$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4524df21-4ec7-4287-b1ee-e4f4bf219d5c.roa File: 4524df21-4ec7-4287-b1ee-e4f4bf219d5c.roa (raw, json) Hash identifier: Dy18oP+rkPstlG8ZkORa/ZbYIlBGY+H4fmE0a6m8HHo= Subject key identifier: 5D:1B:C9:33:64:41:CB:33:4D:07:2B:6B:6C:A8:5B:84:9F:EB:5B:F9 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3B19FD28E07B96254FEC45DC4AD8D7A373975D0E Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4524df21-4ec7-4287-b1ee-e4f4bf219d5c.roa Signing time: Tue 20 May 2025 15:50:59 +0000 ROA not before: Tue 20 May 2025 15:50:59 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.168.96.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:19:fd:28:e0:7b:96:25:4f:ec:45:dc:4a:d8:d7:a3:73:97:5d:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 20 15:50:59 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=91c1d6a0eb4f24ed0f22a93a6aeede8b793a66eabbc5bb0bb0a5cd7c37203615, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:eb:65:33:61:b9:e1:f0:f5:86:dc:5a:27:8e: 63:40:70:b0:19:13:c6:fe:5b:b3:2a:71:8f:f1:c5: 13:fb:04:aa:6d:36:4c:ce:c9:2c:7f:aa:cb:36:4f: c6:f3:0c:3b:04:98:26:b6:b9:19:14:e0:a5:c1:f5: c2:8a:8f:ed:bd:2b:6e:77:fe:31:41:cd:cd:ce:c0: bd:fa:99:f6:80:4a:b8:30:f5:cd:b5:36:cb:99:33: 6c:cb:be:87:e8:23:ea:64:24:e9:b0:8c:83:50:f1: ee:ee:5f:08:f9:85:f7:83:69:41:77:df:54:b2:55: 6b:b5:a6:9c:e6:1a:14:94:be:a6:53:57:fd:57:0b: 0a:3d:7e:96:4a:29:03:98:77:62:9a:10:4c:53:67: bb:32:cc:de:27:b6:0d:ce:b2:2a:7f:5a:ec:e5:a6: e7:b8:e5:7d:e4:29:42:79:8f:fd:e2:eb:5c:ce:c7: d9:71:83:65:87:b1:f3:74:68:a4:31:e3:0a:83:43: 3c:17:e7:fe:14:c4:f5:85:31:99:3b:d3:d5:e2:5c: 1b:c1:7b:4f:8a:5f:d2:45:ed:a2:c2:12:ce:eb:09: 50:50:ff:86:d9:35:bd:96:ec:c1:cb:92:63:c2:52: 64:fc:f4:61:bb:e3:a8:75:2f:e4:25:e1:f9:be:2f: b9:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:1B:C9:33:64:41:CB:33:4D:07:2B:6B:6C:A8:5B:84:9F:EB:5B:F9 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4524df21-4ec7-4287-b1ee-e4f4bf219d5c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.168.96.0/22 Signature Algorithm: sha256WithRSAEncryption 02:ff:36:1f:0e:5b:e5:0a:1b:2e:2c:1a:61:08:62:17:c9:5c: 8e:13:6e:09:f5:7b:1a:d8:bd:5f:69:93:88:3f:46:fa:36:4f: 97:68:f3:95:df:11:13:1e:0e:53:4f:86:3d:0a:f7:28:3e:84: 0f:28:46:03:54:52:98:db:ec:ce:5e:74:30:b2:f3:27:39:0e: 7c:8a:83:e9:89:e3:07:cf:bd:f1:d7:56:35:c2:2a:49:fc:17: b6:ba:a9:c5:b1:18:55:ed:b5:41:d4:08:f0:46:1e:d4:67:de: 93:e5:49:ed:92:13:1c:8e:79:15:12:0e:37:73:2a:aa:6b:42: 7a:e0:27:3b:71:8a:49:ff:18:ff:f7:f0:7c:b0:20:20:d4:4d: ca:81:41:6a:1d:07:a4:cd:29:7a:17:2b:00:f2:d0:68:4e:e5: 90:12:2c:4e:4c:e8:88:85:2f:da:d7:61:b4:e9:18:42:46:a3: a0:fd:62:8a:df:d1:5d:3d:80:db:4a:a4:8d:94:f9:ed:79:33: 6f:a1:a8:81:84:bf:fb:31:4a:b9:18:90:e3:fa:3b:76:e2:f7: d8:5f:16:87:ae:aa:06:87:75:58:57:61:3c:6f:7a:21:9f:52: c3:9a:37:0a:5c:0a:66:26:dd:b0:59:58:e9:08:95:fc:4d:a4: 72:be:a1:71 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOxn9KOB7liVP7EXcStjXo3OXXQ4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTIwMTU1MDU5WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MWMxZDZhMGViNGYyNGVkMGYyMmE5M2E2YWVlZGU4Yjc5 M2E2NmVhYmJjNWJiMGJiMGE1Y2Q3YzM3MjAzNjE1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCw62UzYbnh8PWG3FonjmNAcLAZE8b+W7MqcY/xxRP7BKpt NkzOySx/qss2T8bzDDsEmCa2uRkU4KXB9cKKj+29K253/jFBzc3OwL36mfaASrgw 9c21NsuZM2zLvofoI+pkJOmwjINQ8e7uXwj5hfeDaUF331SyVWu1ppzmGhSUvqZT V/1XCwo9fpZKKQOYd2KaEExTZ7syzN4ntg3Osip/Wuzlpue45X3kKUJ5j/3i61zO x9lxg2WHsfN0aKQx4wqDQzwX5/4UxPWFMZk709XiXBvBe0+KX9JF7aLCEs7rCVBQ /4bZNb2W7MHLkmPCUmT89GG746h1L+Ql4fm+L7nhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXRvJM2RByzNNBytrbKhbhJ/rW/kwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQ1MjRkZjIxLTRlYzctNDI4Ny1iMWVlLWU0ZjRiZjIxOWQ1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIPqGAwDQYJKoZIhvcNAQELBQADggEBAAL/Nh8OW+UKGy4sGmEIYhfJXI4T bgn1exrYvV9pk4g/Rvo2T5do85XfERMeDlNPhj0K9yg+hA8oRgNUUpjb7M5edDCy 8yc5DnyKg+mJ4wfPvfHXVjXCKkn8F7a6qcWxGFXttUHUCPBGHtRn3pPlSe2SExyO eRUSDjdzKqprQnrgJztxikn/GP/38HywICDUTcqBQWodB6TNKXoXKwDy0GhO5ZAS LE5M6IiFL9rXYbTpGEJGo6D9Yorf0V09gNtKpI2U+e15M2+hqIGEv/sxSrkYkOP6 O3bi99hfFoeuqgaHdVhXYTxveiGfUsOaNwpcCmYm3bBZWOkIlfxNpHK+oXE= -----END CERTIFICATE-----Generated at Sat Jun 14 05:53:50 2025 by rpki-client