$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d5ff663c-6577-4c42-9b77-ee5cef5cc05a.roa File: d5ff663c-6577-4c42-9b77-ee5cef5cc05a.roa (raw, json) Hash identifier: kL2aILkP8887sgdLCWBox7erleTtkeeix9iNkPeRnSw= Subject key identifier: DE:7F:E8:E7:20:A4:E9:70:6F:0C:20:6A:58:02:27:DD:24:8F:13:36 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0995B664E19E2743A6F3C6CF7F5BC6B581D6989F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d5ff663c-6577-4c42-9b77-ee5cef5cc05a.roa Signing time: Fri 30 May 2025 00:51:07 +0000 ROA not before: Fri 30 May 2025 00:51:07 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 8987 IP address blocks: 18.96.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Jun 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:95:b6:64:e1:9e:27:43:a6:f3:c6:cf:7f:5b:c6:b5:81:d6:98:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 30 00:51:07 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=b1be026241f013b705304b942cee0c7199614e795d6c25aa63742a8f63cc9e83, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:ee:42:96:f6:15:1b:8b:a5:65:2f:4c:6f:dc: b4:62:aa:14:d3:f0:2b:02:88:38:06:25:77:b2:fc: 28:6a:33:a0:79:9b:b0:cb:d4:15:29:d4:7c:28:ec: 24:b6:d5:38:2f:4f:0b:f4:a0:74:dd:9c:e3:10:13: 0b:b7:bc:1a:93:7d:c7:f7:54:11:57:00:8e:8d:b2: 18:8c:76:55:24:0a:d0:d5:45:46:ca:7a:79:7e:0a: 89:cd:2a:6a:ea:62:75:af:49:da:91:62:d0:9a:ea: 62:a7:f5:71:a2:b1:1a:81:56:c0:00:35:58:b1:79: e0:0d:4f:83:0a:da:48:90:ff:0a:3c:6e:8a:ec:88: c0:4d:18:c4:17:5c:88:be:27:9a:a7:09:61:78:eb: 67:3f:b6:aa:55:b4:34:4f:14:0c:2c:71:33:3c:42: bf:79:4e:62:3d:ed:b0:c8:57:46:5b:31:f7:d9:40: d8:ce:11:f0:e4:1d:77:d7:f3:94:40:56:3e:fb:b5: d3:42:18:72:74:d3:0b:b5:20:cd:cd:5b:4c:b3:ba: 7d:fb:8a:f8:9f:c0:8a:28:13:7a:f9:12:08:14:2f: e7:8c:9e:f0:f3:b3:2a:6e:d8:8f:8c:c1:ce:ea:98: b0:d3:e6:b2:f5:22:89:de:00:e7:42:83:8f:4b:5f: 3d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:7F:E8:E7:20:A4:E9:70:6F:0C:20:6A:58:02:27:DD:24:8F:13:36 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d5ff663c-6577-4c42-9b77-ee5cef5cc05a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.96.0.0/14 Signature Algorithm: sha256WithRSAEncryption 58:2a:bf:e3:c6:d0:ae:97:c2:13:28:ba:48:b0:52:82:65:c7: c8:ae:dd:16:cb:51:65:f8:91:b5:5d:5a:30:15:5c:45:ed:a1: a1:ee:a6:7a:25:68:da:7e:43:1b:f5:81:69:c7:d2:06:2e:ff: 4b:46:22:08:f3:1e:81:9a:a8:5c:61:25:1c:8d:73:c3:1d:81: 7d:80:6a:36:23:39:92:3d:d9:b4:83:59:ec:2e:32:55:ec:e0: 8c:7c:fa:fe:c8:35:d9:f2:d4:bf:e8:2e:1f:e9:5f:8c:4f:e9: 7b:6d:1d:c7:1a:73:a2:c0:36:91:4a:46:79:40:62:b5:6b:bb: f0:a4:cf:bc:1e:dd:cc:ab:20:37:f4:80:68:2f:40:a2:21:05: 7e:58:88:36:fa:ff:5d:82:cb:8d:c6:0a:a2:c1:f5:9b:6d:97: 95:94:52:1d:0f:d7:0c:3a:42:8b:35:cd:37:d0:48:9a:02:bc: 30:9b:46:dc:71:ec:39:5f:53:d8:89:7e:c6:c4:4f:3a:23:95: d4:e3:c4:f1:e9:cc:7e:c5:04:96:85:dc:ac:37:c0:ba:91:62: 90:96:0c:ef:0d:9c:13:67:a3:6c:82:7d:c4:d3:71:c9:50:fc: 24:65:67:19:45:e7:59:c1:c1:a6:de:b8:a4:eb:47:05:b9:66: 74:ef:65:2a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCZW2ZOGeJ0Om88bPf1vGtYHWmJ8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTMwMDA1MTA3WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMWJlMDI2MjQxZjAxM2I3MDUzMDRiOTQyY2VlMGM3MTk5 NjE0ZTc5NWQ2YzI1YWE2Mzc0MmE4ZjYzY2M5ZTgzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDx7kKW9hUbi6VlL0xv3LRiqhTT8CsCiDgGJXey/ChqM6B5 m7DL1BUp1Hwo7CS21TgvTwv0oHTdnOMQEwu3vBqTfcf3VBFXAI6NshiMdlUkCtDV RUbKenl+ConNKmrqYnWvSdqRYtCa6mKn9XGisRqBVsAANVixeeANT4MK2kiQ/wo8 borsiMBNGMQXXIi+J5qnCWF462c/tqpVtDRPFAwscTM8Qr95TmI97bDIV0ZbMffZ QNjOEfDkHXfX85RAVj77tdNCGHJ00wu1IM3NW0yzun37ivifwIooE3r5EggUL+eM nvDzsypu2I+Mwc7qmLDT5rL1IoneAOdCg49LXz3PAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU3n/o5yCk6XBvDCBqWAIn3SSPEzYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2Q1ZmY2NjNjLTY1NzctNGM0Mi05Yjc3LWVlNWNlZjVjYzA1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwISYDANBgkqhkiG9w0BAQsFAAOCAQEAWCq/48bQrpfCEyi6SLBSgmXHyK7d FstRZfiRtV1aMBVcRe2hoe6meiVo2n5DG/WBacfSBi7/S0YiCPMegZqoXGElHI1z wx2BfYBqNiM5kj3ZtINZ7C4yVezgjHz6/sg12fLUv+guH+lfjE/pe20dxxpzosA2 kUpGeUBitWu78KTPvB7dzKsgN/SAaC9AoiEFfliINvr/XYLLjcYKosH1m22XlZRS HQ/XDDpCizXNN9BImgK8MJtG3HHsOV9T2Il+xsRPOiOV1OPE8enMfsUEloXcrDfA upFikJYM7w2cE2ejbIJ9xNNxyVD8JGVnGUXnWcHBpt64pOtHBblmdO9lKg== -----END CERTIFICATE-----Generated at Sun Jun 15 13:42:59 2025 by rpki-client