$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5969520c-b3cb-46b1-8ab5-c52d87531106.roa File: 5969520c-b3cb-46b1-8ab5-c52d87531106.roa (raw, json) Hash identifier: y9DS6C/D1+/icj+96kV/ItwqPO0PXGuhxn2JGp1xv6s= Subject key identifier: 6F:D3:6C:FA:01:F6:D4:92:2A:BC:DC:F6:C4:63:B9:6C:88:92:88:EE Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 36ADDEF6EA7DA88906F43D3F3C9BC88D2EAE7EA4 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5969520c-b3cb-46b1-8ab5-c52d87531106.roa Signing time: Mon 09 Jun 2025 18:31:08 +0000 ROA not before: Mon 09 Jun 2025 18:31:08 +0000 ROA not after: Mon 14 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.240.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:ad:de:f6:ea:7d:a8:89:06:f4:3d:3f:3c:9b:c8:8d:2e:ae:7e:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 9 18:31:08 2025 GMT Not After : Jul 14 23:59:59 2025 GMT Subject: serialNumber=979c15c5297411c961562ac11eecd20b7de3c3247d1f7093350a17e0fbe6d0fc, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:5b:5c:8f:52:22:41:af:46:ff:bd:15:11:18: 9c:0d:d4:0f:81:21:92:14:dc:72:6b:97:b5:e1:9b: 90:2b:3b:60:48:bc:ff:9a:98:85:a6:ec:52:86:f7: dd:c7:9f:5a:92:e1:df:96:67:43:c0:5a:63:e1:98: 1a:94:42:ed:00:c2:56:56:94:2e:55:fa:f0:da:c1: 2e:29:d2:61:3a:c0:2a:a3:1d:99:dd:17:c3:6a:01: 05:0a:b4:5d:dc:e8:3b:ae:e9:5a:57:a1:6f:dd:20: 26:dc:5b:29:58:9a:50:03:d0:55:a0:35:5c:c0:37: 13:6e:65:ad:a8:87:ea:01:ef:e7:52:17:a3:3b:87: 0a:c7:26:5c:17:ee:8a:b0:07:71:ec:7b:23:4e:09: 81:a2:fc:18:0c:b4:de:84:ee:ba:74:d1:e9:da:68: c2:f8:57:6a:25:cf:36:75:b1:1a:a3:e3:b7:32:d5: fa:a8:f8:be:2a:9c:cc:ed:06:c6:11:1c:c8:2e:52: 9c:1f:f1:fc:d7:43:ce:3e:4e:43:f5:09:17:d4:d3: bc:fd:94:13:b9:8c:24:b4:ae:9b:66:32:56:88:dd: b6:10:13:72:12:aa:97:4f:19:0f:fd:27:67:94:99: 84:8a:f7:7e:d0:7a:d4:f6:58:27:93:a2:98:35:db: 0e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:D3:6C:FA:01:F6:D4:92:2A:BC:DC:F6:C4:63:B9:6C:88:92:88:EE X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5969520c-b3cb-46b1-8ab5-c52d87531106.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.240.8.0/21 Signature Algorithm: sha256WithRSAEncryption 81:4e:2d:d7:e0:3a:50:65:d9:22:c6:b8:d8:14:d6:5c:fc:c5: 4e:42:72:bf:cc:70:68:8a:87:78:26:20:95:6b:4c:50:44:d4: 21:a4:66:ba:4d:50:25:ed:83:a0:f9:57:b5:9a:cb:ac:a1:bd: cd:fb:12:03:40:fc:91:24:f8:97:79:95:84:f4:ea:8e:ea:04: e3:7a:4c:b4:a6:57:34:fd:08:92:e3:48:bc:24:38:1c:9c:42: 26:a9:df:20:5b:b2:be:a8:b1:1c:9c:0b:e2:0c:0e:7d:52:10: fe:e8:99:ff:4e:d6:52:e0:ad:58:0f:e2:cd:e3:e9:29:c2:38: 39:12:c6:ab:1b:1c:f1:e1:f9:eb:02:0f:5f:dd:aa:a5:82:8e: af:62:33:15:da:ca:95:ae:21:c7:8f:9d:c4:58:d6:e8:1c:b8: 27:28:03:7e:bd:7a:f5:8e:f8:db:e9:9a:35:19:ae:61:03:2c: 46:7a:75:a9:4a:46:02:a9:41:78:76:3d:5e:8c:23:1b:bd:f6: 66:f5:f4:7b:87:7e:b7:be:97:88:9b:0f:e4:ab:c2:ca:99:b2: b2:32:fa:16:b7:18:65:e9:47:cc:bf:ed:3d:4f:82:28:03:09: f9:11:94:f0:d9:8d:72:f9:8f:06:b4:9e:a1:b3:7f:02:73:e5: fd:9b:16:20 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNq3e9up9qIkG9D0/PJvIjS6ufqQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjA5MTgzMTA4WhcNMjUwNzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NzljMTVjNTI5NzQxMWM5NjE1NjJhYzExZWVjZDIwYjdk ZTNjMzI0N2QxZjcwOTMzNTBhMTdlMGZiZTZkMGZjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuW1yPUiJBr0b/vRURGJwN1A+BIZIU3HJrl7Xhm5ArO2BI vP+amIWm7FKG993Hn1qS4d+WZ0PAWmPhmBqUQu0AwlZWlC5V+vDawS4p0mE6wCqj HZndF8NqAQUKtF3c6Duu6VpXoW/dICbcWylYmlAD0FWgNVzANxNuZa2oh+oB7+dS F6M7hwrHJlwX7oqwB3HseyNOCYGi/BgMtN6E7rp00enaaML4V2olzzZ1sRqj47cy 1fqo+L4qnMztBsYRHMguUpwf8fzXQ84+TkP1CRfU07z9lBO5jCS0rptmMlaI3bYQ E3ISqpdPGQ/9J2eUmYSK937QetT2WCeTopg12w63AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUb9Ns+gH21JIqvNz2xGO5bIiSiO4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzU5Njk1MjBjLWIzY2ItNDZiMS04YWI1LWM1MmQ4NzUzMTEwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM28AgwDQYJKoZIhvcNAQELBQADggEBAIFOLdfgOlBl2SLGuNgU1lz8xU5C cr/McGiKh3gmIJVrTFBE1CGkZrpNUCXtg6D5V7Way6yhvc37EgNA/JEk+Jd5lYT0 6o7qBON6TLSmVzT9CJLjSLwkOBycQiap3yBbsr6osRycC+IMDn1SEP7omf9O1lLg rVgP4s3j6SnCODkSxqsbHPHh+esCD1/dqqWCjq9iMxXaypWuIcePncRY1ugcuCco A369evWO+NvpmjUZrmEDLEZ6dalKRgKpQXh2PV6MIxu99mb19HuHfre+l4ibD+Sr wsqZsrIy+ha3GGXpR8y/7T1PgigDCfkRlPDZjXL5jwa0nqGzfwJz5f2bFiA= -----END CERTIFICATE-----Generated at Sat Jun 14 05:59:58 2025 by rpki-client