$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7b415600-e5c5-45af-b51d-800cb6b60664.roa File: 7b415600-e5c5-45af-b51d-800cb6b60664.roa (raw, json) Hash identifier: sbUGMtHjvDDG3rGnekUH5UhWTCRDXcVdqb9+Gf8yyec= Subject key identifier: 4C:13:52:FC:88:74:4F:5A:0E:85:BC:E5:BB:12:5B:48:67:E0:D6:F6 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5939D3DFA13F895CC834BF1C0E223470F7AE41D6 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7b415600-e5c5-45af-b51d-800cb6b60664.roa Signing time: Tue 20 May 2025 16:30:23 +0000 ROA not before: Tue 20 May 2025 16:30:23 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.156.212.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:39:d3:df:a1:3f:89:5c:c8:34:bf:1c:0e:22:34:70:f7:ae:41:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 20 16:30:23 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=8a2abdc6bd529f0eed85ca7a31f10dbb0818c1536da75af952cf13fb5cffca79, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:56:ff:96:e5:d0:cd:d4:99:4f:e7:76:1c:a3: a6:fe:dc:0f:3d:14:5e:a2:2e:34:63:6f:ef:94:df: 8e:48:33:a2:96:2d:89:73:cd:4e:80:ac:34:ec:57: 59:a4:6e:f2:56:5b:74:0b:cc:1a:2a:14:45:57:a3: e6:eb:77:08:10:fe:20:90:45:be:8a:a6:b2:e1:4a: 76:02:6d:22:94:25:f5:c5:28:00:bc:47:97:22:e4: 2d:1a:e4:d6:d3:ec:f5:9b:45:b3:77:26:a7:e4:fe: cb:1d:39:91:10:7e:6b:61:d2:7f:b4:d6:0b:1e:0e: 89:15:e9:38:95:a6:6a:af:ee:9e:ed:78:4b:5f:ab: 41:a7:50:74:95:86:2c:b1:d8:fa:d2:74:6e:69:76: 04:be:c8:e0:4a:cd:e7:02:04:02:70:c7:0c:b1:b4: b9:65:13:e4:21:19:8e:63:77:65:d9:aa:54:3b:0f: ba:48:2a:d3:53:3f:da:e2:ef:5d:32:41:c8:2d:2f: 58:9b:59:ea:44:4a:b3:a6:b7:e7:1c:63:43:52:58: 2b:e4:70:31:d6:c9:4c:e6:27:c8:3d:d0:d9:31:85: a6:35:b4:aa:bb:f0:d8:3e:40:b0:08:2f:cd:d1:9f: 54:fc:2c:c9:2f:a7:fc:cc:3b:c8:f8:f6:ba:93:4f: a3:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:13:52:FC:88:74:4F:5A:0E:85:BC:E5:BB:12:5B:48:67:E0:D6:F6 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7b415600-e5c5-45af-b51d-800cb6b60664.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.156.212.0/22 Signature Algorithm: sha256WithRSAEncryption 07:4c:44:a8:c1:77:c8:0d:e2:b9:da:b0:f3:c1:b9:69:14:72: 9a:73:c2:81:f9:ea:47:8d:96:b4:33:57:c1:7e:91:99:c9:64: ec:6a:5d:41:03:51:62:43:2e:af:71:8d:ab:c6:9b:d7:83:7e: aa:13:63:31:49:a5:79:72:96:87:de:1b:65:b6:ba:28:22:b6: dc:3c:b3:ff:a3:6b:e7:a1:32:88:72:d5:6b:ef:3a:ff:1c:2b: 10:a6:bf:6c:b0:89:3f:b4:94:ef:34:c5:0a:ac:68:ff:13:7c: c5:1b:68:c5:25:3e:14:15:76:74:b5:ec:bc:1d:b6:8e:1d:1e: 6c:e7:5d:04:af:a1:9b:b2:90:40:23:c7:9f:70:87:f3:fd:57: a3:92:14:a2:b5:6b:d9:fa:05:c5:bd:c9:53:d5:19:a2:e9:d7: 92:ae:d1:e7:5b:33:91:43:6d:9d:85:5e:95:16:9a:6a:c2:ea: ce:db:85:30:26:f3:3b:16:bf:c8:72:37:02:5f:7b:23:68:06: f5:be:38:c1:8f:6c:de:64:bf:e5:39:67:0b:0d:06:3b:06:5a: a4:3d:d6:b2:d9:ff:3b:88:d1:0a:7d:34:e8:8d:57:0b:76:62: 26:ab:58:62:ef:03:49:31:c7:db:a6:ae:a3:d3:77:d8:43:41: df:7f:d9:47 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWTnT36E/iVzINL8cDiI0cPeuQdYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTIwMTYzMDIzWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YTJhYmRjNmJkNTI5ZjBlZWQ4NWNhN2EzMWYxMGRiYjA4 MThjMTUzNmRhNzVhZjk1MmNmMTNmYjVjZmZjYTc5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuVv+W5dDN1JlP53Yco6b+3A89FF6iLjRjb++U345IM6KW LYlzzU6ArDTsV1mkbvJWW3QLzBoqFEVXo+brdwgQ/iCQRb6KprLhSnYCbSKUJfXF KAC8R5ci5C0a5NbT7PWbRbN3Jqfk/ssdOZEQfmth0n+01gseDokV6TiVpmqv7p7t eEtfq0GnUHSVhiyx2PrSdG5pdgS+yOBKzecCBAJwxwyxtLllE+QhGY5jd2XZqlQ7 D7pIKtNTP9ri710yQcgtL1ibWepESrOmt+ccY0NSWCvkcDHWyUzmJ8g90NkxhaY1 tKq78Ng+QLAIL83Rn1T8LMkvp/zMO8j49rqTT6OzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTBNS/Ih0T1oOhbzluxJbSGfg1vYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzdiNDE1NjAwLWU1YzUtNDVhZi1iNTFkLTgwMGNiNmI2MDY2NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIPnNQwDQYJKoZIhvcNAQELBQADggEBAAdMRKjBd8gN4rnasPPBuWkUcppz woH56keNlrQzV8F+kZnJZOxqXUEDUWJDLq9xjavGm9eDfqoTYzFJpXlylofeG2W2 uigittw8s/+ja+ehMohy1WvvOv8cKxCmv2ywiT+0lO80xQqsaP8TfMUbaMUlPhQV dnS17Lwdto4dHmznXQSvoZuykEAjx59wh/P9V6OSFKK1a9n6BcW9yVPVGaLp15Ku 0edbM5FDbZ2FXpUWmmrC6s7bhTAm8zsWv8hyNwJfeyNoBvW+OMGPbN5kv+U5ZwsN BjsGWqQ91rLZ/zuI0Qp9NOiNVwt2YiarWGLvA0kxx9umrqPTd9hDQd9/2Uc= -----END CERTIFICATE-----Generated at Sat Jun 14 05:44:30 2025 by rpki-client