$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1b1da6db-e42d-4c76-9239-222093c1bc12.roa File: 1b1da6db-e42d-4c76-9239-222093c1bc12.roa (raw, json) Hash identifier: EwetsACmJqiAG764UKbUBNP6QiMCl/PZXHImJ5HpRwA= Subject key identifier: 5A:6A:1D:99:39:31:5C:D5:A8:52:98:75:50:A9:09:EB:67:20:DA:0C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6AF8B311121FE10B18BACFC4DFF8C44F81587A Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1b1da6db-e42d-4c76-9239-222093c1bc12.roa Signing time: Wed 21 May 2025 00:11:00 +0000 ROA not before: Wed 21 May 2025 00:11:00 +0000 ROA not after: Wed 25 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 15.221.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Jun 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:f8:b3:11:12:1f:e1:0b:18:ba:cf:c4:df:f8:c4:4f:81:58:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 21 00:11:00 2025 GMT Not After : Jun 25 23:59:59 2025 GMT Subject: serialNumber=a092554b45e7a7a73956ebd723af3d864ed2264aa036407235410cc1dfdb41f6, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b1:dc:c8:c3:7b:27:f7:2b:1f:16:a2:6e:79: 51:0d:f2:90:cc:fd:45:7f:e6:7b:63:a6:83:d7:c5: 64:b0:a0:c4:2f:14:12:e4:2a:95:7f:ba:86:5e:c0: e3:0f:00:76:ee:1e:bf:cb:cf:c0:7e:e3:b0:1a:e5: 96:93:70:92:65:8b:83:3b:a4:c2:b8:2f:80:20:10: 7c:79:26:cb:1a:24:04:5d:35:15:0f:2d:80:05:88: 19:fa:e9:19:8a:08:c6:12:05:09:8e:8e:1f:33:bf: bb:63:0a:f5:3f:25:bd:db:ed:6a:86:0c:39:70:f3: ac:d7:68:ac:b0:cf:aa:b9:7d:b8:a5:bb:9b:2e:3d: 4c:cf:f8:f0:f8:c1:08:ae:e1:68:4e:b1:eb:32:b2: e3:31:6b:76:2a:85:1c:2a:3f:c0:86:96:32:79:6f: dc:34:7b:1e:53:d7:52:b5:9f:ca:97:20:c9:2c:b9: 23:8a:3e:34:ab:2b:3d:92:dc:d5:d1:14:e0:a8:64: 2d:99:07:26:e9:62:d4:61:2f:6a:eb:9e:37:b7:f4: bf:1c:d7:a6:c5:42:c6:94:16:d4:de:db:d0:e9:ba: 4b:08:96:1e:4c:8a:2e:6f:e1:35:bd:15:77:30:ea: ba:4f:9b:0e:52:a6:de:d5:b6:3d:cc:52:88:e2:9c: 93:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:6A:1D:99:39:31:5C:D5:A8:52:98:75:50:A9:09:EB:67:20:DA:0C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1b1da6db-e42d-4c76-9239-222093c1bc12.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.221.146.0/23 Signature Algorithm: sha256WithRSAEncryption 91:8e:4d:e0:f8:f4:3b:b6:68:05:e1:d5:ce:7f:7a:51:ff:2a: 75:83:3c:90:b5:2a:16:cc:04:95:d8:e3:03:37:3f:63:6f:67: f8:12:d3:a9:29:61:db:e9:77:3a:22:c8:e3:42:bd:01:b4:d0: aa:6e:98:90:16:7a:c8:15:dc:dc:d1:5e:3d:9a:93:ab:da:ad: 35:98:9a:64:4c:7f:92:d4:91:54:2e:59:b1:31:69:0b:9e:7d: 4a:cd:5f:a2:9b:38:f2:cc:f5:cb:36:ac:b0:3a:41:c6:14:c3: 3a:ee:94:0f:01:24:11:44:dc:2e:6d:c6:0d:f0:44:33:4d:4c: ee:31:08:eb:cf:9d:fc:7b:d3:ae:55:7d:19:8f:7c:2f:90:25: 7c:44:1c:f9:92:2e:e5:f7:cf:3d:28:af:22:ef:63:55:cf:98: e3:28:f9:42:48:3b:79:ef:a0:5f:29:00:dc:10:05:0d:98:1f: 77:eb:ef:7b:7e:f4:e9:98:da:a9:79:62:c7:69:d8:41:48:8b: ca:17:62:c7:4d:9e:7d:a1:cb:16:c5:75:cb:c1:7b:30:88:86: 85:47:b9:c8:25:92:e0:70:69:88:48:07:53:8e:4e:da:c5:55: 38:ad:17:59:48:41:4f:17:4d:87:37:70:35:7b:41:84:2f:b1: c5:16:d2:22 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITavizERIf4QsYus/E3/jET4FYejANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNTA1MjEwMDExMDBaFw0yNTA2MjUyMzU5NTla MHoxSTBHBgNVBAUTQGEwOTI1NTRiNDVlN2E3YTczOTU2ZWJkNzIzYWYzZDg2NGVk MjI2NGFhMDM2NDA3MjM1NDEwY2MxZGZkYjQxZjYxLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBANmx3MjDeyf3Kx8Wom55UQ3ykMz9RX/me2Omg9fFZLCgxC8U EuQqlX+6hl7A4w8Adu4ev8vPwH7jsBrllpNwkmWLgzukwrgvgCAQfHkmyxokBF01 FQ8tgAWIGfrpGYoIxhIFCY6OHzO/u2MK9T8lvdvtaoYMOXDzrNdorLDPqrl9uKW7 my49TM/48PjBCK7haE6x6zKy4zFrdiqFHCo/wIaWMnlv3DR7HlPXUrWfypcgySy5 I4o+NKsrPZLc1dEU4KhkLZkHJuli1GEvauueN7f0vxzXpsVCxpQW1N7b0Om6SwiW HkyKLm/hNb0VdzDquk+bDlKm3tW2PcxSiOKck98CAwEAAaOCArEwggKtMB0GA1Ud DgQWBBRaah2ZOTFc1ahSmHVQqQnrZyDaDDAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvMWIxZGE2ZGItZTQyZC00Yzc2LTkyMzktMjIyMDkzYzFiYzEyLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAQ/dkjANBgkqhkiG9w0BAQsFAAOCAQEAkY5N4Pj0O7ZoBeHVzn96Uf8qdYM8 kLUqFswEldjjAzc/Y29n+BLTqSlh2+l3OiLI40K9AbTQqm6YkBZ6yBXc3NFePZqT q9qtNZiaZEx/ktSRVC5ZsTFpC559Ss1fops48sz1yzassDpBxhTDOu6UDwEkEUTc Lm3GDfBEM01M7jEI68+d/HvTrlV9GY98L5AlfEQc+ZIu5ffPPSivIu9jVc+Y4yj5 Qkg7ee+gXykA3BAFDZgfd+vve3706ZjaqXlix2nYQUiLyhdix02efaHLFsV1y8F7 MIiGhUe5yCWS4HBpiEgHU45O2sVVOK0XWUhBTxdNhzdwNXtBhC+xxRbSIg== -----END CERTIFICATE-----Generated at Sat Jun 14 23:43:18 2025 by rpki-client