$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/32656923-9ec4-40b4-9ede-e8bf9d5fca35.roa File: 32656923-9ec4-40b4-9ede-e8bf9d5fca35.roa (raw, json) Hash identifier: 3kLbb6qffjDlVWTAhai8VQ6uU8jUrHtcU/Et/bf3akY= Subject key identifier: 1E:D6:9A:0D:5F:1E:5C:53:81:5D:E3:35:8D:81:C9:7D:5B:C5:42:8C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 711BB21A1F5386772E0ED9CA4C89D6FC823417CE Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/32656923-9ec4-40b4-9ede-e8bf9d5fca35.roa Signing time: Mon 09 Jun 2025 16:31:20 +0000 ROA not before: Mon 09 Jun 2025 16:31:20 +0000 ROA not after: Mon 14 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.94.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:1b:b2:1a:1f:53:86:77:2e:0e:d9:ca:4c:89:d6:fc:82:34:17:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 9 16:31:20 2025 GMT Not After : Jul 14 23:59:59 2025 GMT Subject: serialNumber=23c98609c58c55d3d10b71da8307fb8fb0a8614c2880a1980af84f4bca6503d5, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:ef:10:e3:ef:3b:81:bf:9e:bc:56:b8:70:09: 8b:73:ed:0e:0d:4f:97:99:eb:68:33:87:a4:68:36: 06:56:23:c6:d8:a1:3b:e7:02:d8:dd:fd:c4:72:bd: 59:59:9f:13:3d:46:87:9a:f3:d3:31:d1:35:c9:fb: da:13:d1:ec:66:be:ba:2d:67:5b:af:7a:52:2a:86: bd:6d:8f:e6:63:22:50:43:6d:cf:c0:24:a6:d1:be: 87:ed:5c:45:b9:70:e1:ae:26:d9:e2:93:dc:f7:e4: d0:89:ea:a7:c5:da:bd:4c:3a:66:86:57:dc:69:96: 29:3d:6a:61:de:a1:69:98:71:dc:02:c2:9c:3e:14: 45:37:cb:96:40:12:0e:c5:8f:9d:4b:37:f6:0b:0c: 3e:0e:c8:95:b4:b8:35:fd:5d:f2:24:c8:a8:28:25: 9b:f3:47:a2:22:8e:06:9d:42:93:c2:09:13:ee:9e: f6:5c:07:25:14:ec:ea:19:41:4a:c8:84:07:65:bf: c7:e9:0c:1e:aa:e8:87:6b:60:fc:6e:93:e7:6a:2a: fa:48:aa:68:46:c6:e5:d2:f6:5c:5d:34:71:9c:28: 81:ee:cd:02:c0:91:dd:12:8f:a9:80:fb:1c:d6:67: 92:3a:08:65:ca:36:3d:4e:cc:48:67:9f:72:2a:77: aa:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:D6:9A:0D:5F:1E:5C:53:81:5D:E3:35:8D:81:C9:7D:5B:C5:42:8C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/32656923-9ec4-40b4-9ede-e8bf9d5fca35.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.94.152.0/21 Signature Algorithm: sha256WithRSAEncryption 92:82:b5:d6:47:70:db:78:7c:e7:0a:a5:7b:65:90:5f:cc:31: c8:11:29:e7:73:b3:58:f0:ad:f9:bf:a9:a2:1a:25:b9:18:ec: 36:1e:ca:ce:e3:e3:76:55:d6:4b:f7:22:51:0b:3b:b7:0f:b8: 9a:31:9b:ad:b5:05:d9:c9:0d:94:60:78:b9:c5:4a:d0:54:b8: 06:bb:4a:89:ce:63:73:4c:d1:b8:18:82:34:14:68:35:8d:19: 53:4c:c3:d1:99:8c:81:a5:f7:95:6f:c9:3f:3a:9b:e4:94:bc: 21:76:9c:c5:43:f3:39:b4:4a:eb:0a:2e:e2:6f:16:14:0d:0b: fc:ee:33:a6:8d:2c:b4:6d:9d:20:51:94:00:7d:26:63:0a:2f: d0:31:26:29:ba:16:08:1b:3e:9c:3e:c6:f4:78:71:a8:2a:ef: e8:19:75:1f:e5:24:84:16:d3:45:92:63:a1:de:d0:16:ac:59: 8d:b5:28:4a:3e:59:38:6b:ec:07:b1:dd:8a:7a:54:3f:51:57: 20:62:30:ea:75:94:82:56:68:fc:90:1d:53:47:82:86:5d:03: 4e:05:a9:ad:c9:ac:88:07:f1:53:f8:04:31:94:f0:2f:0e:b3: 6b:1d:8e:12:2a:22:28:f1:59:c2:f1:39:5b:90:75:0e:99:48: 8f:9a:dc:2e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcRuyGh9ThncuDtnKTInW/II0F84wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjA5MTYzMTIwWhcNMjUwNzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyM2M5ODYwOWM1OGM1NWQzZDEwYjcxZGE4MzA3ZmI4ZmIw YTg2MTRjMjg4MGExOTgwYWY4NGY0YmNhNjUwM2Q1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCT7xDj7zuBv568VrhwCYtz7Q4NT5eZ62gzh6RoNgZWI8bY oTvnAtjd/cRyvVlZnxM9Roea89Mx0TXJ+9oT0exmvrotZ1uvelIqhr1tj+ZjIlBD bc/AJKbRvoftXEW5cOGuJtnik9z35NCJ6qfF2r1MOmaGV9xplik9amHeoWmYcdwC wpw+FEU3y5ZAEg7Fj51LN/YLDD4OyJW0uDX9XfIkyKgoJZvzR6IijgadQpPCCRPu nvZcByUU7OoZQUrIhAdlv8fpDB6q6IdrYPxuk+dqKvpIqmhGxuXS9lxdNHGcKIHu zQLAkd0Sj6mA+xzWZ5I6CGXKNj1OzEhnn3Iqd6ptAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHtaaDV8eXFOBXeM1jYHJfVvFQowwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzMyNjU2OTIzLTllYzQtNDBiNC05ZWRlLWU4YmY5ZDVmY2EzNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM0XpgwDQYJKoZIhvcNAQELBQADggEBAJKCtdZHcNt4fOcKpXtlkF/MMcgR Kedzs1jwrfm/qaIaJbkY7DYeys7j43ZV1kv3IlELO7cPuJoxm621BdnJDZRgeLnF StBUuAa7SonOY3NM0bgYgjQUaDWNGVNMw9GZjIGl95VvyT86m+SUvCF2nMVD8zm0 SusKLuJvFhQNC/zuM6aNLLRtnSBRlAB9JmMKL9AxJim6FggbPpw+xvR4cagq7+gZ dR/lJIQW00WSY6He0BasWY21KEo+WThr7Aex3Yp6VD9RVyBiMOp1lIJWaPyQHVNH goZdA04Fqa3JrIgH8VP4BDGU8C8Os2sdjhIqIijxWcLxOVuQdQ6ZSI+a3C4= -----END CERTIFICATE-----Generated at Sat Jun 14 06:06:25 2025 by rpki-client