$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/28c7b9fb-0490-468d-9f07-c34e9e84d5f2.roa File: 28c7b9fb-0490-468d-9f07-c34e9e84d5f2.roa (raw, json) Hash identifier: GsTLuvSAiAX/hWpNYosjNfAfIygQPow50HgESKkLXvU= Subject key identifier: 02:DD:F3:BF:E4:BF:CD:50:42:6F:27:00:7A:C1:B6:01:77:EA:5B:13 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 68FD3FDADEF02E6D4E3DD232DAC81E5E238674A4 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/28c7b9fb-0490-468d-9f07-c34e9e84d5f2.roa Signing time: Mon 30 Jun 2025 16:10:52 +0000 ROA not before: Mon 30 Jun 2025 16:10:52 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.89.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:fd:3f:da:de:f0:2e:6d:4e:3d:d2:32:da:c8:1e:5e:23:86:74:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 30 16:10:52 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=093b7f9c363c35be53ce4fced48d26b243de6a079663a88b26d6c92b69b8e759, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:63:ca:f1:15:2e:88:d5:87:a7:7f:ff:51:9c: ce:d0:ff:6b:e7:53:20:96:3f:0b:df:bc:3f:79:e3: 9a:4a:2b:a1:3f:d6:12:e0:80:7a:5f:0b:ce:2d:d6: 98:1d:1c:4a:dc:22:8d:00:1b:fb:fc:e2:5b:99:be: c8:7b:be:90:b6:7f:0a:8b:05:33:b7:89:b6:a1:de: 61:27:d1:98:6f:e7:91:72:35:4e:9b:ee:53:5f:28: dd:44:a1:c2:07:a4:3a:e1:b2:61:df:39:eb:94:35: 6f:cc:2d:b4:9b:24:8e:1e:b9:7a:1e:48:08:13:9c: 9a:24:8c:c0:c8:15:9a:1c:f1:3b:79:f7:31:a3:e1: b2:4e:87:30:e9:5b:ad:66:3b:07:f7:e5:a8:64:78: 4a:08:0d:b4:ef:ea:9f:5e:64:8d:8b:9b:85:ab:68: 25:fe:ae:12:16:87:d8:db:1e:05:3a:ff:b0:aa:43: 0b:df:e9:fd:91:7f:37:cb:ac:6e:59:d3:ce:25:ad: 45:75:b3:30:16:a6:93:37:e2:38:e3:46:00:c4:d0: 2b:da:1f:bb:d0:db:5d:f0:01:ac:6b:b1:ec:d0:36: 80:6a:d2:0d:ff:d0:b1:88:49:cf:13:31:a4:cc:2f: 98:b8:56:14:7f:70:d8:5a:33:6c:5b:16:52:bd:19: 26:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:DD:F3:BF:E4:BF:CD:50:42:6F:27:00:7A:C1:B6:01:77:EA:5B:13 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/28c7b9fb-0490-468d-9f07-c34e9e84d5f2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.89.0.0/19 Signature Algorithm: sha256WithRSAEncryption 0c:2e:f5:52:68:7a:23:20:08:94:6a:9f:96:55:39:c7:7c:be: 42:68:cf:2c:a6:81:4e:94:3c:e5:5e:96:98:30:06:b5:6d:96: b2:76:56:2d:38:f7:7f:58:0e:97:80:5e:c9:a1:f7:ab:df:dd: 18:d7:1b:44:0c:f0:e0:be:27:02:e4:5c:3f:8c:f2:cc:0c:f6: ed:07:8a:16:66:6b:09:ce:46:b0:ca:5f:5e:64:89:b1:76:79: 8f:91:fd:bc:20:03:d3:f9:b0:e8:d9:f8:cc:8a:dd:69:f8:32: 39:e0:a9:30:5c:f7:ce:c0:eb:94:96:e8:79:07:6b:17:db:25: 17:08:6b:38:11:67:8a:3c:d9:f5:35:a1:48:c3:5e:74:b9:1f: 5e:fc:05:02:88:42:b0:a7:f4:a7:d7:77:61:1a:a5:9b:64:18: 32:46:5d:2d:8b:a0:57:7b:22:02:0c:31:6b:af:1e:8e:48:57: 94:16:2c:3c:53:84:e4:1c:d4:96:c7:b8:01:8c:65:9b:86:12: 42:20:9e:b7:7a:57:31:d1:55:2c:ae:23:b0:d8:7a:36:07:b2: c2:83:76:7b:5c:1d:f5:63:73:8b:5b:c7:13:8a:44:4b:d5:5b: e6:40:b2:88:d8:ba:46:c2:8a:97:49:db:a3:ff:75:0c:e5:23: 1f:21:9e:a1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaP0/2t7wLm1OPdIy2sgeXiOGdKQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjMwMTYxMDUyWhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOTNiN2Y5YzM2M2MzNWJlNTNjZTRmY2VkNDhkMjZiMjQz ZGU2YTA3OTY2M2E4OGIyNmQ2YzkyYjY5YjhlNzU5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDoY8rxFS6I1Yenf/9RnM7Q/2vnUyCWPwvfvD9545pKK6E/ 1hLggHpfC84t1pgdHErcIo0AG/v84luZvsh7vpC2fwqLBTO3ibah3mEn0Zhv55Fy NU6b7lNfKN1EocIHpDrhsmHfOeuUNW/MLbSbJI4euXoeSAgTnJokjMDIFZoc8Tt5 9zGj4bJOhzDpW61mOwf35ahkeEoIDbTv6p9eZI2Lm4WraCX+rhIWh9jbHgU6/7Cq Qwvf6f2RfzfLrG5Z084lrUV1szAWppM34jjjRgDE0CvaH7vQ213wAaxrsezQNoBq 0g3/0LGISc8TMaTML5i4VhR/cNhaM2xbFlK9GSbNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAt3zv+S/zVBCbycAesG2AXfqWxMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzI4YzdiOWZiLTA0OTAtNDY4ZC05ZjA3LWMzNGU5ZTg0ZDVmMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUSWQAwDQYJKoZIhvcNAQELBQADggEBAAwu9VJoeiMgCJRqn5ZVOcd8vkJo zyymgU6UPOVelpgwBrVtlrJ2Vi04939YDpeAXsmh96vf3RjXG0QM8OC+JwLkXD+M 8swM9u0HihZmawnORrDKX15kibF2eY+R/bwgA9P5sOjZ+MyK3Wn4MjngqTBc987A 65SW6HkHaxfbJRcIazgRZ4o82fU1oUjDXnS5H178BQKIQrCn9KfXd2EapZtkGDJG XS2LoFd7IgIMMWuvHo5IV5QWLDxThOQc1JbHuAGMZZuGEkIgnrd6VzHRVSyuI7DY ejYHssKDdntcHfVjc4tbxxOKREvVW+ZAsojYukbCipdJ26P/dQzlIx8hnqE= -----END CERTIFICATE-----Generated at Mon Jun 30 22:31:04 2025 by rpki-client