$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/05d77566-f204-42b4-b2e2-f7a8e8157582.roa File: 05d77566-f204-42b4-b2e2-f7a8e8157582.roa (raw, json) Hash identifier: TwP8y5RP6yLZFjq4GVuEk5W32oeGTYXfW30BBuWuPns= Subject key identifier: FA:61:47:15:BB:5D:07:5F:5B:7D:05:3C:F6:06:50:EE:AE:A9:90:6E Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2430D2E25DB01B36960F908DEA2E6E9510C9E436 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/05d77566-f204-42b4-b2e2-f7a8e8157582.roa Signing time: Mon 30 Jun 2025 16:01:40 +0000 ROA not before: Mon 30 Jun 2025 16:01:40 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.132.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:30:d2:e2:5d:b0:1b:36:96:0f:90:8d:ea:2e:6e:95:10:c9:e4:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 30 16:01:40 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=b02a5f5f2949fda8a3e5e4ae27887a9d1fba27017dc396137ff78888395af1bb, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5e:68:9d:bf:4c:d4:ab:17:b8:fa:3e:45:86: 8d:41:e2:c7:a8:98:d4:80:d3:34:0a:ab:8c:e3:4c: 14:51:e8:3f:bb:5f:25:53:53:6b:24:6a:cd:bb:ac: 40:4e:31:75:68:82:78:f7:66:0c:47:42:0b:f1:da: 1c:bf:13:7b:d0:ba:39:ba:79:b1:e5:dc:49:e9:e9: ad:ef:d9:ec:65:bd:42:80:e1:33:c6:c1:a1:5f:69: ac:ef:b3:83:d4:7b:1b:e8:31:ce:63:63:43:ba:64: 6f:15:1d:32:25:c2:9d:34:5e:3f:ee:37:93:c8:d7: 44:45:c5:35:ee:d6:06:60:17:31:78:57:ef:8c:17: 2a:ef:b1:f3:0a:b0:ed:12:c0:8b:84:d1:d4:2e:bb: 8f:11:a2:7c:00:bd:72:65:48:60:86:df:11:ad:b9: ce:10:71:da:6d:e1:2b:fd:a6:c0:25:c2:4a:4a:41: bd:36:8e:32:3e:75:e3:6b:ad:ad:cc:b1:4f:6c:b3: ac:5a:5a:97:f2:10:0e:3b:14:02:d7:d2:36:5a:ea: 51:c9:e6:f8:33:15:d1:47:a8:44:58:bb:41:4d:2d: 1b:68:c8:b2:d3:33:e1:e0:bd:b7:12:1c:6d:25:a9: ff:0e:53:17:94:ef:28:fa:27:ef:e0:26:71:54:35: 20:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:61:47:15:BB:5D:07:5F:5B:7D:05:3C:F6:06:50:EE:AE:A9:90:6E X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/05d77566-f204-42b4-b2e2-f7a8e8157582.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.132.0.0/14 Signature Algorithm: sha256WithRSAEncryption 01:d9:5a:82:83:de:48:42:d0:37:e4:af:17:a6:70:77:d1:a6: 05:a0:04:07:ac:0b:97:78:6e:33:38:64:bc:34:95:2c:dd:a0: 8a:af:64:78:2c:70:df:66:d9:10:49:74:25:30:1f:e7:e5:27: 03:23:d5:12:4f:87:7e:d1:60:5e:cc:37:5b:cb:e6:87:91:32: c4:75:02:f2:f8:72:72:b1:cb:c1:19:77:a5:d8:9c:09:65:91: 3c:49:13:73:57:00:a5:42:dd:35:5e:d5:db:44:c9:16:1e:e2: f4:e3:09:9d:09:46:ee:d9:91:21:3b:65:49:e8:eb:51:19:69: 28:bf:c1:a4:15:15:46:6b:15:5a:2a:38:43:2f:0f:d9:7a:c2: 97:d1:84:3f:e3:fc:52:02:35:91:6b:3e:1b:95:55:bb:65:f2: a3:fc:03:8e:4b:90:2e:72:72:86:df:a2:e8:53:f9:37:e4:48: 61:91:fe:2a:90:f1:fa:36:cc:a2:c1:b5:f6:17:29:36:1c:8b: 33:93:c1:ec:09:eb:94:62:87:9c:4a:f4:8c:ed:18:dd:34:ff: 7f:a7:0f:05:85:5e:1d:10:ab:cf:ed:4d:68:58:a9:54:aa:09: 10:4d:11:00:a9:12:ac:b7:81:91:dc:f8:58:f7:2c:d4:04:ce: b6:24:22:4d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJDDS4l2wGzaWD5CN6i5ulRDJ5DYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjMwMTYwMTQwWhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMDJhNWY1ZjI5NDlmZGE4YTNlNWU0YWUyNzg4N2E5ZDFm YmEyNzAxN2RjMzk2MTM3ZmY3ODg4ODM5NWFmMWJiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCXmidv0zUqxe4+j5Fho1B4seomNSA0zQKq4zjTBRR6D+7 XyVTU2skas27rEBOMXVognj3ZgxHQgvx2hy/E3vQujm6ebHl3Enp6a3v2exlvUKA 4TPGwaFfaazvs4PUexvoMc5jY0O6ZG8VHTIlwp00Xj/uN5PI10RFxTXu1gZgFzF4 V++MFyrvsfMKsO0SwIuE0dQuu48RonwAvXJlSGCG3xGtuc4Qcdpt4Sv9psAlwkpK Qb02jjI+deNrra3MsU9ss6xaWpfyEA47FALX0jZa6lHJ5vgzFdFHqERYu0FNLRto yLLTM+HgvbcSHG0lqf8OUxeU7yj6J+/gJnFUNSBLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU+mFHFbtdB19bfQU89gZQ7q6pkG4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzA1ZDc3NTY2LWYyMDQtNDJiNC1iMmUyLWY3YThlODE1NzU4Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIDhDANBgkqhkiG9w0BAQsFAAOCAQEAAdlagoPeSELQN+SvF6Zwd9GmBaAE B6wLl3huMzhkvDSVLN2giq9keCxw32bZEEl0JTAf5+UnAyPVEk+HftFgXsw3W8vm h5EyxHUC8vhycrHLwRl3pdicCWWRPEkTc1cApULdNV7V20TJFh7i9OMJnQlG7tmR ITtlSejrURlpKL/BpBUVRmsVWio4Qy8P2XrCl9GEP+P8UgI1kWs+G5VVu2Xyo/wD jkuQLnJyht+i6FP5N+RIYZH+KpDx+jbMosG19hcpNhyLM5PB7AnrlGKHnEr0jO0Y 3TT/f6cPBYVeHRCrz+1NaFipVKoJEE0RAKkSrLeBkdz4WPcs1ATOtiQiTQ== -----END CERTIFICATE-----Generated at Mon Jun 30 23:30:24 2025 by rpki-client