$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bafbe347-7d54-4adc-9f60-0bb4eee46341.roa File: bafbe347-7d54-4adc-9f60-0bb4eee46341.roa (raw, json) Hash identifier: vjpTrN8johlr8bCgfljChwZcN5G1jKQHDh1nwUr+Tj0= Subject key identifier: A8:85:5F:AB:23:EA:49:76:A1:CB:09:BD:C4:A5:2C:3A:85:B9:82:64 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 34461EE27EACA10D626D606BA6AD598A633D30B4 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bafbe347-7d54-4adc-9f60-0bb4eee46341.roa Signing time: Sat 24 May 2025 00:20:14 +0000 ROA not before: Sat 24 May 2025 00:20:14 +0000 ROA not after: Sat 28 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 13.217.78.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Jun 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:46:1e:e2:7e:ac:a1:0d:62:6d:60:6b:a6:ad:59:8a:63:3d:30:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 24 00:20:14 2025 GMT Not After : Jun 28 23:59:59 2025 GMT Subject: serialNumber=bfe486a8661804767026c55631b669b7db5f2b810036e0705d9cb2cf8dc8ed4a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a6:77:45:47:b2:54:c6:07:d1:35:01:34:1b: 0c:2e:04:90:24:10:34:03:79:15:f9:84:78:06:a3: 15:ab:d0:59:68:14:4a:e8:91:00:ac:ea:5b:b6:56: 76:94:97:f3:18:3f:87:37:e7:23:a8:60:6e:1f:62: 04:79:98:40:7d:33:72:8d:c0:02:ed:2b:90:95:1d: c3:5c:06:5d:d6:8c:3f:3c:20:c2:6e:05:a6:2f:84: a6:39:ab:e6:c9:c0:c3:22:35:a4:00:b5:35:fd:ac: 64:c9:b3:e0:0f:a5:3f:d3:9d:b6:ce:1e:00:1a:7a: 58:78:e2:7a:17:2e:14:ce:23:f5:0a:94:2b:22:d1: 03:7c:6f:11:75:b4:b8:de:0b:6a:4e:3c:38:d4:81: 6c:b3:d6:62:f9:67:6c:ab:a2:e0:9d:a3:81:87:f6: 24:c2:f4:31:cb:41:11:11:be:b2:ab:fd:92:10:10: e2:3a:ea:07:69:85:07:de:ba:3d:04:5f:be:1f:53: c0:ee:82:c4:e3:cc:35:3a:f1:11:7c:0a:82:6c:90: 6c:bb:fb:b1:f2:84:2d:a7:dc:48:95:ea:a3:f0:ad: d5:80:7b:05:a9:0a:03:e3:33:57:28:3a:9d:d9:6a: 9e:85:f1:b2:16:ce:ed:da:1f:08:bd:e3:fb:47:5a: 86:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:85:5F:AB:23:EA:49:76:A1:CB:09:BD:C4:A5:2C:3A:85:B9:82:64 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bafbe347-7d54-4adc-9f60-0bb4eee46341.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.217.78.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:18:72:7f:11:2c:88:b6:b5:16:5a:77:c3:46:00:c7:2c:cc: e0:a0:f5:3b:d6:47:5b:b9:55:06:ea:7e:e0:55:32:f8:5b:40: 5b:90:ed:3f:2d:ea:7f:b8:96:3e:5d:ef:95:22:36:df:d1:60: b5:47:1a:e6:f0:2d:1e:16:b6:e3:60:c6:32:08:bb:a0:a6:e3: 0a:50:39:b5:f8:17:b8:55:7c:bc:7c:2c:97:46:06:09:ba:6e: c9:92:27:69:91:ac:9a:6f:de:c4:28:27:4b:7f:2f:8e:ea:ff: 50:a8:c5:ab:c0:4c:0e:cd:a7:8b:7a:34:43:d0:56:8d:77:9f: d9:c5:32:ad:fc:2d:7c:eb:5b:90:02:e3:c2:26:84:50:9f:f5: 94:ce:ea:64:b3:7e:2e:3e:97:39:24:ae:86:80:8d:0b:de:72: e3:eb:dc:e1:05:b1:bb:42:4b:7f:65:89:bf:76:0c:ce:cc:04: 11:0d:4e:54:64:6c:fd:34:ef:86:1e:8b:d5:39:2d:c7:db:de: 72:35:55:50:62:b8:ad:33:86:0c:79:31:1a:d4:1a:2e:ca:74: d9:c8:7c:00:f0:11:c8:a2:45:a9:2b:b0:c1:f3:1e:9e:1f:24: 27:77:77:8c:8b:e1:54:67:06:00:af:4e:34:09:d3:c3:4f:38: 26:8a:d2:ed -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNEYe4n6soQ1ibWBrpq1ZimM9MLQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTI0MDAyMDE0WhcNMjUwNjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZmU0ODZhODY2MTgwNDc2NzAyNmM1NTYzMWI2NjliN2Ri NWYyYjgxMDAzNmUwNzA1ZDljYjJjZjhkYzhlZDRhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCypndFR7JUxgfRNQE0GwwuBJAkEDQDeRX5hHgGoxWr0Flo FErokQCs6lu2VnaUl/MYP4c35yOoYG4fYgR5mEB9M3KNwALtK5CVHcNcBl3WjD88 IMJuBaYvhKY5q+bJwMMiNaQAtTX9rGTJs+APpT/TnbbOHgAaelh44noXLhTOI/UK lCsi0QN8bxF1tLjeC2pOPDjUgWyz1mL5Z2yrouCdo4GH9iTC9DHLQRERvrKr/ZIQ EOI66gdphQfeuj0EX74fU8DugsTjzDU68RF8CoJskGy7+7HyhC2n3EiV6qPwrdWA ewWpCgPjM1coOp3Zap6F8bIWzu3aHwi94/tHWoZnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqIVfqyPqSXahywm9xKUsOoW5gmQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2JhZmJlMzQ3LTdkNTQtNGFkYy05ZjYwLTBiYjRlZWU0NjM0MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEN2U4wDQYJKoZIhvcNAQELBQADggEBAH8Ycn8RLIi2tRZad8NGAMcszOCg 9TvWR1u5VQbqfuBVMvhbQFuQ7T8t6n+4lj5d75UiNt/RYLVHGubwLR4WtuNgxjII u6Cm4wpQObX4F7hVfLx8LJdGBgm6bsmSJ2mRrJpv3sQoJ0t/L47q/1CoxavATA7N p4t6NEPQVo13n9nFMq38LXzrW5AC48ImhFCf9ZTO6mSzfi4+lzkkroaAjQvecuPr 3OEFsbtCS39lib92DM7MBBENTlRkbP0074Yei9U5Lcfb3nI1VVBiuK0zhgx5MRrU Gi7KdNnIfADwEciiRakrsMHzHp4fJCd3d4yL4VRnBgCvTjQJ08NPOCaK0u0= -----END CERTIFICATE-----Generated at Sat Jun 14 23:45:53 2025 by rpki-client