$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d2e8f6f4-0d5d-43c4-8493-ca93c43a429e.roa File: d2e8f6f4-0d5d-43c4-8493-ca93c43a429e.roa (raw, json) Hash identifier: lCVpEcQWj2mLbGAgmou/yvrJuj2D4jh65lXMx0ezrlQ= Subject key identifier: 20:D4:8F:95:1D:57:B4:66:15:3E:F7:61:7D:FC:CA:51:89:81:A8:F6 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4DEA50D4058333F59D85981948FE956FCC3F4C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d2e8f6f4-0d5d-43c4-8493-ca93c43a429e.roa Signing time: Tue 20 May 2025 17:00:09 +0000 ROA not before: Tue 20 May 2025 17:00:09 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.71.68.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Jun 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:ea:50:d4:05:83:33:f5:9d:85:98:19:48:fe:95:6f:cc:3f:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 20 17:00:09 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=d2125e4c1dba72f100f2e45748dac6a28bb1a648bc951a356655147849ec824d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:5a:49:b1:59:d0:48:2d:ae:bc:9f:ff:95:04: 2b:e7:85:1a:c6:de:0d:3c:35:e9:d4:43:eb:29:09: 2c:58:3d:85:35:79:2c:af:ee:3c:52:10:cb:0a:52: 06:d0:a0:a4:d0:1e:09:8d:89:19:00:95:91:fa:19: 1a:6f:34:35:d6:f2:75:8a:cc:89:bf:e5:5f:28:9b: 83:6e:00:e0:53:fb:12:73:f6:05:b1:36:d4:3f:60: f0:43:14:5e:b7:40:37:c4:99:9d:fd:84:10:3f:77: 12:4a:3b:3d:22:d6:ed:a5:90:2c:c3:de:e6:78:c9: c2:38:75:67:15:fe:0a:28:98:17:7d:85:9f:b5:9b: 71:4a:ae:79:e7:61:3f:39:4f:1a:36:ad:a6:06:5f: 3e:12:75:de:0b:ba:70:bc:71:04:9f:20:3c:1d:5f: 55:df:8f:4f:3f:c2:44:12:89:d2:71:af:0d:6c:73: 0d:83:2c:7a:ab:9f:36:62:ad:e9:2a:e6:38:d9:1b: b9:47:22:6d:46:07:85:f5:c6:28:94:2c:42:fa:8f: ec:bc:47:e1:a9:ae:da:ec:08:67:bb:c0:e9:fa:30: b1:26:e9:f1:ea:5c:ab:62:ac:3f:a2:77:37:f2:8d: 97:93:39:ff:97:bd:12:81:d1:56:f0:91:12:d5:a8: 78:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:D4:8F:95:1D:57:B4:66:15:3E:F7:61:7D:FC:CA:51:89:81:A8:F6 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d2e8f6f4-0d5d-43c4-8493-ca93c43a429e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.71.68.0/22 Signature Algorithm: sha256WithRSAEncryption 17:b7:31:ff:35:8e:8b:a6:74:39:07:7c:40:7e:9c:02:65:8b: 71:03:3c:92:b8:e9:f9:f4:d8:f8:9a:4d:11:b4:c7:8f:84:3b: cd:e2:dd:92:b4:66:f1:b5:5f:cc:00:01:85:9c:e3:7f:5e:65: bd:c3:c9:1c:94:3e:9b:c9:90:1e:69:e7:84:fa:3c:ff:43:72: c4:87:82:13:48:78:cc:55:be:21:bb:60:22:34:52:22:42:0b: a7:c5:17:50:93:fa:19:ff:e7:81:ef:64:e9:6d:a4:f1:e0:2b: 65:4f:98:68:ba:51:91:0d:c8:e3:10:bc:66:89:e4:12:06:53: 8f:e3:af:5c:12:13:4a:f8:3c:1b:54:9f:ab:68:1e:45:07:43: 12:85:66:5a:f4:13:0c:e1:6d:40:12:15:a4:f3:63:d1:20:ff: 9e:99:d5:f0:26:3d:dc:18:f3:11:44:ce:b1:7f:73:a9:b4:e3: 16:70:fc:f1:e5:f1:f0:1e:02:16:81:8b:45:6d:b9:73:e3:56: 75:85:01:48:ab:80:4d:c8:7e:bd:02:b2:ce:4e:ff:6e:76:15: 29:a4:44:e8:d1:36:e5:ed:86:a8:3a:c3:53:af:4c:ef:d1:cc: 3e:49:6c:1b:90:97:6d:f2:64:96:8f:f3:f5:db:16:c1:f1:7e: 04:91:78:84 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITTepQ1AWDM/WdhZgZSP6Vb8w/TDANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNTA1MjAxNzAwMDlaFw0yNTA2MjQyMzU5NTla MHoxSTBHBgNVBAUTQGQyMTI1ZTRjMWRiYTcyZjEwMGYyZTQ1NzQ4ZGFjNmEyOGJi MWE2NDhiYzk1MWEzNTY2NTUxNDc4NDllYzgyNGQxLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAI9aSbFZ0Egtrryf/5UEK+eFGsbeDTw16dRD6ykJLFg9hTV5 LK/uPFIQywpSBtCgpNAeCY2JGQCVkfoZGm80NdbydYrMib/lXyibg24A4FP7EnP2 BbE21D9g8EMUXrdAN8SZnf2EED93Eko7PSLW7aWQLMPe5njJwjh1ZxX+CiiYF32F n7WbcUqueedhPzlPGjatpgZfPhJ13gu6cLxxBJ8gPB1fVd+PTz/CRBKJ0nGvDWxz DYMsequfNmKt6SrmONkbuUcibUYHhfXGKJQsQvqP7LxH4amu2uwIZ7vA6fowsSbp 8epcq2KsP6J3N/KNl5M5/5e9EoHRVvCREtWoeA8CAwEAAaOCArEwggKtMB0GA1Ud DgQWBBQg1I+VHVe0ZhU+92F9/MpRiYGo9jAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvZDJlOGY2ZjQtMGQ1ZC00M2M0LTg0OTMtY2E5M2M0M2E0MjllLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAiNHRDANBgkqhkiG9w0BAQsFAAOCAQEAF7cx/zWOi6Z0OQd8QH6cAmWLcQM8 krjp+fTY+JpNEbTHj4Q7zeLdkrRm8bVfzAABhZzjf15lvcPJHJQ+m8mQHmnnhPo8 /0NyxIeCE0h4zFW+IbtgIjRSIkILp8UXUJP6Gf/nge9k6W2k8eArZU+YaLpRkQ3I 4xC8ZonkEgZTj+OvXBITSvg8G1Sfq2geRQdDEoVmWvQTDOFtQBIVpPNj0SD/npnV 8CY93BjzEUTOsX9zqbTjFnD88eXx8B4CFoGLRW25c+NWdYUBSKuATch+vQKyzk7/ bnYVKaRE6NE25e2GqDrDU69M79HMPklsG5CXbfJklo/z9dsWwfF+BJF4hA== -----END CERTIFICATE-----Generated at Sat Jun 14 23:44:12 2025 by rpki-client