$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3c8e35a4-55f4-42e9-9859-18c9e6fdc522.roa File: 3c8e35a4-55f4-42e9-9859-18c9e6fdc522.roa (raw, json) Hash identifier: tms3R5dUZkwWppH/0C+DmZUDZi/SBjHkEwFKfnSBSJo= Subject key identifier: D0:84:EF:01:A4:91:02:2A:AE:4E:72:0C:74:88:FA:9E:0F:7B:2B:A9 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 36235C55E9FCBE49616310CD89A82E6417E6D8E4 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3c8e35a4-55f4-42e9-9859-18c9e6fdc522.roa Signing time: Tue 20 May 2025 16:40:25 +0000 ROA not before: Tue 20 May 2025 16:40:25 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.234.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:23:5c:55:e9:fc:be:49:61:63:10:cd:89:a8:2e:64:17:e6:d8:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 20 16:40:25 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=7ae6e2fe09834a50cafd1dac0b76cacc8ecdce8470dc69fac02ad8e09c82bf7a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:96:ce:1d:49:bb:68:d4:72:52:cd:f4:4c:22: 79:42:09:3d:e1:24:7d:55:93:91:a6:6d:a9:e9:cf: 3a:9d:d8:72:a2:e6:14:bd:c7:e8:1b:ef:f4:0c:da: 19:75:fe:8c:12:49:f0:82:ee:a4:ee:91:4a:9a:9c: 9b:23:4b:b0:05:e4:7c:b5:61:52:f3:72:3d:e7:d2: 0e:0f:ba:06:18:ac:4d:05:f4:be:14:00:6a:6c:c2: 90:d3:5b:8c:58:5b:49:20:cd:fe:21:61:13:99:1c: 9e:10:91:87:97:a8:80:fb:63:28:9f:27:84:aa:b9: 89:2d:ce:ed:84:12:23:5a:54:8c:b8:0d:b9:6b:a2: 76:e9:a6:0d:75:50:1d:df:84:86:19:ba:2b:9c:60: ee:55:be:0d:68:29:b6:49:c9:8f:63:e7:4a:0a:f3: 02:64:74:90:c2:38:0d:97:a7:6a:af:d7:a3:7d:0c: 5b:44:03:98:09:a6:4c:87:eb:93:7b:44:15:35:6b: a1:b4:a6:af:05:95:7a:77:90:d9:b9:a6:4b:55:45: 9b:fb:68:57:5b:0a:69:6b:25:ad:1e:f4:f5:0c:58: 0c:3b:53:5f:28:18:80:6c:e5:c9:55:59:bd:4c:fc: e2:62:ab:66:20:3c:50:76:ca:11:c0:8a:c3:71:c3: eb:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:84:EF:01:A4:91:02:2A:AE:4E:72:0C:74:88:FA:9E:0F:7B:2B:A9 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3c8e35a4-55f4-42e9-9859-18c9e6fdc522.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.234.33.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:6d:e8:21:4f:8e:9d:50:ec:c6:a7:82:59:7c:86:e1:ac:37: dd:c3:50:58:c0:3c:4d:74:89:73:a8:be:c0:f3:12:44:75:12: ea:79:54:51:68:00:9b:fe:9c:fd:f1:32:ad:31:66:27:39:93: 5f:6c:66:77:23:51:41:11:97:e1:68:9e:ac:c0:fc:ae:0c:b8: 69:32:39:56:dd:96:b6:83:fd:62:ed:dc:3a:93:27:9d:23:c4: e8:43:e4:8b:0d:ca:c8:6d:49:cc:eb:c0:3c:4b:d4:95:cc:52: 1b:5e:08:f9:07:4e:c1:57:12:6d:45:8c:3f:63:69:8a:d8:46: 17:e9:47:fb:a7:84:2b:4f:98:3d:2b:d8:cf:83:ad:39:b7:52: ae:1e:66:71:59:ed:6c:15:92:83:be:45:0f:2e:d1:cc:27:90: cf:f9:e6:cb:6e:79:8a:a0:39:e3:fa:a9:ef:29:60:d8:70:14: 90:3f:82:fb:7b:ef:30:a9:a9:0c:1f:e4:f4:fc:ea:96:3f:08: 6b:f3:d3:eb:f3:ed:cc:83:32:07:ea:b1:92:b7:07:29:47:28: 39:32:33:ca:85:16:a3:ac:da:8f:0a:70:9d:20:04:98:74:b1: fc:62:15:fd:f4:55:1d:43:33:cf:1e:80:c9:fc:e7:00:01:e4: c9:cc:be:a9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNiNcVen8vklhYxDNiaguZBfm2OQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTIwMTY0MDI1WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YWU2ZTJmZTA5ODM0YTUwY2FmZDFkYWMwYjc2Y2FjYzhl Y2RjZTg0NzBkYzY5ZmFjMDJhZDhlMDljODJiZjdhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSls4dSbto1HJSzfRMInlCCT3hJH1Vk5Gmbanpzzqd2HKi 5hS9x+gb7/QM2hl1/owSSfCC7qTukUqanJsjS7AF5Hy1YVLzcj3n0g4PugYYrE0F 9L4UAGpswpDTW4xYW0kgzf4hYROZHJ4QkYeXqID7YyifJ4SquYktzu2EEiNaVIy4 Dblronbppg11UB3fhIYZuiucYO5Vvg1oKbZJyY9j50oK8wJkdJDCOA2Xp2qv16N9 DFtEA5gJpkyH65N7RBU1a6G0pq8FlXp3kNm5pktVRZv7aFdbCmlrJa0e9PUMWAw7 U18oGIBs5clVWb1M/OJiq2YgPFB2yhHAisNxw+uHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0ITvAaSRAiquTnIMdIj6ng97K6kwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzNjOGUzNWE0LTU1ZjQtNDJlOS05ODU5LTE4YzllNmZkYzUyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAS6iEwDQYJKoZIhvcNAQELBQADggEBAA1t6CFPjp1Q7Mangll8huGsN93D UFjAPE10iXOovsDzEkR1Eup5VFFoAJv+nP3xMq0xZic5k19sZncjUUERl+FonqzA /K4MuGkyOVbdlraD/WLt3DqTJ50jxOhD5IsNyshtSczrwDxL1JXMUhteCPkHTsFX Em1FjD9jaYrYRhfpR/unhCtPmD0r2M+DrTm3Uq4eZnFZ7WwVkoO+RQ8u0cwnkM/5 5stueYqgOeP6qe8pYNhwFJA/gvt77zCpqQwf5PT86pY/CGvz0+vz7cyDMgfqsZK3 BylHKDkyM8qFFqOs2o8KcJ0gBJh0sfxiFf30VR1DM88egMn85wAB5MnMvqk= -----END CERTIFICATE-----Generated at Sat Jun 14 05:57:04 2025 by rpki-client