$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/888ef377-7e57-4736-9e90-5894d98e6e31.roa File: 888ef377-7e57-4736-9e90-5894d98e6e31.roa (raw, json) Hash identifier: 4COUBuupQYt/cT/5aEWnYKVMZVMawwvzbgxbA/p/PUE= Subject key identifier: E6:AF:52:CA:F0:5C:DF:FA:B1:D5:D7:55:51:B2:09:DE:06:F5:42:B8 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 01CABACF11FE0C83577BF2BDF1462AFDECC41E5C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/888ef377-7e57-4736-9e90-5894d98e6e31.roa Signing time: Tue 20 May 2025 16:01:52 +0000 ROA not before: Tue 20 May 2025 16:01:52 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 15.230.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Jun 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:ca:ba:cf:11:fe:0c:83:57:7b:f2:bd:f1:46:2a:fd:ec:c4:1e:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 20 16:01:52 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=be72b778bf19f0baef92654a3112f11bce7097b2b9d32608b026f2d94d985be7, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ac:cc:29:e2:53:e5:6e:1d:40:65:1a:f4:68: 61:be:02:40:00:2b:0b:07:ea:db:64:4f:8a:71:8d: 1f:33:7a:47:33:40:87:a5:8a:b4:2a:ff:60:d9:f4: 4a:fc:31:41:2e:b7:0b:41:fb:b5:13:3e:3b:3a:43: 89:4b:fe:ef:54:4e:66:30:0b:3d:98:28:c7:47:b0: 46:a6:b9:a1:bf:a3:6e:7f:88:38:44:7b:3d:68:2d: ce:a7:d4:0b:8e:7d:f5:2e:9b:90:cc:a9:dc:4c:67: 5d:ac:cc:11:9f:6a:66:05:77:38:38:74:aa:12:ed: cb:f2:4c:6f:70:ed:27:32:19:f3:23:77:2d:a4:9a: 56:c9:30:37:e6:86:19:97:34:3a:93:ca:29:76:97: 8a:b5:0a:14:df:0b:f1:5c:43:2b:3f:df:6e:d9:d2: 7d:45:85:8a:b8:7b:b3:10:e2:9d:18:2e:95:be:8a: 7e:55:bf:cd:71:8d:b7:c8:15:eb:0d:f4:52:f8:aa: c1:a8:15:9d:bf:54:f0:9c:b8:38:9e:a3:7a:e4:6a: b9:bb:9e:32:fa:3a:dc:79:8c:8e:be:77:1b:32:cb: bd:b5:18:78:0d:bd:10:8d:db:9b:5c:5f:84:c7:e8: e6:84:77:dd:c2:f0:0e:13:be:13:f3:6e:ec:d0:06: fb:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:AF:52:CA:F0:5C:DF:FA:B1:D5:D7:55:51:B2:09:DE:06:F5:42:B8 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/888ef377-7e57-4736-9e90-5894d98e6e31.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.230.148.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:f6:04:0e:2b:d0:02:bd:09:d6:d8:73:07:67:cc:ca:88:30: 7e:3a:f0:e9:50:5a:de:01:30:74:0e:31:07:1f:50:a7:fc:4d: bf:02:80:92:fa:35:e6:53:2e:bd:ca:c9:26:dd:1a:07:89:e3: e2:68:da:a5:d0:99:23:24:1d:fc:5b:ae:99:36:f0:d6:72:2b: ea:83:d6:13:ee:ca:c5:f2:2d:ee:0f:0f:2f:ca:26:b5:51:ce: d5:92:e5:1c:f7:e2:c1:4b:c7:a0:c8:a2:c6:71:fc:3a:10:60: 20:72:74:73:e4:c2:3d:98:ae:88:6c:9e:06:14:41:83:42:56: 1c:28:e5:ed:43:3d:aa:fa:f9:fd:e5:9b:4a:38:60:43:a1:01: cf:ee:96:97:fe:64:66:09:84:df:7d:11:38:e7:43:b7:ca:03: 61:f4:2b:d2:d2:ff:4f:fa:3e:93:06:08:5b:a4:c6:5f:06:a7: 6b:ca:58:a0:8a:85:66:67:f4:93:d6:05:55:bb:95:8a:f2:7d: b8:78:dc:a1:ae:06:51:26:f0:d1:39:9b:76:f1:95:aa:09:ff: e4:d9:75:fe:bd:50:6b:4b:71:ae:38:43:75:45:db:3b:c8:c7: 67:f6:de:f5:83:72:dc:24:58:ca:63:a7:cb:93:39:25:c2:c2: c3:55:d5:a7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAcq6zxH+DINXe/K98UYq/ezEHlwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTIwMTYwMTUyWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZTcyYjc3OGJmMTlmMGJhZWY5MjY1NGEzMTEyZjExYmNl NzA5N2IyYjlkMzI2MDhiMDI2ZjJkOTRkOTg1YmU3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXrMwp4lPlbh1AZRr0aGG+AkAAKwsH6ttkT4pxjR8zekcz QIelirQq/2DZ9Er8MUEutwtB+7UTPjs6Q4lL/u9UTmYwCz2YKMdHsEamuaG/o25/ iDhEez1oLc6n1AuOffUum5DMqdxMZ12szBGfamYFdzg4dKoS7cvyTG9w7ScyGfMj dy2kmlbJMDfmhhmXNDqTyil2l4q1ChTfC/FcQys/327Z0n1FhYq4e7MQ4p0YLpW+ in5Vv81xjbfIFesN9FL4qsGoFZ2/VPCcuDieo3rkarm7njL6Otx5jI6+dxsyy721 GHgNvRCN25tcX4TH6OaEd93C8A4TvhPzbuzQBvv/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5q9SyvBc3/qx1ddVUbIJ3gb1QrgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzg4OGVmMzc3LTdlNTctNDczNi05ZTkwLTU4OTRkOThlNmUzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAP5pQwDQYJKoZIhvcNAQELBQADggEBACr2BA4r0AK9CdbYcwdnzMqIMH46 8OlQWt4BMHQOMQcfUKf8Tb8CgJL6NeZTLr3KySbdGgeJ4+Jo2qXQmSMkHfxbrpk2 8NZyK+qD1hPuysXyLe4PDy/KJrVRztWS5Rz34sFLx6DIosZx/DoQYCBydHPkwj2Y rohsngYUQYNCVhwo5e1DPar6+f3lm0o4YEOhAc/ulpf+ZGYJhN99ETjnQ7fKA2H0 K9LS/0/6PpMGCFukxl8Gp2vKWKCKhWZn9JPWBVW7lYryfbh43KGuBlEm8NE5m3bx laoJ/+TZdf69UGtLca44Q3VF2zvIx2f23vWDctwkWMpjp8uTOSXCwsNV1ac= -----END CERTIFICATE-----Generated at Sun Jun 15 18:55:08 2025 by rpki-client