$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ac129866-e40c-4b2b-adc8-dad9d3e140ef.roa File: ac129866-e40c-4b2b-adc8-dad9d3e140ef.roa (raw, json) Hash identifier: 1nnqC3omQ6rAMSVM8EOHeOkT/JwDz6Pbb7pzTSXWGXc= Subject key identifier: 7B:9A:20:66:41:04:9C:B7:71:5E:DD:38:0F:30:EA:E7:30:7A:8C:BB Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 471BF8A3FBA9EC43E35D6B150BD62E6874541920 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ac129866-e40c-4b2b-adc8-dad9d3e140ef.roa Signing time: Mon 30 Jun 2025 16:01:41 +0000 ROA not before: Mon 30 Jun 2025 16:01:41 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.128.0.0/10 maxlen: 10 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:1b:f8:a3:fb:a9:ec:43:e3:5d:6b:15:0b:d6:2e:68:74:54:19:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 30 16:01:41 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=48950afb781b9c6d3f9c961a9262a91b72d64e7ff13187c169c49a0931dd74ad, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:04:74:82:4f:a3:69:77:1a:c9:ef:ed:fb:7b: 72:fc:9f:e7:cd:c3:5c:67:df:b0:b0:26:b1:de:da: 1e:7e:4e:b0:10:43:13:a9:67:8f:b7:8e:16:dd:52: f8:de:ac:c0:af:9b:ea:ad:62:79:e2:65:fa:a2:94: 03:1a:95:50:fa:38:54:79:3a:00:6f:12:73:af:a3: 7c:02:89:f7:80:4c:2d:05:76:a1:75:26:42:44:41: 8b:b0:df:1a:34:67:40:de:e8:02:be:f4:d0:18:3e: 2a:ff:30:11:a1:e1:d1:1e:98:e0:d0:cf:4f:73:c0: 63:0a:4a:f9:7a:2e:e8:d5:ad:07:20:55:00:bb:fc: d3:dd:97:18:bc:ae:66:17:ea:e0:f9:6d:9c:1a:be: b6:3f:ed:12:40:25:8d:b4:c0:83:53:25:ee:bf:cc: d4:a8:5f:8c:69:35:b6:8a:dd:fc:d3:f8:5b:6c:f3: 67:59:eb:11:7a:ab:0d:ce:fe:98:ec:f7:98:45:14: 74:02:1f:07:36:d6:54:64:bf:8e:5b:97:0b:ac:4a: 75:40:a3:ca:ac:94:c4:98:ea:59:42:7d:c0:5c:da: cd:33:44:96:41:3b:75:2e:cf:8d:8f:dd:dd:3c:b5: 8c:e2:02:c3:cb:62:be:8d:a1:48:5a:e6:af:4a:da: 68:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:9A:20:66:41:04:9C:B7:71:5E:DD:38:0F:30:EA:E7:30:7A:8C:BB X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ac129866-e40c-4b2b-adc8-dad9d3e140ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.128.0.0/10 Signature Algorithm: sha256WithRSAEncryption 2e:3d:65:64:f4:06:81:97:09:c6:cd:c3:15:ac:2f:25:0d:e5: a5:55:16:37:05:31:e3:4a:fa:88:a2:dc:54:2e:b4:84:19:5a: 2c:a4:f8:00:5d:93:99:fe:a9:30:e6:59:9e:20:66:1c:17:89: bb:d9:20:08:57:95:7c:23:9a:13:4c:75:c0:79:8f:f7:13:e1: 28:ba:28:2a:2e:1c:be:8d:c8:f5:2b:b8:44:50:a8:92:52:60: ba:5b:07:bb:87:2b:ac:29:8b:42:7e:6d:40:d0:04:98:8e:d2: b5:bf:61:14:46:cb:ef:1b:5e:cd:5f:d2:fa:4b:aa:ae:14:3f: 4d:e9:c8:22:68:1d:6c:b2:64:33:b4:25:2b:e6:b2:e0:ef:ca: 92:8a:87:32:ef:c0:f4:f8:89:e9:0e:41:a7:60:53:5a:6f:dd: 83:7f:03:30:e6:73:4d:bb:f8:67:6b:ad:4e:cf:a1:c1:cd:8e: 85:f6:c1:72:de:db:9b:25:22:11:01:74:1c:6d:6b:5b:56:69: dc:cb:22:ef:f1:b6:5c:3a:03:4b:5b:c5:fc:c2:f9:e8:aa:cc: 9f:2d:12:7e:62:15:30:05:72:3e:a4:88:8c:83:75:df:f5:f4: bf:bc:90:97:76:ad:43:4e:34:44:bb:17:86:e9:fb:6e:54:83: 7f:70:12:a4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURxv4o/up7EPjXWsVC9YuaHRUGSAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjMwMTYwMTQxWhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ODk1MGFmYjc4MWI5YzZkM2Y5Yzk2MWE5MjYyYTkxYjcy ZDY0ZTdmZjEzMTg3YzE2OWM0OWEwOTMxZGQ3NGFkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLBHSCT6NpdxrJ7+37e3L8n+fNw1xn37CwJrHe2h5+TrAQ QxOpZ4+3jhbdUvjerMCvm+qtYnniZfqilAMalVD6OFR5OgBvEnOvo3wCifeATC0F dqF1JkJEQYuw3xo0Z0De6AK+9NAYPir/MBGh4dEemODQz09zwGMKSvl6LujVrQcg VQC7/NPdlxi8rmYX6uD5bZwavrY/7RJAJY20wINTJe6/zNSoX4xpNbaK3fzT+Fts 82dZ6xF6qw3O/pjs95hFFHQCHwc21lRkv45blwusSnVAo8qslMSY6llCfcBc2s0z RJZBO3Uuz42P3d08tYziAsPLYr6NoUha5q9K2mh1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUe5ogZkEEnLdxXt04DzDq5zB6jLswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2FjMTI5ODY2LWU0MGMtNGIyYi1hZGM4LWRhZDlkM2UxNDBlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwYDgDANBgkqhkiG9w0BAQsFAAOCAQEALj1lZPQGgZcJxs3DFawvJQ3lpVUW NwUx40r6iKLcVC60hBlaLKT4AF2Tmf6pMOZZniBmHBeJu9kgCFeVfCOaE0x1wHmP 9xPhKLooKi4cvo3I9Su4RFCoklJgulsHu4crrCmLQn5tQNAEmI7Stb9hFEbL7xte zV/S+kuqrhQ/TenIImgdbLJkM7QlK+ay4O/KkoqHMu/A9PiJ6Q5Bp2BTWm/dg38D MOZzTbv4Z2utTs+hwc2OhfbBct7bmyUiEQF0HG1rW1Zp3Msi7/G2XDoDS1vF/ML5 6KrMny0SfmIVMAVyPqSIjIN13/X0v7yQl3atQ040RLsXhun7blSDf3ASpA== -----END CERTIFICATE-----Generated at Mon Jun 30 23:05:21 2025 by rpki-client