$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f250c72a-5bf6-4da2-9ad8-ff850d5aa21d.roa File: f250c72a-5bf6-4da2-9ad8-ff850d5aa21d.roa (raw, json) Hash identifier: /VROWsbcWwKlAiYdV8XrJMBJdz7DzPFGX22wX8A+6/s= Subject key identifier: DC:1B:B4:E3:75:4B:B9:2A:3B:8B:A7:15:5B:C2:EC:54:B7:1F:37:F4 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0D90C94DC3F27E9B5038AC68973E93F0EA7BB22B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f250c72a-5bf6-4da2-9ad8-ff850d5aa21d.roa Signing time: Mon 28 Apr 2025 15:30:58 +0000 ROA not before: Mon 28 Apr 2025 15:30:58 +0000 ROA not after: Mon 02 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.4.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:90:c9:4d:c3:f2:7e:9b:50:38:ac:68:97:3e:93:f0:ea:7b:b2:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 28 15:30:58 2025 GMT Not After : Jun 2 23:59:59 2025 GMT Subject: serialNumber=6c600a2c802bc37b473ea42b3e9311e04101e3c25ad999a40a4fdb0140cfeb70, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f9:21:6a:6b:b8:f6:89:f4:3e:8a:87:e6:47: c3:9b:11:8a:e3:6f:fd:62:03:08:94:8f:76:1a:9a: c1:5f:cf:00:62:a3:c5:00:e1:3d:09:80:65:82:f1: b4:1b:9a:03:d5:de:eb:70:ee:22:7e:45:de:dc:32: 63:b6:32:8e:d4:00:5f:1f:0d:da:c5:15:1e:ed:a4: b5:03:a2:ac:fa:33:96:91:b5:91:24:cc:54:ec:d6: c8:ad:2e:e0:7f:1a:54:c4:f5:52:61:b7:06:7c:46: 2a:ca:37:78:d6:63:a8:e7:51:c0:19:32:e8:7e:89: b0:0c:34:c7:0d:1e:8b:37:2f:1e:40:fb:f6:7b:a8: 2a:70:cd:46:81:e1:7a:85:b3:23:a3:54:33:92:1c: e7:93:a3:72:32:97:31:56:88:e5:37:74:e8:52:dd: df:58:02:e0:9c:b2:17:13:5c:e8:39:ce:68:dc:36: ba:f1:9c:02:67:f2:1a:6e:30:cb:60:7f:5e:fb:43: 5c:95:ad:de:59:d6:71:3e:a5:ee:40:de:37:a1:3b: ae:f5:f9:2f:1b:47:1c:be:ec:b3:2c:c7:76:9d:84: 5c:34:4e:6b:77:16:2d:cd:e6:4e:b9:14:be:92:fc: bd:f7:a8:bb:7d:bc:bf:5d:7b:36:75:eb:0a:b8:f1: 1a:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:1B:B4:E3:75:4B:B9:2A:3B:8B:A7:15:5B:C2:EC:54:B7:1F:37:F4 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f250c72a-5bf6-4da2-9ad8-ff850d5aa21d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.4.10.0/24 Signature Algorithm: sha256WithRSAEncryption a3:d3:14:9b:46:73:db:91:4d:ad:ed:a5:98:be:28:f8:9f:7c: d4:d0:4b:99:57:4b:f0:35:de:9d:a5:33:5f:c7:83:2b:60:f1: 09:6d:80:75:50:98:a7:3a:ad:a6:54:be:dd:7a:6c:d3:cc:16: 16:33:cd:b9:4c:ec:52:32:b6:47:eb:30:14:e1:13:64:c3:7a: 06:27:41:49:18:99:92:fd:d3:e6:3a:19:df:23:c3:76:9a:e6: b6:37:e0:76:0b:a9:2c:6d:7e:a3:f3:c7:2c:0b:2d:06:c5:3b: a6:ea:4f:44:2a:b7:02:58:8a:a6:97:01:af:b9:c1:95:33:99: 9a:dd:23:c3:6d:fc:7f:bf:b3:b3:9b:78:3f:64:1e:13:88:51: c1:08:14:23:bc:33:70:34:2b:45:c6:14:e6:fb:ee:10:cd:04: 90:68:9a:a9:ef:fc:21:49:d4:fb:12:fa:db:d2:5d:48:3d:08: d3:6e:81:47:11:62:1c:23:55:fb:7c:94:3f:a8:3b:70:15:83: b4:07:31:e0:b2:22:c2:90:df:d2:0b:62:8c:16:1b:e6:62:2a: 05:6f:fa:26:f0:97:14:61:40:43:f7:2e:6b:4b:0d:65:93:29: 39:2e:e0:ce:89:7a:1a:2d:00:30:c9:91:df:55:4e:0f:fa:14: 2a:49:41:99 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDZDJTcPyfptQOKxolz6T8Op7siswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDI4MTUzMDU4WhcNMjUwNjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YzYwMGEyYzgwMmJjMzdiNDczZWE0MmIzZTkzMTFlMDQx MDFlM2MyNWFkOTk5YTQwYTRmZGIwMTQwY2ZlYjcwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDW+SFqa7j2ifQ+iofmR8ObEYrjb/1iAwiUj3YamsFfzwBi o8UA4T0JgGWC8bQbmgPV3utw7iJ+Rd7cMmO2Mo7UAF8fDdrFFR7tpLUDoqz6M5aR tZEkzFTs1sitLuB/GlTE9VJhtwZ8RirKN3jWY6jnUcAZMuh+ibAMNMcNHos3Lx5A +/Z7qCpwzUaB4XqFsyOjVDOSHOeTo3IylzFWiOU3dOhS3d9YAuCcshcTXOg5zmjc NrrxnAJn8hpuMMtgf177Q1yVrd5Z1nE+pe5A3jehO671+S8bRxy+7LMsx3adhFw0 Tmt3Fi3N5k65FL6S/L33qLt9vL9dezZ16wq48RrDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3Bu043VLuSo7i6cVW8LsVLcfN/QwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2YyNTBjNzJhLTViZjYtNGRhMi05YWQ4LWZmODUwZDVhYTIxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADBAowDQYJKoZIhvcNAQELBQADggEBAKPTFJtGc9uRTa3tpZi+KPiffNTQ S5lXS/A13p2lM1/Hgytg8QltgHVQmKc6raZUvt16bNPMFhYzzblM7FIytkfrMBTh E2TDegYnQUkYmZL90+Y6Gd8jw3aa5rY34HYLqSxtfqPzxywLLQbFO6bqT0QqtwJY iqaXAa+5wZUzmZrdI8Nt/H+/s7ObeD9kHhOIUcEIFCO8M3A0K0XGFOb77hDNBJBo mqnv/CFJ1PsS+tvSXUg9CNNugUcRYhwjVft8lD+oO3AVg7QHMeCyIsKQ39ILYowW G+ZiKgVv+ibwlxRhQEP3LmtLDWWTKTku4M6JehotADDJkd9VTg/6FCpJQZk= -----END CERTIFICATE-----Generated at Fri May 9 15:34:09 2025 by rpki-client