$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2b1405ed-2d6f-4cfd-92d9-228e9d49af46.roa File: 2b1405ed-2d6f-4cfd-92d9-228e9d49af46.roa (raw, json) Hash identifier: xaQd47CGalhYoY9ago0FQJyicqtVPvOZnElAR4QUTug= Subject key identifier: 9E:B2:83:45:4D:54:84:72:99:09:D9:EE:D4:EC:47:FD:D6:AB:38:76 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5FFA90428E73B44B6A6BC215D8B1064A462486CB Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2b1405ed-2d6f-4cfd-92d9-228e9d49af46.roa Signing time: Mon 16 Jun 2025 18:21:14 +0000 ROA not before: Mon 16 Jun 2025 18:21:14 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.240.0.0/12 maxlen: 12 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:fa:90:42:8e:73:b4:4b:6a:6b:c2:15:d8:b1:06:4a:46:24:86:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 16 18:21:14 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=e4eb931e913807667d89442eb7294486cdfa832b4b9f721d1204a77ab466f69d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:3d:47:15:8f:59:a8:e9:b1:ca:3c:bc:92:15: 20:6c:b4:46:45:a0:25:71:87:43:d6:08:03:9b:00: 63:6b:ea:2e:4d:f9:95:24:43:d5:b0:ad:66:eb:d3: 0b:61:18:c3:c6:4c:a8:cc:26:e5:d3:5c:55:8d:61: 51:3b:e7:2b:a4:1a:60:80:26:4e:ce:d3:0d:b6:8d: b5:b6:3f:d2:80:b4:d4:22:14:e6:d8:19:88:aa:61: d5:a0:10:09:df:6a:8f:e0:7c:59:31:4c:7d:a3:57: ca:4f:3f:b5:24:8b:e8:d0:e4:97:16:a3:d1:3b:8b: 96:9b:85:1e:c8:2e:36:e1:77:45:c8:1c:8c:90:1d: 20:f1:bb:cf:0c:a2:1a:b8:a7:d4:50:9a:27:78:99: 75:f1:3b:28:ad:d3:f9:b4:c6:96:c8:12:ab:2c:ac: d2:b1:79:69:56:ab:c2:e9:03:cc:cd:63:c0:13:4a: 1e:bc:fa:28:97:a7:e8:48:25:a8:fd:81:0f:da:4e: 89:fe:cc:b3:23:f2:64:05:4e:6c:a5:88:ae:e5:b2: 25:01:91:fb:7b:97:af:67:50:f6:4a:8c:aa:e9:1e: 9e:ee:4a:b1:ca:c9:2c:f8:b5:df:74:72:b4:86:4c: 9b:a3:67:0a:5b:25:f4:3a:f4:ef:de:bb:7b:b0:28: 08:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:B2:83:45:4D:54:84:72:99:09:D9:EE:D4:EC:47:FD:D6:AB:38:76 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2b1405ed-2d6f-4cfd-92d9-228e9d49af46.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.240.0.0/12 Signature Algorithm: sha256WithRSAEncryption 3e:a1:8a:63:fe:8d:a6:74:1c:09:71:e3:2f:93:07:ef:67:47: fb:d1:77:91:60:cf:99:bb:a4:cf:e1:36:0a:d1:bf:d3:a9:24: 73:5c:ec:c4:22:88:8c:72:1d:fa:af:2d:75:c9:63:43:b5:4e: e2:2e:7d:51:07:c5:48:d0:27:1e:d7:f5:12:48:09:d4:b2:b2: f8:67:fe:2a:7b:2a:7a:94:08:4a:76:5a:2b:3d:4a:db:c3:a7: 3f:ea:8b:ed:88:c0:32:ad:97:79:85:86:0f:7b:d6:fd:42:89: 84:ae:2f:af:3d:15:44:37:13:5b:72:07:9e:8c:fc:a0:4b:5e: 61:01:de:6e:da:1c:cf:b6:79:1b:b4:f3:52:2f:14:24:c9:5a: 22:db:ad:c0:ae:23:da:45:34:18:67:c4:ca:14:09:2b:e9:5b: b1:29:be:d6:48:6a:4b:85:da:58:c0:3f:5f:87:56:3a:85:ef: 8b:be:ea:fc:20:ef:02:af:8f:54:f8:c9:ea:e7:a2:a3:61:ec: ff:56:ec:ba:24:62:bd:19:31:31:b8:09:e8:33:76:22:c4:e4: 4c:cf:a0:63:e8:2e:99:30:22:44:c7:0c:a1:4b:d2:77:1e:6c: b4:85:d1:e1:38:56:26:81:3f:57:22:bb:44:3e:5f:1c:dd:de: 63:1c:08:32 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUX/qQQo5ztEtqa8IV2LEGSkYkhsswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjE2MTgyMTE0WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNGViOTMxZTkxMzgwNzY2N2Q4OTQ0MmViNzI5NDQ4NmNk ZmE4MzJiNGI5ZjcyMWQxMjA0YTc3YWI0NjZmNjlkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBPUcVj1mo6bHKPLySFSBstEZFoCVxh0PWCAObAGNr6i5N +ZUkQ9WwrWbr0wthGMPGTKjMJuXTXFWNYVE75yukGmCAJk7O0w22jbW2P9KAtNQi FObYGYiqYdWgEAnfao/gfFkxTH2jV8pPP7Uki+jQ5JcWo9E7i5abhR7ILjbhd0XI HIyQHSDxu88Mohq4p9RQmid4mXXxOyit0/m0xpbIEqssrNKxeWlWq8LpA8zNY8AT Sh68+iiXp+hIJaj9gQ/aTon+zLMj8mQFTmyliK7lsiUBkft7l69nUPZKjKrpHp7u SrHKySz4td90crSGTJujZwpbJfQ69O/eu3uwKAgdAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUnrKDRU1UhHKZCdnu1OxH/darOHYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzJiMTQwNWVkLTJkNmYtNGNmZC05MmQ5LTIyOGU5ZDQ5YWY0Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwQ28DANBgkqhkiG9w0BAQsFAAOCAQEAPqGKY/6NpnQcCXHjL5MH72dH+9F3 kWDPmbukz+E2CtG/06kkc1zsxCKIjHId+q8tdcljQ7VO4i59UQfFSNAnHtf1EkgJ 1LKy+Gf+KnsqepQISnZaKz1K28OnP+qL7YjAMq2XeYWGD3vW/UKJhK4vrz0VRDcT W3IHnoz8oEteYQHebtocz7Z5G7TzUi8UJMlaItutwK4j2kU0GGfEyhQJK+lbsSm+ 1khqS4XaWMA/X4dWOoXvi77q/CDvAq+PVPjJ6ueio2Hs/1bsuiRivRkxMbgJ6DN2 IsTkTM+gY+gumTAiRMcMoUvSdx5stIXR4ThWJoE/VyK7RD5fHN3eYxwIMg== -----END CERTIFICATE-----Generated at Sun Jun 29 02:47:58 2025 by rpki-client