$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a6c99457-d6e4-410f-b770-4179301bd116.roa File: a6c99457-d6e4-410f-b770-4179301bd116.roa (raw, json) Hash identifier: JabZh65+GjN7ISemPQzXw/XJ14Ay9fw0WZiiMyq4Gis= Subject key identifier: C6:6C:06:78:39:6E:98:5D:10:F0:3B:E0:FD:0E:94:90:F9:57:56:BD Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 50445CE40FE609A59B9C0781AB899E2991D952CD Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a6c99457-d6e4-410f-b770-4179301bd116.roa Signing time: Tue 20 May 2025 15:41:01 +0000 ROA not before: Tue 20 May 2025 15:41:01 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.136.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:44:5c:e4:0f:e6:09:a5:9b:9c:07:81:ab:89:9e:29:91:d9:52:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 20 15:41:01 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=38b278ff2fe6cb2bf19fce53ab0e543569722f347e0b810d8590ac6b42970213, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b6:27:6c:15:e4:93:84:aa:7c:77:ea:62:0b: af:49:f8:2b:b1:da:00:f5:7b:6d:fe:1c:76:6e:e6: f3:5b:87:29:21:83:0c:c8:20:cd:47:8e:f1:3a:57: f3:0f:21:c1:38:bf:49:90:e6:c8:53:11:87:5d:c4: 1c:67:55:1c:87:99:76:1c:c5:69:9b:57:ba:90:e4: b3:ae:85:3f:8c:d7:d4:bd:9f:f0:33:6c:d0:55:a1: 7e:26:81:f2:fa:4f:40:b9:cc:70:9e:4d:f1:e8:d4: 99:68:b5:06:ea:85:f9:40:ff:34:a4:e3:12:59:19: 52:9b:03:0c:dd:28:36:a4:56:a4:8c:00:f6:93:ae: 97:dc:9e:95:10:df:79:e4:57:04:e4:0f:ba:9d:6c: 29:59:a2:23:fe:c6:e9:b4:ea:22:9e:73:b8:d1:89: 44:3a:36:0e:71:fe:32:6c:9a:3e:ce:06:58:e0:a6: 6b:3f:0b:25:ff:b3:ee:3f:80:ed:85:85:58:9e:d0: f1:d3:9e:45:8d:f9:fb:44:e5:9e:ae:a4:69:81:8a: 61:3f:f4:da:43:7b:90:c6:73:50:83:a1:3b:d1:74: 98:c3:f8:6e:59:b8:eb:96:ce:5d:38:de:bc:0d:8a: ef:b2:98:84:52:b2:1a:35:74:d5:b5:a8:a1:b2:55: ea:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:6C:06:78:39:6E:98:5D:10:F0:3B:E0:FD:0E:94:90:F9:57:56:BD X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a6c99457-d6e4-410f-b770-4179301bd116.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.136.0.0/14 Signature Algorithm: sha256WithRSAEncryption 80:3c:09:f3:3e:7f:4b:6c:1a:b2:ce:f6:07:1e:47:73:4b:26: 32:7d:ac:46:6b:cc:22:8d:84:5b:85:c0:84:a3:2f:bb:1f:83: 85:b0:dc:15:2c:a3:19:7c:85:ad:77:16:48:0a:6c:36:68:d7: 76:8a:3e:46:74:14:18:dd:77:f9:1e:e5:69:b4:f8:2a:23:36: ce:f4:4e:7c:2a:69:0b:00:2b:83:07:d9:36:ca:f0:82:41:7e: 6f:99:a8:50:25:44:f4:4a:39:60:14:97:ec:f8:b3:30:ad:46: cc:d3:3e:93:90:85:58:a3:f1:f3:75:2f:0f:78:12:48:48:5e: 9b:97:0d:b7:9f:0d:2d:6d:32:21:b9:91:c5:f7:79:2a:cb:1c: 34:ce:32:bb:11:df:22:6f:9e:ef:9e:b0:a1:bc:6d:c2:3c:b0: d9:ee:f9:0b:f0:3e:63:18:77:97:d2:50:7f:6e:0e:76:7f:ce: 13:35:3d:4b:c9:75:f4:d7:bc:cc:2d:46:01:11:43:a4:1b:30: ee:27:91:80:28:43:0c:fa:51:18:a3:49:dc:3d:6b:b3:d5:a4: 8f:9e:ca:5b:47:3c:09:3e:03:a7:8e:a2:26:80:12:dd:10:c2: 30:9f:39:3d:6c:82:53:bb:31:66:f2:8e:d9:53:5a:52:52:71: 53:1c:e7:61 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUERc5A/mCaWbnAeBq4meKZHZUs0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTIwMTU0MTAxWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzOGIyNzhmZjJmZTZjYjJiZjE5ZmNlNTNhYjBlNTQzNTY5 NzIyZjM0N2UwYjgxMGQ4NTkwYWM2YjQyOTcwMjEzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1tidsFeSThKp8d+piC69J+Cux2gD1e23+HHZu5vNbhykh gwzIIM1HjvE6V/MPIcE4v0mQ5shTEYddxBxnVRyHmXYcxWmbV7qQ5LOuhT+M19S9 n/AzbNBVoX4mgfL6T0C5zHCeTfHo1JlotQbqhflA/zSk4xJZGVKbAwzdKDakVqSM APaTrpfcnpUQ33nkVwTkD7qdbClZoiP+xum06iKec7jRiUQ6Ng5x/jJsmj7OBljg pms/CyX/s+4/gO2FhVie0PHTnkWN+ftE5Z6upGmBimE/9NpDe5DGc1CDoTvRdJjD +G5ZuOuWzl043rwNiu+ymIRSsho1dNW1qKGyVepBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUxmwGeDlumF0Q8Dvg/Q6UkPlXVr0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2E2Yzk5NDU3LWQ2ZTQtNDEwZi1iNzcwLTQxNzkzMDFiZDExNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwKIiDANBgkqhkiG9w0BAQsFAAOCAQEAgDwJ8z5/S2wass72Bx5Hc0smMn2s RmvMIo2EW4XAhKMvux+DhbDcFSyjGXyFrXcWSApsNmjXdoo+RnQUGN13+R7labT4 KiM2zvROfCppCwArgwfZNsrwgkF+b5moUCVE9Eo5YBSX7PizMK1GzNM+k5CFWKPx 83UvD3gSSEhem5cNt58NLW0yIbmRxfd5KsscNM4yuxHfIm+e756wobxtwjyw2e75 C/A+Yxh3l9JQf24Odn/OEzU9S8l19Ne8zC1GARFDpBsw7ieRgChDDPpRGKNJ3D1r s9Wkj57KW0c8CT4Dp46iJoAS3RDCMJ85PWyCU7sxZvKO2VNaUlJxUxznYQ== -----END CERTIFICATE-----Generated at Sat Jun 14 05:56:59 2025 by rpki-client