$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a8622532-3f9f-49f5-ad52-fe2a10508dbc.roa File: a8622532-3f9f-49f5-ad52-fe2a10508dbc.roa (raw, json) Hash identifier: hPdjUOLY/JRV+TkiJ4QOteeXCn97bK0qWZEmESiHxQI= Subject key identifier: 16:21:ED:A2:22:4F:7A:BE:7C:24:C4:2E:F0:B0:0B:F9:95:C8:1F:7A Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 293388966D64B428C1DD0EF8150E646ACDCF59F4 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a8622532-3f9f-49f5-ad52-fe2a10508dbc.roa Signing time: Mon 09 Jun 2025 19:10:12 +0000 ROA not before: Mon 09 Jun 2025 19:10:12 +0000 ROA not after: Mon 14 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.245.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:33:88:96:6d:64:b4:28:c1:dd:0e:f8:15:0e:64:6a:cd:cf:59:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 9 19:10:12 2025 GMT Not After : Jul 14 23:59:59 2025 GMT Subject: serialNumber=aad274ab118802c73e4957f5e7e0aaf4e4cec17a59f005f531d9243c6d6b29ab, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:6d:5b:ec:98:ba:a9:50:ca:a2:21:13:d4:42: 39:19:b6:c0:91:08:05:35:07:e8:39:a0:0a:78:d4: 78:a3:8e:8a:8b:49:87:65:86:8f:ee:bd:d8:62:c8: 77:fc:8c:77:76:c1:d8:85:44:9f:0a:a9:df:42:21: 95:94:77:1c:97:f1:58:4f:11:2c:21:2b:1c:29:a5: d4:e5:e1:00:e1:a0:0d:60:73:59:69:bd:2e:a7:bd: 40:e5:be:6b:73:52:ce:2f:58:c7:99:16:39:46:04: 7a:19:69:00:0b:e2:95:d8:99:0b:71:05:4a:be:61: ca:5d:b5:bd:49:60:fe:bd:ac:2f:e1:e1:a2:51:0b: 7b:d6:4a:c1:5d:5b:43:1b:7b:ea:20:3b:03:79:d0: 69:6a:e6:32:3d:b9:07:50:26:17:ce:e8:90:ed:36: 4a:18:f0:6b:02:4f:54:04:b9:af:2e:ca:ba:9b:85: 56:77:85:ab:20:5c:a3:75:26:99:a6:a4:d9:e7:d7: ac:4c:a6:92:ac:42:f0:37:fd:d8:40:ad:74:05:75: 0b:b1:85:97:5a:e4:7f:12:d0:ba:15:cc:ba:26:c6: d2:41:d1:b1:2e:07:7e:88:4f:c6:64:65:f4:26:ec: ce:a1:82:18:01:73:28:94:6d:84:6c:93:6b:6c:1d: 56:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:21:ED:A2:22:4F:7A:BE:7C:24:C4:2E:F0:B0:0B:F9:95:C8:1F:7A X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a8622532-3f9f-49f5-ad52-fe2a10508dbc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.245.0.0/17 Signature Algorithm: sha256WithRSAEncryption 17:cd:59:b6:11:4e:ab:21:b4:2a:f5:83:13:f0:86:9f:3d:d0: 9a:f1:a9:7a:0d:d2:59:10:2a:57:c4:e5:f1:87:3f:e3:5e:9c: ce:e9:91:97:fb:c6:83:40:80:f4:cb:d1:92:78:aa:05:86:a1: eb:93:2f:2f:7e:b9:9c:60:4c:5f:41:61:2d:90:72:8b:28:7a: 21:63:38:7a:c8:d9:b1:70:1b:fa:57:0c:29:01:b2:70:b8:98: d8:91:7c:6c:1f:9d:d4:bd:e4:e4:d2:76:65:f0:74:0b:25:94: 54:d2:c4:86:ae:56:44:19:29:c6:a9:77:2c:74:9c:60:f7:bd: 5c:b0:17:34:03:9e:46:60:3f:6d:93:d1:1b:5a:91:89:13:2e: 9c:df:9c:68:4b:dd:f4:d5:2f:a7:c9:a4:52:60:a1:d4:aa:5b: d3:a0:8d:f1:0f:e5:c1:51:1a:ba:cc:9c:b7:cd:d3:ba:a1:bb: 2a:a8:bb:00:33:90:5b:87:ec:b2:60:c0:37:db:1d:92:3e:16: 55:47:10:a6:45:93:7e:5e:bf:3f:7c:45:ca:b4:48:28:aa:71: 74:dd:6b:c2:8c:f5:08:09:ac:cd:9f:55:c3:ae:fe:dd:4d:ee: 82:39:f1:a7:fc:37:fe:4b:99:ba:da:81:23:b7:9d:21:e0:21: d3:8a:99:23 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKTOIlm1ktCjB3Q74FQ5kas3PWfQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjA5MTkxMDEyWhcNMjUwNzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYWQyNzRhYjExODgwMmM3M2U0OTU3ZjVlN2UwYWFmNGU0 Y2VjMTdhNTlmMDA1ZjUzMWQ5MjQzYzZkNmIyOWFiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/bVvsmLqpUMqiIRPUQjkZtsCRCAU1B+g5oAp41HijjoqL SYdlho/uvdhiyHf8jHd2wdiFRJ8Kqd9CIZWUdxyX8VhPESwhKxwppdTl4QDhoA1g c1lpvS6nvUDlvmtzUs4vWMeZFjlGBHoZaQAL4pXYmQtxBUq+Ycpdtb1JYP69rC/h 4aJRC3vWSsFdW0Mbe+ogOwN50Glq5jI9uQdQJhfO6JDtNkoY8GsCT1QEua8uyrqb hVZ3hasgXKN1JpmmpNnn16xMppKsQvA3/dhArXQFdQuxhZda5H8S0LoVzLomxtJB 0bEuB36IT8ZkZfQm7M6hghgBcyiUbYRsk2tsHVaXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFiHtoiJPer58JMQu8LAL+ZXIH3owHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2E4NjIyNTMyLTNmOWYtNDlmNS1hZDUyLWZlMmExMDUwOGRiYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc29QAwDQYJKoZIhvcNAQELBQADggEBABfNWbYRTqshtCr1gxPwhp890Jrx qXoN0lkQKlfE5fGHP+NenM7pkZf7xoNAgPTL0ZJ4qgWGoeuTLy9+uZxgTF9BYS2Q cosoeiFjOHrI2bFwG/pXDCkBsnC4mNiRfGwfndS95OTSdmXwdAsllFTSxIauVkQZ Kcapdyx0nGD3vVywFzQDnkZgP22T0RtakYkTLpzfnGhL3fTVL6fJpFJgodSqW9Og jfEP5cFRGrrMnLfN07qhuyqouwAzkFuH7LJgwDfbHZI+FlVHEKZFk35evz98Rcq0 SCiqcXTda8KM9QgJrM2fVcOu/t1N7oI58af8N/5LmbragSO3nSHgIdOKmSM= -----END CERTIFICATE-----Generated at Sat Jun 14 05:47:28 2025 by rpki-client