$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2eededf7-f3f8-4d80-8d73-d02124acd34f.roa File: 2eededf7-f3f8-4d80-8d73-d02124acd34f.roa (raw, json) Hash identifier: SkgXG04Ify6GqCt+jGsYP6ul8HASpcXPnmBDesp1938= Subject key identifier: B4:86:4B:DA:42:93:B5:4A:8A:14:A4:2B:1B:2E:86:DB:F0:FA:0D:A8 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 70740B9FB4586EAB479D1C9A3F815791134D9C9E Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2eededf7-f3f8-4d80-8d73-d02124acd34f.roa Signing time: Tue 20 May 2025 17:21:06 +0000 ROA not before: Tue 20 May 2025 17:21:06 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.79.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:74:0b:9f:b4:58:6e:ab:47:9d:1c:9a:3f:81:57:91:13:4d:9c:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 20 17:21:06 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=f153eab2d8aa5eb542b3d36f42ad4f58ad0f7b32b976f9e34a117bca66b5740e, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:52:38:fe:4a:07:de:39:19:fa:04:38:51:bf: 0d:74:64:da:2c:8a:b7:24:c6:b2:f6:03:4b:98:e9: b7:26:37:10:12:3f:7e:46:c1:9c:90:dd:b8:04:ff: fe:18:13:32:ab:35:cd:b8:3c:21:b5:b1:12:87:9c: a5:bf:73:c2:39:e9:6f:c2:74:39:65:b9:57:b8:2a: cd:4b:88:7b:2a:a2:57:ea:7d:3f:b2:24:58:a0:e9: 51:1d:10:cb:07:78:34:eb:72:af:b1:0d:d7:a8:97: cf:14:20:fc:03:ed:12:98:a6:83:7b:d2:ce:d9:43: 7a:07:b2:4a:8c:ed:da:ff:a4:4c:c3:f1:3e:f9:37: 07:db:6d:cf:52:fa:0c:2e:e6:c1:de:b7:40:4f:76: e6:21:d3:4e:ae:c0:8a:be:90:de:6a:fb:aa:f0:fe: e7:86:97:2f:45:2c:e3:7d:19:2b:bb:db:94:fa:95: 76:da:30:db:9b:c5:4b:8e:a5:5e:5f:aa:ba:92:d4: 4f:43:21:99:d7:67:30:19:86:89:79:e6:55:90:9b: 6e:d2:21:26:9b:f3:d1:aa:76:ce:d8:60:b1:76:7f: 53:ef:7a:87:a4:52:0d:e1:78:73:3d:41:a1:03:f0: fd:11:b3:73:69:b8:88:5a:e5:8a:97:15:9c:b4:21: f3:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:86:4B:DA:42:93:B5:4A:8A:14:A4:2B:1B:2E:86:DB:F0:FA:0D:A8 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2eededf7-f3f8-4d80-8d73-d02124acd34f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.79.0.0/17 Signature Algorithm: sha256WithRSAEncryption 1c:be:e8:da:51:dd:d7:a9:74:17:da:df:3e:89:46:e7:d6:d1: c4:95:c5:79:0b:d1:1f:d9:02:ab:8c:ce:02:b9:46:e1:0c:d8: 38:47:e0:5d:16:f8:1a:70:81:16:4f:6f:cd:59:7a:4b:63:10: ab:43:e9:bf:89:be:8e:f7:92:c5:6f:b8:a3:f2:ee:8e:5a:10: b5:46:1c:9b:3b:85:e1:01:12:f8:1f:13:11:51:9a:03:e8:77: 7b:10:8f:85:19:94:d1:64:7e:5f:55:59:06:99:e6:34:8e:3c: c4:21:05:c5:2f:6c:93:41:07:11:39:65:3f:40:1a:81:45:4e: 5b:53:6e:e1:53:c3:2b:bf:0f:5c:8f:9a:d1:2d:e8:0d:6a:ff: 7e:e8:de:a8:b2:63:2e:bb:5e:24:b6:6b:52:92:a1:d1:95:66: df:b6:f2:14:a3:eb:98:eb:2a:f5:16:0e:fc:20:dd:0a:31:9e: 10:dd:a4:a5:ce:8c:64:db:67:cb:66:88:8e:d4:79:b9:29:83: f1:d3:88:19:66:ed:b3:a4:b7:a2:08:90:1c:7c:df:96:e2:71: b5:a0:59:3e:d0:f1:44:d7:c7:8b:b2:da:54:47:95:97:89:11: af:19:6c:b0:e6:5f:e6:03:be:41:14:d2:5a:47:28:66:d8:d6: ec:b1:e2:be -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcHQLn7RYbqtHnRyaP4FXkRNNnJ4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTIwMTcyMTA2WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMTUzZWFiMmQ4YWE1ZWI1NDJiM2QzNmY0MmFkNGY1OGFk MGY3YjMyYjk3NmY5ZTM0YTExN2JjYTY2YjU3NDBlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwUjj+SgfeORn6BDhRvw10ZNosirckxrL2A0uY6bcmNxAS P35GwZyQ3bgE//4YEzKrNc24PCG1sRKHnKW/c8I56W/CdDlluVe4Ks1LiHsqolfq fT+yJFig6VEdEMsHeDTrcq+xDdeol88UIPwD7RKYpoN70s7ZQ3oHskqM7dr/pEzD 8T75Nwfbbc9S+gwu5sHet0BPduYh006uwIq+kN5q+6rw/ueGly9FLON9GSu725T6 lXbaMNubxUuOpV5fqrqS1E9DIZnXZzAZhol55lWQm27SISab89Gqds7YYLF2f1Pv eoekUg3heHM9QaED8P0Rs3NpuIha5YqXFZy0IfNtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtIZL2kKTtUqKFKQrGy6G2/D6DagwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzJlZWRlZGY3LWYzZjgtNGQ4MC04ZDczLWQwMjEyNGFjZDM0Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc2TwAwDQYJKoZIhvcNAQELBQADggEBABy+6NpR3depdBfa3z6JRufW0cSV xXkL0R/ZAquMzgK5RuEM2DhH4F0W+BpwgRZPb81ZektjEKtD6b+Jvo73ksVvuKPy 7o5aELVGHJs7heEBEvgfExFRmgPod3sQj4UZlNFkfl9VWQaZ5jSOPMQhBcUvbJNB BxE5ZT9AGoFFTltTbuFTwyu/D1yPmtEt6A1q/37o3qiyYy67XiS2a1KSodGVZt+2 8hSj65jrKvUWDvwg3QoxnhDdpKXOjGTbZ8tmiI7Uebkpg/HTiBlm7bOkt6IIkBx8 35bicbWgWT7Q8UTXx4uy2lRHlZeJEa8ZbLDmX+YDvkEU0lpHKGbY1uyx4r4= -----END CERTIFICATE-----Generated at Sat Jun 14 05:50:44 2025 by rpki-client