$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00b172cf-bb6b-4ff9-a179-0b60cba4cd03.roa File: 00b172cf-bb6b-4ff9-a179-0b60cba4cd03.roa (raw, json) Hash identifier: BqX2Ckya9quXFw1QkvJAgh3AnJGarjV86guOoKjtFNI= Subject key identifier: DA:C0:63:D5:5B:6B:56:75:87:5F:79:AF:12:16:E3:75:C0:6F:3B:8C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 405CB291660E08F236EBA7AA6877113030AC1EE2 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00b172cf-bb6b-4ff9-a179-0b60cba4cd03.roa Signing time: Mon 09 Jun 2025 19:01:04 +0000 ROA not before: Mon 09 Jun 2025 19:01:04 +0000 ROA not after: Mon 14 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.249.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:5c:b2:91:66:0e:08:f2:36:eb:a7:aa:68:77:11:30:30:ac:1e:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 9 19:01:04 2025 GMT Not After : Jul 14 23:59:59 2025 GMT Subject: serialNumber=30ca9eb9bc3d766b90c447a718fe6aa6295863378d64d44dc122ace90cb64ff5, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:fb:4a:f5:fd:7f:62:7b:6e:aa:db:2a:a5:0e: bc:12:bb:d2:65:14:3d:d8:cf:d9:d0:c8:e8:29:98: c1:1e:df:42:53:ea:54:1c:5e:0f:f8:c2:3d:6f:19: bb:dc:6a:06:51:04:f7:88:61:a6:42:03:e8:3c:5a: 7d:07:31:8a:cd:66:a0:d7:4e:fc:85:a0:7a:ee:df: 71:29:9f:77:a0:80:34:24:96:af:bb:48:69:69:35: 3b:e8:e6:fb:6c:41:8d:2a:8c:69:45:52:5d:82:c4: 4e:a4:98:c5:00:76:c0:c3:26:64:7b:4b:89:d7:af: f7:ec:c9:7a:c2:4f:5c:ef:6a:f2:9e:cb:04:e6:83: ed:2f:76:e6:ec:4a:61:60:70:a8:cc:8a:0a:9a:03: 35:20:40:a5:80:66:14:8f:3f:c8:56:d9:67:ac:0f: 69:67:0a:5c:43:46:29:70:ba:2a:8b:7b:09:41:41: 4e:47:da:5b:10:eb:6f:4b:20:14:b6:f7:6f:8c:8b: 25:d7:57:9e:53:18:fe:98:e8:2c:58:dc:11:a2:3b: 8e:f9:90:5b:51:5d:80:e0:c7:98:c4:ec:3e:28:e8: 01:3e:89:03:9b:6f:02:9e:38:f0:ff:65:f6:ff:52: 39:7d:e0:a0:af:94:fb:e2:ec:bc:27:da:21:e0:13: 1a:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:C0:63:D5:5B:6B:56:75:87:5F:79:AF:12:16:E3:75:C0:6F:3B:8C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00b172cf-bb6b-4ff9-a179-0b60cba4cd03.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.249.32.0/19 Signature Algorithm: sha256WithRSAEncryption 5e:b6:c1:5a:65:bd:02:10:14:08:fc:0c:9a:0b:4d:7f:a4:69: d7:22:9f:6d:16:cd:aa:dc:4a:2f:42:e9:99:62:95:84:ac:aa: cd:70:e6:27:38:c0:a3:62:55:80:ad:12:98:63:9d:25:1c:f6: c8:6c:ed:2c:cf:70:6e:01:0b:c2:17:f9:1d:be:85:5a:db:45: 80:e8:5a:51:11:08:6b:1a:84:fc:35:d8:f5:7f:6d:8c:ed:3a: 2b:ff:31:3c:9a:01:9f:94:31:19:f3:66:c0:3a:9c:0b:25:99: 25:5f:61:94:76:38:93:5c:f1:66:6a:69:8a:71:5c:31:93:52: e9:8a:58:de:1b:74:a6:19:68:53:f4:a1:0c:38:23:83:22:05: 8b:b2:ad:d4:71:89:a9:b1:06:52:05:31:70:a7:45:c8:0f:d9: da:0c:9a:59:82:57:52:72:9d:c9:40:92:25:c7:c7:61:8b:42: a2:55:c8:4e:c2:ef:28:f0:eb:88:be:af:09:ee:96:88:28:bb: ef:43:c3:57:fa:b6:82:1a:4b:a3:76:9b:47:23:f0:a8:d0:ad: 0b:ad:65:1b:fa:1f:47:c9:aa:f4:bd:42:f9:23:9e:51:d3:0a: 51:ab:5e:f1:60:c1:5b:5f:51:d9:41:2f:07:a1:9e:eb:df:4c: 14:50:91:06 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQFyykWYOCPI266eqaHcRMDCsHuIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjA5MTkwMTA0WhcNMjUwNzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMGNhOWViOWJjM2Q3NjZiOTBjNDQ3YTcxOGZlNmFhNjI5 NTg2MzM3OGQ2NGQ0NGRjMTIyYWNlOTBjYjY0ZmY1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZ+0r1/X9ie26q2yqlDrwSu9JlFD3Yz9nQyOgpmMEe30JT 6lQcXg/4wj1vGbvcagZRBPeIYaZCA+g8Wn0HMYrNZqDXTvyFoHru33Epn3eggDQk lq+7SGlpNTvo5vtsQY0qjGlFUl2CxE6kmMUAdsDDJmR7S4nXr/fsyXrCT1zvavKe ywTmg+0vdubsSmFgcKjMigqaAzUgQKWAZhSPP8hW2WesD2lnClxDRilwuiqLewlB QU5H2lsQ629LIBS292+MiyXXV55TGP6Y6CxY3BGiO475kFtRXYDgx5jE7D4o6AE+ iQObbwKeOPD/Zfb/Ujl94KCvlPvi7Lwn2iHgExqLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2sBj1VtrVnWHX3mvEhbjdcBvO4wwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzAwYjE3MmNmLWJiNmItNGZmOS1hMTc5LTBiNjBjYmE0Y2QwMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU2+SAwDQYJKoZIhvcNAQELBQADggEBAF62wVplvQIQFAj8DJoLTX+kadci n20WzarcSi9C6ZlilYSsqs1w5ic4wKNiVYCtEphjnSUc9shs7SzPcG4BC8IX+R2+ hVrbRYDoWlERCGsahPw12PV/bYztOiv/MTyaAZ+UMRnzZsA6nAslmSVfYZR2OJNc 8WZqaYpxXDGTUumKWN4bdKYZaFP0oQw4I4MiBYuyrdRxiamxBlIFMXCnRcgP2doM mlmCV1JynclAkiXHx2GLQqJVyE7C7yjw64i+rwnulogou+9Dw1f6toIaS6N2m0cj 8KjQrQutZRv6H0fJqvS9QvkjnlHTClGrXvFgwVtfUdlBLwehnuvfTBRQkQY= -----END CERTIFICATE-----Generated at Sat Jun 14 05:44:26 2025 by rpki-client