$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7da15d33-cbbd-410c-9bf9-e6513ede574d.roa File: 7da15d33-cbbd-410c-9bf9-e6513ede574d.roa (raw, json) Hash identifier: M8YLSQJ1HTYS8u80UpckcO0kQeXWNyXCbe85nAQ1Djo= Subject key identifier: E1:41:8D:E8:B0:9E:F8:65:72:00:48:BD:21:61:01:21:B0:14:D1:43 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 24F6DBBF4F6F3ECDCF30E9E85781862F634850C8 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7da15d33-cbbd-410c-9bf9-e6513ede574d.roa Signing time: Tue 20 May 2025 16:30:18 +0000 ROA not before: Tue 20 May 2025 16:30:18 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.140.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:f6:db:bf:4f:6f:3e:cd:cf:30:e9:e8:57:81:86:2f:63:48:50:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 20 16:30:18 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=123c7d07b61ac4a4f29861349ecabdb82e9ea9581a18ee4c8565ec906849f45a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:4c:82:15:d2:4f:c7:7c:3e:f0:de:8d:2d:53: 8f:68:5e:17:a6:7a:f3:2c:41:7a:cb:3b:2c:fe:a7: ef:5b:b3:aa:f7:88:90:fb:6a:7c:6a:3b:6d:41:03: 8a:de:e7:1f:6f:68:d1:f2:4a:cc:f1:a7:29:b6:65: 59:8a:09:60:52:8c:0b:0b:a0:15:2a:df:c7:82:4a: d3:5b:90:95:46:78:1e:a3:18:dd:85:09:7c:9a:aa: 16:a3:c9:61:2f:ba:4e:01:48:e7:d3:25:f7:ab:31: b7:2e:67:93:28:70:a3:2d:99:64:34:fc:94:58:c6: 40:f9:c6:82:23:c0:7d:98:5e:7f:a4:3c:79:99:ef: e8:fa:07:7d:06:43:55:bf:0e:cc:e8:0f:f6:82:66: b1:ae:80:36:e7:c9:e5:70:ab:05:0d:62:09:5b:97: d7:f7:8d:95:09:4c:19:00:8e:59:d1:07:d4:8f:4f: 7f:bb:d3:f7:9f:92:40:81:4e:41:40:ec:b3:4b:39: fe:d5:aa:42:4f:bb:47:10:36:0f:fb:ca:43:6e:c6: 35:4e:98:94:e1:0d:e1:01:30:24:46:7e:06:57:7d: 14:e6:18:e8:79:2f:d9:19:a6:79:aa:40:b4:07:60: f6:87:19:ec:61:dd:3a:c0:c8:7e:0a:31:9c:a8:e7: b1:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:41:8D:E8:B0:9E:F8:65:72:00:48:BD:21:61:01:21:B0:14:D1:43 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7da15d33-cbbd-410c-9bf9-e6513ede574d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.140.0.0/16 Signature Algorithm: sha256WithRSAEncryption 39:05:c7:aa:42:08:07:aa:b5:d0:d6:52:5d:6e:48:88:be:8f: 1a:06:fb:af:d8:c6:cf:a5:16:1f:93:01:04:5d:1e:65:6e:88: 8a:79:7b:9e:fc:ec:f8:c1:1f:4e:5c:ad:5f:25:06:59:fa:24: 1b:c4:77:29:fe:12:88:f4:2e:0d:e7:3c:39:13:ce:6c:f0:f5: 99:65:a2:7c:ff:71:59:cd:79:b5:98:5e:29:26:3f:48:84:18: 0b:22:90:fb:d9:63:74:6e:77:ec:03:b4:b8:dc:e6:97:43:5a: 73:c5:fd:4c:c8:00:75:8e:6f:a2:a9:74:b2:7c:83:7a:80:04: ce:4b:65:76:5a:80:2b:b0:4c:00:68:a3:32:5b:9f:3f:1e:2f: 6a:d8:80:f5:88:0e:91:16:e6:89:55:63:0b:87:57:d4:9e:a0: d7:85:15:8d:6d:2a:d7:ed:d4:f7:c2:77:1a:52:0e:0c:74:f5: 41:00:af:75:ca:7a:f0:8a:88:65:d3:71:bd:97:0c:e4:6a:ca: 60:a1:8a:31:63:45:e1:e5:19:1c:3a:bc:ee:9e:32:7f:01:13: 3a:54:04:49:39:e3:eb:00:41:df:45:3a:22:74:7c:2d:03:03: da:b0:0c:ce:29:2b:f6:e4:73:71:c5:16:cf:2e:0e:95:57:c3: 8f:f5:4e:d9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJPbbv09vPs3PMOnoV4GGL2NIUMgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTIwMTYzMDE4WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMjNjN2QwN2I2MWFjNGE0ZjI5ODYxMzQ5ZWNhYmRiODJl OWVhOTU4MWExOGVlNGM4NTY1ZWM5MDY4NDlmNDVhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnTIIV0k/HfD7w3o0tU49oXhemevMsQXrLOyz+p+9bs6r3 iJD7anxqO21BA4re5x9vaNHySszxpym2ZVmKCWBSjAsLoBUq38eCStNbkJVGeB6j GN2FCXyaqhajyWEvuk4BSOfTJferMbcuZ5MocKMtmWQ0/JRYxkD5xoIjwH2YXn+k PHmZ7+j6B30GQ1W/DszoD/aCZrGugDbnyeVwqwUNYglbl9f3jZUJTBkAjlnRB9SP T3+70/efkkCBTkFA7LNLOf7VqkJPu0cQNg/7ykNuxjVOmJThDeEBMCRGfgZXfRTm GOh5L9kZpnmqQLQHYPaHGexh3TrAyH4KMZyo57GpAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU4UGN6LCe+GVyAEi9IWEBIbAU0UMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzdkYTE1ZDMzLWNiYmQtNDEwYy05YmY5LWU2NTEzZWRlNTc0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCIjDANBgkqhkiG9w0BAQsFAAOCAQEAOQXHqkIIB6q10NZSXW5IiL6PGgb7 r9jGz6UWH5MBBF0eZW6Iinl7nvzs+MEfTlytXyUGWfokG8R3Kf4SiPQuDec8ORPO bPD1mWWifP9xWc15tZheKSY/SIQYCyKQ+9ljdG537AO0uNzml0Nac8X9TMgAdY5v oql0snyDeoAEzktldlqAK7BMAGijMlufPx4vatiA9YgOkRbmiVVjC4dX1J6g14UV jW0q1+3U98J3GlIODHT1QQCvdcp68IqIZdNxvZcM5GrKYKGKMWNF4eUZHDq87p4y fwETOlQESTnj6wBB30U6InR8LQMD2rAMzikr9uRzccUWzy4OlVfDj/VO2Q== -----END CERTIFICATE-----Generated at Sat Jun 14 05:46:32 2025 by rpki-client