$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/47d76cb8-4a77-4b47-bcc1-2306da9cea6d.roa File: 47d76cb8-4a77-4b47-bcc1-2306da9cea6d.roa (raw, json) Hash identifier: 3WTT8IwdKaXj7nfE8IWKvMS7YoFnvUtE9xe71MSZWls= Subject key identifier: E0:F4:BF:17:3B:3B:C6:EF:89:BA:42:1E:58:E6:16:EE:50:45:2B:18 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 17201041A39F2B39C7C875E62A99729FF0CFD0AE Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/47d76cb8-4a77-4b47-bcc1-2306da9cea6d.roa Signing time: Wed 21 May 2025 00:40:27 +0000 ROA not before: Wed 21 May 2025 00:40:27 +0000 ROA not after: Wed 25 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.95.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:20:10:41:a3:9f:2b:39:c7:c8:75:e6:2a:99:72:9f:f0:cf:d0:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 21 00:40:27 2025 GMT Not After : Jun 25 23:59:59 2025 GMT Subject: serialNumber=11078030acb7c9d5c09575e010dab60803515269713cf102a981fcd1c628bf95, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:4c:6f:cb:9a:b2:a3:a0:af:ed:df:67:d8:df: e9:c0:dc:9d:c0:3b:dc:55:71:88:88:ae:98:8e:83: d0:67:70:5a:12:6f:b0:a8:3a:d9:0d:b7:46:21:07: 51:6c:95:32:39:8d:18:26:3d:e9:96:5b:f4:41:26: e2:3e:8d:34:a1:6f:48:32:82:27:49:a8:16:90:da: 9f:40:4f:6d:59:ff:05:04:b3:f6:e6:21:0d:1c:72: 4e:e7:11:27:1c:32:22:a8:ba:94:d9:d1:d0:e8:39: 2b:e6:76:0b:b4:6b:6f:b3:a0:8b:22:61:16:06:89: e6:d3:1c:3c:10:62:67:4a:b7:0d:1a:81:67:94:97: 10:18:fa:2f:0c:6f:af:20:b9:73:9b:d4:5b:3a:db: 9a:00:83:8c:e8:6e:e2:94:27:2a:e9:c5:79:52:c7: 3e:64:92:70:ac:b3:b6:18:eb:89:0c:ef:2c:fd:45: 4c:91:56:7d:dd:a0:12:52:8d:8f:e1:87:9c:2a:6a: 5e:76:5d:44:99:00:0f:5b:e9:b6:f5:53:8f:6c:20: 29:3e:29:f8:42:15:81:8c:c6:96:3b:11:dc:37:e0: 20:24:13:d3:0f:b6:5c:6f:d6:8c:ae:35:1c:9a:cb: c3:73:ec:05:b9:f5:b3:4a:17:1c:40:c4:dd:d2:d9: a0:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:F4:BF:17:3B:3B:C6:EF:89:BA:42:1E:58:E6:16:EE:50:45:2B:18 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/47d76cb8-4a77-4b47-bcc1-2306da9cea6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.95.248.0/24 Signature Algorithm: sha256WithRSAEncryption 53:5b:39:de:f7:26:aa:5b:aa:76:11:e0:23:7a:72:df:86:49: 2a:65:4b:76:36:c6:97:c4:d8:a5:b7:33:7d:e1:82:3b:93:bb: 49:26:f0:80:76:67:e1:a1:e8:b7:26:82:56:dd:d4:b3:8e:48: 82:09:01:34:be:53:4c:9f:7c:7a:d7:8a:ba:7d:f6:28:16:8d: 22:67:b9:e6:69:cd:dd:19:15:26:ec:6c:64:ea:38:7e:61:27: a7:31:a2:a5:0f:ad:e5:f5:35:dc:92:e7:e3:bf:54:47:a5:e1: 33:1c:26:13:48:96:51:9b:6c:c9:b1:c5:64:a1:7b:54:c1:39: 2a:28:50:06:48:15:dd:2e:9b:41:e1:fb:f6:57:2e:f1:f7:e2: b5:cc:cc:5f:a4:98:01:08:58:1d:31:77:13:ce:43:88:f5:6d: 6a:78:4c:e3:17:f9:08:59:ac:2d:b7:c9:aa:2a:87:a6:61:19: bb:3c:86:d9:24:86:4d:3d:fc:e0:bc:b0:f5:eb:3b:fc:e8:16: dc:b6:26:89:e5:01:08:68:33:8d:1b:3b:3e:37:66:a3:1a:8e: 06:6c:57:f6:1b:9d:10:b4:fc:29:3f:65:d2:a7:99:1b:ef:90: dd:b0:a8:92:94:ec:e9:ee:23:17:a7:93:c0:91:f8:6f:6a:f8: a8:3b:e1:8f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFyAQQaOfKznHyHXmKplyn/DP0K4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTIxMDA0MDI3WhcNMjUwNjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMTA3ODAzMGFjYjdjOWQ1YzA5NTc1ZTAxMGRhYjYwODAz NTE1MjY5NzEzY2YxMDJhOTgxZmNkMWM2MjhiZjk1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMTG/LmrKjoK/t32fY3+nA3J3AO9xVcYiIrpiOg9BncFoS b7CoOtkNt0YhB1FslTI5jRgmPemWW/RBJuI+jTShb0gygidJqBaQ2p9AT21Z/wUE s/bmIQ0cck7nESccMiKoupTZ0dDoOSvmdgu0a2+zoIsiYRYGiebTHDwQYmdKtw0a gWeUlxAY+i8Mb68guXOb1Fs625oAg4zobuKUJyrpxXlSxz5kknCss7YY64kM7yz9 RUyRVn3doBJSjY/hh5wqal52XUSZAA9b6bb1U49sICk+KfhCFYGMxpY7Edw34CAk E9MPtlxv1oyuNRyay8Nz7AW59bNKFxxAxN3S2aA1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4PS/Fzs7xu+JukIeWOYW7lBFKxgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQ3ZDc2Y2I4LTRhNzctNGI0Ny1iY2MxLTIzMDZkYTljZWE2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0X/gwDQYJKoZIhvcNAQELBQADggEBAFNbOd73JqpbqnYR4CN6ct+GSSpl S3Y2xpfE2KW3M33hgjuTu0km8IB2Z+Gh6Lcmglbd1LOOSIIJATS+U0yffHrXirp9 9igWjSJnueZpzd0ZFSbsbGTqOH5hJ6cxoqUPreX1NdyS5+O/VEel4TMcJhNIllGb bMmxxWShe1TBOSooUAZIFd0um0Hh+/ZXLvH34rXMzF+kmAEIWB0xdxPOQ4j1bWp4 TOMX+QhZrC23yaoqh6ZhGbs8htkkhk09/OC8sPXrO/zoFty2JonlAQhoM40bOz43 ZqMajgZsV/YbnRC0/Ck/ZdKnmRvvkN2wqJKU7OnuIxenk8CR+G9q+Kg74Y8= -----END CERTIFICATE-----Generated at Sat Jun 14 05:48:27 2025 by rpki-client