$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/714c8d7e-498f-4004-afef-6fb478ee04d1.roa File: 714c8d7e-498f-4004-afef-6fb478ee04d1.roa (raw, json) Hash identifier: jt0MrtL3ircvk3DqxFzyHx42K83ZmK5UTLcN2oHTutU= Subject key identifier: 5E:34:AE:FC:E5:C6:55:F1:05:66:66:4F:AE:A3:EB:3D:E0:BF:FD:47 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 77B9909230B4244AD4875F57F8D2C56300BF4C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/714c8d7e-498f-4004-afef-6fb478ee04d1.roa Signing time: Mon 09 Jun 2025 17:51:23 +0000 ROA not before: Mon 09 Jun 2025 17:51:23 +0000 ROA not after: Mon 14 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.235.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Jun 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:b9:90:92:30:b4:24:4a:d4:87:5f:57:f8:d2:c5:63:00:bf:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 9 17:51:23 2025 GMT Not After : Jul 14 23:59:59 2025 GMT Subject: serialNumber=79841c2edea773e7582285b05890399cbb20efd94a5ef5ae679ea7647ea96afc, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1c:1c:73:7b:02:7c:87:08:c1:87:7f:7b:4a: dd:cd:5b:e1:d0:74:bf:3c:d2:d7:a4:05:f8:29:e0: 63:1f:50:9f:5f:51:93:22:86:4f:ca:97:2e:80:67: 47:10:0a:73:bf:b7:05:19:9e:ae:5c:ae:c8:64:67: e7:4e:14:3f:0a:b9:2d:5e:1f:3a:75:6b:ec:df:bb: 0d:95:a2:1c:15:c8:a8:6d:cd:ce:d5:6b:dc:db:12: 87:3e:49:f4:ef:ee:69:74:74:2d:13:36:05:5e:b4: d1:46:b5:af:0a:eb:d3:e8:bd:b6:e8:20:5b:3e:e1: 21:6c:3c:e5:5d:fd:e9:de:6e:06:65:5a:51:65:5b: 48:d9:dc:81:a6:b9:1f:05:bf:19:b5:06:4a:e8:47: fb:0e:d2:7e:dd:3e:59:f9:2e:3c:6b:b9:d7:70:52: 0b:67:d1:6d:a9:1b:09:57:e8:56:01:32:ca:7e:d0: 82:24:8b:05:ad:4b:f7:a4:ac:de:97:28:4e:00:6d: 85:cc:70:4d:53:76:1a:1c:3c:5c:5d:c9:9a:33:de: e6:ed:f7:22:ae:de:fd:9c:99:2a:44:89:38:96:d1: e1:46:a6:27:c6:e9:62:14:e8:cc:57:55:ff:10:b7: 8d:bc:a3:f0:82:a4:54:3b:b9:fd:12:0e:09:fd:a3: 8a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:34:AE:FC:E5:C6:55:F1:05:66:66:4F:AE:A3:EB:3D:E0:BF:FD:47 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/714c8d7e-498f-4004-afef-6fb478ee04d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.235.192.0/19 Signature Algorithm: sha256WithRSAEncryption 3a:b8:c6:ab:9a:55:26:57:37:27:4b:ca:63:40:ad:25:55:bd: 05:5c:6e:18:1a:80:4d:fd:d6:51:a9:c2:94:de:5b:c8:5b:67: 4a:c3:8e:d6:04:34:16:07:89:8d:f8:0d:58:32:21:8e:29:b5: bb:6e:0b:5e:24:4b:84:a4:bf:2c:09:33:3a:21:0a:5a:fb:47: bb:56:b5:9f:73:b0:e8:6e:90:ec:2d:7f:6c:c6:ff:a6:32:df: ae:30:b2:b3:29:c0:e5:6f:4c:03:04:79:49:bf:be:30:16:67: cd:6a:2b:ff:92:f9:dc:e8:b0:2c:14:f2:34:c2:ee:5a:46:12: c0:92:5f:10:4b:f4:4c:20:72:3d:c1:9e:52:73:c6:b3:ad:29: df:47:a3:76:d4:67:44:db:f9:94:18:b2:04:da:a5:7a:f5:c3: 9b:01:08:2d:ec:0a:94:e9:30:29:7e:e1:00:41:4e:37:f1:b3: ca:e7:ea:3e:34:bb:2a:d2:62:e4:ae:3c:b0:0f:cb:ab:c2:bd: 4e:12:6a:d8:30:87:48:eb:37:36:69:3e:7a:63:0a:03:7c:e8: c2:c5:02:23:a5:c0:4a:00:ff:f7:5e:27:8c:53:b0:72:e6:73: a1:4f:28:34:f7:94:13:28:eb:78:15:e3:c5:5a:0c:73:d5:8e: da:26:bc:d3 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITd7mQkjC0JErUh19X+NLFYwC/TDANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNTA2MDkxNzUxMjNaFw0yNTA3MTQyMzU5NTla MHoxSTBHBgNVBAUTQDc5ODQxYzJlZGVhNzczZTc1ODIyODViMDU4OTAzOTljYmIy MGVmZDk0YTVlZjVhZTY3OWVhNzY0N2VhOTZhZmMxLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAL4cHHN7AnyHCMGHf3tK3c1b4dB0vzzS16QF+CngYx9Qn19R kyKGT8qXLoBnRxAKc7+3BRmerlyuyGRn504UPwq5LV4fOnVr7N+7DZWiHBXIqG3N ztVr3NsShz5J9O/uaXR0LRM2BV600Ua1rwrr0+i9tuggWz7hIWw85V396d5uBmVa UWVbSNncgaa5HwW/GbUGSuhH+w7Sft0+WfkuPGu513BSC2fRbakbCVfoVgEyyn7Q giSLBa1L96Ss3pcoTgBthcxwTVN2Ghw8XF3JmjPe5u33Iq7e/ZyZKkSJOJbR4Uam J8bpYhTozFdV/xC3jbyj8IKkVDu5/RIOCf2jioUCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBReNK785cZV8QVmZk+uo+s94L/9RzAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvNzE0YzhkN2UtNDk4Zi00MDA0LWFmZWYtNmZiNDc4ZWUwNGQxLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBTbrwDANBgkqhkiG9w0BAQsFAAOCAQEAOrjGq5pVJlc3J0vKY0CtJVW9BVxu GBqATf3WUanClN5byFtnSsOO1gQ0FgeJjfgNWDIhjim1u24LXiRLhKS/LAkzOiEK WvtHu1a1n3Ow6G6Q7C1/bMb/pjLfrjCysynA5W9MAwR5Sb++MBZnzWor/5L53Oiw LBTyNMLuWkYSwJJfEEv0TCByPcGeUnPGs60p30ejdtRnRNv5lBiyBNqlevXDmwEI LewKlOkwKX7hAEFON/GzyufqPjS7KtJi5K48sA/Lq8K9ThJq2DCHSOs3Nmk+emMK A3zowsUCI6XASgD/914njFOwcuZzoU8oNPeUEyjreBXjxVoMc9WO2ia80w== -----END CERTIFICATE-----Generated at Sat Jun 14 23:45:55 2025 by rpki-client