$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/46d30dad-d60c-48cf-b4f1-f5ce79e0e9ba.roa File: 46d30dad-d60c-48cf-b4f1-f5ce79e0e9ba.roa (raw, json) Hash identifier: bnIa+zF5vqrOz7qAXLvMiCGI3lqn0w0NdfyOVCpiU4s= Subject key identifier: 9E:68:90:79:6F:05:59:CD:0B:5C:5E:DB:F0:FB:1E:02:F1:2E:C0:87 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5E6AA6C79EB4783C1C10A86A856A4919142E9AD4 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/46d30dad-d60c-48cf-b4f1-f5ce79e0e9ba.roa Signing time: Tue 20 May 2025 15:40:27 +0000 ROA not before: Tue 20 May 2025 15:40:27 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.245.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:6a:a6:c7:9e:b4:78:3c:1c:10:a8:6a:85:6a:49:19:14:2e:9a:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 20 15:40:27 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=c11024070cfdd70de0f0dacf847493ab56aff9b21589c631524f340c243b2238, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:2f:65:2f:0b:47:24:1f:a6:87:13:ec:dd:5a: 67:00:4c:df:af:47:0e:1a:18:fa:c6:4c:ee:8d:63: 6a:40:c0:8c:5f:da:72:49:f1:fe:74:d6:c3:80:46: a7:10:5e:7f:88:44:91:3f:e4:52:ad:c8:4c:a0:2b: 0e:e2:02:9e:e0:57:9c:13:e7:3e:30:fd:08:d9:b4: 78:ed:66:bf:8b:08:b6:a7:e3:d2:9c:59:e1:fb:fe: ca:b7:1b:1b:7b:a4:e1:61:01:e9:41:3e:65:ec:a8: b5:de:6d:bd:8e:43:53:3c:61:48:db:77:bc:e8:d7: f5:29:b0:56:1c:82:d3:da:c0:5f:ba:cb:42:6e:9b: 30:0a:d8:7c:07:79:1d:d0:10:46:42:0e:c7:8e:75: 72:f3:ad:51:cd:0d:de:23:9c:53:e9:33:73:4b:44: bb:f7:2a:b7:8e:57:3d:a8:9f:1d:0c:f7:1a:0b:2f: 3e:08:b8:26:bb:60:a9:af:43:ea:c3:35:1e:66:14: d1:93:89:fc:85:fc:52:82:02:b5:7e:e5:43:7f:b6: 5e:64:e0:78:49:85:de:0f:0f:db:b9:6f:1e:f4:7a: 60:8d:f0:fd:2c:76:dd:57:49:b4:f5:52:ed:9c:cf: ef:92:90:8e:a7:ea:b5:e4:e8:50:e0:cc:b9:25:ca: 03:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:68:90:79:6F:05:59:CD:0B:5C:5E:DB:F0:FB:1E:02:F1:2E:C0:87 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/46d30dad-d60c-48cf-b4f1-f5ce79e0e9ba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.245.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0c:38:b5:56:ad:c7:09:85:02:5e:74:4e:a7:aa:bd:ba:b0:be: f4:72:b3:0f:92:46:36:00:9f:5f:2e:f7:1f:72:81:91:6a:9c: 57:c1:be:ad:61:9a:e6:bc:ab:be:c1:d6:17:7d:14:55:ee:8b: 9a:64:3c:9d:54:b1:a1:00:79:06:81:9f:1f:0e:81:ed:7f:46: 9f:d7:f9:33:c5:a0:50:e6:52:cc:4a:2d:e0:79:43:c1:1f:79: 4c:5d:ba:c8:4f:83:d6:29:02:f4:81:5b:38:6b:c7:37:48:72: c8:84:e9:22:5a:0c:90:4e:1f:96:cc:ac:bc:67:9d:dc:ce:b8: 0a:34:c1:85:7a:6d:5c:52:e2:29:2a:86:af:6b:a1:dd:fa:d8: 17:20:1e:c6:87:3b:54:1a:61:0f:43:e4:e8:9c:7a:6b:b9:d4: ca:d5:cf:97:8e:48:eb:c2:7f:bd:ed:81:26:6c:8d:d7:c2:eb: ef:27:26:66:9d:9f:60:8f:fc:36:cf:d0:3e:04:3b:38:c0:75: 60:41:16:16:07:cd:7f:1d:3d:be:ed:72:0f:d3:8b:00:da:31: a5:ac:47:29:21:3b:9b:da:a3:68:e5:03:31:19:0a:14:0c:50: af:79:0d:90:68:7b:5c:12:97:ae:53:73:9a:65:50:91:e5:d8: ab:84:8f:f8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXmqmx560eDwcEKhqhWpJGRQumtQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTIwMTU0MDI3WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMTEwMjQwNzBjZmRkNzBkZTBmMGRhY2Y4NDc0OTNhYjU2 YWZmOWIyMTU4OWM2MzE1MjRmMzQwYzI0M2IyMjM4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtL2UvC0ckH6aHE+zdWmcATN+vRw4aGPrGTO6NY2pAwIxf 2nJJ8f501sOARqcQXn+IRJE/5FKtyEygKw7iAp7gV5wT5z4w/QjZtHjtZr+LCLan 49KcWeH7/sq3Gxt7pOFhAelBPmXsqLXebb2OQ1M8YUjbd7zo1/UpsFYcgtPawF+6 y0JumzAK2HwHeR3QEEZCDseOdXLzrVHNDd4jnFPpM3NLRLv3KreOVz2onx0M9xoL Lz4IuCa7YKmvQ+rDNR5mFNGTifyF/FKCArV+5UN/tl5k4HhJhd4PD9u5bx70emCN 8P0sdt1XSbT1Uu2cz++SkI6n6rXk6FDgzLklygPdAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUnmiQeW8FWc0LXF7b8PseAvEuwIcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQ2ZDMwZGFkLWQ2MGMtNDhjZi1iNGYxLWY1Y2U3OWUwZTliYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAN9TANBgkqhkiG9w0BAQsFAAOCAQEADDi1Vq3HCYUCXnROp6q9urC+9HKz D5JGNgCfXy73H3KBkWqcV8G+rWGa5ryrvsHWF30UVe6LmmQ8nVSxoQB5BoGfHw6B 7X9Gn9f5M8WgUOZSzEot4HlDwR95TF26yE+D1ikC9IFbOGvHN0hyyITpIloMkE4f lsysvGed3M64CjTBhXptXFLiKSqGr2uh3frYFyAexoc7VBphD0Pk6Jx6a7nUytXP l45I68J/ve2BJmyN18Lr7ycmZp2fYI/8Ns/QPgQ7OMB1YEEWFgfNfx09vu1yD9OL ANoxpaxHKSE7m9qjaOUDMRkKFAxQr3kNkGh7XBKXrlNzmmVQkeXYq4SP+A== -----END CERTIFICATE-----Generated at Sat Jun 14 05:44:34 2025 by rpki-client