$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1b104d16-32c1-4120-849f-050a4b66c723.roa File: 1b104d16-32c1-4120-849f-050a4b66c723.roa (raw, json) Hash identifier: InttIFDRX8C1zYKwgaHd0ymag8ZtKDkitI9mQn+xcas= Subject key identifier: CC:CC:AD:83:FF:3A:B0:78:1C:1D:D6:64:AE:E6:E2:C6:36:63:B0:30 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 35B10B49E0D84A41A456AF570806AF9E4B5647DE Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1b104d16-32c1-4120-849f-050a4b66c723.roa Signing time: Fri 09 May 2025 00:41:33 +0000 ROA not before: Fri 09 May 2025 00:41:33 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.220.0.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:b1:0b:49:e0:d8:4a:41:a4:56:af:57:08:06:af:9e:4b:56:47:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 9 00:41:33 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=5d28bd16b62335f30d94f23e1ad02e516dd71fc08dbf3c50fc4204e5b1149a70, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:69:cf:50:f1:1d:08:34:49:2a:5a:c5:51:ec: b0:92:c5:3c:65:44:40:c4:01:2f:07:bd:a0:da:1e: bc:31:20:da:51:2d:45:77:bc:27:9e:d5:d1:28:f7: 42:fa:18:e5:65:00:ea:55:4c:b6:69:31:01:0b:30: ce:3f:2f:bd:5a:ae:88:bf:a2:5e:0c:3a:2e:5c:da: 60:6e:5b:37:5b:51:c1:fe:ae:62:4e:fc:46:a0:96: 92:8c:18:f1:1e:03:af:79:40:0d:c2:ff:04:af:1b: 9b:85:67:00:8f:d3:04:cc:d8:b6:23:12:4d:09:90: 74:50:9e:0a:bf:dc:ff:58:da:5a:d2:b5:24:f9:91: 59:f1:23:59:0c:a5:07:c2:a7:69:c1:5f:48:d7:30: 10:d5:fd:83:f0:dd:82:f0:43:4f:82:54:95:52:e2: b1:2e:1f:c6:2f:b6:b7:92:b9:28:22:64:1c:5c:72: ef:9b:0b:09:a3:a7:1b:b9:5b:81:91:0e:c1:a8:d2: 85:80:0e:fb:32:04:03:a6:60:02:5c:8b:7a:83:3f: 55:0f:9e:f5:1f:4b:37:f4:a6:4a:9f:bb:5f:35:ed: 41:19:97:e6:46:22:97:8d:ab:9b:ab:59:3d:12:76: c4:72:ad:63:20:1d:31:66:b7:56:3a:45:7f:13:52: e0:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:CC:AD:83:FF:3A:B0:78:1C:1D:D6:64:AE:E6:E2:C6:36:63:B0:30 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1b104d16-32c1-4120-849f-050a4b66c723.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.220.0.0/20 Signature Algorithm: sha256WithRSAEncryption 24:fd:d0:af:ca:cb:e3:9f:e0:c0:37:c9:37:07:39:ca:d2:d9: 74:4f:46:03:46:68:96:a0:5d:a7:9a:c5:b8:cc:0c:38:2c:78: 97:94:81:f2:92:ab:6c:ed:5a:2f:ca:6f:c1:27:96:68:ec:81: 05:c0:f4:8a:aa:4e:ad:52:57:df:68:4d:28:7b:3d:c4:03:57: fa:f3:64:85:4c:62:0c:d4:2c:50:e0:e6:4b:5b:14:97:84:16: 28:45:28:bb:9f:ec:68:6a:ff:e4:c8:24:3a:30:d6:96:98:a2: 45:a2:b3:12:f9:68:62:b2:ab:2d:db:c6:8e:39:0d:aa:7f:f4: 07:92:01:c3:cc:0c:0d:8c:a3:da:d5:da:98:24:57:67:da:f7: 9e:ed:24:69:73:82:2d:76:cf:46:44:bf:7b:03:b5:47:1e:75: 1d:11:f2:6e:e3:3e:0d:a3:cd:d2:38:4f:c0:e5:74:70:e2:7e: 6a:fa:7b:0f:ea:da:29:72:86:42:30:4e:4f:03:04:a3:3d:f0: 2d:ef:1f:70:59:fd:d1:49:75:f2:51:d8:59:2d:fa:d8:73:5d: bd:ef:a5:af:1e:0c:f4:35:b2:89:af:34:e4:e7:88:e3:63:76: 74:28:26:dd:e4:47:72:7d:e7:26:98:c4:02:69:72:65:45:42: ff:e7:9d:f0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNbELSeDYSkGkVq9XCAavnktWR94wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTA5MDA0MTMzWhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZDI4YmQxNmI2MjMzNWYzMGQ5NGYyM2UxYWQwMmU1MTZk ZDcxZmMwOGRiZjNjNTBmYzQyMDRlNWIxMTQ5YTcwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAac9Q8R0INEkqWsVR7LCSxTxlREDEAS8HvaDaHrwxINpR LUV3vCee1dEo90L6GOVlAOpVTLZpMQELMM4/L71aroi/ol4MOi5c2mBuWzdbUcH+ rmJO/EaglpKMGPEeA695QA3C/wSvG5uFZwCP0wTM2LYjEk0JkHRQngq/3P9Y2lrS tST5kVnxI1kMpQfCp2nBX0jXMBDV/YPw3YLwQ0+CVJVS4rEuH8YvtreSuSgiZBxc cu+bCwmjpxu5W4GRDsGo0oWADvsyBAOmYAJci3qDP1UPnvUfSzf0pkqfu1817UEZ l+ZGIpeNq5urWT0SdsRyrWMgHTFmt1Y6RX8TUuBvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzMytg/86sHgcHdZkrubixjZjsDAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzFiMTA0ZDE2LTMyYzEtNDEyMC04NDlmLTA1MGE0YjY2YzcyMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQP3AAwDQYJKoZIhvcNAQELBQADggEBACT90K/Ky+Of4MA3yTcHOcrS2XRP RgNGaJagXaeaxbjMDDgseJeUgfKSq2ztWi/Kb8EnlmjsgQXA9IqqTq1SV99oTSh7 PcQDV/rzZIVMYgzULFDg5ktbFJeEFihFKLuf7Ghq/+TIJDow1paYokWisxL5aGKy qy3bxo45Dap/9AeSAcPMDA2Mo9rV2pgkV2fa957tJGlzgi12z0ZEv3sDtUcedR0R 8m7jPg2jzdI4T8DldHDifmr6ew/q2ilyhkIwTk8DBKM98C3vH3BZ/dFJdfJR2Fkt +thzXb3vpa8eDPQ1somvNOTniONjdnQoJt3kR3J95yaYxAJpcmVFQv/nnfA= -----END CERTIFICATE-----Generated at Fri May 9 16:16:36 2025 by rpki-client