$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7548a798-1ee1-411b-9334-05aa053078b8.roa File: 7548a798-1ee1-411b-9334-05aa053078b8.roa (raw, json) Hash identifier: m98l4V0zv7rDC51tOpT2EttcfH6Sgw8FcACbIaefBDg= Subject key identifier: A0:AA:DC:3A:4E:BA:27:73:17:8D:CD:1B:0C:22:31:BA:22:B8:15:15 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 243331463B43D406738C1678FE8E9C4591FCDD Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7548a798-1ee1-411b-9334-05aa053078b8.roa Signing time: Mon 09 Jun 2025 17:50:23 +0000 ROA not before: Mon 09 Jun 2025 17:50:23 +0000 ROA not after: Mon 14 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.232.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:33:31:46:3b:43:d4:06:73:8c:16:78:fe:8e:9c:45:91:fc:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 9 17:50:23 2025 GMT Not After : Jul 14 23:59:59 2025 GMT Subject: serialNumber=c2d6ec38c78b20b8e1b210aaa2f316c885e8ef66fb688caa881cd1938e6de674, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:32:1e:63:2c:2e:1b:da:3b:40:6c:ac:4a:0e: f9:a0:23:e7:56:f5:f8:23:1e:7d:0c:41:8a:0a:45: c7:4b:be:37:c9:d7:cc:5e:fb:ac:1d:4e:39:80:6d: 31:66:bd:08:35:ce:53:4a:49:63:b8:77:b3:78:2f: f6:de:2f:8b:5f:0f:6d:44:82:be:ed:d4:b6:1b:5a: f3:d5:f5:38:ca:cf:b3:94:c0:b0:df:bb:eb:bc:1e: cd:4a:dc:41:c7:5d:70:25:48:df:05:b5:da:58:af: 78:6d:f5:9d:9e:cb:1b:22:cd:d0:37:2d:eb:cf:23: 70:cd:cd:07:1d:64:29:15:33:b4:d8:5a:a0:b6:10: ca:b9:41:c4:61:bd:b3:48:b1:59:31:dd:81:5e:69: f0:24:54:ce:58:5d:da:6a:8d:67:5c:bd:52:40:f4: af:bb:96:5b:53:be:7d:33:d9:e2:e2:61:14:7c:b1: 0f:96:85:8e:b5:80:c9:7f:b4:fd:91:1c:ec:48:cf: a5:c3:48:33:d5:0e:b4:fd:1a:70:35:f0:3a:cd:f4: 44:1f:6e:8e:88:bd:cc:10:6f:12:3c:b4:2d:8c:cb: 49:81:06:ff:c2:ec:67:f7:35:58:70:ae:0d:1d:25: 4f:bd:75:ee:fe:b1:c9:1b:ff:b4:06:20:5c:22:0c: 6a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:AA:DC:3A:4E:BA:27:73:17:8D:CD:1B:0C:22:31:BA:22:B8:15:15 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7548a798-1ee1-411b-9334-05aa053078b8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.232.128.0/18 Signature Algorithm: sha256WithRSAEncryption 25:1b:ca:b8:d6:a9:da:f8:11:a5:0a:62:a3:a6:26:10:ac:18: 4e:99:d3:51:e4:ad:fe:88:54:5b:e8:99:c4:f5:a9:dc:c9:46: 50:5b:b7:05:6f:d8:44:3a:4c:90:0e:23:c1:f7:af:a9:f8:7e: 0d:5e:59:a4:46:36:75:33:cc:bb:97:70:39:f7:c3:36:67:68: 44:05:2a:79:63:fe:39:14:4d:06:37:c6:08:69:eb:e3:1d:6b: 47:94:2b:7e:9b:7f:45:5b:4a:e0:79:28:86:96:28:51:33:d7: 78:8b:c2:6b:19:94:1a:23:3d:6a:ed:b0:b6:62:64:a7:5c:50: 1e:9c:dd:d0:38:d3:89:ac:05:3b:a8:47:35:f3:e8:cc:77:5e: 89:3a:00:c7:7c:2d:d6:1b:a3:c5:13:0c:18:11:94:13:04:d2: 66:80:00:66:c9:0b:b7:2b:e9:8b:23:ff:90:d4:4f:18:25:42: 12:92:3a:2e:99:24:92:1a:c2:79:28:44:db:7f:f4:6d:c3:30: 0d:b7:ed:dc:85:a1:94:1f:35:4a:38:1c:4c:23:82:f7:c6:f3: 00:72:27:51:ea:b0:71:1e:d7:21:7d:6d:83:b6:f5:04:a5:49: 4c:c8:5e:c2:a0:11:3b:08:45:00:08:97:e3:52:19:a5:f5:49: ad:b4:67:95 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITJDMxRjtD1AZzjBZ4/o6cRZH83TANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNTA2MDkxNzUwMjNaFw0yNTA3MTQyMzU5NTla MHoxSTBHBgNVBAUTQGMyZDZlYzM4Yzc4YjIwYjhlMWIyMTBhYWEyZjMxNmM4ODVl OGVmNjZmYjY4OGNhYTg4MWNkMTkzOGU2ZGU2NzQxLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAL4yHmMsLhvaO0BsrEoO+aAj51b1+CMefQxBigpFx0u+N8nX zF77rB1OOYBtMWa9CDXOU0pJY7h3s3gv9t4vi18PbUSCvu3Uthta89X1OMrPs5TA sN+767wezUrcQcddcCVI3wW12liveG31nZ7LGyLN0Dct688jcM3NBx1kKRUztNha oLYQyrlBxGG9s0ixWTHdgV5p8CRUzlhd2mqNZ1y9UkD0r7uWW1O+fTPZ4uJhFHyx D5aFjrWAyX+0/ZEc7EjPpcNIM9UOtP0acDXwOs30RB9ujoi9zBBvEjy0LYzLSYEG /8LsZ/c1WHCuDR0lT7117v6xyRv/tAYgXCIMaqcCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBSgqtw6TroncxeNzRsMIjG6IrgVFTAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvNzU0OGE3OTgtMWVlMS00MTFiLTkzMzQtMDVhYTA1MzA3OGI4LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBjbogDANBgkqhkiG9w0BAQsFAAOCAQEAJRvKuNap2vgRpQpio6YmEKwYTpnT UeSt/ohUW+iZxPWp3MlGUFu3BW/YRDpMkA4jwfevqfh+DV5ZpEY2dTPMu5dwOffD NmdoRAUqeWP+ORRNBjfGCGnr4x1rR5Qrfpt/RVtK4HkohpYoUTPXeIvCaxmUGiM9 au2wtmJkp1xQHpzd0DjTiawFO6hHNfPozHdeiToAx3wt1hujxRMMGBGUEwTSZoAA ZskLtyvpiyP/kNRPGCVCEpI6LpkkkhrCeShE23/0bcMwDbft3IWhlB81SjgcTCOC 98bzAHInUeqwcR7XIX1tg7b1BKVJTMhewqAROwhFAAiX41IZpfVJrbRnlQ== -----END CERTIFICATE-----Generated at Sat Jun 14 06:20:21 2025 by rpki-client