$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6d54f6ca-1175-4454-9f47-f101ffa12e6d.roa File: 6d54f6ca-1175-4454-9f47-f101ffa12e6d.roa (raw, json) Hash identifier: RuLyJItJ4AGsU8byxjIE9yYzOqEGm/AAW7pbnM3RnrY= Subject key identifier: 47:73:6E:41:BB:9D:70:7F:A8:1C:8D:CE:30:AB:02:99:FE:62:84:E8 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 76C410027EDA78F3D814E583ECC14FDA49AAAF Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6d54f6ca-1175-4454-9f47-f101ffa12e6d.roa Signing time: Tue 03 Jun 2025 15:01:05 +0000 ROA not before: Tue 03 Jun 2025 15:01:05 +0000 ROA not after: Tue 08 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.88.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:c4:10:02:7e:da:78:f3:d8:14:e5:83:ec:c1:4f:da:49:aa:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 3 15:01:05 2025 GMT Not After : Jul 8 23:59:59 2025 GMT Subject: serialNumber=bb8b07ab45f99bab4f9977c6ef299e44d98714339d301d5b3357eb51919c7c2d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:0a:29:6d:89:f7:28:82:b7:0b:98:32:9e:b1: ef:46:eb:04:4f:9d:5a:c5:50:04:3a:63:fc:97:24: 99:1c:82:02:01:b3:0b:2f:3d:72:01:d3:af:7a:14: ce:ca:a4:5c:d4:c8:84:80:e7:42:0b:46:24:fe:26: f2:08:5c:84:7d:c2:b8:49:56:84:e4:e7:80:11:96: 42:62:5d:84:91:3f:e2:f8:56:71:c5:51:b9:1c:9f: c0:ea:52:b4:5a:59:c9:f8:f2:42:ae:22:36:f7:d7: 4d:b6:93:0b:2a:cd:63:f8:00:63:eb:4e:3e:f2:4f: d3:f8:ee:55:77:ff:58:cf:8b:ac:0d:48:56:06:49: e5:64:f6:46:1d:a7:c4:61:1e:87:d8:19:61:5d:36: f4:8c:1e:02:22:80:ff:b8:87:cf:8a:15:0f:6d:44: a5:21:63:29:92:9e:e1:2c:85:f3:fc:68:ac:b4:aa: 64:16:41:b7:54:ff:da:66:12:06:1e:9b:80:6b:09: db:0c:a7:cc:ac:0e:64:e0:93:c3:fd:09:4d:64:d6: 00:dd:55:c4:2a:cf:07:ba:b8:eb:d1:ec:82:06:b0: 0f:9c:16:15:91:fe:4d:83:8a:58:43:1a:c3:8a:27: 23:ec:14:17:9d:1f:e2:8b:7a:7d:c9:dc:ed:bc:9b: 4c:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:73:6E:41:BB:9D:70:7F:A8:1C:8D:CE:30:AB:02:99:FE:62:84:E8 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6d54f6ca-1175-4454-9f47-f101ffa12e6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.88.0.0/19 Signature Algorithm: sha256WithRSAEncryption 96:12:35:87:ce:9b:ca:4a:9e:69:0f:e3:a2:2e:c9:02:4c:46: de:d6:5a:33:30:21:92:35:e8:94:f6:60:48:83:0b:c2:da:34: 95:48:bf:24:df:03:6d:27:78:e7:ad:31:15:2f:8e:01:24:17: 67:10:51:f1:e7:c2:52:fd:3b:6c:7e:74:07:c4:78:94:49:6e: 10:c0:18:8d:1c:49:59:d8:aa:fc:88:81:60:92:ff:0b:fd:b9: 02:69:46:4c:06:01:ed:95:a9:4d:b4:e9:a3:52:ef:c6:6c:9c: 42:b2:89:01:fb:37:64:b1:e9:15:57:ed:e7:06:5a:59:7d:2f: b9:7d:be:d3:87:84:29:c3:cd:d3:b3:a6:d9:06:ba:29:cf:8b: 75:0b:25:97:f9:88:47:6a:2e:cd:c9:4b:7a:43:34:48:20:ea: 77:43:e7:89:26:9e:a1:e7:04:2e:db:ce:7f:97:7b:b9:33:c6: 92:66:9e:0f:16:46:76:28:aa:29:57:4b:1f:13:c6:19:10:b3: f5:eb:58:03:90:f0:e9:0c:30:3d:02:31:b1:18:40:5d:47:d9: 27:cf:0f:1a:18:42:76:7f:fe:5c:bb:55:73:57:71:55:35:e3: 75:8a:8f:d3:b6:0c:f5:4e:8a:7d:8f:6f:2a:87:04:49:f0:4f: 56:a9:f7:d7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITdsQQAn7aePPYFOWD7MFP2kmqrzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNTA2MDMxNTAxMDVaFw0yNTA3MDgyMzU5NTla MHoxSTBHBgNVBAUTQGJiOGIwN2FiNDVmOTliYWI0Zjk5NzdjNmVmMjk5ZTQ0ZDk4 NzE0MzM5ZDMwMWQ1YjMzNTdlYjUxOTE5YzdjMmQxLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAKMKKW2J9yiCtwuYMp6x70brBE+dWsVQBDpj/JckmRyCAgGz Cy89cgHTr3oUzsqkXNTIhIDnQgtGJP4m8ghchH3CuElWhOTngBGWQmJdhJE/4vhW ccVRuRyfwOpStFpZyfjyQq4iNvfXTbaTCyrNY/gAY+tOPvJP0/juVXf/WM+LrA1I VgZJ5WT2Rh2nxGEeh9gZYV029IweAiKA/7iHz4oVD21EpSFjKZKe4SyF8/xorLSq ZBZBt1T/2mYSBh6bgGsJ2wynzKwOZOCTw/0JTWTWAN1VxCrPB7q469HsggawD5wW FZH+TYOKWEMaw4onI+wUF50f4ot6fcnc7bybTD8CAwEAAaOCArEwggKtMB0GA1Ud DgQWBBRHc25Bu51wf6gcjc4wqwKZ/mKE6DAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvNmQ1NGY2Y2EtMTE3NS00NDU0LTlmNDctZjEwMWZmYTEyZTZkLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBRJYADANBgkqhkiG9w0BAQsFAAOCAQEAlhI1h86bykqeaQ/joi7JAkxG3tZa MzAhkjXolPZgSIMLwto0lUi/JN8DbSd4560xFS+OASQXZxBR8efCUv07bH50B8R4 lEluEMAYjRxJWdiq/IiBYJL/C/25AmlGTAYB7ZWpTbTpo1LvxmycQrKJAfs3ZLHp FVft5wZaWX0vuX2+04eEKcPN07Om2Qa6Kc+LdQsll/mIR2ouzclLekM0SCDqd0Pn iSaeoecELtvOf5d7uTPGkmaeDxZGdiiqKVdLHxPGGRCz9etYA5Dw6QwwPQIxsRhA XUfZJ88PGhhCdn/+XLtVc1dxVTXjdYqP07YM9U6KfY9vKocESfBPVqn31w== -----END CERTIFICATE-----Generated at Sat Jun 14 06:16:17 2025 by rpki-client