$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5e9689be-d86a-4ada-9b31-610dcf35ec4b.roa File: 5e9689be-d86a-4ada-9b31-610dcf35ec4b.roa (raw, json) Hash identifier: 2v3VbXKAVPy1uTms6pNUsYGXIkyuA9gQt3+uVhXGXoA= Subject key identifier: AD:F7:C5:A2:86:AF:BE:8A:1A:C5:B2:0F:39:22:A3:55:48:C5:F3:B6 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5A021D07EFFDD0348A0EC5D7DF23818BEAF652DC Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5e9689be-d86a-4ada-9b31-610dcf35ec4b.roa Signing time: Mon 09 Jun 2025 17:20:06 +0000 ROA not before: Mon 09 Jun 2025 17:20:06 +0000 ROA not after: Mon 14 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 128.181.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:02:1d:07:ef:fd:d0:34:8a:0e:c5:d7:df:23:81:8b:ea:f6:52:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 9 17:20:06 2025 GMT Not After : Jul 14 23:59:59 2025 GMT Subject: serialNumber=56c68a8a84f82864b59f01409ca8235b11f310c90e4b4d32fa7fe799c4a98aeb, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bf:4a:d9:de:07:28:35:22:a8:71:d1:a5:c9: c8:7e:d7:86:d1:a2:59:38:73:08:6f:06:5c:12:7f: 9f:5e:d4:75:08:62:f9:17:6c:5d:2c:c4:90:45:b6: f0:26:3e:47:b1:07:34:79:85:06:12:6c:2f:2c:63: b5:1b:0a:6c:67:35:7e:25:54:83:d8:cc:80:72:96: 9d:8e:80:5a:07:d2:1f:70:36:14:41:df:b7:66:53: 66:48:33:81:34:19:ce:96:a1:65:f5:89:ca:9b:c9: da:64:b4:e1:62:c7:ca:20:7a:20:ff:0c:cb:df:42: 16:7e:9a:31:d0:1b:bf:b1:a4:4a:61:77:c7:cd:08: 3c:40:5d:49:10:ce:13:4f:01:2d:58:ba:20:49:25: ad:70:90:1f:e2:a3:6f:19:65:a8:50:62:bb:9e:75: 1c:cd:b6:a9:a5:0d:86:76:f5:48:fd:85:89:bc:e8: fc:fd:5a:26:a6:d0:99:8a:18:db:85:03:dc:a1:6f: ed:4c:58:74:2b:8d:04:e5:12:48:39:84:61:53:1d: f8:1e:57:99:04:6e:05:4c:ee:55:9e:1c:82:f5:74: c7:68:fa:46:b0:e6:b4:34:4f:a9:96:3a:e5:fb:ab: 79:e5:bb:6b:df:44:39:4a:74:f6:3b:39:95:5f:cc: d0:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:F7:C5:A2:86:AF:BE:8A:1A:C5:B2:0F:39:22:A3:55:48:C5:F3:B6 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5e9689be-d86a-4ada-9b31-610dcf35ec4b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 128.181.0.0/16 Signature Algorithm: sha256WithRSAEncryption 45:08:02:d6:e9:23:a1:5d:4b:07:91:31:c5:f7:fc:0c:37:4d: c2:31:1b:68:b2:db:5b:ba:56:93:ba:07:28:68:df:35:04:48: 6d:4a:f7:82:ad:bd:a9:e6:2f:f9:1f:0f:0e:a2:56:e5:fc:bf: 5d:ac:5d:4b:ab:f4:b2:17:61:a2:95:ba:3f:40:dd:03:88:34: ca:6d:a0:51:3a:6e:5d:c7:74:fd:e4:55:13:94:f1:76:6d:b2: 90:e8:92:49:ca:f2:ee:4a:38:4d:64:fe:94:1e:54:21:14:de: bd:7e:94:c3:47:9e:bd:eb:01:94:e3:a0:3d:58:a6:92:27:08: 57:fd:22:69:dc:95:dd:97:1f:d0:c0:f6:31:ba:d2:6e:c3:ab: 5b:e9:0c:63:84:ab:fa:40:96:ad:e9:0b:aa:8c:fa:c9:08:b8: 44:8a:f5:95:02:c3:2b:0c:26:13:9a:df:d6:c4:1c:b9:bf:15: d4:8d:42:a1:d9:2e:06:96:a5:4c:60:32:e9:84:cd:f8:59:7c: c6:e1:c3:88:e1:fc:6b:0b:af:1e:21:93:46:90:2a:3f:38:65: b9:91:70:85:db:84:27:52:6f:28:ae:5e:dc:8e:90:df:9a:5a: c6:3a:06:cc:1a:f1:4f:66:2f:97:41:81:18:ff:30:f4:69:5e: cc:a1:bc:96 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWgIdB+/90DSKDsXX3yOBi+r2UtwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjA5MTcyMDA2WhcNMjUwNzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NmM2OGE4YTg0ZjgyODY0YjU5ZjAxNDA5Y2E4MjM1YjEx ZjMxMGM5MGU0YjRkMzJmYTdmZTc5OWM0YTk4YWViMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/v0rZ3gcoNSKocdGlych+14bRolk4cwhvBlwSf59e1HUI YvkXbF0sxJBFtvAmPkexBzR5hQYSbC8sY7UbCmxnNX4lVIPYzIBylp2OgFoH0h9w NhRB37dmU2ZIM4E0Gc6WoWX1icqbydpktOFix8ogeiD/DMvfQhZ+mjHQG7+xpEph d8fNCDxAXUkQzhNPAS1YuiBJJa1wkB/io28ZZahQYruedRzNtqmlDYZ29Uj9hYm8 6Pz9Wiam0JmKGNuFA9yhb+1MWHQrjQTlEkg5hGFTHfgeV5kEbgVM7lWeHIL1dMdo +kaw5rQ0T6mWOuX7q3nlu2vfRDlKdPY7OZVfzNCLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUrffFooavvooaxbIPOSKjVUjF87YwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzVlOTY4OWJlLWQ4NmEtNGFkYS05YjMxLTYxMGRjZjM1ZWM0Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCAtTANBgkqhkiG9w0BAQsFAAOCAQEARQgC1ukjoV1LB5Exxff8DDdNwjEb aLLbW7pWk7oHKGjfNQRIbUr3gq29qeYv+R8PDqJW5fy/XaxdS6v0shdhopW6P0Dd A4g0ym2gUTpuXcd0/eRVE5Txdm2ykOiSScry7ko4TWT+lB5UIRTevX6Uw0eevesB lOOgPVimkicIV/0iadyV3Zcf0MD2MbrSbsOrW+kMY4Sr+kCWrekLqoz6yQi4RIr1 lQLDKwwmE5rf1sQcub8V1I1CodkuBpalTGAy6YTN+Fl8xuHDiOH8awuvHiGTRpAq PzhluZFwhduEJ1JvKK5e3I6Q35paxjoGzBrxT2Yvl0GBGP8w9GlezKG8lg== -----END CERTIFICATE-----Generated at Mon Jun 30 23:48:58 2025 by rpki-client