$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2f04501a-e42e-4e8d-92db-f2de0979982c.roa File: 2f04501a-e42e-4e8d-92db-f2de0979982c.roa (raw, json) Hash identifier: dHsWOosItN5llc5sZuwvNC8/9vHDSHVLAM84vaiLwqk= Subject key identifier: 37:E8:1F:54:32:17:B8:A4:C4:B9:B7:21:A2:05:24:30:C2:F0:E4:8D Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 28614C470308F031A4908E3EA1E47FA889D88C65 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2f04501a-e42e-4e8d-92db-f2de0979982c.roa Signing time: Tue 03 Jun 2025 00:51:25 +0000 ROA not before: Tue 03 Jun 2025 00:51:25 +0000 ROA not after: Tue 08 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 3.208.0.0/12 maxlen: 12 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Jun 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:61:4c:47:03:08:f0:31:a4:90:8e:3e:a1:e4:7f:a8:89:d8:8c:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 3 00:51:25 2025 GMT Not After : Jul 8 23:59:59 2025 GMT Subject: serialNumber=f55dad6636e233c8e52871aa06bc6d9ce050da61da3347d65e1ce12566717626, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:eb:68:60:89:27:4b:68:d5:59:e0:d0:15:4c: e9:0f:ab:2a:6b:4d:b9:9f:88:62:05:ca:05:ed:d0: c3:76:32:71:9a:d2:2d:7c:40:ad:6d:b1:0b:2b:9c: f6:ef:41:c2:84:17:54:ac:3d:81:4a:e4:80:76:fc: e2:50:09:c4:16:f5:bd:f1:93:42:77:af:3a:47:a8: 19:aa:aa:90:44:1d:51:a8:58:24:e5:90:ee:da:71: b9:7d:2b:87:d9:88:17:00:c9:2f:f1:f8:be:93:5d: 6b:fe:92:c5:89:e1:04:6a:d6:a1:31:e8:08:11:d9: 70:21:5e:31:04:23:83:c8:00:4a:1c:fc:3c:24:5f: 57:4e:6c:c4:77:4f:b2:17:02:7f:5c:de:71:ef:c6: 7e:68:91:6d:cf:63:2f:fb:cd:40:1e:1b:ae:03:72: d2:5e:64:b7:53:e9:ac:2b:0b:56:c7:24:f7:7c:d5: f4:16:6d:d0:0d:c4:2c:91:4a:cd:4a:44:35:f4:bf: b3:c7:22:03:d8:5c:5b:88:de:7e:73:3d:44:17:ef: dd:32:11:6d:ba:fa:a8:34:fe:e0:85:f5:7d:84:41: 5d:0a:46:47:9b:c6:29:2c:10:10:3d:7f:e8:47:74: 72:76:c1:c7:eb:6a:ed:6a:e3:a5:77:aa:a6:8e:19: 2a:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:E8:1F:54:32:17:B8:A4:C4:B9:B7:21:A2:05:24:30:C2:F0:E4:8D X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2f04501a-e42e-4e8d-92db-f2de0979982c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.208.0.0/12 Signature Algorithm: sha256WithRSAEncryption ac:0d:35:8e:58:9a:50:0c:bb:b5:fa:d3:ca:20:55:c7:ac:57: ab:eb:cf:6a:95:ca:3f:33:f0:fd:c5:99:92:49:92:d3:93:91: c4:b8:d6:ce:24:e0:d5:5b:89:a7:56:45:da:3e:ce:cc:c5:fc: 35:c3:0e:3f:6c:65:cb:7e:9b:3f:dc:64:31:e0:d9:59:e8:1e: 8e:4d:f5:67:85:ad:94:81:08:08:9a:51:12:ef:6b:d8:12:86: fd:8f:d0:b3:d4:23:9e:8b:8f:7e:9d:e6:23:f2:3b:43:34:67: 35:36:c1:49:24:f5:da:a1:67:72:0d:8e:62:5f:d2:4a:c3:46: e0:27:15:5c:5d:ff:45:99:be:e3:5c:0f:1e:f1:83:a6:cf:b5: 31:bb:75:18:83:65:53:e6:c1:cc:2c:ec:d5:c8:ee:34:14:26: 83:42:2d:1a:f8:29:6b:ad:39:a4:43:a1:2d:c3:e3:22:8b:76: 4e:fb:d4:05:8e:fd:91:5e:80:4d:f8:2a:c3:ad:a3:06:28:f7: 4a:b2:de:c7:08:af:68:d6:7f:39:9e:77:df:06:e0:8d:25:e8: d0:c3:86:7a:ee:9f:1b:da:32:8e:d6:be:03:58:87:2a:c4:23: 68:41:62:12:eb:b8:d8:ca:e1:ef:4a:7f:10:56:76:58:a9:28: f3:bf:04:ea -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKGFMRwMI8DGkkI4+oeR/qInYjGUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjAzMDA1MTI1WhcNMjUwNzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNTVkYWQ2NjM2ZTIzM2M4ZTUyODcxYWEwNmJjNmQ5Y2Uw NTBkYTYxZGEzMzQ3ZDY1ZTFjZTEyNTY2NzE3NjI2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDB62hgiSdLaNVZ4NAVTOkPqyprTbmfiGIFygXt0MN2MnGa 0i18QK1tsQsrnPbvQcKEF1SsPYFK5IB2/OJQCcQW9b3xk0J3rzpHqBmqqpBEHVGo WCTlkO7acbl9K4fZiBcAyS/x+L6TXWv+ksWJ4QRq1qEx6AgR2XAhXjEEI4PIAEoc /DwkX1dObMR3T7IXAn9c3nHvxn5okW3PYy/7zUAeG64DctJeZLdT6awrC1bHJPd8 1fQWbdANxCyRSs1KRDX0v7PHIgPYXFuI3n5zPUQX790yEW26+qg0/uCF9X2EQV0K RkebxiksEBA9f+hHdHJ2wcfrau1q46V3qqaOGSpLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUN+gfVDIXuKTEubchogUkMMLw5I0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzJmMDQ1MDFhLWU0MmUtNGU4ZC05MmRiLWYyZGUwOTc5OTgyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwQD0DANBgkqhkiG9w0BAQsFAAOCAQEArA01jliaUAy7tfrTyiBVx6xXq+vP apXKPzPw/cWZkkmS05ORxLjWziTg1VuJp1ZF2j7OzMX8NcMOP2xly36bP9xkMeDZ Wegejk31Z4WtlIEICJpREu9r2BKG/Y/Qs9QjnouPfp3mI/I7QzRnNTbBSST12qFn cg2OYl/SSsNG4CcVXF3/RZm+41wPHvGDps+1Mbt1GINlU+bBzCzs1cjuNBQmg0It Gvgpa605pEOhLcPjIot2TvvUBY79kV6ATfgqw62jBij3SrLexwivaNZ/OZ533wbg jSXo0MOGeu6fG9oyjta+A1iHKsQjaEFiEuu42Mrh70p/EFZ2WKko878E6g== -----END CERTIFICATE-----Generated at Sat Jun 14 23:38:08 2025 by rpki-client