$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/74f2ecdf-d5d5-4b42-92a4-04fcfd19f695.roa File: 74f2ecdf-d5d5-4b42-92a4-04fcfd19f695.roa (raw, json) Hash identifier: ANMPvvsxbhXU1gIQz5YUQH1LB3RhUNjbQinMurjbVNQ= Subject key identifier: 36:5B:25:EE:89:33:C7:85:17:C7:55:01:19:B9:F1:62:9B:FB:70:58 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0F1453C4518C722D975477F6AC431A516F8B8EBC Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/74f2ecdf-d5d5-4b42-92a4-04fcfd19f695.roa Signing time: Mon 09 Jun 2025 16:51:55 +0000 ROA not before: Mon 09 Jun 2025 16:51:55 +0000 ROA not after: Mon 14 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.204.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:14:53:c4:51:8c:72:2d:97:54:77:f6:ac:43:1a:51:6f:8b:8e:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 9 16:51:55 2025 GMT Not After : Jul 14 23:59:59 2025 GMT Subject: serialNumber=f484e8ef199169cf49ec5878d08c3dc0236290bdf4f6ef25b71a8e45c46bfe7a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c9:ae:ad:1e:2f:f1:c9:38:c5:87:a5:d3:1d: 30:ed:70:f7:9a:c1:a6:8c:3e:77:f0:6a:f1:c5:fb: 87:23:b2:ce:6c:0f:a1:f9:8c:0b:0e:b2:0b:39:2b: 17:09:2b:aa:d0:6c:f2:b0:44:ef:36:1b:1e:59:e0: a5:25:ea:9e:57:8a:62:02:08:a6:29:93:24:8d:85: 8c:51:88:0c:6f:09:fd:9a:97:6f:55:43:06:e8:fe: 03:46:15:c4:71:5b:cb:e7:f3:26:d2:fd:cd:9c:5c: 77:b7:c7:2f:6a:08:2c:09:42:fb:39:c3:bd:7c:b5: e6:17:f5:1a:6b:37:f6:8c:58:29:9d:41:21:8f:c2: 2c:6a:bf:43:37:d1:d6:47:cf:73:b2:0e:5a:36:38: 7b:79:6e:54:f0:8f:e3:44:0d:dd:21:9a:7e:b3:6f: 08:cd:c7:f3:95:ec:87:5d:09:96:4b:27:44:38:f3: 9c:ad:2f:0a:94:c2:5a:a6:b8:d4:d0:3d:5f:75:af: 0f:43:d6:62:5f:f6:54:1f:6c:b7:08:4f:f6:e0:46: 6b:4b:a6:12:31:79:61:c5:4a:65:3a:bd:06:d5:e5: 5a:1b:8f:77:e2:98:80:a8:37:64:ae:52:8d:53:7f: be:1d:42:e4:aa:c5:17:01:19:16:a4:f5:ad:15:b5: bb:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:5B:25:EE:89:33:C7:85:17:C7:55:01:19:B9:F1:62:9B:FB:70:58 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/74f2ecdf-d5d5-4b42-92a4-04fcfd19f695.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.204.32.0/20 Signature Algorithm: sha256WithRSAEncryption 95:c2:82:fa:b2:ed:09:90:4f:18:94:0e:85:59:bc:d2:66:65: 74:12:f6:f5:b8:27:b2:00:2e:37:b2:fc:7c:c9:e4:77:12:11: d0:74:5d:5f:c6:44:f0:72:da:7b:8c:db:2e:2a:45:c4:bc:cb: 42:c6:47:6b:43:4b:67:bb:0a:7b:5e:5f:ba:14:a4:1a:ab:64: 06:80:a9:93:f8:d0:86:da:69:b8:2d:a6:a2:4e:61:ac:ba:ce: 81:75:38:5f:31:54:01:30:26:f1:7a:29:07:42:8c:49:ee:2e: d7:11:eb:c2:c3:c3:67:03:2d:8a:61:9d:50:4e:8c:ea:ce:b5: 16:67:b8:9f:fc:55:13:92:da:26:e8:1f:9c:5d:0d:68:10:59: 2a:77:94:95:ef:d4:31:7f:0c:26:5c:3d:dc:4c:0b:38:ad:e3: 54:33:47:79:07:52:32:f5:31:9c:6f:17:59:83:49:55:6e:ea: 66:29:3c:6c:52:a6:ac:f0:5c:bf:e3:bf:55:56:7c:04:32:7f: 94:fd:15:61:3e:76:fd:c3:87:3d:d7:56:15:86:15:ad:05:5a: 9c:e6:f7:e1:2b:44:6c:01:92:d6:40:3e:b1:6c:08:66:1e:e5: ea:05:3b:b5:75:9c:17:46:69:df:a3:e7:51:c6:13:d1:ec:ed: a7:29:35:cf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDxRTxFGMci2XVHf2rEMaUW+LjrwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjA5MTY1MTU1WhcNMjUwNzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNDg0ZThlZjE5OTE2OWNmNDllYzU4NzhkMDhjM2RjMDIz NjI5MGJkZjRmNmVmMjViNzFhOGU0NWM0NmJmZTdhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+ya6tHi/xyTjFh6XTHTDtcPeawaaMPnfwavHF+4cjss5s D6H5jAsOsgs5KxcJK6rQbPKwRO82Gx5Z4KUl6p5XimICCKYpkySNhYxRiAxvCf2a l29VQwbo/gNGFcRxW8vn8ybS/c2cXHe3xy9qCCwJQvs5w718teYX9RprN/aMWCmd QSGPwixqv0M30dZHz3OyDlo2OHt5blTwj+NEDd0hmn6zbwjNx/OV7IddCZZLJ0Q4 85ytLwqUwlqmuNTQPV91rw9D1mJf9lQfbLcIT/bgRmtLphIxeWHFSmU6vQbV5Vob j3fimICoN2SuUo1Tf74dQuSqxRcBGRak9a0VtbtHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNlsl7okzx4UXx1UBGbnxYpv7cFgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzc0ZjJlY2RmLWQ1ZDUtNGI0Mi05MmE0LTA0ZmNmZDE5ZjY5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQ2zCAwDQYJKoZIhvcNAQELBQADggEBAJXCgvqy7QmQTxiUDoVZvNJmZXQS 9vW4J7IALjey/HzJ5HcSEdB0XV/GRPBy2nuM2y4qRcS8y0LGR2tDS2e7CnteX7oU pBqrZAaAqZP40IbaabgtpqJOYay6zoF1OF8xVAEwJvF6KQdCjEnuLtcR68LDw2cD LYphnVBOjOrOtRZnuJ/8VROS2iboH5xdDWgQWSp3lJXv1DF/DCZcPdxMCzit41Qz R3kHUjL1MZxvF1mDSVVu6mYpPGxSpqzwXL/jv1VWfAQyf5T9FWE+dv3Dhz3XVhWG Fa0FWpzm9+ErRGwBktZAPrFsCGYe5eoFO7V1nBdGad+j51HGE9Hs7acpNc8= -----END CERTIFICATE-----Generated at Sat Jun 14 05:45:38 2025 by rpki-client