$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/69b7eb6d-9d7c-4a85-a7fc-9332085e1aab.roa File: 69b7eb6d-9d7c-4a85-a7fc-9332085e1aab.roa (raw, json) Hash identifier: LzhHz3OeYkwpfEhM4Tb+v1mzjJLNB02p9Im5o/14Jm4= Subject key identifier: 70:8E:38:11:CC:8D:84:7B:77:A2:72:86:A0:55:25:9D:30:6B:55:D1 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 38C958E682709483BF3D26E171B51BCC9A1B8E00 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/69b7eb6d-9d7c-4a85-a7fc-9332085e1aab.roa Signing time: Wed 21 May 2025 00:31:23 +0000 ROA not before: Wed 21 May 2025 00:31:23 +0000 ROA not after: Wed 25 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.119.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:c9:58:e6:82:70:94:83:bf:3d:26:e1:71:b5:1b:cc:9a:1b:8e:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 21 00:31:23 2025 GMT Not After : Jun 25 23:59:59 2025 GMT Subject: serialNumber=45fbfd4216d07d684ec2b2d4d3eacfe2f9b400cfbc3fbba24f89dfa33962abb1, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:bf:72:7b:b1:08:06:13:9d:1f:c9:ec:c1:79: 80:23:c7:37:21:53:4e:57:ac:6f:83:1a:32:3e:b3: 20:17:ec:f9:d3:c6:34:4b:b3:78:18:f3:43:91:d0: 1e:28:42:4b:92:f4:d6:ca:73:f8:b5:41:53:4b:5a: 7c:47:14:9a:0c:bc:8f:38:24:6c:54:f0:74:0f:91: fd:82:77:52:9a:75:09:27:69:97:67:d9:3f:22:09: a2:19:b1:58:53:21:19:6f:d7:ca:c2:a1:21:97:dc: b5:20:1b:46:e4:ef:45:ad:dd:75:63:d7:58:0a:8f: da:d8:1f:f9:49:1f:01:46:31:5c:f3:9b:bd:a1:9a: cb:57:3a:59:b6:98:1e:b5:e0:af:ff:48:9f:83:38: e6:3d:3d:2d:b6:e4:24:d7:bb:ce:0a:f3:55:0c:cc: e6:74:27:bb:60:24:ed:81:fb:de:a2:dd:b2:b5:ac: cd:44:86:3d:bd:65:13:65:72:1f:60:5e:26:89:ee: ea:ff:72:57:02:d6:39:7a:b6:f1:45:01:88:fd:eb: f7:2a:82:48:40:7f:b5:a1:ee:c3:ab:3e:85:d8:bc: 14:62:63:c1:44:da:d6:51:b4:81:33:74:a7:60:39: b4:cd:f1:87:a9:7f:38:0f:46:f9:9b:e4:42:4b:91: 13:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:8E:38:11:CC:8D:84:7B:77:A2:72:86:A0:55:25:9D:30:6B:55:D1 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/69b7eb6d-9d7c-4a85-a7fc-9332085e1aab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.119.192.0/22 Signature Algorithm: sha256WithRSAEncryption 60:22:96:9f:5a:4f:19:2a:65:ef:eb:69:37:22:ac:1b:6e:09: 69:11:c6:73:9c:a6:ba:a9:ae:23:db:8f:64:04:e9:9e:65:49: 4d:ea:ab:13:ef:f1:33:da:e9:a0:be:87:39:21:e2:14:7b:b8: b3:85:be:dd:0d:aa:f5:ab:56:14:83:09:6f:4b:82:b1:0b:73: c6:58:9c:70:ea:c1:ef:c4:74:36:12:ce:f1:48:0e:43:43:25: 4a:39:d9:31:f9:dc:2f:a4:20:23:4b:dd:fd:4e:6e:77:73:f9: f2:41:bc:3e:cc:17:65:ee:75:9c:2a:86:83:90:ad:30:ca:16: 7b:ef:5e:ff:ca:59:61:b3:31:0c:e6:ff:9b:8c:80:ca:22:b9: 8c:0a:d9:93:f9:da:09:46:6a:c2:dd:ea:ce:83:cb:02:71:00: 96:99:c6:b4:e4:2a:a7:0c:f4:fa:42:ba:18:83:01:22:4b:d4: 29:d2:b1:4f:84:c7:ff:5f:71:e6:66:f6:5c:ca:d5:f0:e2:85: 7e:51:c8:88:a3:93:1f:c9:88:81:36:f6:aa:95:64:2f:0a:3a: 51:7b:ef:88:98:af:be:77:12:fe:b2:df:48:5f:85:4b:77:05: a6:f9:fc:f4:ce:fd:15:a2:e8:dc:c6:ee:9b:38:0f:ed:c8:d5: ef:a0:f8:7e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOMlY5oJwlIO/PSbhcbUbzJobjgAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTIxMDAzMTIzWhcNMjUwNjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NWZiZmQ0MjE2ZDA3ZDY4NGVjMmIyZDRkM2VhY2ZlMmY5 YjQwMGNmYmMzZmJiYTI0Zjg5ZGZhMzM5NjJhYmIxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQv3J7sQgGE50fyezBeYAjxzchU05XrG+DGjI+syAX7PnT xjRLs3gY80OR0B4oQkuS9NbKc/i1QVNLWnxHFJoMvI84JGxU8HQPkf2Cd1KadQkn aZdn2T8iCaIZsVhTIRlv18rCoSGX3LUgG0bk70Wt3XVj11gKj9rYH/lJHwFGMVzz m72hmstXOlm2mB614K//SJ+DOOY9PS225CTXu84K81UMzOZ0J7tgJO2B+96i3bK1 rM1Ehj29ZRNlch9gXiaJ7ur/clcC1jl6tvFFAYj96/cqgkhAf7Wh7sOrPoXYvBRi Y8FE2tZRtIEzdKdgObTN8YepfzgPRvmb5EJLkRPRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcI44EcyNhHt3onKGoFUlnTBrVdEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzY5YjdlYjZkLTlkN2MtNGE4NS1hN2ZjLTkzMzIwODVlMWFhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI0d8AwDQYJKoZIhvcNAQELBQADggEBAGAilp9aTxkqZe/raTcirBtuCWkR xnOcprqpriPbj2QE6Z5lSU3qqxPv8TPa6aC+hzkh4hR7uLOFvt0NqvWrVhSDCW9L grELc8ZYnHDqwe/EdDYSzvFIDkNDJUo52TH53C+kICNL3f1Obndz+fJBvD7MF2Xu dZwqhoOQrTDKFnvvXv/KWWGzMQzm/5uMgMoiuYwK2ZP52glGasLd6s6DywJxAJaZ xrTkKqcM9PpCuhiDASJL1CnSsU+Ex/9fceZm9lzK1fDihX5RyIijkx/JiIE29qqV ZC8KOlF774iYr753Ev6y30hfhUt3Bab5/PTO/RWi6NzG7ps4D+3I1e+g+H4= -----END CERTIFICATE-----Generated at Sat Jun 14 05:41:12 2025 by rpki-client