$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/22d73f45-b389-48f3-8afb-25d789336832.roa File: 22d73f45-b389-48f3-8afb-25d789336832.roa (raw, json) Hash identifier: lBOcZ6fn3p6hZXH/nxuCxmsl2GDzhsS+KMmgO3r6lLg= Subject key identifier: 46:F5:8D:9E:83:6A:9D:46:88:40:75:08:FD:B7:54:08:15:B0:02:62 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 64BA38C69A1B4068831306AAA144EAFDA0A5CDD1 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/22d73f45-b389-48f3-8afb-25d789336832.roa Signing time: Fri 09 May 2025 15:21:52 +0000 ROA not before: Fri 09 May 2025 15:21:52 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.15.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:ba:38:c6:9a:1b:40:68:83:13:06:aa:a1:44:ea:fd:a0:a5:cd:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 9 15:21:52 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=d673465b59c7c606413e43c0dc02f03fa06b1ea7c17a2ace0125fea57dd78f11, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:81:73:d0:be:82:62:6e:56:19:de:c3:93:6c: d8:b9:bd:8a:70:b4:da:59:c4:cf:12:db:b3:83:73: 1b:ba:13:14:33:f0:d4:e4:b9:bb:3d:f8:a1:5b:0f: a2:07:41:9a:52:95:4e:0f:60:71:b2:04:83:a6:81: 2d:db:f4:14:83:51:f3:75:b5:4e:6e:27:fd:9d:97: 67:fd:00:41:22:20:02:74:12:41:c2:04:7b:17:d1: ab:2b:1b:d7:3b:d5:f0:6e:1e:3f:18:87:55:0f:79: ec:6c:45:bb:51:46:b8:1d:c7:b5:f7:08:ae:eb:a6: 6d:1e:4f:dc:33:b3:5d:04:22:29:f3:38:14:9f:bf: 5b:e9:81:58:db:f2:36:95:73:0d:5b:52:91:8b:93: 14:c3:cd:85:36:3d:97:70:13:b3:2a:07:15:b3:ea: fd:3d:fa:5d:d9:c4:a6:68:43:e1:c9:5c:1c:c9:39: ac:5d:bb:9f:0e:06:0f:98:27:66:78:70:35:df:4e: 84:79:e0:27:94:ba:48:80:bc:6c:4c:8e:fb:67:de: 9f:8f:a8:9b:19:f7:d9:ba:a0:78:83:07:51:50:c5: d5:da:2b:cd:84:37:46:63:88:14:2c:d3:1f:f3:04: bf:fe:84:14:22:48:37:e1:7e:a9:d3:65:4a:98:d8: ef:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:F5:8D:9E:83:6A:9D:46:88:40:75:08:FD:B7:54:08:15:B0:02:62 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/22d73f45-b389-48f3-8afb-25d789336832.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.15.0.0/19 Signature Algorithm: sha256WithRSAEncryption a5:89:a9:e3:79:c3:07:eb:21:c7:52:03:d7:0d:ff:f4:f7:25: ca:43:a6:3a:a7:23:e3:87:ec:2e:4b:8a:fa:a5:3e:b6:e1:7f: e4:b0:35:64:f1:97:ad:89:bc:6d:5b:37:89:31:db:6d:67:60: 92:13:6b:37:75:c1:1d:61:8a:40:45:8a:6e:23:23:0b:4a:c2: 76:b2:f0:9a:5c:6b:46:31:a0:4f:1e:b7:15:69:9f:84:61:8c: 90:0a:af:d3:03:09:60:d6:0b:e7:6e:6d:3a:b3:5f:a9:bd:13: 6b:3b:80:fe:13:a4:16:a0:e9:9d:a2:1d:03:b1:08:ae:90:24: a3:98:e5:cc:01:49:f1:a0:a5:3f:6d:22:54:88:20:15:f5:60: da:02:27:00:c1:36:e5:c0:11:57:3c:8d:44:b9:c8:75:a8:c2: b1:e6:32:3c:f6:e4:39:8f:c0:f7:af:fe:eb:61:f5:01:97:0d: df:3c:d8:59:c2:da:d0:15:df:fa:40:b0:90:78:9d:d8:09:c7: 49:cf:47:a1:ea:c4:84:98:6a:c8:36:20:b1:a4:5f:cb:0e:79: 1b:64:e6:fc:de:33:94:64:2f:41:5a:47:ba:b3:a1:85:8c:73: 3c:8b:15:45:b6:69:7f:56:69:8e:27:38:e6:76:d8:67:4a:01: da:91:fa:ab -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZLo4xpobQGiDEwaqoUTq/aClzdEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTA5MTUyMTUyWhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNjczNDY1YjU5YzdjNjA2NDEzZTQzYzBkYzAyZjAzZmEw NmIxZWE3YzE3YTJhY2UwMTI1ZmVhNTdkZDc4ZjExMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCNgXPQvoJiblYZ3sOTbNi5vYpwtNpZxM8S27ODcxu6ExQz 8NTkubs9+KFbD6IHQZpSlU4PYHGyBIOmgS3b9BSDUfN1tU5uJ/2dl2f9AEEiIAJ0 EkHCBHsX0asrG9c71fBuHj8Yh1UPeexsRbtRRrgdx7X3CK7rpm0eT9wzs10EIinz OBSfv1vpgVjb8jaVcw1bUpGLkxTDzYU2PZdwE7MqBxWz6v09+l3ZxKZoQ+HJXBzJ Oaxdu58OBg+YJ2Z4cDXfToR54CeUukiAvGxMjvtn3p+PqJsZ99m6oHiDB1FQxdXa K82EN0ZjiBQs0x/zBL/+hBQiSDfhfqnTZUqY2O/jAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURvWNnoNqnUaIQHUI/bdUCBWwAmIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzIyZDczZjQ1LWIzODktNDhmMy04YWZiLTI1ZDc4OTMzNjgzMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU0DwAwDQYJKoZIhvcNAQELBQADggEBAKWJqeN5wwfrIcdSA9cN//T3JcpD pjqnI+OH7C5LivqlPrbhf+SwNWTxl62JvG1bN4kx221nYJITazd1wR1hikBFim4j IwtKwnay8Jpca0YxoE8etxVpn4RhjJAKr9MDCWDWC+dubTqzX6m9E2s7gP4TpBag 6Z2iHQOxCK6QJKOY5cwBSfGgpT9tIlSIIBX1YNoCJwDBNuXAEVc8jUS5yHWowrHm Mjz25DmPwPev/uth9QGXDd882FnC2tAV3/pAsJB4ndgJx0nPR6HqxISYasg2ILGk X8sOeRtk5vzeM5RkL0FaR7qzoYWMczyLFUW2aX9WaY4nOOZ22GdKAdqR+qs= -----END CERTIFICATE-----Generated at Fri May 9 16:33:10 2025 by rpki-client