$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c3e2fc2c-0216-4669-8fc2-461eee322916.roa File: c3e2fc2c-0216-4669-8fc2-461eee322916.roa (raw, json) Hash identifier: HsgrmTpH/Ec1LYvwRK/ARNbdwQTtLSaDPQoKIKeYxOI= Subject key identifier: 9B:59:B0:7F:36:51:18:4E:19:CE:FA:5D:45:8D:66:CE:71:6C:40:12 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1B85364C2735FA9BE087A079296E1A8D60F07C32 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c3e2fc2c-0216-4669-8fc2-461eee322916.roa Signing time: Tue 03 Jun 2025 16:11:31 +0000 ROA not before: Tue 03 Jun 2025 16:11:31 +0000 ROA not after: Tue 08 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.214.56.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:85:36:4c:27:35:fa:9b:e0:87:a0:79:29:6e:1a:8d:60:f0:7c:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 3 16:11:31 2025 GMT Not After : Jul 8 23:59:59 2025 GMT Subject: serialNumber=9a3ab9667fba349e0206b61e44b2da9dbfc55d13c515f79d738633216f79942c, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:3c:33:15:8d:70:aa:db:72:08:78:87:d8:81: e9:12:5f:50:53:dd:54:ee:c1:ff:0e:8d:28:23:d7: 42:c0:d8:b1:89:b8:e4:64:07:b8:2f:24:04:61:5a: 5c:1c:5c:0b:10:fc:30:8c:0a:59:e6:41:62:34:f8: b5:8a:ae:fd:ff:7e:be:44:fe:95:84:de:72:12:4b: 34:04:5d:9c:3c:1e:d6:fe:50:ad:4f:6b:c8:2f:b0: d9:f2:c3:a6:cf:33:43:b3:03:14:0e:0d:85:d9:79: 6b:77:a2:5d:02:46:7d:41:74:53:23:b0:45:46:55: 17:91:ee:3c:4b:82:dd:13:c8:d2:44:e5:b2:a0:f7: 12:9f:43:13:cf:78:c6:e8:25:c0:7a:1f:51:13:95: 4c:c3:d9:7d:9d:b2:ad:4a:7d:b0:57:f7:13:d7:e6: 71:33:6b:87:0d:ee:b1:8a:70:ae:47:02:af:bb:48: ec:de:11:63:26:ef:df:ca:4c:2c:16:85:cc:1a:5c: de:bd:db:ae:c8:75:01:54:9e:85:18:9b:36:89:af: 67:3b:a4:65:56:22:40:f3:47:41:ca:ae:bf:a4:d5: 55:bd:bd:ec:e9:a4:55:b0:8b:2a:90:cc:64:5b:33: 7e:6e:6c:cc:fc:7d:d0:35:d4:be:d1:1c:84:b0:9c: e2:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:59:B0:7F:36:51:18:4E:19:CE:FA:5D:45:8D:66:CE:71:6C:40:12 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c3e2fc2c-0216-4669-8fc2-461eee322916.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.214.56.0/21 Signature Algorithm: sha256WithRSAEncryption 31:8a:33:fd:05:fd:ef:3e:e5:04:52:8b:ec:e2:86:26:fc:a6: 3f:9d:4f:e1:69:6a:84:47:d3:e5:c9:c5:06:49:f2:cc:d3:ca: d0:9e:d5:9f:77:85:76:76:7e:3e:78:c0:3b:31:27:d7:5f:95: f7:ec:09:3a:66:fa:da:fb:de:a3:09:d3:37:6c:96:75:64:06: 5c:98:be:47:d6:94:a6:0e:3a:18:ae:36:fe:36:b4:12:5f:15: 17:e0:a1:f8:bd:01:33:ec:dd:5d:dc:1c:3c:2c:38:12:bb:43: 38:cc:a8:f5:2c:08:5c:01:14:ea:24:c8:ca:e6:b1:e1:85:d2: 07:f6:dd:e1:5a:1e:4f:d7:f6:4b:72:cb:e6:63:52:15:1d:1d: be:33:67:2f:ba:8d:09:b2:89:8f:0e:26:d2:ad:e6:68:d9:60: a9:cb:22:e1:47:b5:3b:10:b7:44:90:f5:6e:d2:fd:fd:f5:ef: 34:30:13:ef:1a:77:75:e3:c8:68:d9:bc:29:57:2d:78:9a:99: 15:ed:a2:5b:51:5c:99:e1:a9:42:fb:d3:13:2b:09:70:4e:56: 6e:be:cc:73:66:00:de:90:bd:60:05:78:50:3c:c0:b4:60:cd: 65:3f:74:c2:4f:89:b4:2c:0e:0c:de:f1:99:9f:e7:dd:4e:ca: 1e:56:5e:64 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUG4U2TCc1+pvgh6B5KW4ajWDwfDIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjAzMTYxMTMxWhcNMjUwNzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YTNhYjk2NjdmYmEzNDllMDIwNmI2MWU0NGIyZGE5ZGJm YzU1ZDEzYzUxNWY3OWQ3Mzg2MzMyMTZmNzk5NDJjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvPDMVjXCq23IIeIfYgekSX1BT3VTuwf8OjSgj10LA2LGJ uORkB7gvJARhWlwcXAsQ/DCMClnmQWI0+LWKrv3/fr5E/pWE3nISSzQEXZw8Htb+ UK1Pa8gvsNnyw6bPM0OzAxQODYXZeWt3ol0CRn1BdFMjsEVGVReR7jxLgt0TyNJE 5bKg9xKfQxPPeMboJcB6H1ETlUzD2X2dsq1KfbBX9xPX5nEza4cN7rGKcK5HAq+7 SOzeEWMm79/KTCwWhcwaXN69267IdQFUnoUYmzaJr2c7pGVWIkDzR0HKrr+k1VW9 vezppFWwiyqQzGRbM35ubMz8fdA11L7RHISwnOI7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUm1mwfzZRGE4ZzvpdRY1mznFsQBIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2MzZTJmYzJjLTAyMTYtNDY2OS04ZmMyLTQ2MWVlZTMyMjkxNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM21jgwDQYJKoZIhvcNAQELBQADggEBADGKM/0F/e8+5QRSi+zihib8pj+d T+FpaoRH0+XJxQZJ8szTytCe1Z93hXZ2fj54wDsxJ9dflffsCTpm+tr73qMJ0zds lnVkBlyYvkfWlKYOOhiuNv42tBJfFRfgofi9ATPs3V3cHDwsOBK7QzjMqPUsCFwB FOokyMrmseGF0gf23eFaHk/X9ktyy+ZjUhUdHb4zZy+6jQmyiY8OJtKt5mjZYKnL IuFHtTsQt0SQ9W7S/f317zQwE+8ad3XjyGjZvClXLXiamRXtoltRXJnhqUL70xMr CXBOVm6+zHNmAN6QvWAFeFA8wLRgzWU/dMJPibQsDgze8Zmf591Oyh5WXmQ= -----END CERTIFICATE-----Generated at Sat Jun 14 06:10:31 2025 by rpki-client