$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/65eca7d6-2de7-476f-8307-cdd27b16e8e6.roa File: 65eca7d6-2de7-476f-8307-cdd27b16e8e6.roa (raw, json) Hash identifier: zudvbdmVOOcBwO33LmFJGa3dI5sNgPhN74Ee8jm0mus= Subject key identifier: 91:C2:B0:0B:CB:71:9D:C7:D8:BF:6B:5E:49:FF:AA:80:F8:92:1D:AF Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 20A1255CCF89253B870D8AF54FC4A776895EBF97 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/65eca7d6-2de7-476f-8307-cdd27b16e8e6.roa Signing time: Mon 30 Jun 2025 16:40:11 +0000 ROA not before: Mon 30 Jun 2025 16:40:11 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.2.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:a1:25:5c:cf:89:25:3b:87:0d:8a:f5:4f:c4:a7:76:89:5e:bf:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 30 16:40:11 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=69e947cca1f6a9dd8eeff6bad29fa119cd4ba047b6e6ad3a03e474f1ac47755d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:5b:6b:8a:b7:c1:82:99:cd:f6:c2:ef:e9:bb: fe:89:bf:ed:b5:09:e9:ac:9e:71:ca:6a:db:da:52: df:c9:ec:56:11:91:a5:0b:f3:8f:f1:3a:ef:ee:49: ff:4f:50:a7:b3:3e:66:13:b7:47:4f:95:8d:8a:f5: 91:81:ba:9a:0c:e4:a4:d8:35:ee:75:79:33:89:fe: cf:3d:84:15:46:84:6c:8a:35:96:b4:71:8f:00:bf: 1d:f2:0d:e0:29:36:f9:dd:1a:8a:07:3b:ae:1d:24: 09:c2:1e:62:4e:e7:df:49:14:f2:a0:d2:88:ed:1d: d8:ca:21:18:8d:9f:a1:84:c4:d6:37:3d:91:f2:b6: c8:25:52:1e:fa:af:6c:e3:88:da:8c:86:d3:f6:65: bc:0e:40:6a:83:fb:9d:aa:b7:02:b3:47:c5:18:72: f4:de:37:89:4c:16:82:8e:98:84:51:cf:ed:cf:91: 69:61:54:42:db:95:47:4c:b4:02:ae:8d:d3:0e:93: ce:9f:aa:1d:ac:18:f0:86:6d:84:08:81:1d:0b:ee: 30:4c:f1:cc:d5:e7:85:91:69:4b:b2:43:61:b8:45: 34:bc:d4:c0:6a:28:ab:13:0a:6d:db:b3:cc:59:fd: 7a:be:4b:35:e0:34:66:e2:42:d6:ba:18:c2:2b:2e: b2:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:C2:B0:0B:CB:71:9D:C7:D8:BF:6B:5E:49:FF:AA:80:F8:92:1D:AF X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/65eca7d6-2de7-476f-8307-cdd27b16e8e6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.2.0.0/15 Signature Algorithm: sha256WithRSAEncryption 33:9a:61:f2:6f:71:a2:12:00:a1:78:dc:62:06:53:b8:4c:20: e8:47:0e:4c:52:d0:7d:7c:23:b1:c6:49:dd:91:67:f2:62:83: 24:f0:f4:f8:30:b0:d0:69:8e:d4:f5:df:f3:af:c0:9a:58:0a: ab:bc:9b:da:ea:69:45:94:35:cc:e4:ac:27:59:e7:bb:a0:63: 96:1e:66:94:0b:3e:66:fe:eb:0d:05:61:c6:a4:45:fc:13:b2: 1a:7a:d6:bf:6d:eb:ac:38:86:6a:d4:d7:e4:cf:ea:c5:61:1b: 3b:47:a7:78:42:de:92:3b:f5:a1:09:6d:d1:81:cd:09:82:9c: 47:dd:4e:96:d9:22:fc:99:84:05:ce:4f:44:ac:ee:63:21:9b: 91:54:73:f9:ce:c2:0b:ec:3a:2f:b9:4b:0a:e7:6f:99:41:96: 43:26:ae:6b:0a:6c:22:55:23:3a:a3:4a:50:5e:8a:8a:6f:88: 6e:86:26:ea:11:cf:f1:2f:0b:72:a1:9e:70:39:63:00:52:77: 7b:26:9f:54:c9:1d:2e:e5:f4:8b:f0:e5:83:e6:fb:02:3f:fe: a7:56:3f:69:c2:cf:93:19:28:b4:0d:2a:92:15:a8:a7:65:5e: 5f:7b:99:af:b0:97:c8:f4:75:7e:77:52:b5:41:31:26:14:db: 28:65:97:56 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIKElXM+JJTuHDYr1T8Sndolev5cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjMwMTY0MDExWhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2OWU5NDdjY2ExZjZhOWRkOGVlZmY2YmFkMjlmYTExOWNk NGJhMDQ3YjZlNmFkM2EwM2U0NzRmMWFjNDc3NTVkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0W2uKt8GCmc32wu/pu/6Jv+21CemsnnHKatvaUt/J7FYR kaUL84/xOu/uSf9PUKezPmYTt0dPlY2K9ZGBupoM5KTYNe51eTOJ/s89hBVGhGyK NZa0cY8Avx3yDeApNvndGooHO64dJAnCHmJO599JFPKg0ojtHdjKIRiNn6GExNY3 PZHytsglUh76r2zjiNqMhtP2ZbwOQGqD+52qtwKzR8UYcvTeN4lMFoKOmIRRz+3P kWlhVELblUdMtAKujdMOk86fqh2sGPCGbYQIgR0L7jBM8czV54WRaUuyQ2G4RTS8 1MBqKKsTCm3bs8xZ/Xq+SzXgNGbiQta6GMIrLrLlAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUkcKwC8txncfYv2teSf+qgPiSHa8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzY1ZWNhN2Q2LTJkZTctNDc2Zi04MzA3LWNkZDI3YjE2ZThlNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwE0AjANBgkqhkiG9w0BAQsFAAOCAQEAM5ph8m9xohIAoXjcYgZTuEwg6EcO TFLQfXwjscZJ3ZFn8mKDJPD0+DCw0GmO1PXf86/AmlgKq7yb2uppRZQ1zOSsJ1nn u6Bjlh5mlAs+Zv7rDQVhxqRF/BOyGnrWv23rrDiGatTX5M/qxWEbO0eneELekjv1 oQlt0YHNCYKcR91Oltki/JmEBc5PRKzuYyGbkVRz+c7CC+w6L7lLCudvmUGWQyau awpsIlUjOqNKUF6Kim+IboYm6hHP8S8LcqGecDljAFJ3eyafVMkdLuX0i/Dlg+b7 Aj/+p1Y/acLPkxkotA0qkhWop2VeX3uZr7CXyPR1fndStUExJhTbKGWXVg== -----END CERTIFICATE-----Generated at Mon Jun 30 23:11:17 2025 by rpki-client