$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/cd0b7de5-603e-4b95-890f-8f7da1ece5f6.roa File: cd0b7de5-603e-4b95-890f-8f7da1ece5f6.roa (raw, json) Hash identifier: xjte0/r3QX2Jnt54SJ3+MV4h7hUg+tRjI3rUy1+bPrc= Subject key identifier: F5:69:E9:A7:51:FC:1A:97:A5:75:CC:89:12:C6:50:08:0F:1A:55:55 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3AA9DDE4A24099F39B4F99988298EBB4B5C125C5 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/cd0b7de5-603e-4b95-890f-8f7da1ece5f6.roa Signing time: Mon 09 Jun 2025 19:00:04 +0000 ROA not before: Mon 09 Jun 2025 19:00:04 +0000 ROA not after: Mon 14 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.251.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:a9:dd:e4:a2:40:99:f3:9b:4f:99:98:82:98:eb:b4:b5:c1:25:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 9 19:00:04 2025 GMT Not After : Jul 14 23:59:59 2025 GMT Subject: serialNumber=4eaa5edf4e4e25e0157427daa235ca07a0fdf670c6a844853be603085a853522, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:03:30:b4:b3:ef:17:35:14:6a:c8:cf:07:87: 39:db:98:ac:e4:db:f6:1c:77:9d:02:17:7c:3f:e8: 9b:8a:aa:8e:7b:ee:b4:ff:80:39:1b:ce:29:63:0f: 74:bf:a0:f7:3c:22:45:e3:e9:7e:d1:3d:d6:68:57: c6:fa:3d:28:b2:f2:be:f4:71:77:2a:a0:6d:3e:0d: 09:36:20:89:1a:92:92:6b:15:22:f5:d4:27:90:a8: ef:d3:1e:2e:67:42:8c:e8:db:e2:d3:30:b8:09:72: 23:27:f6:0d:72:49:fc:9b:91:5b:a9:b1:71:3c:4d: 32:65:e0:01:af:a1:83:eb:4d:f9:2d:0b:34:57:ac: 08:6e:b9:e5:82:ff:bc:9d:b5:cc:3f:cf:f8:29:4b: 67:9a:27:ce:c8:e8:1d:12:19:2b:6d:5f:a2:fd:21: d6:9d:03:fe:9b:7e:5d:c2:cb:bc:f6:84:be:bb:a5: 47:7b:01:59:b9:8e:95:ca:6f:49:e1:3d:8b:78:15: 4e:f1:f0:94:59:b0:b3:62:f8:7b:42:46:55:46:e5: 3c:67:3a:52:51:ef:1f:7b:2a:cb:74:d4:82:81:69: e4:4b:30:62:34:30:15:45:9a:e8:41:5c:b1:b3:f5: be:7e:27:5b:19:fe:1a:66:ac:d5:fe:c5:73:be:88: 9c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:69:E9:A7:51:FC:1A:97:A5:75:CC:89:12:C6:50:08:0F:1A:55:55 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/cd0b7de5-603e-4b95-890f-8f7da1ece5f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.251.160.0/19 Signature Algorithm: sha256WithRSAEncryption 5a:ac:8e:3c:23:2e:6c:6b:f6:94:eb:6e:0e:35:72:2b:15:d0: 3d:c0:af:4f:78:86:22:66:ff:64:42:fa:12:f2:88:9c:a3:4f: 31:5e:18:c7:81:b8:bb:2c:4b:9f:99:80:1e:4f:ea:f7:65:06: 70:82:e8:bc:b7:9e:e9:6a:05:1c:73:ab:ca:5b:45:ab:73:09: 49:7e:a2:23:a8:d3:74:85:fb:67:e0:ea:12:99:55:e6:be:0a: 6d:08:24:14:2b:59:20:bf:d1:ad:14:e4:c8:75:8c:1f:68:c6: ba:e4:46:57:b7:04:45:16:17:ff:79:10:93:39:74:34:c0:0f: 70:77:0c:cc:6f:ff:55:2b:9f:71:93:07:60:0b:a7:77:a3:80: 57:94:6a:52:02:b8:c9:5e:44:80:29:d4:e6:fc:3b:ca:8f:c0: 1f:0a:7b:a4:93:e3:18:4b:0e:27:ce:6a:cd:f6:dd:db:40:30: 5d:32:eb:40:b5:40:f1:8d:68:d0:94:34:b5:7c:8d:2c:9a:91: c0:16:0f:0c:29:92:f0:04:93:7d:d8:cb:89:61:98:02:13:aa: 70:5b:31:9b:6b:51:30:4b:92:7b:9d:19:2b:30:f7:e0:ee:43: 53:86:31:fc:62:a6:8c:8e:f6:9c:bb:41:cf:fa:6e:1e:05:75: 10:74:84:96 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOqnd5KJAmfObT5mYgpjrtLXBJcUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjA5MTkwMDA0WhcNMjUwNzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZWFhNWVkZjRlNGUyNWUwMTU3NDI3ZGFhMjM1Y2EwN2Ew ZmRmNjcwYzZhODQ0ODUzYmU2MDMwODVhODUzNTIyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDeAzC0s+8XNRRqyM8HhznbmKzk2/Ycd50CF3w/6JuKqo57 7rT/gDkbziljD3S/oPc8IkXj6X7RPdZoV8b6PSiy8r70cXcqoG0+DQk2IIkakpJr FSL11CeQqO/THi5nQozo2+LTMLgJciMn9g1ySfybkVupsXE8TTJl4AGvoYPrTfkt CzRXrAhuueWC/7ydtcw/z/gpS2eaJ87I6B0SGSttX6L9IdadA/6bfl3Cy7z2hL67 pUd7AVm5jpXKb0nhPYt4FU7x8JRZsLNi+HtCRlVG5TxnOlJR7x97Kst01IKBaeRL MGI0MBVFmuhBXLGz9b5+J1sZ/hpmrNX+xXO+iJyPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9Wnpp1H8GpeldcyJEsZQCA8aVVUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2NkMGI3ZGU1LTYwM2UtNGI5NS04OTBmLThmN2RhMWVjZTVmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU2+6AwDQYJKoZIhvcNAQELBQADggEBAFqsjjwjLmxr9pTrbg41cisV0D3A r094hiJm/2RC+hLyiJyjTzFeGMeBuLssS5+ZgB5P6vdlBnCC6Ly3nulqBRxzq8pb RatzCUl+oiOo03SF+2fg6hKZVea+Cm0IJBQrWSC/0a0U5Mh1jB9oxrrkRle3BEUW F/95EJM5dDTAD3B3DMxv/1Urn3GTB2ALp3ejgFeUalICuMleRIAp1Ob8O8qPwB8K e6ST4xhLDifOas323dtAMF0y60C1QPGNaNCUNLV8jSyakcAWDwwpkvAEk33Yy4lh mAITqnBbMZtrUTBLknudGSsw9+DuQ1OGMfxipoyO9py7Qc/6bh4FdRB0hJY= -----END CERTIFICATE-----Generated at Sat Jun 14 05:43:17 2025 by rpki-client