$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/343c963c-2a3e-4928-9210-25faa7d2e157.roa File: 343c963c-2a3e-4928-9210-25faa7d2e157.roa (raw, json) Hash identifier: QGPEmcQv9gAU2se9/TrCgMt5QqPzur094hLVccbKQWI= Subject key identifier: 1A:4B:D2:00:51:1E:2B:6C:36:4D:7B:4A:4C:D2:96:6C:EA:B6:30:5F Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3CBE398D2A9A252CB0A49EAA6AA31F54C94AB955 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/343c963c-2a3e-4928-9210-25faa7d2e157.roa Signing time: Tue 03 Jun 2025 00:51:36 +0000 ROA not before: Tue 03 Jun 2025 00:51:36 +0000 ROA not after: Tue 08 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.248.244.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:be:39:8d:2a:9a:25:2c:b0:a4:9e:aa:6a:a3:1f:54:c9:4a:b9:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 3 00:51:36 2025 GMT Not After : Jul 8 23:59:59 2025 GMT Subject: serialNumber=f6d7bff4f7a956e8550d8f529198e3fc783ff648259a399da909a45fef372b9b, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:87:e6:7b:a4:68:0a:a1:11:69:70:7d:13:60: b1:d7:89:4f:cb:f5:d1:ca:eb:82:75:89:3f:18:14: 38:1a:5b:a0:05:11:5e:3f:a4:fe:75:b2:bf:f8:2d: 03:84:3e:7e:09:7a:de:b2:91:cd:11:1b:8d:f3:f4: 38:5c:7f:2e:db:b4:41:7d:15:66:ed:13:00:3e:c3: 62:8a:06:32:90:89:3b:95:00:b8:a1:e6:98:84:f8: b0:78:bd:be:27:49:5b:32:4b:c3:05:b2:a2:29:83: 23:f5:07:b6:83:c1:a7:4e:94:29:db:6a:ec:fe:7f: 68:a3:e4:8b:62:20:a8:4a:87:84:5e:96:d3:f3:74: 63:08:8f:ea:9a:66:40:89:8c:a9:7f:45:e0:35:49: f9:8a:a4:56:7f:8f:d5:02:b4:ef:eb:14:6d:4c:e1: 15:57:a2:d6:99:b7:e3:b7:8f:ad:3c:bf:3a:36:70: 05:d2:a1:e1:ca:3e:ec:b4:a9:05:3c:7a:40:43:25: 15:40:ba:dd:e2:4a:02:44:d1:25:56:94:d3:c5:9c: c6:e5:56:72:9b:40:17:82:d6:ce:7f:f1:61:6a:00: 43:67:3e:e9:cb:2a:b1:f1:7b:41:c9:f1:5d:cc:75: 1e:37:a7:86:d2:2f:d0:b9:53:89:be:10:fd:9f:9e: 71:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:4B:D2:00:51:1E:2B:6C:36:4D:7B:4A:4C:D2:96:6C:EA:B6:30:5F X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/343c963c-2a3e-4928-9210-25faa7d2e157.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.248.244.0/22 Signature Algorithm: sha256WithRSAEncryption ad:11:f4:f4:ea:18:a3:02:2e:da:f7:24:4b:b5:ae:25:48:f5: d7:1f:15:98:99:7d:03:b3:67:e4:a3:08:c2:8f:77:54:2e:65: cb:b3:b7:ea:30:f3:4b:e3:14:41:3b:ff:6d:80:b2:67:27:84: c5:e1:a3:4f:9e:1c:99:7a:60:33:52:62:a7:44:f8:ff:5b:99: bd:aa:d1:e6:7c:fc:f8:4f:22:f6:b6:a1:f9:d5:ef:19:3e:10: af:ff:b7:97:ed:a5:99:1b:12:c4:3c:93:7f:fa:d0:7d:4f:43: b2:ea:f5:34:64:ad:13:14:a3:41:d9:7d:f2:80:cf:5f:06:93: 68:6a:18:39:28:20:6e:cf:c5:8a:df:25:78:4e:5e:92:4c:8a: 37:bf:27:42:3e:df:92:5d:23:00:d1:aa:28:34:f8:78:8f:af: 6e:3d:10:6e:06:9d:42:fe:34:94:ab:44:b5:7e:52:ae:ee:34: b2:5c:e8:d5:46:83:ed:be:3a:10:f5:16:44:a7:b0:43:f1:4d: 80:e1:b7:67:89:dd:4d:1d:5e:ff:6d:e8:38:b9:60:e5:0f:58: 36:14:90:b9:7d:03:c8:6c:28:55:75:3b:8d:11:f5:45:a6:86: 71:18:9a:d1:8c:c9:36:c7:64:8e:f0:8c:95:a9:0e:31:63:b3: 59:ae:99:79 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPL45jSqaJSywpJ6qaqMfVMlKuVUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjAzMDA1MTM2WhcNMjUwNzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNmQ3YmZmNGY3YTk1NmU4NTUwZDhmNTI5MTk4ZTNmYzc4 M2ZmNjQ4MjU5YTM5OWRhOTA5YTQ1ZmVmMzcyYjliMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRh+Z7pGgKoRFpcH0TYLHXiU/L9dHK64J1iT8YFDgaW6AF EV4/pP51sr/4LQOEPn4Jet6ykc0RG43z9Dhcfy7btEF9FWbtEwA+w2KKBjKQiTuV ALih5piE+LB4vb4nSVsyS8MFsqIpgyP1B7aDwadOlCnbauz+f2ij5ItiIKhKh4Re ltPzdGMIj+qaZkCJjKl/ReA1SfmKpFZ/j9UCtO/rFG1M4RVXotaZt+O3j608vzo2 cAXSoeHKPuy0qQU8ekBDJRVAut3iSgJE0SVWlNPFnMblVnKbQBeC1s5/8WFqAENn PunLKrHxe0HJ8V3MdR43p4bSL9C5U4m+EP2fnnEJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGkvSAFEeK2w2TXtKTNKWbOq2MF8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzM0M2M5NjNjLTJhM2UtNDkyOC05MjEwLTI1ZmFhN2QyZTE1Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAID+PQwDQYJKoZIhvcNAQELBQADggEBAK0R9PTqGKMCLtr3JEu1riVI9dcf FZiZfQOzZ+SjCMKPd1QuZcuzt+ow80vjFEE7/22AsmcnhMXho0+eHJl6YDNSYqdE +P9bmb2q0eZ8/PhPIva2ofnV7xk+EK//t5ftpZkbEsQ8k3/60H1PQ7Lq9TRkrRMU o0HZffKAz18Gk2hqGDkoIG7PxYrfJXhOXpJMije/J0I+35JdIwDRqig0+HiPr249 EG4GnUL+NJSrRLV+Uq7uNLJc6NVGg+2+OhD1FkSnsEPxTYDht2eJ3U0dXv9t6Di5 YOUPWDYUkLl9A8hsKFV1O40R9UWmhnEYmtGMyTbHZI7wjJWpDjFjs1mumXk= -----END CERTIFICATE-----Generated at Sat Jun 14 05:51:46 2025 by rpki-client