$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ea749162-2fbf-4892-994c-3592660aee67.roa File: ea749162-2fbf-4892-994c-3592660aee67.roa (raw, json) Hash identifier: 1JfSKr8pgesxF2uz8EBT8FL+1IrnveAGOKDqU9ryu9A= Subject key identifier: B4:F2:3C:32:9F:BD:D2:50:50:BF:7C:05:BF:84:CE:59:20:00:32:69 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 564B6B7A013F4CDF52DE111ED4544AE4CF522AAA Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ea749162-2fbf-4892-994c-3592660aee67.roa Signing time: Tue 20 May 2025 17:21:07 +0000 ROA not before: Tue 20 May 2025 17:21:07 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.79.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:4b:6b:7a:01:3f:4c:df:52:de:11:1e:d4:54:4a:e4:cf:52:2a:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 20 17:21:07 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=b16652882aa8702de9077d49d7cef56693c1a3d82735290a2a254b97af314b05, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:f4:b4:3f:14:12:fb:8a:b1:59:12:d6:2b:34: 7e:9f:9a:e7:ba:7b:29:8a:66:af:2e:df:93:74:81: fb:37:db:8f:91:8d:0f:34:71:09:08:90:9f:f1:61: 3c:b8:0e:6e:20:17:84:1c:e4:e1:b1:75:b8:89:f6: 93:de:11:34:f2:9b:58:3d:40:37:8c:e4:6a:27:05: 5e:6c:f7:71:3e:d1:88:a7:0e:a1:ce:d8:06:42:db: cf:4f:3f:64:39:03:c8:7b:0d:66:b9:93:ea:bc:dd: 00:bc:f2:23:33:3e:05:a9:e2:36:5b:c6:6c:30:14: 9d:a8:d5:fd:2e:26:5d:d5:c9:f8:9b:fc:8f:7c:4b: 32:87:53:65:4c:10:24:01:ea:d9:1a:74:60:e2:24: d6:0c:83:02:a3:da:ea:1b:d3:ed:83:4c:56:8e:06: 29:35:5a:66:50:93:b1:18:7c:c8:95:51:25:2a:4d: 89:94:08:98:e1:88:54:c5:5e:b9:9b:9a:fb:63:ed: 9d:36:ab:b9:eb:96:be:ea:07:c6:66:5c:95:64:f3: 49:cc:23:82:41:8e:67:73:eb:25:8b:ff:68:93:78: 01:de:64:05:b1:78:9b:d2:b7:fb:12:7c:13:f1:24: 1d:3a:a7:a2:5f:09:a0:23:bd:5a:de:50:8e:0d:de: bd:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:F2:3C:32:9F:BD:D2:50:50:BF:7C:05:BF:84:CE:59:20:00:32:69 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ea749162-2fbf-4892-994c-3592660aee67.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.79.0.0/16 Signature Algorithm: sha256WithRSAEncryption 40:7a:77:1b:71:aa:6d:b9:72:50:37:31:e2:ab:7b:c1:ae:13: 6f:9b:6f:bf:10:5e:a3:f3:ff:52:c9:fe:cd:72:cc:cc:fe:8f: 0e:ff:8a:b0:6b:a8:50:54:20:2b:95:b6:40:fc:12:cd:da:4d: 30:09:d2:16:58:12:67:dc:e4:73:69:50:e8:58:19:e7:3d:7c: 0d:a7:81:3f:42:22:62:d1:d4:4c:05:ea:27:2c:24:97:21:ca: ae:37:5f:a8:b9:8b:ca:43:c5:dc:d2:eb:e8:43:a7:cd:a5:ea: 46:31:69:c9:b2:14:ec:d0:08:02:5e:ef:5a:c4:d7:56:6d:e1: 4e:ed:c2:07:b9:6c:3b:ef:3c:3e:16:ce:29:3b:e5:06:50:48: bd:59:bc:09:c7:13:7b:d9:2f:ed:af:92:5a:40:e8:ca:48:b6: ec:ac:37:d3:9e:8c:ca:7c:8c:65:9e:49:7f:76:df:e9:93:08: 08:7e:00:67:e0:3a:33:ad:af:04:88:46:95:66:59:dc:37:ad: af:c5:7f:d9:da:de:cc:21:a3:76:69:10:62:ef:0e:d6:b1:e1: 02:88:f1:21:30:1d:6b:44:a4:f2:e5:95:ad:12:be:0e:a0:af: 5e:cc:c7:93:6f:4e:dc:0d:77:b3:60:d6:46:3d:14:f5:ed:ff: 80:b0:4b:42 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUVktregE/TN9S3hEe1FRK5M9SKqowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTIwMTcyMTA3WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTY2NTI4ODJhYTg3MDJkZTkwNzdkNDlkN2NlZjU2Njkz YzFhM2Q4MjczNTI5MGEyYTI1NGI5N2FmMzE0YjA1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCj9LQ/FBL7irFZEtYrNH6fmue6eymKZq8u35N0gfs324+R jQ80cQkIkJ/xYTy4Dm4gF4Qc5OGxdbiJ9pPeETTym1g9QDeM5GonBV5s93E+0Yin DqHO2AZC289PP2Q5A8h7DWa5k+q83QC88iMzPgWp4jZbxmwwFJ2o1f0uJl3Vyfib /I98SzKHU2VMECQB6tkadGDiJNYMgwKj2uob0+2DTFaOBik1WmZQk7EYfMiVUSUq TYmUCJjhiFTFXrmbmvtj7Z02q7nrlr7qB8ZmXJVk80nMI4JBjmdz6yWL/2iTeAHe ZAWxeJvSt/sSfBPxJB06p6JfCaAjvVreUI4N3r21AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUtPI8Mp+90lBQv3wFv4TOWSAAMmkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2VhNzQ5MTYyLTJmYmYtNDg5Mi05OTRjLTM1OTI2NjBhZWU2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2TzANBgkqhkiG9w0BAQsFAAOCAQEAQHp3G3GqbblyUDcx4qt7wa4Tb5tv vxBeo/P/Usn+zXLMzP6PDv+KsGuoUFQgK5W2QPwSzdpNMAnSFlgSZ9zkc2lQ6FgZ 5z18DaeBP0IiYtHUTAXqJywklyHKrjdfqLmLykPF3NLr6EOnzaXqRjFpybIU7NAI Al7vWsTXVm3hTu3CB7lsO+88PhbOKTvlBlBIvVm8CccTe9kv7a+SWkDoyki27Kw3 056MynyMZZ5Jf3bf6ZMICH4AZ+A6M62vBIhGlWZZ3Detr8V/2drezCGjdmkQYu8O 1rHhAojxITAda0Sk8uWVrRK+DqCvXszHk29O3A13s2DWRj0U9e3/gLBLQg== -----END CERTIFICATE-----Generated at Sat Jun 14 06:37:23 2025 by rpki-client