$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8ece0f2b-9572-4705-b673-7583881b70d8.roa File: 8ece0f2b-9572-4705-b673-7583881b70d8.roa (raw, json) Hash identifier: VFBQjTror4XGXWUaga+xncSTLb7IqZx9QSicMn47eWA= Subject key identifier: 21:97:84:91:C0:FC:00:2C:66:7B:4C:98:04:E1:46:6B:DB:CE:FD:9E Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4AEDBBD759F834E9D2CE0C525B18F3D8BB577C6F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8ece0f2b-9572-4705-b673-7583881b70d8.roa Signing time: Mon 09 Jun 2025 18:31:47 +0000 ROA not before: Mon 09 Jun 2025 18:31:47 +0000 ROA not after: Mon 14 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.250.120.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:ed:bb:d7:59:f8:34:e9:d2:ce:0c:52:5b:18:f3:d8:bb:57:7c:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 9 18:31:47 2025 GMT Not After : Jul 14 23:59:59 2025 GMT Subject: serialNumber=6fd26e2f4c6a58aa0e705b6e2a98767d67584c167163ae3631241bf31db0be7a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:63:67:dc:a8:24:10:01:2b:51:31:82:a9:90: 91:7e:bf:81:ea:4c:21:b2:50:76:ef:34:b9:00:9f: eb:d9:52:d3:be:14:53:be:fe:21:11:bc:98:1b:ce: 50:76:62:0a:df:5a:5d:2d:2e:0f:0d:b5:aa:d2:2c: 48:5d:96:e4:d4:63:e6:0f:f4:d5:98:46:d0:ba:85: 50:51:fe:3d:f3:6f:a6:ac:20:24:a1:3b:cc:75:33: 82:b3:d0:1f:e8:f6:a4:2f:ea:13:e0:70:0c:61:a1: 55:01:d2:78:f9:d2:83:8e:9c:4a:45:d0:7b:85:c9: f7:40:24:eb:01:b8:26:05:6b:e2:59:5b:e9:4b:bd: f6:00:2f:95:c4:98:bd:be:c2:7d:dd:a2:6f:54:44: c7:66:b0:8a:57:b1:30:b7:b0:1a:75:aa:5d:91:9b: 95:65:09:f9:8f:8d:ee:84:71:82:6f:e3:6f:7c:b8: cd:6b:6c:33:79:49:d8:47:17:2d:9b:cd:b1:c4:91: 65:8c:75:ff:4e:00:c5:f4:81:90:2b:7f:9a:c8:9c: 59:e5:11:85:0d:17:21:05:a3:58:55:72:1b:9a:7c: 85:13:f4:35:8d:72:4a:19:f4:fc:1a:5e:e9:e7:ee: e4:c7:85:2d:5b:71:a2:8e:cb:66:9b:5c:fc:01:ac: 6e:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:97:84:91:C0:FC:00:2C:66:7B:4C:98:04:E1:46:6B:DB:CE:FD:9E X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8ece0f2b-9572-4705-b673-7583881b70d8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.250.120.0/21 Signature Algorithm: sha256WithRSAEncryption 01:47:03:26:eb:52:94:2c:d4:48:4a:38:e5:e5:db:e2:c5:52: d9:2d:f2:90:bf:25:9e:51:c4:e7:59:84:72:6d:bc:16:12:1e: be:af:77:a7:ea:3e:34:b1:f4:44:07:d0:ac:ab:31:12:e4:a8: 6d:a7:3d:e6:12:6a:a8:17:3d:64:13:5c:dc:81:ee:dd:fa:b5: 87:5f:48:9b:57:5e:29:d1:fc:99:b8:83:42:f6:ca:78:40:bb: 92:d4:2a:b3:3c:21:05:d2:17:be:1c:f9:96:a4:ed:71:ba:2e: 10:60:4d:2c:ef:1b:21:6d:bf:75:70:a8:a0:42:7f:6e:45:ac: 52:56:49:4a:cf:2b:60:e2:02:f5:22:91:10:e4:8a:06:ca:92: 30:ae:9f:7a:23:8b:4c:f0:30:09:91:92:64:6e:ea:a2:3c:dd: d2:55:1e:71:52:2f:41:e4:e0:ff:e2:5e:14:31:61:dc:ff:ae: 5d:d7:ad:6a:12:8e:ea:ce:71:77:91:72:61:7f:24:14:1d:57: 24:66:ee:5e:b9:4d:65:62:8c:02:8a:eb:b9:ab:b9:0e:f8:36: e7:d8:65:d3:16:eb:72:c4:f6:6b:37:c9:b7:5c:99:fd:04:e1: a7:9a:10:95:30:b7:e8:60:2b:50:58:31:a0:84:09:b9:34:60: 81:c6:5c:a8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSu2711n4NOnSzgxSWxjz2LtXfG8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjA5MTgzMTQ3WhcNMjUwNzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZmQyNmUyZjRjNmE1OGFhMGU3MDViNmUyYTk4NzY3ZDY3 NTg0YzE2NzE2M2FlMzYzMTI0MWJmMzFkYjBiZTdhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1Y2fcqCQQAStRMYKpkJF+v4HqTCGyUHbvNLkAn+vZUtO+ FFO+/iERvJgbzlB2YgrfWl0tLg8NtarSLEhdluTUY+YP9NWYRtC6hVBR/j3zb6as ICShO8x1M4Kz0B/o9qQv6hPgcAxhoVUB0nj50oOOnEpF0HuFyfdAJOsBuCYFa+JZ W+lLvfYAL5XEmL2+wn3dom9URMdmsIpXsTC3sBp1ql2Rm5VlCfmPje6EcYJv4298 uM1rbDN5SdhHFy2bzbHEkWWMdf9OAMX0gZArf5rInFnlEYUNFyEFo1hVchuafIUT 9DWNckoZ9PwaXunn7uTHhS1bcaKOy2abXPwBrG5fAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUIZeEkcD8ACxme0yYBOFGa9vO/Z4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzhlY2UwZjJiLTk1NzItNDcwNS1iNjczLTc1ODM4ODFiNzBkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM2+ngwDQYJKoZIhvcNAQELBQADggEBAAFHAybrUpQs1EhKOOXl2+LFUtkt 8pC/JZ5RxOdZhHJtvBYSHr6vd6fqPjSx9EQH0KyrMRLkqG2nPeYSaqgXPWQTXNyB 7t36tYdfSJtXXinR/Jm4g0L2ynhAu5LUKrM8IQXSF74c+Zak7XG6LhBgTSzvGyFt v3VwqKBCf25FrFJWSUrPK2DiAvUikRDkigbKkjCun3oji0zwMAmRkmRu6qI83dJV HnFSL0Hk4P/iXhQxYdz/rl3XrWoSjurOcXeRcmF/JBQdVyRm7l65TWVijAKK67mr uQ74NufYZdMW63LE9ms3ybdcmf0E4aeaEJUwt+hgK1BYMaCECbk0YIHGXKg= -----END CERTIFICATE-----Generated at Sat Jun 14 06:06:31 2025 by rpki-client