$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a721e853-0369-4d32-b3f4-ef9c261b1f58.roa File: a721e853-0369-4d32-b3f4-ef9c261b1f58.roa (raw, json) Hash identifier: KJHeYgDdZdYsXrGe+IFZp518MolYJH4CvpXwiAaTPc4= Subject key identifier: E9:3A:41:70:C0:D6:1B:C1:5A:43:E6:B4:8C:01:34:86:F5:82:B0:EB Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2093AB8BB7D2F8CB0FA187D5CB846911DD75AC42 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a721e853-0369-4d32-b3f4-ef9c261b1f58.roa Signing time: Mon 30 Jun 2025 16:21:13 +0000 ROA not before: Mon 30 Jun 2025 16:21:13 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 34.217.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:93:ab:8b:b7:d2:f8:cb:0f:a1:87:d5:cb:84:69:11:dd:75:ac:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 30 16:21:13 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=1889bfe184ccc2aef9e4a6f4627495fc6d9e04e1e55a0e4a2d552bf49ed66d6e, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:f4:c2:90:ab:f9:4c:b7:d1:8d:3d:0a:ec:ae: 44:bc:02:c7:16:a9:b4:dc:71:d9:65:64:c0:a9:62: ff:97:9d:75:c5:a9:19:f1:25:55:b3:bd:d7:14:f9: ff:fe:cd:70:9a:67:da:1a:5a:e4:ca:c1:89:b3:c4: cf:31:88:8b:8b:5b:de:d1:16:f9:9f:2b:2e:73:d0: dd:60:a7:fe:28:7e:44:4a:19:75:9e:fb:66:3e:2b: a4:02:ce:47:5f:da:6d:b2:07:2e:18:39:af:73:bc: 94:af:1d:2c:a6:0c:9f:df:e4:3d:4a:d1:02:17:fd: 9d:50:9c:5d:19:29:18:38:9a:d1:7d:c4:d8:12:8b: 5e:be:f7:24:33:96:0e:e4:05:38:11:40:d8:a5:6f: 00:f4:89:a2:16:b7:4b:63:60:aa:b1:0b:a9:97:44: 42:59:17:4f:0c:65:92:ea:5d:88:1f:c5:44:d7:a9: 28:3f:6a:16:6d:b6:05:3e:65:ce:54:0d:6d:d4:20: 76:03:56:12:a6:cf:c8:9d:28:9c:4e:fe:f6:f6:b3: 09:9e:6e:8d:4f:3b:1e:f5:be:16:71:33:4f:bb:42: b1:11:d2:ce:32:82:79:ed:e8:08:45:b4:0d:ad:1d: d2:35:d1:c6:1a:90:cf:7b:59:7e:8e:24:10:3b:99: 10:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:3A:41:70:C0:D6:1B:C1:5A:43:E6:B4:8C:01:34:86:F5:82:B0:EB X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a721e853-0369-4d32-b3f4-ef9c261b1f58.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 34.217.143.0/24 Signature Algorithm: sha256WithRSAEncryption 02:21:b8:53:9c:9d:ee:32:a0:cc:1e:9a:a3:1b:da:6f:b9:c1: 9d:9c:7b:d4:06:23:d9:0d:9d:53:2f:a1:58:7d:e3:8c:40:4d: 5e:ae:75:3a:00:e5:9d:ba:04:0e:18:7e:0e:88:bd:c1:12:45: c1:bf:74:dc:95:5b:48:01:4a:37:53:1c:e0:f5:58:ba:d5:83: 9f:0c:f7:5d:c0:8b:e6:da:82:54:56:7f:0f:20:54:e6:9b:5c: fa:a0:6a:b5:20:cd:2a:da:e4:f0:47:c2:90:f5:3d:a6:30:d6: f1:47:23:00:5e:90:19:cd:9f:cf:90:d8:84:93:5a:a1:8b:b9: 8a:f7:d4:a9:b0:43:eb:02:05:d6:38:b2:30:bd:4d:f3:97:c6: 04:d2:11:20:fe:ce:14:31:ad:29:07:c2:3f:86:b7:26:da:a5: 28:16:e8:5c:66:ab:3e:71:31:ce:03:65:bc:a6:3f:f2:58:6d: 00:ab:f9:32:33:77:b7:7f:4f:a7:a7:7a:00:e4:77:7d:fd:8b: a4:9a:a1:d8:01:7c:68:28:d5:f4:db:17:40:27:67:5e:6d:ba: 9d:e1:10:c7:31:24:b2:3b:f1:d5:a2:c8:e8:6e:23:e8:d0:6c: 09:92:05:d3:82:63:96:16:12:d3:ce:36:d9:4c:9c:4b:25:29: 42:50:58:95 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIJOri7fS+MsPoYfVy4RpEd11rEIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjMwMTYyMTEzWhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxODg5YmZlMTg0Y2NjMmFlZjllNGE2ZjQ2Mjc0OTVmYzZk OWUwNGUxZTU1YTBlNGEyZDU1MmJmNDllZDY2ZDZlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCK9MKQq/lMt9GNPQrsrkS8AscWqbTccdllZMCpYv+XnXXF qRnxJVWzvdcU+f/+zXCaZ9oaWuTKwYmzxM8xiIuLW97RFvmfKy5z0N1gp/4ofkRK GXWe+2Y+K6QCzkdf2m2yBy4YOa9zvJSvHSymDJ/f5D1K0QIX/Z1QnF0ZKRg4mtF9 xNgSi16+9yQzlg7kBTgRQNilbwD0iaIWt0tjYKqxC6mXREJZF08MZZLqXYgfxUTX qSg/ahZttgU+Zc5UDW3UIHYDVhKmz8idKJxO/vb2swmebo1POx71vhZxM0+7QrER 0s4ygnnt6AhFtA2tHdI10cYakM97WX6OJBA7mRA/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6TpBcMDWG8FaQ+a0jAE0hvWCsOswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2E3MjFlODUzLTAzNjktNGQzMi1iM2Y0LWVmOWMyNjFiMWY1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAi2Y8wDQYJKoZIhvcNAQELBQADggEBAAIhuFOcne4yoMwemqMb2m+5wZ2c e9QGI9kNnVMvoVh944xATV6udToA5Z26BA4Yfg6IvcESRcG/dNyVW0gBSjdTHOD1 WLrVg58M913Ai+baglRWfw8gVOabXPqgarUgzSra5PBHwpD1PaYw1vFHIwBekBnN n8+Q2ISTWqGLuYr31KmwQ+sCBdY4sjC9TfOXxgTSESD+zhQxrSkHwj+GtybapSgW 6Fxmqz5xMc4DZbymP/JYbQCr+TIzd7d/T6enegDkd339i6SaodgBfGgo1fTbF0An Z15tup3hEMcxJLI78dWiyOhuI+jQbAmSBdOCY5YWEtPONtlMnEslKUJQWJU= -----END CERTIFICATE-----Generated at Mon Jun 30 23:43:31 2025 by rpki-client