$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0225343d-9c18-48f3-9938-89a9b44d1562.roa File: 0225343d-9c18-48f3-9938-89a9b44d1562.roa (raw, json) Hash identifier: 7k9tUcbjhblPIcDOAA9ZNeEqd8s0ZHe+3TPo9pPtv1M= Subject key identifier: 2A:A6:DC:7C:5B:FC:1E:D4:1C:23:4B:EB:6C:3C:44:5C:87:0D:EB:28 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1B2B6A530CC6D9A6621365A3C5EDD0ADAA946683 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0225343d-9c18-48f3-9938-89a9b44d1562.roa Signing time: Sat 07 Jun 2025 00:50:10 +0000 ROA not before: Sat 07 Jun 2025 00:50:10 +0000 ROA not after: Sat 12 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.93.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:2b:6a:53:0c:c6:d9:a6:62:13:65:a3:c5:ed:d0:ad:aa:94:66:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 7 00:50:10 2025 GMT Not After : Jul 12 23:59:59 2025 GMT Subject: serialNumber=174359c9ecad260eea999c241f1e654119bc4b48a8911208c598a4ac71b75b9f, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:04:84:00:f3:82:cc:20:51:ec:03:94:33:4a: 2c:71:c3:08:a8:cd:2e:ab:5d:ae:90:58:1a:e8:8f: 46:7d:f5:8d:87:c6:85:0e:0c:eb:8d:e1:bf:62:d9: c6:06:dd:cd:5f:fc:d4:b9:e6:1a:8f:c5:d7:bb:77: 3c:0f:f3:89:fb:3f:c1:c1:6e:32:fa:54:78:bb:b7: 68:a1:ae:84:79:fc:8b:55:13:fe:9c:c4:ca:c9:c0: 06:9c:e3:3a:88:1b:50:1c:6e:99:85:98:79:53:0a: e4:d3:27:27:52:bb:e5:3e:e2:ec:81:0f:63:82:bf: 3a:05:0e:1f:7f:a9:d9:8d:81:af:ec:b6:8c:c5:d6: 6d:f4:01:50:e1:73:a8:70:43:72:a3:0d:12:9f:97: b6:e2:ba:23:e8:d5:8a:70:7b:bd:ed:dd:cb:39:a1: 83:05:a1:13:e0:df:87:37:19:a2:68:ba:18:0b:83: d5:8c:e9:6b:57:9c:21:c2:46:37:8e:8d:d6:c7:bc: 70:91:86:61:49:2f:d7:7e:1b:78:e5:bd:cb:bc:fe: 0e:88:6d:23:b6:da:68:1e:f9:e3:21:d8:bd:ff:32: 3d:9c:b4:5e:ba:8d:de:3a:87:55:f9:9e:9a:1b:ca: cd:f2:8d:07:2b:1b:12:88:a3:90:b8:5b:ac:a7:3c: 6f:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:A6:DC:7C:5B:FC:1E:D4:1C:23:4B:EB:6C:3C:44:5C:87:0D:EB:28 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0225343d-9c18-48f3-9938-89a9b44d1562.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.93.236.0/24 Signature Algorithm: sha256WithRSAEncryption 42:d1:89:b5:66:4c:65:36:93:47:24:d6:b9:6c:f7:9f:8d:06: 4d:2c:c4:0e:61:4a:c4:14:fa:ca:40:a8:bd:79:cc:2a:36:1a: 0c:7c:39:76:1e:58:d6:fa:2d:6d:55:7c:1a:30:1a:88:63:40: d0:98:aa:a5:9d:b6:b1:34:ba:46:89:a1:2d:42:02:3b:bd:15: 4f:7e:95:5b:4c:49:1e:c0:74:d3:48:18:2d:d2:29:59:16:d8: 1f:c0:a1:bc:14:b9:e9:7e:17:1a:ea:ae:c3:f2:52:aa:ef:51: ed:c3:e0:b3:98:22:56:72:0c:09:f5:35:33:6e:f4:1e:51:b6: 1e:69:67:28:1e:bb:93:87:28:6c:8c:9a:a8:f9:86:2d:1c:9d: f7:1d:0f:2d:d3:72:68:8c:2d:9b:e8:62:b2:97:6c:e3:b8:8f: 0c:b0:d1:8f:63:8f:0c:76:42:bf:a7:66:46:63:0a:50:4f:75: e5:c6:37:04:55:28:d4:81:c6:58:ed:ab:2a:56:4b:f4:0e:36: a2:b2:b0:97:ab:ae:cd:c5:90:31:db:0c:cd:9f:b9:bc:5e:08: 5f:c5:1a:44:79:55:27:df:b3:36:ac:11:6e:a8:4b:d7:96:c7: 89:47:c8:60:45:84:f2:55:bd:22:34:6c:0f:18:57:cd:cc:16: 38:ab:8c:78 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGytqUwzG2aZiE2Wjxe3QraqUZoMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjA3MDA1MDEwWhcNMjUwNzEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNzQzNTljOWVjYWQyNjBlZWE5OTljMjQxZjFlNjU0MTE5 YmM0YjQ4YTg5MTEyMDhjNTk4YTRhYzcxYjc1YjlmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD9BIQA84LMIFHsA5QzSixxwwiozS6rXa6QWBroj0Z99Y2H xoUODOuN4b9i2cYG3c1f/NS55hqPxde7dzwP84n7P8HBbjL6VHi7t2ihroR5/ItV E/6cxMrJwAac4zqIG1AcbpmFmHlTCuTTJydSu+U+4uyBD2OCvzoFDh9/qdmNga/s tozF1m30AVDhc6hwQ3KjDRKfl7biuiPo1Ypwe73t3cs5oYMFoRPg34c3GaJouhgL g9WM6WtXnCHCRjeOjdbHvHCRhmFJL9d+G3jlvcu8/g6IbSO22mge+eMh2L3/Mj2c tF66jd46h1X5npobys3yjQcrGxKIo5C4W6ynPG/fAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKqbcfFv8HtQcI0vrbDxEXIcN6ygwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzAyMjUzNDNkLTljMTgtNDhmMy05OTM4LTg5YTliNDRkMTU2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0XewwDQYJKoZIhvcNAQELBQADggEBAELRibVmTGU2k0ck1rls95+NBk0s xA5hSsQU+spAqL15zCo2Ggx8OXYeWNb6LW1VfBowGohjQNCYqqWdtrE0ukaJoS1C Aju9FU9+lVtMSR7AdNNIGC3SKVkW2B/AobwUuel+FxrqrsPyUqrvUe3D4LOYIlZy DAn1NTNu9B5Rth5pZygeu5OHKGyMmqj5hi0cnfcdDy3TcmiMLZvoYrKXbOO4jwyw 0Y9jjwx2Qr+nZkZjClBPdeXGNwRVKNSBxljtqypWS/QONqKysJerrs3FkDHbDM2f ubxeCF/FGkR5VSffszasEW6oS9eWx4lHyGBFhPJVvSI0bA8YV83MFjirjHg= -----END CERTIFICATE-----Generated at Sat Jun 14 06:03:08 2025 by rpki-client