$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/22d73f45-b389-48f3-8afb-25d789336832.roa File: 22d73f45-b389-48f3-8afb-25d789336832.roa (raw, json) Hash identifier: Qawd9m1iOOFvA5VCVK+Epkj/FhBZNvxItpimLPI7v9Q= Subject key identifier: 08:82:2F:B4:26:23:0E:A1:3E:5B:60:0C:70:8D:B3:66:CA:12:1C:36 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2AB177C753BC13759DC8538788E8B79440DA9193 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/22d73f45-b389-48f3-8afb-25d789336832.roa Signing time: Mon 30 Jun 2025 16:30:19 +0000 ROA not before: Mon 30 Jun 2025 16:30:19 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.15.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:b1:77:c7:53:bc:13:75:9d:c8:53:87:88:e8:b7:94:40:da:91:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 30 16:30:19 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=ea511bc423b20730de2b7fcbe59959ea8568a18a115d012ab1373e96c014ba63, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:de:d7:d7:ce:5b:a9:8b:72:1c:8f:cf:39:0e: 82:c1:7f:ea:b6:13:29:b0:5e:27:11:31:21:b7:e4: 0f:e9:cd:bf:d1:72:25:2e:c3:69:b8:c4:a4:90:6f: 96:fc:ed:dc:eb:1d:1d:3e:27:36:06:f5:8c:11:43: bb:9a:1b:0c:5d:78:c1:35:cb:36:ee:c4:69:4b:7a: c1:e0:6a:1c:4c:0b:66:c3:d1:3e:af:3d:5c:c1:48: 9f:84:76:fc:65:ac:fd:fa:3d:e2:11:b9:7a:e0:b4: a8:15:35:7f:04:ac:55:58:42:20:7e:6d:1a:11:4a: 5b:2a:7f:73:32:62:04:57:d7:09:10:5c:a6:2f:1f: 31:65:98:63:96:fd:0b:a9:bf:6c:43:3a:d8:3e:7a: 3c:78:fb:7b:99:b7:d4:e5:d5:e0:d9:c9:28:23:05: e3:e7:25:c3:47:18:ec:b9:47:18:49:58:48:c2:2a: c9:11:09:c2:68:dc:f4:6f:e0:8a:f8:22:57:fd:6c: 0e:0b:7a:cd:66:d6:64:3d:12:03:ff:00:7a:33:fb: 7c:93:8a:57:27:d8:1e:bf:70:15:35:82:9f:07:dd: 68:4c:8f:a1:a9:8e:f5:02:c0:4a:77:c4:42:eb:09: e2:25:60:7a:4a:4c:d2:a5:b6:ce:72:84:82:55:18: b6:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:82:2F:B4:26:23:0E:A1:3E:5B:60:0C:70:8D:B3:66:CA:12:1C:36 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/22d73f45-b389-48f3-8afb-25d789336832.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.15.0.0/19 Signature Algorithm: sha256WithRSAEncryption 30:46:94:35:bb:39:86:a0:68:71:24:a6:34:1c:88:4c:04:3c: f2:df:a4:4e:81:dd:51:a2:03:c4:7d:98:64:cd:f1:ca:e4:0c: 34:7a:bc:33:99:ec:19:23:43:d9:3a:f9:19:e0:3e:b4:59:ba: 21:a7:c4:bc:a5:fc:ce:8f:b2:d6:78:35:b8:56:32:93:e9:d4: 23:72:6e:f3:db:0b:a8:42:61:b2:7f:80:38:98:8f:2f:c8:90: 43:89:cf:93:44:da:2c:a7:f8:c2:0d:51:f4:99:a2:76:aa:43: 3e:35:b3:45:ed:27:55:c3:b0:3d:73:2b:bd:f0:8b:83:a8:1d: 2c:2a:5f:16:aa:37:1d:95:7f:87:d8:67:5e:3c:3d:2a:d5:6a: 06:e5:32:4e:48:45:5b:91:e5:e5:08:fa:c2:0c:7d:cb:64:2e: cf:13:2b:f9:76:17:2a:0a:fb:ba:c4:e3:fa:05:13:13:f5:b3: 59:f2:eb:4a:e7:5e:44:81:1a:42:f4:2f:bb:4a:4e:f6:53:58: 8c:61:7c:2d:7a:d2:7f:61:26:db:46:16:2e:19:33:67:a9:30: f9:82:51:fb:f6:0c:97:d3:37:72:7d:0d:67:93:9d:89:f9:f2: 92:f1:04:6d:64:33:d4:36:a1:d2:1a:25:52:77:ee:3e:20:fd: ab:fd:b2:68 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKrF3x1O8E3WdyFOHiOi3lEDakZMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjMwMTYzMDE5WhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYTUxMWJjNDIzYjIwNzMwZGUyYjdmY2JlNTk5NTllYTg1 NjhhMThhMTE1ZDAxMmFiMTM3M2U5NmMwMTRiYTYzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCv3tfXzlupi3Icj885DoLBf+q2EymwXicRMSG35A/pzb/R ciUuw2m4xKSQb5b87dzrHR0+JzYG9YwRQ7uaGwxdeME1yzbuxGlLesHgahxMC2bD 0T6vPVzBSJ+EdvxlrP36PeIRuXrgtKgVNX8ErFVYQiB+bRoRSlsqf3MyYgRX1wkQ XKYvHzFlmGOW/Qupv2xDOtg+ejx4+3uZt9Tl1eDZySgjBePnJcNHGOy5RxhJWEjC KskRCcJo3PRv4Ir4Ilf9bA4Les1m1mQ9EgP/AHoz+3yTilcn2B6/cBU1gp8H3WhM j6GpjvUCwEp3xELrCeIlYHpKTNKlts5yhIJVGLYVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCIIvtCYjDqE+W2AMcI2zZsoSHDYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzIyZDczZjQ1LWIzODktNDhmMy04YWZiLTI1ZDc4OTMzNjgzMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU0DwAwDQYJKoZIhvcNAQELBQADggEBADBGlDW7OYagaHEkpjQciEwEPPLf pE6B3VGiA8R9mGTN8crkDDR6vDOZ7BkjQ9k6+RngPrRZuiGnxLyl/M6PstZ4NbhW MpPp1CNybvPbC6hCYbJ/gDiYjy/IkEOJz5NE2iyn+MINUfSZonaqQz41s0XtJ1XD sD1zK73wi4OoHSwqXxaqNx2Vf4fYZ148PSrVagblMk5IRVuR5eUI+sIMfctkLs8T K/l2FyoK+7rE4/oFExP1s1ny60rnXkSBGkL0L7tKTvZTWIxhfC160n9hJttGFi4Z M2epMPmCUfv2DJfTN3J9DWeTnYn58pLxBG1kM9Q2odIaJVJ37j4g/av9smg= -----END CERTIFICATE-----Generated at Mon Jun 30 23:42:01 2025 by rpki-client