$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7a4cd46e-b055-47b6-a4f5-54b4d9014b9e.roa File: 7a4cd46e-b055-47b6-a4f5-54b4d9014b9e.roa (raw, json) Hash identifier: tJxkbsYK0VuujiL2JZxrNlRGvmTsTdR0Nws8n0HFenk= Subject key identifier: 95:01:84:32:05:E8:FF:72:4E:5F:CE:5A:2C:85:22:DB:65:4D:D6:27 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 25C00B15F8967572CE090FBB76C1F265288ECF6D Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7a4cd46e-b055-47b6-a4f5-54b4d9014b9e.roa Signing time: Fri 09 May 2025 00:50:19 +0000 ROA not before: Fri 09 May 2025 00:50:19 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.236.60.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:c0:0b:15:f8:96:75:72:ce:09:0f:bb:76:c1:f2:65:28:8e:cf:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 9 00:50:19 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=60e9fa02460dcf370afdff6cf4b1ff7012d0c10a574e53bdf24cbc8b1b553182, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:64:94:b7:7d:02:25:3b:62:86:3b:70:07:cd: 7f:a2:78:40:da:38:90:28:0c:a4:bd:4d:6f:dd:48: 08:27:b0:6d:fe:dd:37:45:91:d3:43:25:c9:4f:41: 63:c5:9d:63:39:21:e2:11:67:76:65:04:29:00:69: 99:f7:bf:60:d3:a4:82:0a:ba:c5:69:5d:7f:08:78: d8:9e:fb:56:36:56:c0:72:bb:d8:b4:99:1b:c9:cd: 79:0c:b0:90:18:da:b6:d2:71:f1:ef:f7:e7:35:c4: d3:f5:f9:5b:4e:d3:e2:c3:40:4a:83:42:5d:55:da: ee:7c:3b:78:a3:49:5b:b2:f6:ad:cf:5f:41:1c:1f: 30:08:a2:68:36:84:e4:04:39:75:5b:7b:c6:c9:ff: b1:16:bd:3f:05:b4:85:b2:f4:5f:d6:1d:85:e7:0f: ae:45:1f:0d:f7:3d:5a:08:40:11:6c:34:58:e0:f3: bb:04:fe:0e:e3:f4:85:27:47:27:c9:f0:dd:14:e1: 69:29:d4:43:7b:b0:ef:20:16:4a:07:b5:dd:ea:75: 23:f5:d6:cb:0c:43:86:65:04:7a:43:77:6b:2d:68: 1c:8e:54:c0:bf:d1:a1:24:c9:b0:09:12:52:06:82: f6:b2:19:25:23:04:7b:d4:76:f2:43:96:bd:6f:b1: 26:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:01:84:32:05:E8:FF:72:4E:5F:CE:5A:2C:85:22:DB:65:4D:D6:27 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7a4cd46e-b055-47b6-a4f5-54b4d9014b9e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.236.60.0/22 Signature Algorithm: sha256WithRSAEncryption 64:4b:99:bd:44:03:d6:bd:55:27:e6:c1:de:56:b1:b4:95:b1: de:1f:ca:a8:11:18:84:4c:d1:e6:67:32:ab:9e:1e:f5:c8:10: 9c:0d:ca:8c:44:57:92:f8:38:39:27:4a:bf:35:85:58:4e:4d: 51:10:f1:8a:4d:4d:1d:9c:e7:43:6b:00:49:67:9f:46:ea:89: 42:32:b0:36:d4:0e:08:df:87:26:cc:88:10:e5:65:94:b9:cb: e4:68:05:a2:30:ab:f5:2d:ce:bd:5e:ee:d9:32:d9:51:9e:8c: d4:95:e0:a9:37:ce:61:02:3a:9c:b4:27:70:5a:09:38:7c:a0: 61:2d:fd:88:b0:d1:61:68:07:0a:67:b6:fe:57:b3:de:3d:fb: 64:b1:81:2e:34:b0:e8:c0:6c:9b:bc:e2:65:70:34:8e:ca:5b: 97:b9:48:21:ce:1b:4c:c0:95:f0:84:90:96:1b:41:3a:54:ae: 9e:bd:79:a4:95:1c:f0:89:d3:4f:75:ca:a2:3d:98:20:26:dd: 74:9d:71:4a:2c:eb:1c:80:63:bd:3f:b5:8b:eb:90:52:2d:66: c7:7c:5d:70:c6:f1:0a:34:03:10:a2:37:41:76:aa:de:25:4b: a9:45:c7:53:f5:02:52:6c:4b:00:2c:9d:47:67:1b:d7:0d:f2: 52:e5:cf:74 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJcALFfiWdXLOCQ+7dsHyZSiOz20wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTA5MDA1MDE5WhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MGU5ZmEwMjQ2MGRjZjM3MGFmZGZmNmNmNGIxZmY3MDEy ZDBjMTBhNTc0ZTUzYmRmMjRjYmM4YjFiNTUzMTgyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzZJS3fQIlO2KGO3AHzX+ieEDaOJAoDKS9TW/dSAgnsG3+ 3TdFkdNDJclPQWPFnWM5IeIRZ3ZlBCkAaZn3v2DTpIIKusVpXX8IeNie+1Y2VsBy u9i0mRvJzXkMsJAY2rbScfHv9+c1xNP1+VtO0+LDQEqDQl1V2u58O3ijSVuy9q3P X0EcHzAIomg2hOQEOXVbe8bJ/7EWvT8FtIWy9F/WHYXnD65FHw33PVoIQBFsNFjg 87sE/g7j9IUnRyfJ8N0U4Wkp1EN7sO8gFkoHtd3qdSP11ssMQ4ZlBHpDd2staByO VMC/0aEkybAJElIGgvayGSUjBHvUdvJDlr1vsSbDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlQGEMgXo/3JOX85aLIUi22VN1icwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzdhNGNkNDZlLWIwNTUtNDdiNi1hNGY1LTU0YjRkOTAxNGI5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAID7DwwDQYJKoZIhvcNAQELBQADggEBAGRLmb1EA9a9VSfmwd5WsbSVsd4f yqgRGIRM0eZnMqueHvXIEJwNyoxEV5L4ODknSr81hVhOTVEQ8YpNTR2c50NrAEln n0bqiUIysDbUDgjfhybMiBDlZZS5y+RoBaIwq/Utzr1e7tky2VGejNSV4Kk3zmEC Opy0J3BaCTh8oGEt/Yiw0WFoBwpntv5Xs949+2SxgS40sOjAbJu84mVwNI7KW5e5 SCHOG0zAlfCEkJYbQTpUrp69eaSVHPCJ0091yqI9mCAm3XSdcUos6xyAY70/tYvr kFItZsd8XXDG8Qo0AxCiN0F2qt4lS6lFx1P1AlJsSwAsnUdnG9cN8lLlz3Q= -----END CERTIFICATE-----Generated at Fri May 9 17:50:57 2025 by rpki-client