXcAM8U8VRgFxpgoLP3+3wrR1LIs6 59LT5tOZ38kxsOcc9w4kaPSGwepZRE3m64WN1ikI/HB7eLdZwLqNgb5QIt8= -----END CERTIFICATE-----Generated at Sun Jun 1 20:56:07 2025 by rpki-client