$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b3b010d5-ba92-4026-9ae8-0dccd2f5619b.roa File: b3b010d5-ba92-4026-9ae8-0dccd2f5619b.roa (raw, json) Hash identifier: 6HSOD/oeu0uI8iLSM4Kv8R84UgarAxQblBgzX3q+rJ0= Subject key identifier: D9:09:60:64:6E:DB:3B:81:EB:A7:07:E1:A9:E4:C0:8B:9B:EF:5F:FB Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 58CA5C82CC65F61C5D4DDB526A77F59014F1C3B7 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b3b010d5-ba92-4026-9ae8-0dccd2f5619b.roa Signing time: Mon 09 Jun 2025 19:11:07 +0000 ROA not before: Mon 09 Jun 2025 19:11:07 +0000 ROA not after: Mon 14 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.241.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:ca:5c:82:cc:65:f6:1c:5d:4d:db:52:6a:77:f5:90:14:f1:c3:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 9 19:11:07 2025 GMT Not After : Jul 14 23:59:59 2025 GMT Subject: serialNumber=776689e9f38a63eb86e3e958d7637cd2a7c2da7ef17f8970f042d20e0547de3f, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a1:d3:d5:57:ca:da:ae:99:00:f1:5a:c1:20: 58:82:23:ee:8f:2a:a4:ad:71:36:62:73:c6:e6:9f: bf:64:11:3f:d0:00:0e:6b:ed:13:3e:f5:98:ae:08: 10:40:25:6e:c6:01:35:b5:ea:ce:14:19:99:05:aa: 1d:5c:72:78:82:81:2b:2d:3e:f2:74:d0:58:dc:b2: ac:c2:bb:5e:a8:6d:cb:28:1a:ab:95:29:d7:51:3d: 04:19:09:f7:47:d7:51:a9:ee:94:a9:8f:ff:91:56: ea:2d:79:ca:71:c5:f2:c1:cd:f9:2c:59:5c:97:bb: 24:c3:db:df:b7:91:4d:0f:13:ee:62:7b:10:e0:2b: 57:46:5a:26:c3:e1:3c:5c:20:9c:14:db:af:c9:55: 39:4c:b7:8b:32:63:96:cb:01:fb:60:42:d4:23:d1: bd:b4:c2:ae:3a:8e:3a:0c:0c:65:2d:78:69:38:b7: 86:50:25:7a:29:af:36:16:8d:7a:0d:fa:de:f9:11: 08:2d:d4:9e:b4:7a:b6:47:a4:fa:70:c5:7c:76:da: 2c:a9:93:8f:90:de:73:a3:99:31:40:49:ff:ef:8e: 6a:d0:37:08:d4:f5:9a:8d:b7:59:28:33:6e:1a:98: 37:97:f4:6b:00:14:6a:32:7f:02:d2:35:83:ed:c0: b9:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:09:60:64:6E:DB:3B:81:EB:A7:07:E1:A9:E4:C0:8B:9B:EF:5F:FB X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b3b010d5-ba92-4026-9ae8-0dccd2f5619b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.241.64.0/18 Signature Algorithm: sha256WithRSAEncryption 68:88:47:18:a9:a4:31:6f:61:93:56:72:1a:a1:e8:98:3e:ca: 80:57:f5:0c:39:3d:9e:ec:c3:88:cd:04:03:6b:b9:c3:bc:43: ff:1c:06:25:f0:82:a4:e8:ad:96:75:96:c7:84:e0:aa:fd:0a: 14:df:6a:f1:72:1c:cc:23:66:3a:94:ff:ae:9c:33:db:c0:f1: 43:e9:9c:5b:62:82:06:80:8e:96:15:ad:5a:4b:61:40:b8:7f: 50:70:eb:f7:86:9b:ca:d8:02:34:79:a0:1a:76:0b:88:bc:08: ca:78:0c:8b:85:a7:d8:4f:5d:9e:7f:a0:6b:fe:66:a4:e8:1b: 85:3c:5e:3e:c9:63:57:56:46:77:10:87:7b:74:69:4c:71:4c: ae:af:20:11:07:df:1b:32:a3:da:65:a1:77:16:6c:df:4a:f5: 82:63:9f:2b:6d:b8:cc:b5:6f:b4:94:50:a5:9e:92:75:f1:6c: 5e:5b:c1:5c:b6:4e:cd:2f:59:36:c4:c6:fc:75:76:9a:2c:54: 64:93:83:c6:cb:61:76:46:2a:54:42:68:fe:6e:15:07:f1:f4: c3:82:62:67:af:b5:19:9b:92:0e:7b:f7:3c:c6:69:c4:76:25: e3:38:27:a6:e6:b0:c1:5c:4e:d2:95:8d:b3:57:ff:49:0b:89: 58:2d:5f:20 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWMpcgsxl9hxdTdtSanf1kBTxw7cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjA5MTkxMTA3WhcNMjUwNzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NzY2ODllOWYzOGE2M2ViODZlM2U5NThkNzYzN2NkMmE3 YzJkYTdlZjE3Zjg5NzBmMDQyZDIwZTA1NDdkZTNmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOodPVV8rarpkA8VrBIFiCI+6PKqStcTZic8bmn79kET/Q AA5r7RM+9ZiuCBBAJW7GATW16s4UGZkFqh1ccniCgSstPvJ00FjcsqzCu16obcso GquVKddRPQQZCfdH11Gp7pSpj/+RVuotecpxxfLBzfksWVyXuyTD29+3kU0PE+5i exDgK1dGWibD4TxcIJwU26/JVTlMt4syY5bLAftgQtQj0b20wq46jjoMDGUteGk4 t4ZQJXoprzYWjXoN+t75EQgt1J60erZHpPpwxXx22iypk4+Q3nOjmTFASf/vjmrQ NwjU9ZqNt1koM24amDeX9GsAFGoyfwLSNYPtwLmfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2QlgZG7bO4HrpwfhqeTAi5vvX/swHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2IzYjAxMGQ1LWJhOTItNDAyNi05YWU4LTBkY2NkMmY1NjE5Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY28UAwDQYJKoZIhvcNAQELBQADggEBAGiIRxippDFvYZNWchqh6Jg+yoBX 9Qw5PZ7sw4jNBANrucO8Q/8cBiXwgqTorZZ1lseE4Kr9ChTfavFyHMwjZjqU/66c M9vA8UPpnFtiggaAjpYVrVpLYUC4f1Bw6/eGm8rYAjR5oBp2C4i8CMp4DIuFp9hP XZ5/oGv+ZqToG4U8Xj7JY1dWRncQh3t0aUxxTK6vIBEH3xsyo9ploXcWbN9K9YJj nyttuMy1b7SUUKWeknXxbF5bwVy2Ts0vWTbExvx1dposVGSTg8bLYXZGKlRCaP5u FQfx9MOCYmevtRmbkg579zzGacR2JeM4J6bmsMFcTtKVjbNX/0kLiVgtXyA= -----END CERTIFICATE-----Generated at Sat Jun 14 06:00:05 2025 by rpki-client