$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/da582ca6-2c06-4b1e-8b99-3e314735161b.roa File: da582ca6-2c06-4b1e-8b99-3e314735161b.roa (raw, json) Hash identifier: OwtumoJNqkL04BYDl5vi4pflbVMkAi7717ZK9iAjWek= Subject key identifier: A2:91:30:32:80:E4:15:04:46:A4:6B:DC:45:B3:34:24:00:A2:12:5E Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 754A4172ED7A26CC6111BEFC45E3CF24202E8467 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/da582ca6-2c06-4b1e-8b99-3e314735161b.roa Signing time: Tue 03 Jun 2025 15:30:28 +0000 ROA not before: Tue 03 Jun 2025 15:30:28 +0000 ROA not after: Tue 08 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 52.20.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Jun 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:4a:41:72:ed:7a:26:cc:61:11:be:fc:45:e3:cf:24:20:2e:84:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 3 15:30:28 2025 GMT Not After : Jul 8 23:59:59 2025 GMT Subject: serialNumber=dc1544fa2b7082b9efe7dfb7ab01f8ac921db02218e20ec728dc1d81a9c7d606, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:0c:e2:96:e5:7f:c0:56:ed:08:e7:b7:f2:9c: c6:23:cd:70:cf:29:c8:3b:ad:21:ab:ed:35:96:3c: 17:85:05:1d:ec:f9:6e:32:34:a5:c2:a6:c5:59:2a: 0e:b0:2b:e6:11:e7:06:11:fd:53:76:27:c9:35:f4: 6a:67:3c:72:30:b8:08:37:67:fc:8a:8d:6b:ec:24: f2:68:9f:9a:08:38:a3:b5:e3:51:03:b0:d8:8a:f8: 86:4c:40:2b:9b:f2:24:2b:c5:63:07:40:c1:43:a9: 9a:ad:dc:1d:30:0c:41:45:0c:33:ce:b1:15:cf:b9: 76:c2:51:c7:2e:2c:bd:18:9f:71:ce:db:83:2a:ee: de:15:0d:bc:59:a2:0e:29:56:de:b6:a7:d5:2a:09: 99:f0:a3:8e:2b:5f:41:b2:ff:bf:54:b7:72:50:52: b9:67:0b:9a:39:e9:37:7c:a4:d4:14:62:03:11:b9: f4:22:f4:a6:ce:39:dc:ec:8b:46:38:96:60:c8:34: a0:e0:1a:d8:b8:d1:40:ba:e0:2f:c0:ea:8d:34:b4: bb:14:8b:48:05:7b:a9:37:d4:05:79:34:cb:16:0a: ab:54:69:63:47:9e:76:a8:cc:40:fd:07:72:ca:61: 4a:a1:2e:e2:b7:d1:4f:eb:aa:04:01:55:bf:17:59: 3f:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:91:30:32:80:E4:15:04:46:A4:6B:DC:45:B3:34:24:00:A2:12:5E X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/da582ca6-2c06-4b1e-8b99-3e314735161b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.20.0.0/14 Signature Algorithm: sha256WithRSAEncryption 81:0d:e0:91:10:11:ab:f9:13:13:31:bc:50:bc:29:b6:e7:43: 55:dd:a6:9d:51:78:54:52:bc:59:8d:9c:0a:0f:0c:b8:df:d5: ce:37:8c:83:bb:01:36:ba:42:58:0f:ef:bf:f1:c4:af:50:2d: 6b:09:29:8b:94:bc:3b:bf:d5:d1:1f:af:ca:54:47:25:41:50: 92:69:6a:d2:1e:04:df:10:57:26:2d:9e:5e:fb:a4:bd:cd:56: f9:0a:be:44:d5:55:de:8a:10:bf:9f:8d:69:0b:1a:b0:40:19: 72:2a:a3:35:df:43:55:ea:80:1d:01:5e:7f:d4:ad:33:c4:14: a8:e8:02:c7:7a:01:70:39:93:3b:9e:79:b4:86:3e:33:fc:91: eb:b0:44:2a:4b:69:54:b2:14:8e:bf:cd:c2:e9:ad:96:be:13: 35:43:5e:fa:33:6c:d6:07:48:22:f4:6e:1d:89:b0:d7:4a:07: 5c:f1:54:9b:bb:b8:39:62:55:83:fb:96:88:96:ec:5c:49:15: 42:bd:21:49:49:2c:20:78:67:62:80:f6:7d:b9:cc:42:42:ca: 9d:ad:cf:6e:ed:fd:02:fe:bd:0b:8b:ba:59:47:8c:95:42:84: a2:3b:bb:b1:42:45:49:cf:54:aa:b3:f0:61:1b:f6:95:45:ed: 95:27:26:e2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdUpBcu16JsxhEb78RePPJCAuhGcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjAzMTUzMDI4WhcNMjUwNzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYzE1NDRmYTJiNzA4MmI5ZWZlN2RmYjdhYjAxZjhhYzky MWRiMDIyMThlMjBlYzcyOGRjMWQ4MWE5YzdkNjA2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYDOKW5X/AVu0I57fynMYjzXDPKcg7rSGr7TWWPBeFBR3s +W4yNKXCpsVZKg6wK+YR5wYR/VN2J8k19GpnPHIwuAg3Z/yKjWvsJPJon5oIOKO1 41EDsNiK+IZMQCub8iQrxWMHQMFDqZqt3B0wDEFFDDPOsRXPuXbCUccuLL0Yn3HO 24Mq7t4VDbxZog4pVt62p9UqCZnwo44rX0Gy/79Ut3JQUrlnC5o56Td8pNQUYgMR ufQi9KbOOdzsi0Y4lmDINKDgGti40UC64C/A6o00tLsUi0gFe6k31AV5NMsWCqtU aWNHnnaozED9B3LKYUqhLuK30U/rqgQBVb8XWT+PAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUopEwMoDkFQRGpGvcRbM0JACiEl4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2RhNTgyY2E2LTJjMDYtNGIxZS04Yjk5LTNlMzE0NzM1MTYxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwI0FDANBgkqhkiG9w0BAQsFAAOCAQEAgQ3gkRARq/kTEzG8ULwptudDVd2m nVF4VFK8WY2cCg8MuN/VzjeMg7sBNrpCWA/vv/HEr1Atawkpi5S8O7/V0R+vylRH JUFQkmlq0h4E3xBXJi2eXvukvc1W+Qq+RNVV3ooQv5+NaQsasEAZciqjNd9DVeqA HQFef9StM8QUqOgCx3oBcDmTO555tIY+M/yR67BEKktpVLIUjr/Nwumtlr4TNUNe +jNs1gdIIvRuHYmw10oHXPFUm7u4OWJVg/uWiJbsXEkVQr0hSUksIHhnYoD2fbnM QkLKna3Pbu39Av69C4u6WUeMlUKEoju7sUJFSc9UqrPwYRv2lUXtlScm4g== -----END CERTIFICATE-----Generated at Sat Jun 14 23:46:39 2025 by rpki-client