$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2f82f8af-b076-4551-8fc4-f6437efa444e.roa File: 2f82f8af-b076-4551-8fc4-f6437efa444e.roa (raw, json) Hash identifier: zbsqxkEEZJE1lljTfU5XFOlGx1nmF7rFDrUd22SU0gA= Subject key identifier: 39:61:8E:6F:05:A0:0B:36:C6:12:08:54:63:EB:6E:35:AA:6F:D8:6F Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5570734B35BC9F6D02984D0CA4C5A1FC386F857C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2f82f8af-b076-4551-8fc4-f6437efa444e.roa Signing time: Mon 09 Jun 2025 19:11:30 +0000 ROA not before: Mon 09 Jun 2025 19:11:30 +0000 ROA not after: Mon 14 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.247.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:70:73:4b:35:bc:9f:6d:02:98:4d:0c:a4:c5:a1:fc:38:6f:85:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 9 19:11:30 2025 GMT Not After : Jul 14 23:59:59 2025 GMT Subject: serialNumber=d6bf5c2c03040d7a5703854843e6e79aab285f10fa3bc26014b0b357480301ab, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:89:e1:4d:39:e5:f7:c6:5b:d7:32:3f:1e:c7: 93:14:9e:9f:29:8e:a6:39:e5:27:32:94:b4:78:73: b4:24:30:fd:88:00:2f:74:af:86:96:70:2e:90:57: d3:8f:39:d5:17:62:48:97:6b:2f:64:34:6c:04:6c: 12:4c:01:2d:d9:89:09:92:34:e8:59:b4:24:34:55: 2c:36:bc:5d:d0:21:53:23:bf:6f:9a:b1:13:36:4a: 0f:94:6c:db:5c:99:62:8d:20:d0:cd:c3:7c:65:2e: 47:ed:59:d8:fb:82:1a:3f:30:3d:ee:06:88:0a:52: e6:5d:ab:0a:c7:42:2e:0f:54:8c:a2:d5:fb:f3:c9: 65:b0:b1:5d:ce:99:c6:b6:ab:78:5f:6f:ba:25:9a: ee:da:15:ad:be:2c:5c:1e:a8:c6:45:e2:ca:86:dc: 51:dd:fd:63:ab:48:dd:d1:cf:01:89:ac:33:83:01: fa:5a:e8:69:67:e3:62:cd:3a:54:80:5e:35:bd:06: c9:d5:50:4c:57:6b:82:e6:5c:5d:4d:6c:e2:72:35: 79:92:93:e5:9a:31:4b:07:25:30:4d:76:2b:bd:15: 24:c2:d6:c7:57:1c:a7:65:0d:26:77:15:5f:64:d0: 8e:24:da:c0:96:15:26:fa:1b:36:39:d7:9b:3b:e4: 3a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:61:8E:6F:05:A0:0B:36:C6:12:08:54:63:EB:6E:35:AA:6F:D8:6F X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2f82f8af-b076-4551-8fc4-f6437efa444e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.247.0.0/16 Signature Algorithm: sha256WithRSAEncryption 12:92:c6:3c:43:91:2c:5e:4e:72:8e:51:e9:0d:84:d7:34:d6: e1:4b:90:0e:1a:79:38:27:09:dc:c9:8b:54:5d:66:cb:38:32: 73:60:48:42:f6:a8:e4:55:68:6a:ed:7a:f4:01:46:82:8a:7d: d4:01:e0:23:0a:5d:98:6a:4c:ce:4f:aa:90:ab:f3:16:c2:b0: 0e:3d:1b:ec:5e:94:ec:0c:b4:f7:28:be:33:51:cd:ed:0a:28: f6:83:33:00:82:c7:34:e9:b2:9a:b9:2b:5e:d0:e8:a3:71:95: 63:06:08:31:14:4a:3a:12:43:12:a7:a0:8c:e9:a1:fd:19:9a: 80:01:84:a9:7a:70:1e:28:53:3a:25:09:64:e6:1a:39:99:68: 4e:af:fc:eb:c4:47:38:c9:ad:b9:a5:a6:2c:93:2f:39:4e:bf: d4:3c:ae:95:4c:80:c5:dc:80:b7:c1:6c:75:6c:c7:90:14:0c: 74:9c:81:73:ed:a5:70:d1:dd:95:5e:05:40:91:9f:3d:4c:36: 26:3d:3e:1f:f9:c9:d9:ee:8f:98:45:7d:ab:98:d9:a3:95:76: 72:0b:2e:fa:50:67:2a:65:4f:52:bc:d9:07:18:9a:57:00:e6: d4:dd:bc:62:0c:aa:2f:dd:86:e4:ee:1e:5d:00:b6:67:58:9a: 06:1e:15:1d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUVXBzSzW8n20CmE0MpMWh/DhvhXwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjA5MTkxMTMwWhcNMjUwNzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNmJmNWMyYzAzMDQwZDdhNTcwMzg1NDg0M2U2ZTc5YWFi Mjg1ZjEwZmEzYmMyNjAxNGIwYjM1NzQ4MDMwMWFiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6ieFNOeX3xlvXMj8ex5MUnp8pjqY55ScylLR4c7QkMP2I AC90r4aWcC6QV9OPOdUXYkiXay9kNGwEbBJMAS3ZiQmSNOhZtCQ0VSw2vF3QIVMj v2+asRM2Sg+UbNtcmWKNINDNw3xlLkftWdj7gho/MD3uBogKUuZdqwrHQi4PVIyi 1fvzyWWwsV3Omca2q3hfb7olmu7aFa2+LFweqMZF4sqG3FHd/WOrSN3RzwGJrDOD Afpa6Gln42LNOlSAXjW9BsnVUExXa4LmXF1NbOJyNXmSk+WaMUsHJTBNdiu9FSTC 1sdXHKdlDSZ3FV9k0I4k2sCWFSb6GzY515s75DoTAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUOWGObwWgCzbGEghUY+tuNapv2G8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzJmODJmOGFmLWIwNzYtNDU1MS04ZmM0LWY2NDM3ZWZhNDQ0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA29zANBgkqhkiG9w0BAQsFAAOCAQEAEpLGPEORLF5Oco5R6Q2E1zTW4UuQ Dhp5OCcJ3MmLVF1myzgyc2BIQvao5FVoau169AFGgop91AHgIwpdmGpMzk+qkKvz FsKwDj0b7F6U7Ay09yi+M1HN7Qoo9oMzAILHNOmymrkrXtDoo3GVYwYIMRRKOhJD EqegjOmh/RmagAGEqXpwHihTOiUJZOYaOZloTq/868RHOMmtuaWmLJMvOU6/1Dyu lUyAxdyAt8FsdWzHkBQMdJyBc+2lcNHdlV4FQJGfPUw2Jj0+H/nJ2e6PmEV9q5jZ o5V2cgsu+lBnKmVPUrzZBxiaVwDm1N28YgyqL92G5O4eXQC2Z1iaBh4VHQ== -----END CERTIFICATE-----Generated at Sat Jun 14 05:59:58 2025 by rpki-client