$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9be9c7d8-2185-4142-b87a-9e7f28efe569.roa File: 9be9c7d8-2185-4142-b87a-9e7f28efe569.roa (raw, json) Hash identifier: 3RIwOwUYce7btW5HQWDDvudhdQkjv5lfJAtLzDLOiTU= Subject key identifier: FF:D7:5F:4C:CA:3E:76:F4:08:E9:F0:33:CA:E3:F1:10:24:9E:01:14 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7C20837E10C5F416E001DE00BE8815595BF8A210 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9be9c7d8-2185-4142-b87a-9e7f28efe569.roa Signing time: Tue 20 May 2025 16:01:50 +0000 ROA not before: Tue 20 May 2025 16:01:50 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.230.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:20:83:7e:10:c5:f4:16:e0:01:de:00:be:88:15:59:5b:f8:a2:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 20 16:01:50 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=c202218521f7011e5d073df411bf0fbfa7c3942cf7229f7619de3a8bbd5ff44a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d8:64:af:a8:80:24:7b:ac:57:92:e2:8e:5a: c8:03:6a:06:b4:23:16:f2:17:6a:0f:0f:ce:02:79: 70:78:85:fa:47:66:41:d8:2d:6a:84:f8:9a:c3:8d: 1b:bc:1f:6f:5d:e1:9f:58:45:bd:a9:72:de:f2:dd: 61:81:61:1c:3f:1e:15:5f:56:3d:46:88:9b:84:cf: fe:80:40:cb:c5:c4:16:48:2a:5d:20:f7:bb:c2:f9: c0:98:cf:7f:5b:72:13:2f:0f:db:c6:21:12:09:d4: 2d:1b:dc:86:ca:cb:66:a0:0e:97:55:76:e0:7c:f3: e6:49:60:b2:0e:70:72:e3:d3:d4:d6:d0:82:ea:76: 71:f1:9e:0d:60:e4:8d:d7:5a:11:2b:ce:9a:68:fe: 5a:b5:d5:08:5d:fd:dd:40:80:a8:28:52:9f:f4:8a: 33:ba:d2:bc:91:39:ef:4c:0e:13:b0:f2:3c:38:f6: 4d:4e:db:14:3c:1e:3c:9e:e5:6c:0b:d8:bb:f5:81: 68:85:04:7b:21:d9:9a:cf:33:74:3a:5c:53:dd:16: 64:56:31:73:9d:c0:99:20:85:ab:00:cc:e3:26:68: 09:18:6d:45:8f:94:9e:35:99:b2:0b:20:57:ee:c0: 20:cf:62:d8:94:63:84:3c:5e:bd:35:3d:06:48:a9: 38:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:D7:5F:4C:CA:3E:76:F4:08:E9:F0:33:CA:E3:F1:10:24:9E:01:14 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9be9c7d8-2185-4142-b87a-9e7f28efe569.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.230.142.0/24 Signature Algorithm: sha256WithRSAEncryption 53:30:9e:89:b9:a2:c9:cd:05:66:99:0e:a4:d0:3e:71:11:c7: ea:67:ac:73:27:a3:26:ed:78:bb:7a:47:5a:d7:21:4d:64:f9: 8c:94:03:8c:c1:35:b8:c3:03:b6:13:57:29:60:ef:9c:97:d7: 0f:a6:23:92:98:2a:9d:56:5e:6a:00:27:9e:21:ce:5c:f6:92: 1c:61:92:0f:12:ee:68:1c:19:06:63:90:93:51:ca:5e:d8:4d: 6a:6f:51:da:88:ac:02:29:e1:b9:6d:dd:77:b5:68:a0:b9:76: 3e:94:9a:34:c2:d5:da:45:50:4c:67:01:b1:57:cc:ff:7c:28: f6:d7:41:50:d1:83:23:eb:0c:12:5f:53:11:a1:22:24:bb:8e: 0f:c7:bc:c1:2c:f2:22:15:b1:b5:38:6b:65:89:7d:76:2a:60: ae:a6:49:2b:e5:27:8f:ed:9e:78:c2:10:03:af:13:26:a2:c3: f9:eb:09:6e:9c:49:02:ff:3c:24:2c:75:7d:08:ee:6f:58:da: fa:17:6d:60:31:00:de:e8:30:d7:df:0e:02:8b:76:de:ab:73: 72:a0:e9:9c:c7:ff:5d:6d:58:b2:49:f6:d4:96:06:a8:70:49: 8b:fe:08:60:71:fa:ba:76:6c:3a:c0:be:0b:73:3e:41:98:6c: c8:c9:85:c4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfCCDfhDF9BbgAd4AvogVWVv4ohAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTIwMTYwMTUwWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMjAyMjE4NTIxZjcwMTFlNWQwNzNkZjQxMWJmMGZiZmE3 YzM5NDJjZjcyMjlmNzYxOWRlM2E4YmJkNWZmNDRhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCv2GSvqIAke6xXkuKOWsgDaga0IxbyF2oPD84CeXB4hfpH ZkHYLWqE+JrDjRu8H29d4Z9YRb2pct7y3WGBYRw/HhVfVj1GiJuEz/6AQMvFxBZI Kl0g97vC+cCYz39bchMvD9vGIRIJ1C0b3IbKy2agDpdVduB88+ZJYLIOcHLj09TW 0ILqdnHxng1g5I3XWhErzppo/lq11Qhd/d1AgKgoUp/0ijO60ryROe9MDhOw8jw4 9k1O2xQ8Hjye5WwL2Lv1gWiFBHsh2ZrPM3Q6XFPdFmRWMXOdwJkghasAzOMmaAkY bUWPlJ41mbILIFfuwCDPYtiUY4Q8Xr01PQZIqTg3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/9dfTMo+dvQI6fAzyuPxECSeARQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzliZTljN2Q4LTIxODUtNDE0Mi1iODdhLTllN2YyOGVmZTU2OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAP5o4wDQYJKoZIhvcNAQELBQADggEBAFMwnom5osnNBWaZDqTQPnERx+pn rHMnoybteLt6R1rXIU1k+YyUA4zBNbjDA7YTVylg75yX1w+mI5KYKp1WXmoAJ54h zlz2khxhkg8S7mgcGQZjkJNRyl7YTWpvUdqIrAIp4blt3Xe1aKC5dj6UmjTC1dpF UExnAbFXzP98KPbXQVDRgyPrDBJfUxGhIiS7jg/HvMEs8iIVsbU4a2WJfXYqYK6m SSvlJ4/tnnjCEAOvEyaiw/nrCW6cSQL/PCQsdX0I7m9Y2voXbWAxAN7oMNffDgKL dt6rc3Kg6ZzH/11tWLJJ9tSWBqhwSYv+CGBx+rp2bDrAvgtzPkGYbMjJhcQ= -----END CERTIFICATE-----Generated at Sat Jun 14 06:01:01 2025 by rpki-client