$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/142ce907-aedc-4605-8862-c3d7f5104b02.roa File: 142ce907-aedc-4605-8862-c3d7f5104b02.roa (raw, json) Hash identifier: Vml/OTAyB4N9JWOM7nQtarZ+i6KvPY+QzN5lcQWMPxk= Subject key identifier: 98:C8:F3:0C:B4:7E:37:88:4C:79:F2:24:18:79:F7:74:2C:25:FD:DF Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 076BBC1618EC3DAB918F592C03BD4CF85DE5F48F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/142ce907-aedc-4605-8862-c3d7f5104b02.roa Signing time: Fri 30 May 2025 00:50:16 +0000 ROA not before: Fri 30 May 2025 00:50:16 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.177.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Jun 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:6b:bc:16:18:ec:3d:ab:91:8f:59:2c:03:bd:4c:f8:5d:e5:f4:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 30 00:50:16 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=9c6789df57d7b620d27f66c37012d452f46d0e4e6390fc73f0eac94ecf364f0a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:13:65:0e:84:2b:ba:60:aa:7e:43:de:eb:e6: f8:64:d4:d0:1e:d0:cf:c7:df:7f:6d:13:f6:cc:48: ec:fc:05:09:02:66:18:91:8c:72:51:e3:cb:5a:49: ad:de:7b:c2:b9:93:a3:7a:40:11:12:77:87:0e:dd: fe:1b:ef:8d:ed:27:cf:6e:06:e2:c7:9f:b6:93:c3: 60:04:93:5e:d9:27:a4:56:9d:63:b1:52:63:9c:f9: 93:06:e1:13:53:75:25:01:6a:1e:0f:2d:00:cd:55: 9c:fe:0e:3b:32:66:d6:59:96:95:6d:b9:5a:8c:d8: 0f:38:3c:b3:45:5d:1e:fe:7c:79:72:ef:74:42:93: 4e:4e:ab:2f:2e:be:a9:46:1c:3f:6f:fb:a8:f8:09: 7d:b0:66:db:38:ad:29:ff:32:af:ff:83:88:79:b2: f4:81:4a:b9:e4:11:f4:fd:c8:2f:62:07:fd:aa:e7: 37:c2:65:40:0a:03:d6:ab:fc:a4:0d:11:de:fc:87: 75:b7:1b:6d:99:a8:0b:c5:70:5b:94:87:97:b3:36: 81:15:d0:8a:14:93:2d:4d:9a:e4:fb:d5:bb:cf:3f: 69:9e:98:50:0c:e3:cf:83:32:a7:c1:4d:68:9f:c5: 89:50:34:51:9f:48:c6:bf:67:be:eb:08:9b:21:c9: 60:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:C8:F3:0C:B4:7E:37:88:4C:79:F2:24:18:79:F7:74:2C:25:FD:DF X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/142ce907-aedc-4605-8862-c3d7f5104b02.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.177.104.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:28:ab:70:29:a9:c8:7e:d6:5d:26:9c:25:fc:14:7b:87:9a: c9:ef:a7:f2:c0:6a:75:a9:b1:ca:f5:a1:9f:b8:fa:d0:32:97: 26:1b:12:f6:0d:7f:12:08:04:df:7d:b6:bc:df:67:a6:b7:79: 31:1a:e0:74:ba:80:9f:d3:c5:17:47:a9:69:a6:f8:54:d3:05: 49:99:8f:43:da:17:77:83:f2:cc:e1:42:83:99:bf:75:36:87: a6:b6:9e:4c:08:f6:48:7e:7c:7f:88:90:f0:cd:20:98:74:d8: f4:62:21:05:97:e1:af:81:29:ea:b8:49:2f:78:cc:51:42:14: 9a:ea:4f:f4:03:fb:ea:cf:b0:47:ab:3e:12:d7:ff:ba:16:3e: 13:8d:b7:a4:f8:0c:bc:9b:87:c2:fa:4f:e3:fb:e7:56:f6:2f: 6f:69:80:5a:01:6c:5d:e9:c1:b0:b8:6a:72:2f:f7:87:76:fd: fa:7c:9d:19:54:08:64:86:e9:88:36:82:b3:05:3e:bf:80:f5: 23:2e:80:09:49:5c:cb:68:b3:d6:4a:bd:92:d8:a1:e0:09:a1: 6f:1a:ee:f5:f6:f8:d6:08:26:82:95:fa:7b:10:c9:43:71:64: 49:00:c8:8f:45:c7:79:36:d4:5f:69:f7:a3:e5:4e:c4:26:17: 79:bb:7c:e9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUB2u8FhjsPauRj1ksA71M+F3l9I8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTMwMDA1MDE2WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YzY3ODlkZjU3ZDdiNjIwZDI3ZjY2YzM3MDEyZDQ1MmY0 NmQwZTRlNjM5MGZjNzNmMGVhYzk0ZWNmMzY0ZjBhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9E2UOhCu6YKp+Q97r5vhk1NAe0M/H339tE/bMSOz8BQkC ZhiRjHJR48taSa3ee8K5k6N6QBESd4cO3f4b743tJ89uBuLHn7aTw2AEk17ZJ6RW nWOxUmOc+ZMG4RNTdSUBah4PLQDNVZz+DjsyZtZZlpVtuVqM2A84PLNFXR7+fHly 73RCk05Oqy8uvqlGHD9v+6j4CX2wZts4rSn/Mq//g4h5svSBSrnkEfT9yC9iB/2q 5zfCZUAKA9ar/KQNEd78h3W3G22ZqAvFcFuUh5ezNoEV0IoUky1NmuT71bvPP2me mFAM48+DMqfBTWifxYlQNFGfSMa/Z77rCJshyWBtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmMjzDLR+N4hMefIkGHn3dCwl/d8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzE0MmNlOTA3LWFlZGMtNDYwNS04ODYyLWMzZDdmNTEwNGIwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAPsWgwDQYJKoZIhvcNAQELBQADggEBACwoq3Apqch+1l0mnCX8FHuHmsnv p/LAanWpscr1oZ+4+tAylyYbEvYNfxIIBN99trzfZ6a3eTEa4HS6gJ/TxRdHqWmm +FTTBUmZj0PaF3eD8szhQoOZv3U2h6a2nkwI9kh+fH+IkPDNIJh02PRiIQWX4a+B Keq4SS94zFFCFJrqT/QD++rPsEerPhLX/7oWPhONt6T4DLybh8L6T+P751b2L29p gFoBbF3pwbC4anIv94d2/fp8nRlUCGSG6Yg2grMFPr+A9SMugAlJXMtos9ZKvZLY oeAJoW8a7vX2+NYIJoKV+nsQyUNxZEkAyI9Fx3k21F9p96PlTsQmF3m7fOk= -----END CERTIFICATE-----Generated at Mon Jun 2 16:30:27 2025 by rpki-client