$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ede7f351-4d0f-4c75-9915-6673e09863e1.roa File: ede7f351-4d0f-4c75-9915-6673e09863e1.roa (raw, json) Hash identifier: J3cAn9jMU5kCjv1d39ix3dFkPtQKGPJtrN4U04B2zow= Subject key identifier: 01:1D:55:4B:41:A0:C7:CA:93:6C:90:53:95:19:FC:C3:60:C4:BA:D7 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 266729CB6335B35460667BAEAB2437E44AA693CA Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ede7f351-4d0f-4c75-9915-6673e09863e1.roa Signing time: Tue 03 Jun 2025 15:31:41 +0000 ROA not before: Tue 03 Jun 2025 15:31:41 +0000 ROA not after: Tue 08 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.15.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:67:29:cb:63:35:b3:54:60:66:7b:ae:ab:24:37:e4:4a:a6:93:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 3 15:31:41 2025 GMT Not After : Jul 8 23:59:59 2025 GMT Subject: serialNumber=d08c066865552df68e7b4d49292d5fe88e4b99947fb99605da0c68d36f43a99a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:09:15:07:35:95:ee:ee:5c:44:6f:c4:ef:6c: 5d:8b:81:b5:33:2d:d9:a1:1e:3c:3d:46:e3:02:71: 88:07:ea:92:49:7a:66:6f:71:fe:1c:5c:38:b6:22: 26:58:74:fc:16:7f:17:da:1d:ee:14:dc:55:2f:f0: 42:56:50:d0:6f:84:2b:66:55:3b:f9:0d:d8:b3:c8: 41:dd:2b:5d:8a:1d:7d:2f:3e:aa:98:58:da:32:3a: 98:dd:58:c7:61:a8:00:26:f3:c6:8c:ce:ee:fa:71: 5f:c8:80:9b:e9:72:2b:21:b0:01:2d:86:d1:af:9e: 81:54:d1:0d:ce:17:88:56:12:6a:91:c0:ab:13:eb: aa:fc:58:a7:e1:1b:82:14:8f:28:ec:74:4f:c5:c1: e6:ab:ca:f7:dc:2d:4a:0f:53:bd:7c:53:7a:74:c3: bc:35:e5:35:f1:b5:fa:66:8a:53:7d:bb:15:de:4c: 84:b5:8d:a3:6d:34:bd:a2:d9:6d:91:9c:ca:39:7e: 29:4c:31:38:d8:9a:e8:7e:b0:c7:f0:0d:d3:34:fe: a2:d4:ad:f4:27:60:be:18:ac:44:e7:4e:6c:04:fc: ce:1b:d3:6d:c2:69:ac:d9:2b:e3:3d:71:6e:dc:ae: 7e:52:a0:0a:11:c8:0f:f4:d6:56:a2:6e:e3:27:85: 07:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:1D:55:4B:41:A0:C7:CA:93:6C:90:53:95:19:FC:C3:60:C4:BA:D7 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ede7f351-4d0f-4c75-9915-6673e09863e1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.15.64.0/18 Signature Algorithm: sha256WithRSAEncryption 69:d8:70:50:13:c5:be:c9:ba:16:27:69:8d:bd:dc:df:1e:d2: fc:e9:6d:6f:bc:14:9e:bb:d9:4d:65:41:66:bf:a7:69:11:a4: 8c:f0:04:60:21:98:5d:64:68:9e:6f:4d:c7:70:55:a8:19:7c: 8c:66:17:14:16:74:d4:1e:a2:57:f8:c4:e6:2a:51:26:22:ed: 13:90:14:67:11:3d:35:61:e3:b5:e9:a5:2d:52:ac:08:ff:cd: f2:4a:74:a1:f7:74:44:f3:1c:11:4e:d6:2e:14:03:1b:c3:44: 1d:fb:e9:30:e3:1d:73:78:e1:77:ff:7c:a6:6c:d7:9a:d2:5d: 2d:87:2f:db:ee:83:69:05:07:b4:99:70:aa:0f:1e:ef:80:65: e5:63:c6:9a:b6:bf:a1:7b:05:3a:b3:c7:8f:7c:97:f0:cf:11: fa:ef:c1:cf:64:84:0a:d7:e0:47:0e:47:04:3c:8b:1f:03:bd: 5e:0a:40:8c:a3:fa:29:36:ae:14:85:9d:df:8f:b3:7e:5e:4c: 5f:21:38:ee:be:ac:7a:eb:bc:57:45:d1:f0:9d:cf:8c:b9:9a: 20:93:ad:d4:0c:a9:8f:bc:ea:1b:82:fe:17:c0:0e:32:45:28: 40:a2:a9:63:8e:72:c8:ba:46:71:5d:dd:8c:49:79:d1:d1:a5: c0:ef:f2:cd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJmcpy2M1s1RgZnuuqyQ35Eqmk8owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjAzMTUzMTQxWhcNMjUwNzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMDhjMDY2ODY1NTUyZGY2OGU3YjRkNDkyOTJkNWZlODhl NGI5OTk0N2ZiOTk2MDVkYTBjNjhkMzZmNDNhOTlhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaCRUHNZXu7lxEb8TvbF2LgbUzLdmhHjw9RuMCcYgH6pJJ emZvcf4cXDi2IiZYdPwWfxfaHe4U3FUv8EJWUNBvhCtmVTv5DdizyEHdK12KHX0v PqqYWNoyOpjdWMdhqAAm88aMzu76cV/IgJvpcishsAEthtGvnoFU0Q3OF4hWEmqR wKsT66r8WKfhG4IUjyjsdE/FwearyvfcLUoPU718U3p0w7w15TXxtfpmilN9uxXe TIS1jaNtNL2i2W2RnMo5filMMTjYmuh+sMfwDdM0/qLUrfQnYL4YrETnTmwE/M4b 023CaazZK+M9cW7crn5SoAoRyA/01laibuMnhQe3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAR1VS0Ggx8qTbJBTlRn8w2DEutcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2VkZTdmMzUxLTRkMGYtNGM3NS05OTE1LTY2NzNlMDk4NjNlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY0D0AwDQYJKoZIhvcNAQELBQADggEBAGnYcFATxb7JuhYnaY293N8e0vzp bW+8FJ672U1lQWa/p2kRpIzwBGAhmF1kaJ5vTcdwVagZfIxmFxQWdNQeolf4xOYq USYi7ROQFGcRPTVh47XppS1SrAj/zfJKdKH3dETzHBFO1i4UAxvDRB376TDjHXN4 4Xf/fKZs15rSXS2HL9vug2kFB7SZcKoPHu+AZeVjxpq2v6F7BTqzx498l/DPEfrv wc9khArX4EcORwQ8ix8DvV4KQIyj+ik2rhSFnd+Ps35eTF8hOO6+rHrrvFdF0fCd z4y5miCTrdQMqY+86huC/hfADjJFKECiqWOOcsi6RnFd3YxJedHRpcDv8s0= -----END CERTIFICATE-----Generated at Sat Jun 14 06:04:11 2025 by rpki-client