$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/31b3c27f-c2a6-4964-8eb8-dbb3fb26b4d3.roa File: 31b3c27f-c2a6-4964-8eb8-dbb3fb26b4d3.roa (raw, json) Hash identifier: pO4ffSQ7465mYSkb5E9dxZ+E5O2sVeWuJ0OtiOi+Ft4= Subject key identifier: 32:52:17:24:50:5D:8A:65:D2:0A:28:61:BE:6A:3D:5E:6F:D8:18:A6 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3CF163F7A1B43EEAC50CAE4220F1AA132CABB88C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/31b3c27f-c2a6-4964-8eb8-dbb3fb26b4d3.roa Signing time: Mon 30 Jun 2025 17:20:21 +0000 ROA not before: Mon 30 Jun 2025 17:20:21 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.189.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:f1:63:f7:a1:b4:3e:ea:c5:0c:ae:42:20:f1:aa:13:2c:ab:b8:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 30 17:20:21 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=a6e5b6c6bb8363f11bed72eeba814b2edbf9c57fd331a813a1b9f57b35030fb6, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:58:34:a9:3f:3b:ff:1d:2d:05:7e:c5:1a:a1: 93:15:d4:48:4e:10:78:74:11:e6:22:f0:8e:c8:d0: 45:11:db:e9:85:a2:ab:67:d7:d3:58:0f:2c:cd:a9: 7a:e5:85:0e:11:4d:15:f7:f6:db:17:ac:c3:ab:b2: 7e:77:b4:f9:81:6b:1e:ef:de:c1:7e:19:45:23:9c: 8e:47:4c:f5:ea:37:ab:5e:2c:90:28:d0:82:d4:de: 1a:ba:65:f4:3b:62:d9:22:6e:5a:f5:17:11:44:5a: 66:65:1f:0f:09:95:fe:4f:81:96:48:c9:95:6d:2b: 4e:b8:ed:d2:eb:bd:23:ae:45:c3:67:b8:bb:5c:1b: 1c:f4:16:f5:c5:6b:44:f1:62:77:8b:ca:94:a9:86: d6:7d:39:56:c5:05:72:c6:bb:7c:f2:9e:c3:f6:50: 73:17:1a:82:0f:b4:b3:23:df:34:fb:c8:52:98:0e: 2d:db:18:97:23:71:b6:69:48:cb:49:97:4d:2a:a7: 1d:af:b1:54:7a:f5:f7:7c:12:8b:5c:ff:98:98:8d: ef:55:a8:4c:3e:ed:0e:5e:ce:46:4e:f2:e7:b5:c8: 05:6f:9f:02:f1:b3:d9:81:fe:b2:09:66:1e:44:90: 17:1a:a9:c9:45:18:47:43:02:49:23:36:e3:77:b8: b1:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:52:17:24:50:5D:8A:65:D2:0A:28:61:BE:6A:3D:5E:6F:D8:18:A6 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/31b3c27f-c2a6-4964-8eb8-dbb3fb26b4d3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.189.128.0/18 Signature Algorithm: sha256WithRSAEncryption 96:a4:a5:6d:cf:cd:87:14:8b:82:d3:73:a3:d7:23:ae:31:9b: d9:62:61:1d:9e:39:30:05:b5:40:cf:52:0b:44:08:27:51:b1: 1f:a6:c7:b3:e8:db:33:b3:86:62:96:6b:c5:fa:97:be:ef:a7: 3c:4b:55:dd:ad:39:74:96:93:fe:7d:e7:09:8b:e1:b5:0d:5b: 7b:9f:14:31:c2:97:b7:94:5c:9a:97:71:a6:bb:84:49:c8:c0: b3:39:88:9c:d5:2d:23:eb:36:7c:3c:cb:cb:5f:6e:29:3b:5a: 94:93:ea:8d:93:c8:0f:e0:e5:d8:78:54:fa:ba:f3:5a:f8:03: 1e:11:c6:c5:20:53:c6:9c:b3:34:bc:83:e1:33:da:b4:a2:b3: e6:5f:f5:14:a7:20:d4:19:f9:0b:c0:ad:1c:5e:02:c3:2b:e3: af:66:57:fe:11:64:2a:f4:0b:f6:75:07:64:da:ac:e7:75:0b: fa:a4:4f:a6:dc:12:1c:2d:d0:93:27:9f:71:a8:75:7f:bb:5e: 5a:66:26:8f:fb:62:90:61:48:5c:59:76:9a:6d:f9:cd:ae:25: 99:7f:67:5b:ea:a3:a0:0d:21:69:72:76:b3:e4:c6:21:31:0e: 56:f9:47:79:e1:83:ad:13:84:70:ba:f4:36:8b:7e:7c:ff:ca: 0c:81:32:c9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPPFj96G0PurFDK5CIPGqEyyruIwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjMwMTcyMDIxWhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNmU1YjZjNmJiODM2M2YxMWJlZDcyZWViYTgxNGIyZWRi ZjljNTdmZDMzMWE4MTNhMWI5ZjU3YjM1MDMwZmI2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYWDSpPzv/HS0FfsUaoZMV1EhOEHh0EeYi8I7I0EUR2+mF oqtn19NYDyzNqXrlhQ4RTRX39tsXrMOrsn53tPmBax7v3sF+GUUjnI5HTPXqN6te LJAo0ILU3hq6ZfQ7Ytkiblr1FxFEWmZlHw8Jlf5PgZZIyZVtK0647dLrvSOuRcNn uLtcGxz0FvXFa0TxYneLypSphtZ9OVbFBXLGu3zynsP2UHMXGoIPtLMj3zT7yFKY Di3bGJcjcbZpSMtJl00qpx2vsVR69fd8Eotc/5iYje9VqEw+7Q5ezkZO8ue1yAVv nwLxs9mB/rIJZh5EkBcaqclFGEdDAkkjNuN3uLFdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMlIXJFBdimXSCihhvmo9Xm/YGKYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzMxYjNjMjdmLWMyYTYtNDk2NC04ZWI4LWRiYjNmYjI2YjRkMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY2vYAwDQYJKoZIhvcNAQELBQADggEBAJakpW3PzYcUi4LTc6PXI64xm9li YR2eOTAFtUDPUgtECCdRsR+mx7Po2zOzhmKWa8X6l77vpzxLVd2tOXSWk/595wmL 4bUNW3ufFDHCl7eUXJqXcaa7hEnIwLM5iJzVLSPrNnw8y8tfbik7WpST6o2TyA/g 5dh4VPq681r4Ax4RxsUgU8acszS8g+Ez2rSis+Zf9RSnINQZ+QvArRxeAsMr469m V/4RZCr0C/Z1B2TarOd1C/qkT6bcEhwt0JMnn3GodX+7XlpmJo/7YpBhSFxZdppt +c2uJZl/Z1vqo6ANIWlydrPkxiExDlb5R3nhg60ThHC69DaLfnz/ygyBMsk= -----END CERTIFICATE-----Generated at Mon Jun 30 22:30:17 2025 by rpki-client