$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/97e8e038-2f32-48eb-b946-6eb5e4c1682c.roa File: 97e8e038-2f32-48eb-b946-6eb5e4c1682c.roa (raw, json) Hash identifier: K4GdLFYYKXsqeQ2/W1J60ZtF1NaHAibOcfUaFKdPzf8= Subject key identifier: 30:13:3B:A3:D6:D7:0B:53:36:80:8E:65:BC:D1:CD:C9:C2:68:78:6D Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5A6A4D334C0278227E8A94F9654CC605465AB71A Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/97e8e038-2f32-48eb-b946-6eb5e4c1682c.roa Signing time: Tue 19 Aug 2025 00:51:01 +0000 ROA not before: Tue 19 Aug 2025 00:51:01 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 161.188.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:6a:4d:33:4c:02:78:22:7e:8a:94:f9:65:4c:c6:05:46:5a:b7:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 19 00:51:01 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=7575130000d5114a8a607fe6b328d7ac3b0a8be8edd541c741f40d748d9cb5cf, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7d:cb:8f:3f:0b:30:9b:a5:33:ca:54:62:1d: 99:8b:88:af:09:a4:dc:67:c7:8a:37:40:9f:71:35: 3b:7b:bb:57:27:06:45:c5:75:d8:12:84:d6:25:3a: 1d:08:87:d2:56:9e:58:ff:a0:d7:9f:3b:ed:10:8d: f0:93:0d:7f:c6:e6:ef:e4:39:23:f4:91:42:c8:4e: ec:93:97:39:42:70:65:c2:ac:59:cf:34:00:c9:06: ad:81:2a:a5:ce:1b:0b:b7:12:fe:1d:05:ef:93:83: c5:72:c8:71:36:52:bc:14:dc:b5:9f:66:bf:4a:b8: 9b:da:d7:1c:4f:84:09:7c:d9:f3:01:07:2a:28:cd: 78:95:18:9e:3e:e1:be:b3:e5:34:f7:43:3f:fc:6d: 17:82:b6:e1:03:cf:ca:11:1a:28:2d:9b:b5:be:f0: c9:c3:85:05:0e:ed:63:ae:1f:47:9e:c6:62:c0:d0: b9:83:15:6f:04:cb:dc:2b:00:29:08:71:04:ea:e8: a2:c2:1a:b9:8c:bf:3d:0a:95:ba:23:8a:62:71:36: c8:eb:9b:52:2a:23:cb:36:d9:e6:13:d1:3c:c4:ea: f8:a0:6f:b2:94:cd:5d:9f:5f:63:0f:83:f6:78:2c: eb:29:be:65:f8:ba:c8:62:d3:65:01:0e:95:db:91: e7:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:13:3B:A3:D6:D7:0B:53:36:80:8E:65:BC:D1:CD:C9:C2:68:78:6D X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/97e8e038-2f32-48eb-b946-6eb5e4c1682c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.188.143.0/24 Signature Algorithm: sha256WithRSAEncryption 65:d9:66:24:e3:b6:a9:36:1c:3b:5b:4a:47:f1:82:25:1c:f1: 39:6f:22:d6:50:32:fc:42:f7:ae:13:71:22:96:71:8f:44:09: c8:a5:99:e5:66:c7:0a:81:fc:d5:6a:bc:9c:58:ad:bf:b6:32: bb:4a:76:39:39:95:00:5c:31:ac:29:f8:99:59:12:89:e4:b8: 06:94:24:aa:7a:98:43:10:ea:d3:bf:9e:e2:6f:79:2d:2a:1e: 1e:11:87:94:a7:21:f0:4e:c2:93:20:04:d0:e4:6c:7b:50:2b: 90:af:be:c0:9f:06:a9:6b:bf:51:5f:91:bd:37:dd:66:cb:39: 3b:57:d1:ee:17:71:67:18:6b:95:dd:ec:82:28:c2:e3:84:3e: 16:d9:0f:16:f3:61:d7:c7:05:5f:0b:81:44:8b:36:c4:60:fd: 0d:05:be:6b:f2:88:42:b8:3d:87:06:fd:c4:f6:0e:2a:e4:9a: 3f:5a:c4:18:c3:b4:98:d3:01:ee:59:03:ef:ea:04:39:00:cd: 3b:8a:98:0d:be:c1:87:23:2b:f8:64:55:b2:a6:a4:87:b4:40: 94:10:71:42:f3:c8:da:0a:b7:57:38:70:c6:4c:af:db:14:e2: 5e:0a:3a:12:22:40:41:a5:1d:63:9c:1e:e5:08:13:e3:8b:1d: 7e:97:13:c3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWmpNM0wCeCJ+ipT5ZUzGBUZatxowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODE5MDA1MTAxWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NTc1MTMwMDAwZDUxMTRhOGE2MDdmZTZiMzI4ZDdhYzNi MGE4YmU4ZWRkNTQxYzc0MWY0MGQ3NDhkOWNiNWNmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/fcuPPwswm6UzylRiHZmLiK8JpNxnx4o3QJ9xNTt7u1cn BkXFddgShNYlOh0Ih9JWnlj/oNefO+0QjfCTDX/G5u/kOSP0kULITuyTlzlCcGXC rFnPNADJBq2BKqXOGwu3Ev4dBe+Tg8VyyHE2UrwU3LWfZr9KuJva1xxPhAl82fMB ByoozXiVGJ4+4b6z5TT3Qz/8bReCtuEDz8oRGigtm7W+8MnDhQUO7WOuH0eexmLA 0LmDFW8Ey9wrACkIcQTq6KLCGrmMvz0KlbojimJxNsjrm1IqI8s22eYT0TzE6vig b7KUzV2fX2MPg/Z4LOspvmX4ushi02UBDpXbkefdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMBM7o9bXC1M2gI5lvNHNycJoeG0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzk3ZThlMDM4LTJmMzItNDhlYi1iOTQ2LTZlYjVlNGMxNjgyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAChvI8wDQYJKoZIhvcNAQELBQADggEBAGXZZiTjtqk2HDtbSkfxgiUc8Tlv ItZQMvxC964TcSKWcY9ECcilmeVmxwqB/NVqvJxYrb+2MrtKdjk5lQBcMawp+JlZ EonkuAaUJKp6mEMQ6tO/nuJveS0qHh4Rh5SnIfBOwpMgBNDkbHtQK5CvvsCfBqlr v1Ffkb033WbLOTtX0e4XcWcYa5Xd7IIowuOEPhbZDxbzYdfHBV8LgUSLNsRg/Q0F vmvyiEK4PYcG/cT2Dirkmj9axBjDtJjTAe5ZA+/qBDkAzTuKmA2+wYcjK/hkVbKm pIe0QJQQcULzyNoKt1c4cMZMr9sU4l4KOhIiQEGlHWOcHuUIE+OLHX6XE8M= -----END CERTIFICATE-----Generated at Wed Aug 20 10:39:55 2025 by rpki-client