$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b2504247-930a-4d81-afa2-bd56d5414b8d.roa File: b2504247-930a-4d81-afa2-bd56d5414b8d.roa (raw, json) Hash identifier: deQp+eEw5kW/5wRe/t/abFYMDAXbSsIVKsvauq6Oid8= Subject key identifier: A7:B4:26:20:CD:4C:EA:F6:14:05:37:E8:8A:BD:7D:5F:EC:2C:7E:8D Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0DB5FD96A1220F06D3A166D58B0F18191B81A49A Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b2504247-930a-4d81-afa2-bd56d5414b8d.roa Signing time: Tue 05 Aug 2025 15:42:14 +0000 ROA not before: Tue 05 Aug 2025 15:42:14 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 150.222.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:b5:fd:96:a1:22:0f:06:d3:a1:66:d5:8b:0f:18:19:1b:81:a4:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 5 15:42:14 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=7f5d4f156c98a969180bb8d21c5fa8e43a1ad27f12b40bfdb9801f186ea35413, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:46:f1:6b:50:44:c8:0d:e9:4c:fa:0c:64:59: ef:a6:dd:64:22:76:b1:6a:9f:f6:4f:14:10:d2:76: 55:db:42:28:08:f9:49:9f:07:d1:9e:16:3d:63:67: fb:80:c2:95:e7:46:04:0c:3a:9a:bf:e0:78:5e:91: d3:7b:c7:53:88:29:61:cb:52:78:93:92:e5:0c:26: 82:8a:6d:9e:c7:9e:8a:17:1b:41:61:36:28:8d:b7: b0:31:6f:01:d4:5b:e8:00:3d:02:55:f8:e8:0f:a8: 3e:85:c2:0d:06:df:37:ee:13:2c:18:06:95:7b:05: 5e:1f:27:7c:e2:a1:8b:d4:79:4f:4e:91:88:17:28: 49:85:34:3f:f5:b1:8e:6a:33:cf:8d:96:ea:75:5c: 97:60:c3:81:9b:2e:3a:92:ae:a9:6c:b6:91:3c:ac: e0:cf:0d:2c:97:5c:19:7d:30:2b:77:85:3a:d7:23: a9:b9:74:b8:67:11:1f:73:0c:6f:4f:88:0a:e1:c2: 89:12:63:ca:91:14:0f:3d:24:de:dd:0b:7b:6b:01: 85:b3:7d:b1:55:0f:d7:68:7f:14:48:6b:38:77:0c: e8:de:e8:f5:6e:48:72:af:27:90:78:05:39:a9:9e: 3b:1b:ed:d7:b4:30:ba:01:81:e7:d8:43:33:a7:53: d2:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:B4:26:20:CD:4C:EA:F6:14:05:37:E8:8A:BD:7D:5F:EC:2C:7E:8D X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b2504247-930a-4d81-afa2-bd56d5414b8d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.222.99.0/24 Signature Algorithm: sha256WithRSAEncryption 36:4c:7a:af:b7:0a:91:f2:08:ea:46:cc:06:a7:f2:d2:fb:06: af:25:b6:0d:2e:dc:4e:48:d7:84:38:85:a9:15:c5:26:98:52: 54:4f:2b:11:e4:0d:e5:f4:cc:76:10:fc:93:a9:cd:b5:b3:af: 0e:ad:82:22:b9:69:89:52:33:04:2a:dc:b0:de:46:64:9c:2f: 7d:8f:3a:5c:db:fd:9f:9f:4c:d0:b8:85:d1:d6:ec:ed:d1:fc: fc:5b:3e:5e:8d:c8:b0:4f:8b:fe:86:d1:d2:25:5a:2b:40:97: 08:a6:31:d4:99:4b:78:ba:92:2c:90:78:28:70:10:0b:b8:0a: ba:0f:56:b0:12:a2:a9:8c:42:1e:0b:51:b2:61:e3:b7:1b:18: 11:51:78:4d:c6:95:13:ff:d6:4f:de:97:02:65:af:6c:7a:ec: fd:2e:eb:eb:13:f3:dc:b8:1a:4e:86:5a:df:ac:da:e7:17:e2: a1:80:c2:ac:22:74:45:b1:70:2d:ef:48:6b:04:df:74:d5:cc: 39:b2:ff:0e:3b:44:e5:05:65:c0:f7:a7:76:bf:eb:47:5d:44: 3c:f2:e8:50:f6:fa:62:e3:61:d6:1a:96:5f:37:d0:1d:fd:bb: 2a:fa:a7:02:4b:5b:eb:1a:a0:89:c2:e6:46:5b:e1:f2:bf:92: ee:eb:bb:7c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDbX9lqEiDwbToWbViw8YGRuBpJowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODA1MTU0MjE0WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZjVkNGYxNTZjOThhOTY5MTgwYmI4ZDIxYzVmYThlNDNh MWFkMjdmMTJiNDBiZmRiOTgwMWYxODZlYTM1NDEzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCJRvFrUETIDelM+gxkWe+m3WQidrFqn/ZPFBDSdlXbQigI +UmfB9GeFj1jZ/uAwpXnRgQMOpq/4HhekdN7x1OIKWHLUniTkuUMJoKKbZ7HnooX G0FhNiiNt7AxbwHUW+gAPQJV+OgPqD6Fwg0G3zfuEywYBpV7BV4fJ3zioYvUeU9O kYgXKEmFND/1sY5qM8+Nlup1XJdgw4GbLjqSrqlstpE8rODPDSyXXBl9MCt3hTrX I6m5dLhnER9zDG9PiArhwokSY8qRFA89JN7dC3trAYWzfbFVD9dofxRIazh3DOje 6PVuSHKvJ5B4BTmpnjsb7de0MLoBgefYQzOnU9KRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUp7QmIM1M6vYUBTfoir19X+wsfo0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2IyNTA0MjQ3LTkzMGEtNGQ4MS1hZmEyLWJkNTZkNTQxNGI4ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACW3mMwDQYJKoZIhvcNAQELBQADggEBADZMeq+3CpHyCOpGzAan8tL7Bq8l tg0u3E5I14Q4hakVxSaYUlRPKxHkDeX0zHYQ/JOpzbWzrw6tgiK5aYlSMwQq3LDe RmScL32POlzb/Z+fTNC4hdHW7O3R/PxbPl6NyLBPi/6G0dIlWitAlwimMdSZS3i6 kiyQeChwEAu4CroPVrASoqmMQh4LUbJh47cbGBFReE3GlRP/1k/elwJlr2x67P0u 6+sT89y4Gk6GWt+s2ucX4qGAwqwidEWxcC3vSGsE33TVzDmy/w47ROUFZcD3p3a/ 60ddRDzy6FD2+mLjYdYall830B39uyr6pwJLW+saoInC5kZb4fK/ku7ru3w= -----END CERTIFICATE-----Generated at Sat Aug 23 08:07:06 2025 by rpki-client