$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4335d504-f299-4264-911d-2513755043ba.roa File: 4335d504-f299-4264-911d-2513755043ba.roa (raw, json) Hash identifier: hijtbiq+P0Hf0an30fuxMTLHnafqG9QRMpOAozkeGdo= Subject key identifier: EB:F9:AB:D2:95:65:B6:2E:9C:F0:31:CB:2E:57:CD:8A:6F:9C:48:F3 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 01CE6598C0560F9CA8BF6D05563DEACAA2F0B7D0 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4335d504-f299-4264-911d-2513755043ba.roa Signing time: Tue 20 May 2025 16:11:13 +0000 ROA not before: Tue 20 May 2025 16:11:13 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 15.230.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Jun 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:ce:65:98:c0:56:0f:9c:a8:bf:6d:05:56:3d:ea:ca:a2:f0:b7:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 20 16:11:13 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=cfe585b2a95b9c63687a147bd4f0bafc2ceddb7b9eaf1198776d3d1a6d2ce302, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a7:51:c0:cd:ef:bc:e7:2d:a4:4c:ed:18:a5: f7:32:6f:03:e1:46:24:77:65:d9:25:14:13:2f:28: 48:b7:89:96:c8:66:44:64:67:a8:4b:c1:1a:ef:07: 4f:c1:d5:ee:98:9b:35:10:2f:c1:b1:2f:26:0f:b7: e6:42:df:0c:da:0a:09:46:8b:90:3e:fb:fb:bf:93: fe:eb:82:0c:75:d8:34:95:00:d0:9b:2a:01:e7:fe: 72:9f:83:7d:d1:b5:10:ee:7e:e8:6c:07:c7:55:10: 90:b3:0f:4c:ef:6b:4f:82:ae:fc:69:c9:a4:0b:9b: d3:de:08:4f:37:ae:64:a3:41:cd:63:a0:ff:c2:10: 7f:51:e2:38:34:00:e2:95:3c:b7:3e:3b:07:9f:57: 3f:10:e0:c0:14:56:db:45:3e:26:c5:f2:29:03:76: 45:bc:b1:c8:11:18:10:19:fc:b5:ef:fa:a9:c8:ab: 65:51:d3:80:59:9c:f4:1b:57:af:c1:d7:23:e7:42: 9e:f8:12:ab:00:09:db:ba:16:50:2d:95:bd:37:c7: a0:41:fa:2f:8a:14:62:78:fe:fa:cc:6e:e9:5f:6a: 6b:49:64:5d:37:ad:62:ad:94:f5:4a:53:28:e1:ea: f4:f1:7a:4a:26:75:69:05:a1:59:6b:d6:7d:e5:67: 6c:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:F9:AB:D2:95:65:B6:2E:9C:F0:31:CB:2E:57:CD:8A:6F:9C:48:F3 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4335d504-f299-4264-911d-2513755043ba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.230.220.0/24 Signature Algorithm: sha256WithRSAEncryption 86:37:bd:ed:9c:89:85:8f:01:b8:a6:72:b8:36:66:80:c0:08: 14:4d:4d:25:d1:8c:5a:96:86:70:b6:20:a2:68:c1:3b:d1:4d: 67:a8:e3:5d:d8:33:a0:c8:8a:92:bf:9f:1f:29:a0:ce:96:a5: 57:38:c7:d9:24:3a:94:3a:94:64:b6:89:fc:0f:ce:98:94:64: ca:36:b6:b6:ba:ec:8c:cf:3c:f3:e1:a8:5a:6d:7d:22:58:9a: d1:55:71:93:d3:cf:37:99:dc:3a:2c:d1:0e:ee:64:f9:43:04: df:b2:e7:58:34:83:5f:72:87:df:f8:11:82:29:f1:34:05:6a: 2f:3a:03:d8:ef:ba:d3:92:e6:e7:ad:d6:d4:de:39:e3:ee:dd: 10:8b:d4:66:9c:71:2f:10:74:a7:f7:19:80:51:12:23:4e:bc: 99:0f:48:85:02:1b:70:ec:ff:5b:f8:04:0f:0f:b1:64:31:f9: e1:a2:89:f7:3a:98:96:ed:50:03:b4:d7:3d:82:3a:3a:42:a9: ff:76:09:5e:34:28:c7:6b:ee:c0:34:d9:50:c1:1b:02:da:87: 1a:87:74:eb:f5:63:0a:bc:44:d5:e7:18:ca:b6:8b:73:b5:d6: 8d:3b:37:20:fa:01:b7:97:cd:4b:c7:03:d9:1c:08:7e:bb:10: 99:15:ae:1f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAc5lmMBWD5yov20FVj3qyqLwt9AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTIwMTYxMTEzWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZmU1ODViMmE5NWI5YzYzNjg3YTE0N2JkNGYwYmFmYzJj ZWRkYjdiOWVhZjExOTg3NzZkM2QxYTZkMmNlMzAyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2p1HAze+85y2kTO0YpfcybwPhRiR3ZdklFBMvKEi3iZbI ZkRkZ6hLwRrvB0/B1e6YmzUQL8GxLyYPt+ZC3wzaCglGi5A++/u/k/7rggx12DSV ANCbKgHn/nKfg33RtRDufuhsB8dVEJCzD0zva0+CrvxpyaQLm9PeCE83rmSjQc1j oP/CEH9R4jg0AOKVPLc+OwefVz8Q4MAUVttFPibF8ikDdkW8scgRGBAZ/LXv+qnI q2VR04BZnPQbV6/B1yPnQp74EqsACdu6FlAtlb03x6BB+i+KFGJ4/vrMbulfamtJ ZF03rWKtlPVKUyjh6vTxekomdWkFoVlr1n3lZ2zfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6/mr0pVlti6c8DHLLlfNim+cSPMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQzMzVkNTA0LWYyOTktNDI2NC05MTFkLTI1MTM3NTUwNDNiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAP5twwDQYJKoZIhvcNAQELBQADggEBAIY3ve2ciYWPAbimcrg2ZoDACBRN TSXRjFqWhnC2IKJowTvRTWeo413YM6DIipK/nx8poM6WpVc4x9kkOpQ6lGS2ifwP zpiUZMo2tra67IzPPPPhqFptfSJYmtFVcZPTzzeZ3Dos0Q7uZPlDBN+y51g0g19y h9/4EYIp8TQFai86A9jvutOS5uet1tTeOePu3RCL1GaccS8QdKf3GYBREiNOvJkP SIUCG3Ds/1v4BA8PsWQx+eGiifc6mJbtUAO01z2COjpCqf92CV40KMdr7sA02VDB GwLahxqHdOv1Ywq8RNXnGMq2i3O11o07NyD6AbeXzUvHA9kcCH67EJkVrh8= -----END CERTIFICATE-----Generated at Sun Jun 15 13:20:33 2025 by rpki-client