$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/216fe048-3ab4-4534-8023-6903a6fb09fe.roa File: 216fe048-3ab4-4534-8023-6903a6fb09fe.roa (raw, json) Hash identifier: HwcXDp/hYn51GXBZ99Z10s+V0AmBrioalXZZtxQIxj0= Subject key identifier: CC:E4:82:95:AC:8A:9D:C0:88:B8:7E:41:F4:79:10:06:8A:84:E4:E0 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0D9979BDCC9F06C893DDDE01DBEEF406A62E312C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/216fe048-3ab4-4534-8023-6903a6fb09fe.roa Signing time: Mon 30 Jun 2025 16:00:22 +0000 ROA not before: Mon 30 Jun 2025 16:00:22 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.253.224.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:99:79:bd:cc:9f:06:c8:93:dd:de:01:db:ee:f4:06:a6:2e:31:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 30 16:00:22 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=1054a458a66c8fa282fca13465397afdc49f1253f8f4a7a23a4dabb85ba853bf, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:27:43:50:ae:80:f0:fb:2b:43:6c:9e:57:99: e7:57:fc:ae:13:2d:8a:04:49:2e:5a:fd:7a:f6:be: 5c:b8:5a:f9:44:28:35:e3:67:c7:97:a3:c1:8f:c8: 4d:6b:61:a7:23:4a:f4:45:bc:49:b5:ef:9a:b0:b9: 37:18:e3:65:1d:e6:61:4b:e5:9f:a9:5a:22:e9:31: 72:12:26:e2:23:2b:52:55:16:be:05:7c:28:26:bc: 95:49:66:90:43:39:1d:29:ea:6d:01:bd:4f:e5:ff: c0:f9:0e:90:fb:00:79:74:c7:59:90:a0:64:54:73: d9:4e:55:f8:28:03:b1:1b:7a:7e:9c:e2:c0:e9:ae: 2b:d0:ad:98:81:a2:cc:c8:c6:f8:0d:e1:41:29:e5: 93:3f:dd:9f:38:63:91:d5:15:96:d8:70:01:83:92: f1:a0:81:f8:02:25:aa:ff:72:a7:85:c1:d9:f4:83: a1:b0:e3:18:28:b9:23:bd:76:7d:5b:e5:db:8f:23: 10:7f:33:4d:89:af:88:69:71:77:b5:9c:9f:e0:73: e6:d9:8f:c3:e2:0f:88:9d:b6:db:87:56:b2:4d:08: cd:4c:7c:e6:74:a3:7b:3a:c8:df:d8:c5:82:4a:ed: 9f:99:a6:6d:02:84:1a:d8:27:f3:a1:f9:6c:fa:b6: d0:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:E4:82:95:AC:8A:9D:C0:88:B8:7E:41:F4:79:10:06:8A:84:E4:E0 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/216fe048-3ab4-4534-8023-6903a6fb09fe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.253.224.0/22 Signature Algorithm: sha256WithRSAEncryption 83:9d:7c:db:4a:d2:58:7c:89:64:85:c9:b4:08:75:68:92:4a: 57:d3:3a:2b:de:c8:3b:f6:6b:a9:40:92:eb:8b:7a:e2:6c:f5: d7:17:e7:5f:9a:3f:a0:72:a2:c6:9c:56:51:e0:df:c6:c9:95: 99:0a:ff:c5:24:91:d3:8b:6b:14:b7:a6:30:d5:5c:dd:97:3f: 33:86:b0:cf:c9:42:7c:cd:fd:e9:4b:2c:ac:ff:63:37:9f:9e: 2c:99:f1:e0:92:9e:a5:8f:f8:e7:55:4d:cb:08:fe:d6:4b:66: 50:fb:99:65:cd:ae:5c:f2:a7:c9:98:81:4a:29:e4:90:39:1f: a2:64:0d:aa:41:30:ac:8c:40:c1:ce:ff:33:92:17:b0:38:cf: 9a:71:aa:cf:02:e8:00:12:e2:48:32:43:77:82:4f:82:6e:bf: 98:c8:5d:c8:64:65:74:95:0e:8a:e5:9d:d4:bf:a4:d0:7b:ff: 1b:09:45:97:06:f1:bd:ae:f9:18:63:50:47:d8:ed:75:05:44: 6a:5d:35:da:a8:0f:ff:3d:3b:d0:ea:76:bb:7d:1f:3f:63:48: 31:e2:ec:9b:d0:da:ec:95:ee:f1:3f:4d:98:cd:83:00:27:7c: af:17:47:bf:69:de:09:ad:8a:75:18:72:50:7f:d3:af:cb:5b: 6b:5b:bd:d6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDZl5vcyfBsiT3d4B2+70BqYuMSwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjMwMTYwMDIyWhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMDU0YTQ1OGE2NmM4ZmEyODJmY2ExMzQ2NTM5N2FmZGM0 OWYxMjUzZjhmNGE3YTIzYTRkYWJiODViYTg1M2JmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYJ0NQroDw+ytDbJ5XmedX/K4TLYoESS5a/Xr2vly4WvlE KDXjZ8eXo8GPyE1rYacjSvRFvEm175qwuTcY42Ud5mFL5Z+pWiLpMXISJuIjK1JV Fr4FfCgmvJVJZpBDOR0p6m0BvU/l/8D5DpD7AHl0x1mQoGRUc9lOVfgoA7Eben6c 4sDprivQrZiBoszIxvgN4UEp5ZM/3Z84Y5HVFZbYcAGDkvGggfgCJar/cqeFwdn0 g6Gw4xgouSO9dn1b5duPIxB/M02Jr4hpcXe1nJ/gc+bZj8PiD4idttuHVrJNCM1M fOZ0o3s6yN/YxYJK7Z+Zpm0ChBrYJ/Oh+Wz6ttDhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzOSClayKncCIuH5B9HkQBoqE5OAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzIxNmZlMDQ4LTNhYjQtNDUzNC04MDIzLTY5MDNhNmZiMDlmZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAID/eAwDQYJKoZIhvcNAQELBQADggEBAIOdfNtK0lh8iWSFybQIdWiSSlfT OiveyDv2a6lAkuuLeuJs9dcX51+aP6ByosacVlHg38bJlZkK/8UkkdOLaxS3pjDV XN2XPzOGsM/JQnzN/elLLKz/YzefniyZ8eCSnqWP+OdVTcsI/tZLZlD7mWXNrlzy p8mYgUop5JA5H6JkDapBMKyMQMHO/zOSF7A4z5pxqs8C6AAS4kgyQ3eCT4Juv5jI XchkZXSVDorlndS/pNB7/xsJRZcG8b2u+RhjUEfY7XUFRGpdNdqoD/89O9Dqdrt9 Hz9jSDHi7JvQ2uyV7vE/TZjNgwAnfK8XR79p3gmtinUYclB/06/LW2tbvdY= -----END CERTIFICATE-----Generated at Tue Jul 1 00:24:18 2025 by rpki-client