$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a6073f80-fafc-4e6b-940c-475df5662892.roa File: a6073f80-fafc-4e6b-940c-475df5662892.roa (raw, json) Hash identifier: qCxGbbF5yAFW16c76j0DZp+paVM5GyPAXGBXAT2xC74= Subject key identifier: 58:C3:EF:F6:AC:AB:28:A6:07:F9:A1:F7:89:03:15:F8:1C:78:CE:1B Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 07A556088DD9A68CC779FAFE2BF322CFCED07D43 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a6073f80-fafc-4e6b-940c-475df5662892.roa Signing time: Tue 19 Aug 2025 15:01:36 +0000 ROA not before: Tue 19 Aug 2025 15:01:36 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.250.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:a5:56:08:8d:d9:a6:8c:c7:79:fa:fe:2b:f3:22:cf:ce:d0:7d:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 19 15:01:36 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=cfa6e53966ba9011a07949f38b1f3957fe8a0ba46cc0e569e671e34b94595e73, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e1:43:97:53:3e:48:72:c9:e8:8d:26:fb:31: 73:79:59:17:a3:d5:b0:d4:b2:9f:26:5a:c4:f2:9c: fd:a5:cd:34:1b:7c:9a:ee:86:50:23:75:a0:cb:26: 16:ea:98:4d:c4:f8:21:e8:ff:07:4f:f5:b0:cf:d6: 2d:3d:c2:5f:b1:06:29:68:80:cf:4c:9a:c1:3b:e2: 47:b3:ba:43:b6:65:51:0e:9d:b9:43:90:5b:d1:c0: e4:6f:d0:ef:cc:72:bd:64:85:47:fa:79:e8:48:12: 19:6a:1f:c2:54:ae:2a:c0:d4:e3:ab:5d:e5:83:85: ba:95:a5:76:19:b9:d3:5d:26:ed:c8:16:9c:fc:4d: b6:bc:73:97:ee:95:d9:71:ab:2f:46:44:fa:ea:80: f8:2f:73:af:5a:ff:40:3d:55:0f:e6:fc:21:3d:10: 02:47:df:48:d9:9e:77:85:77:0b:84:44:62:d7:bc: e6:4b:88:80:52:d4:bb:ab:72:3c:cf:4d:8c:40:51: 9c:d4:75:ae:0b:c5:9c:6f:74:f2:88:b7:a5:38:2f: b9:b1:03:c3:83:66:73:b0:8c:59:bd:a4:48:11:21: 00:53:ad:d0:c8:13:0c:75:5e:71:d2:58:97:ba:95: 6d:f6:80:d3:6e:27:b7:9a:d6:d8:1d:74:be:3d:2b: 76:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:C3:EF:F6:AC:AB:28:A6:07:F9:A1:F7:89:03:15:F8:1C:78:CE:1B X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a6073f80-fafc-4e6b-940c-475df5662892.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.250.0.0/15 Signature Algorithm: sha256WithRSAEncryption 63:d6:ee:8a:4c:f4:ad:6c:6d:a8:cb:fa:24:f5:ac:f3:b3:f4: 8e:3d:70:67:8a:85:62:c2:28:58:4b:99:c9:ad:b8:17:77:00: c3:19:fb:ff:b4:67:22:de:07:92:3d:bb:d9:0f:4d:2d:ee:0b: 4e:5b:b2:1a:53:84:44:af:da:fc:e5:2d:8e:1a:b8:e9:4e:4d: 8f:24:39:d4:d6:7e:9d:33:c3:b8:07:c4:55:09:32:cf:94:17: ea:90:50:22:0d:2b:5c:6f:45:07:7f:de:3a:cd:d4:68:ed:3d: 35:71:9e:59:15:80:b6:bc:8e:be:c8:94:a5:c1:f1:fe:2a:2e: 62:d6:b4:2e:02:5a:38:8c:0f:0b:29:45:61:5d:bb:d1:d7:64: 22:72:fd:0b:f8:aa:bc:b3:bb:ad:81:41:92:b9:06:c3:b5:bb: 15:b1:48:ff:2e:18:38:0d:88:fb:f7:45:4f:be:d1:74:fc:c1: 3d:25:65:c3:20:48:89:65:38:6c:89:18:7a:b7:a4:16:81:4d: da:fa:7a:d8:8d:37:14:06:67:5e:6f:5b:e0:93:ee:f1:1d:7a: 56:90:1a:48:a5:b7:f2:a1:db:14:e7:17:97:1c:53:44:e3:45: 0a:7c:6c:8b:cc:c8:cb:3e:9e:60:84:62:9b:87:75:95:39:54: 8c:70:5e:d7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUB6VWCI3ZpozHefr+K/Miz87QfUMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODE5MTUwMTM2WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjZmE2ZTUzOTY2YmE5MDExYTA3OTQ5ZjM4YjFmMzk1N2Zl OGEwYmE0NmNjMGU1NjllNjcxZTM0Yjk0NTk1ZTczMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCy4UOXUz5IcsnojSb7MXN5WRej1bDUsp8mWsTynP2lzTQb fJruhlAjdaDLJhbqmE3E+CHo/wdP9bDP1i09wl+xBilogM9MmsE74kezukO2ZVEO nblDkFvRwORv0O/Mcr1khUf6eehIEhlqH8JUrirA1OOrXeWDhbqVpXYZudNdJu3I Fpz8Tba8c5fuldlxqy9GRPrqgPgvc69a/0A9VQ/m/CE9EAJH30jZnneFdwuERGLX vOZLiIBS1LurcjzPTYxAUZzUda4LxZxvdPKIt6U4L7mxA8ODZnOwjFm9pEgRIQBT rdDIEwx1XnHSWJe6lW32gNNuJ7ea1tgddL49K3YPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUWMPv9qyrKKYH+aH3iQMV+Bx4zhswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2E2MDczZjgwLWZhZmMtNGU2Yi05NDBjLTQ3NWRmNTY2Mjg5Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwED+jANBgkqhkiG9w0BAQsFAAOCAQEAY9buikz0rWxtqMv6JPWs87P0jj1w Z4qFYsIoWEuZya24F3cAwxn7/7RnIt4Hkj272Q9NLe4LTluyGlOERK/a/OUtjhq4 6U5NjyQ51NZ+nTPDuAfEVQkyz5QX6pBQIg0rXG9FB3/eOs3UaO09NXGeWRWAtryO vsiUpcHx/iouYta0LgJaOIwPCylFYV270ddkInL9C/iqvLO7rYFBkrkGw7W7FbFI /y4YOA2I+/dFT77RdPzBPSVlwyBIiWU4bIkYerekFoFN2vp62I03FAZnXm9b4JPu 8R16VpAaSKW38qHbFOcXlxxTRONFCnxsi8zIyz6eYIRim4d1lTlUjHBe1w== -----END CERTIFICATE-----Generated at Wed Aug 20 10:38:10 2025 by rpki-client