$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6c5331e1-7be3-4fa4-9602-afbd9f20b415.roa File: 6c5331e1-7be3-4fa4-9602-afbd9f20b415.roa (raw, json) Hash identifier: HageNFMm0TSkkjJEmNqSD0KheFrok6H7vUADNqkIJHM= Subject key identifier: 6E:D7:87:04:DD:67:14:28:DC:2D:7C:52:9B:24:0E:C9:DE:4B:33:F2 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4DB96B6D8DD871511E587D39023C61FF976396E9 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6c5331e1-7be3-4fa4-9602-afbd9f20b415.roa Signing time: Fri 09 May 2025 15:11:53 +0000 ROA not before: Fri 09 May 2025 15:11:53 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.212.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:b9:6b:6d:8d:d8:71:51:1e:58:7d:39:02:3c:61:ff:97:63:96:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 9 15:11:53 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=e6bfaaaa4ef99e15c13439216391c679dbf36b350a58f99799e2cf80f376b265, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:39:65:a7:4b:cf:a5:14:58:64:77:4a:91:52: dc:4e:76:13:10:43:2e:dc:c9:bc:99:7f:26:8a:bf: 8a:ef:a8:82:4d:49:23:f5:ec:21:f2:5f:65:00:bc: 26:f6:78:73:bf:fa:d2:71:93:07:4b:16:4c:25:29: 2f:dc:e7:67:d4:d7:75:ee:5a:cd:64:79:9e:bd:68: b5:f8:aa:89:36:02:1b:7e:1b:eb:92:e4:fc:df:c3: dc:70:6a:e2:b5:b7:36:e8:33:09:c4:53:5e:2b:de: 50:8e:7e:09:03:a8:99:f5:69:44:0f:56:53:1d:23: 3f:d6:76:00:45:6d:b1:cb:a3:f5:c0:d2:70:86:82: 82:d9:7b:42:88:e8:ce:b9:66:be:fd:2b:41:36:ff: 4c:83:67:84:9f:19:09:2d:aa:42:4c:d0:bb:e6:7b: 92:2f:d2:3b:ca:ef:5e:a1:94:93:4a:cc:ed:2f:7a: 4b:af:f3:9f:46:18:ee:85:27:8f:4a:a7:60:7a:08: 91:ee:27:b1:3e:5d:07:18:c5:ac:ff:03:fc:71:32: f9:3e:87:28:97:41:7c:77:6e:fa:43:f9:73:c6:4b: 37:c8:d5:a5:65:f4:9c:a4:7a:e5:4d:ad:f7:18:5a: fe:8d:a8:97:ad:77:b6:04:c3:bc:88:4a:08:6c:72: 5a:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:D7:87:04:DD:67:14:28:DC:2D:7C:52:9B:24:0E:C9:DE:4B:33:F2 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6c5331e1-7be3-4fa4-9602-afbd9f20b415.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.212.0.0/14 Signature Algorithm: sha256WithRSAEncryption 60:4a:4b:90:8a:58:b7:fe:db:7c:6f:b6:3e:8d:ee:16:95:35: 59:00:83:7f:01:ef:79:35:d9:91:c5:02:8b:45:fc:b4:94:4e: 9a:3e:fd:e4:86:4c:92:1f:3c:3d:18:7e:09:42:33:0d:02:04: 05:09:00:26:e5:c5:0d:61:46:a8:a5:5c:c4:70:cd:88:c3:52: 85:d9:64:79:a3:d7:da:68:8d:88:96:0d:9f:a1:b0:9f:9b:09: e9:d7:ee:a4:fc:e2:2c:26:b6:d2:98:ae:44:80:c0:b1:6d:d5: 7e:b3:40:33:c4:24:a4:a2:be:14:3b:1b:8e:3d:29:cd:b9:9c: 11:b1:e2:bc:e4:6b:28:ef:a0:93:03:98:14:f5:7e:7e:8b:1f: 94:13:e2:ab:07:f1:0c:55:5a:12:fc:c2:7b:9a:0d:b9:a8:35: e8:85:63:f6:18:97:d5:40:7c:c8:1b:60:8a:90:0e:65:b9:ed: 80:34:99:19:9a:34:38:8d:b8:f9:2d:95:cd:13:e0:da:4f:3c: f9:6b:f7:16:f8:e1:9b:61:30:c7:81:2d:fa:62:6a:93:3f:43: 58:e9:49:a7:1d:ad:e8:c8:d4:d7:17:ba:0e:69:49:c0:6a:98: 2b:bb:41:0c:71:3c:a2:4b:fc:31:12:49:c4:fc:e3:f1:95:35: 1e:be:36:94 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTblrbY3YcVEeWH05Ajxh/5djlukwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTA5MTUxMTUzWhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNmJmYWFhYTRlZjk5ZTE1YzEzNDM5MjE2MzkxYzY3OWRi ZjM2YjM1MGE1OGY5OTc5OWUyY2Y4MGYzNzZiMjY1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYOWWnS8+lFFhkd0qRUtxOdhMQQy7cybyZfyaKv4rvqIJN SSP17CHyX2UAvCb2eHO/+tJxkwdLFkwlKS/c52fU13XuWs1keZ69aLX4qok2Aht+ G+uS5Pzfw9xwauK1tzboMwnEU14r3lCOfgkDqJn1aUQPVlMdIz/WdgBFbbHLo/XA 0nCGgoLZe0KI6M65Zr79K0E2/0yDZ4SfGQktqkJM0Lvme5Iv0jvK716hlJNKzO0v ekuv859GGO6FJ49Kp2B6CJHuJ7E+XQcYxaz/A/xxMvk+hyiXQXx3bvpD+XPGSzfI 1aVl9JykeuVNrfcYWv6NqJetd7YEw7yISghsclpDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUbteHBN1nFCjcLXxSmyQOyd5LM/IwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzZjNTMzMWUxLTdiZTMtNGZhNC05NjAyLWFmYmQ5ZjIwYjQxNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIN1DANBgkqhkiG9w0BAQsFAAOCAQEAYEpLkIpYt/7bfG+2Po3uFpU1WQCD fwHveTXZkcUCi0X8tJROmj795IZMkh88PRh+CUIzDQIEBQkAJuXFDWFGqKVcxHDN iMNShdlkeaPX2miNiJYNn6Gwn5sJ6dfupPziLCa20piuRIDAsW3VfrNAM8QkpKK+ FDsbjj0pzbmcEbHivORrKO+gkwOYFPV+fosflBPiqwfxDFVaEvzCe5oNuag16IVj 9hiX1UB8yBtgipAOZbntgDSZGZo0OI24+S2VzRPg2k88+Wv3Fvjhm2Ewx4Et+mJq kz9DWOlJpx2t6MjU1xe6DmlJwGqYK7tBDHE8okv8MRJJxPzj8ZU1Hr42lA== -----END CERTIFICATE-----Generated at Fri May 9 17:59:21 2025 by rpki-client