$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/db28a28a-67ee-4d85-bb3d-cad7e12c11b1.roa File: db28a28a-67ee-4d85-bb3d-cad7e12c11b1.roa (raw, json) Hash identifier: 2QhednY/nOtV11SmTbTunit0Y/LiStH2b8JuU56uTNM= Subject key identifier: F8:2F:99:36:27:69:BB:DF:4D:F2:A0:82:8F:13:3A:CF:BA:4F:48:87 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 54EFD11D9E82DDEEF0F1B1E47BD1BF362983D32C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/db28a28a-67ee-4d85-bb3d-cad7e12c11b1.roa Signing time: Mon 09 Jun 2025 16:01:40 +0000 ROA not before: Mon 09 Jun 2025 16:01:40 +0000 ROA not after: Mon 14 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.158.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:ef:d1:1d:9e:82:dd:ee:f0:f1:b1:e4:7b:d1:bf:36:29:83:d3:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 9 16:01:40 2025 GMT Not After : Jul 14 23:59:59 2025 GMT Subject: serialNumber=b06aa02723ce157f13b98927ddd808c8caed24058a3a2aa91f4c24c4e14ffc83, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a3:98:c4:be:1e:a1:21:76:41:5e:ef:79:af: 78:80:96:7c:7d:01:6a:11:fc:88:1d:27:8e:ef:32: 77:f1:2a:ad:31:fb:0e:ce:f3:7a:3f:af:cb:60:49: 38:ea:ed:f4:a0:61:14:8d:0c:21:49:bf:07:83:ff: 69:79:a7:a3:a0:93:c0:48:c0:d4:29:a9:c9:83:0b: 27:66:75:36:37:41:a6:fb:07:01:24:5c:5c:e0:06: 64:6d:84:26:d7:55:b3:e0:bb:16:56:3c:5c:5b:4b: 98:dd:d8:23:10:ce:bd:2a:d6:12:2a:3c:b0:e7:df: 73:78:6a:0b:bf:d0:ea:ac:b7:aa:b0:10:89:51:76: 45:8c:96:f5:59:e9:cd:1c:97:3f:3d:e8:f8:bc:3d: 10:69:e5:31:d9:6b:ec:18:06:d4:4d:a2:c8:7a:f7: d4:cb:9a:06:77:07:8a:7f:b4:5a:e4:78:fd:2c:34: d7:6c:97:1b:c8:c6:21:37:de:48:f9:7f:b7:6b:e1: 95:58:e2:a8:73:82:2c:45:8a:b1:9d:a4:ac:d4:d9: 28:d0:16:97:2f:60:ff:e6:06:c3:9d:65:90:05:42: 8b:90:ce:e3:f6:ef:4e:fb:01:2a:a7:1f:38:90:45: c2:23:18:e5:b7:8d:0b:b5:d7:9e:c7:1d:e0:fe:91: 9e:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:2F:99:36:27:69:BB:DF:4D:F2:A0:82:8F:13:3A:CF:BA:4F:48:87 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/db28a28a-67ee-4d85-bb3d-cad7e12c11b1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.158.192.0/18 Signature Algorithm: sha256WithRSAEncryption 5c:b3:4f:68:6f:4b:fd:25:f4:2a:d5:70:ab:3f:38:80:72:82: 60:13:06:67:54:3b:02:ba:19:f1:2c:26:a1:ed:21:84:7b:dc: f8:66:86:f3:1b:06:84:fd:db:a5:69:7f:b8:97:a2:cd:01:ba: 7c:86:a8:4f:f5:77:fb:35:b2:a9:cb:ac:54:11:4f:fe:f1:e7: 4b:04:88:46:0a:64:3f:56:78:a0:c0:7d:18:99:47:0a:64:58: 05:47:cd:73:7f:f9:9d:6d:04:9c:49:08:25:9e:49:7f:14:99: 27:d2:64:69:fe:ed:15:59:b7:ad:1b:7b:d8:56:22:1a:d7:6c: 6d:f6:c6:db:36:a9:d8:75:20:27:26:84:d6:04:08:56:4c:ac: 1b:c1:c8:9a:97:11:d8:a9:2e:bf:48:44:5e:46:b0:52:df:ed: dd:2a:fd:b8:4b:c0:c5:7f:30:ef:96:5f:76:3d:33:eb:dd:b3: 77:3b:e4:07:f5:90:23:7b:f8:50:e6:ff:f2:ed:87:2c:8c:30: b4:b9:6f:0e:cb:5d:bb:c1:2c:93:1c:22:ee:a2:bb:bb:95:25: 49:f3:f1:d9:12:2d:c9:a1:e6:a3:86:64:ee:e5:7e:18:03:70: 08:d1:0b:f7:e5:b2:06:bd:15:80:01:6a:36:ec:3a:af:17:83: 30:62:98:8b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVO/RHZ6C3e7w8bHke9G/NimD0ywwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjA5MTYwMTQwWhcNMjUwNzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMDZhYTAyNzIzY2UxNTdmMTNiOTg5MjdkZGQ4MDhjOGNh ZWQyNDA1OGEzYTJhYTkxZjRjMjRjNGUxNGZmYzgzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4o5jEvh6hIXZBXu95r3iAlnx9AWoR/IgdJ47vMnfxKq0x +w7O83o/r8tgSTjq7fSgYRSNDCFJvweD/2l5p6Ogk8BIwNQpqcmDCydmdTY3Qab7 BwEkXFzgBmRthCbXVbPguxZWPFxbS5jd2CMQzr0q1hIqPLDn33N4agu/0Oqst6qw EIlRdkWMlvVZ6c0clz896Pi8PRBp5THZa+wYBtRNosh699TLmgZ3B4p/tFrkeP0s NNdslxvIxiE33kj5f7dr4ZVY4qhzgixFirGdpKzU2SjQFpcvYP/mBsOdZZAFQouQ zuP27077ASqnHziQRcIjGOW3jQu1157HHeD+kZ5rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+C+ZNidpu99N8qCCjxM6z7pPSIcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2RiMjhhMjhhLTY3ZWUtNGQ4NS1iYjNkLWNhZDdlMTJjMTFiMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY2nsAwDQYJKoZIhvcNAQELBQADggEBAFyzT2hvS/0l9CrVcKs/OIBygmAT BmdUOwK6GfEsJqHtIYR73PhmhvMbBoT926Vpf7iXos0BunyGqE/1d/s1sqnLrFQR T/7x50sEiEYKZD9WeKDAfRiZRwpkWAVHzXN/+Z1tBJxJCCWeSX8UmSfSZGn+7RVZ t60be9hWIhrXbG32xts2qdh1ICcmhNYECFZMrBvByJqXEdipLr9IRF5GsFLf7d0q /bhLwMV/MO+WX3Y9M+vds3c75Af1kCN7+FDm//LthyyMMLS5bw7LXbvBLJMcIu6i u7uVJUnz8dkSLcmh5qOGZO7lfhgDcAjRC/flsga9FYABajbsOq8XgzBimIs= -----END CERTIFICATE-----Generated at Sat Jun 14 05:47:27 2025 by rpki-client