$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/07a2e991-88e4-44dc-ba0d-f0212a80a111.roa File: 07a2e991-88e4-44dc-ba0d-f0212a80a111.roa (raw, json) Hash identifier: X9N/hD+3WgEPCvSnsJHGL/fnumtnxCe0JBNhCN4LGMY= Subject key identifier: 81:FE:8E:32:9C:0D:65:1C:A7:25:96:AB:E0:89:F0:73:75:D0:A4:A3 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 16FEB4CD4879E73753280A762D9292DA89792627 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/07a2e991-88e4-44dc-ba0d-f0212a80a111.roa Signing time: Wed 07 May 2025 00:50:50 +0000 ROA not before: Wed 07 May 2025 00:50:50 +0000 ROA not after: Wed 11 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.236.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:fe:b4:cd:48:79:e7:37:53:28:0a:76:2d:92:92:da:89:79:26:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 7 00:50:50 2025 GMT Not After : Jun 11 23:59:59 2025 GMT Subject: serialNumber=1fdac5d030e51f2a2c90902d17c0f43dca9abad415a204aadd6675f3264213e4, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:74:a9:f6:95:07:b2:43:20:aa:c1:c5:10:0e: 33:16:ab:bc:28:75:fb:6a:5d:f3:66:95:d7:c1:85: 1f:81:13:80:5e:c0:37:c1:93:30:5b:fe:30:67:80: 8f:79:fe:3a:04:32:7e:a6:2b:b7:0b:9f:d3:35:b9: 90:7e:7e:91:1b:71:0b:b1:fd:55:89:ad:7a:d8:52: 3a:aa:c7:5c:15:13:e9:87:dc:ac:47:fc:7d:fd:c9: 80:6c:29:f3:15:32:71:90:b9:49:db:8a:ff:a8:43: 87:72:6e:8d:e0:25:fb:7d:7c:8a:7a:1c:cb:83:29: 48:a8:2e:71:4a:48:6a:e2:45:2c:03:21:d9:d7:02: 77:ee:e1:e2:a8:92:84:7a:77:0c:a2:6f:30:e3:08: 1f:fb:d8:39:67:02:cd:c2:34:40:5e:4b:84:06:a5: 21:49:80:1e:c1:65:79:c9:db:20:27:a1:9b:80:bb: 7a:c2:64:09:f6:89:06:b4:a8:f7:88:33:9d:45:f6: d5:9d:41:f7:4c:c4:3f:5d:0b:86:90:e4:8e:6c:a2: 3b:d6:18:d3:a0:5c:74:c5:04:09:84:3e:47:28:d2: 8b:38:05:a9:5b:e5:3e:c8:39:43:c4:12:18:5c:6e: 10:f3:64:0b:97:94:51:5f:ef:d1:59:a2:c5:51:28: 32:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:FE:8E:32:9C:0D:65:1C:A7:25:96:AB:E0:89:F0:73:75:D0:A4:A3 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/07a2e991-88e4-44dc-ba0d-f0212a80a111.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.236.0.0/14 Signature Algorithm: sha256WithRSAEncryption 71:38:e4:bc:e0:44:43:7a:6d:6f:ff:b1:b5:12:d7:c1:80:12: 6d:33:c7:55:b9:58:74:9a:5e:60:3a:ee:b5:80:c5:1d:0d:46: b2:b4:69:b7:2d:e1:99:cb:13:46:e3:f8:a4:2f:8c:64:79:f5: 17:b2:55:2d:c2:22:a9:8f:50:1c:b8:a3:c9:9d:3f:14:94:b8: 61:85:e6:c6:7b:00:ff:d9:0b:3e:93:41:15:56:38:b3:fd:74: 82:e9:8d:a3:8a:70:a1:f8:2d:00:8b:da:91:5d:47:87:ff:c9: c7:6d:3a:5e:b5:70:27:96:7b:5d:17:62:9a:cc:6f:6d:ce:a0: 1a:ea:2b:29:6c:b7:59:93:3e:b6:5e:7a:ca:7a:73:e9:c3:fc: de:30:8b:ca:28:f1:56:da:0e:0d:3e:e5:20:65:ed:9a:da:82: db:6c:a4:39:6f:b3:13:61:f7:cd:3c:84:a3:c9:f0:bd:c4:4c: d7:a5:f3:83:de:06:42:8a:da:eb:b0:1a:06:2f:d6:d2:26:3b: 28:ae:51:2f:da:7d:35:97:dc:7f:51:28:84:0e:83:a3:84:b0: 15:56:cf:04:97:d2:7a:ae:66:c8:ad:a4:bd:25:c4:61:4f:33: 5e:3b:6d:ce:30:aa:f9:e9:df:7d:7b:df:2e:2d:2f:5e:60:1b: e7:b0:6c:b2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFv60zUh55zdTKAp2LZKS2ol5JicwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTA3MDA1MDUwWhcNMjUwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZmRhYzVkMDMwZTUxZjJhMmM5MDkwMmQxN2MwZjQzZGNh OWFiYWQ0MTVhMjA0YWFkZDY2NzVmMzI2NDIxM2U0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsdKn2lQeyQyCqwcUQDjMWq7wodftqXfNmldfBhR+BE4Be wDfBkzBb/jBngI95/joEMn6mK7cLn9M1uZB+fpEbcQux/VWJrXrYUjqqx1wVE+mH 3KxH/H39yYBsKfMVMnGQuUnbiv+oQ4dybo3gJft9fIp6HMuDKUioLnFKSGriRSwD IdnXAnfu4eKokoR6dwyibzDjCB/72DlnAs3CNEBeS4QGpSFJgB7BZXnJ2yAnoZuA u3rCZAn2iQa0qPeIM51F9tWdQfdMxD9dC4aQ5I5sojvWGNOgXHTFBAmEPkco0os4 Balb5T7IOUPEEhhcbhDzZAuXlFFf79FZosVRKDLRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUgf6OMpwNZRynJZar4Inwc3XQpKMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzA3YTJlOTkxLTg4ZTQtNDRkYy1iYTBkLWYwMjEyYTgwYTExMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIN7DANBgkqhkiG9w0BAQsFAAOCAQEAcTjkvOBEQ3ptb/+xtRLXwYASbTPH VblYdJpeYDrutYDFHQ1GsrRpty3hmcsTRuP4pC+MZHn1F7JVLcIiqY9QHLijyZ0/ FJS4YYXmxnsA/9kLPpNBFVY4s/10gumNo4pwofgtAIvakV1Hh//Jx206XrVwJ5Z7 XRdimsxvbc6gGuorKWy3WZM+tl56ynpz6cP83jCLyijxVtoODT7lIGXtmtqC22yk OW+zE2H3zTyEo8nwvcRM16Xzg94GQora67AaBi/W0iY7KK5RL9p9NZfcf1EohA6D o4SwFVbPBJfSeq5myK2kvSXEYU8zXjttzjCq+enffXvfLi0vXmAb57Bssg== -----END CERTIFICATE-----Generated at Fri May 9 17:52:56 2025 by rpki-client