$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7a4cd46e-b055-47b6-a4f5-54b4d9014b9e.roa File: 7a4cd46e-b055-47b6-a4f5-54b4d9014b9e.roa (raw, json) Hash identifier: 5ZO62sKv42ly5AQvXJa+GaJVZtgS1fu92ApoN6pWTQY= Subject key identifier: 32:98:C7:8B:0B:3A:A6:EE:2C:C6:4C:B1:95:22:68:02:15:73:6D:B0 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1B71D1881F9F5967CF1247A0B2FB2ADB8E94BC Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7a4cd46e-b055-47b6-a4f5-54b4d9014b9e.roa Signing time: Mon 30 Jun 2025 16:00:19 +0000 ROA not before: Mon 30 Jun 2025 16:00:19 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.236.60.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:71:d1:88:1f:9f:59:67:cf:12:47:a0:b2:fb:2a:db:8e:94:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 30 16:00:19 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=53d5a6bde899687ae71f1096a29b3cb7335cd15997a221825c53d4377d8e26b1, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c6:c9:85:48:4f:78:22:2d:9d:4c:dd:9c:85: a8:9e:bd:a1:25:fc:8b:9b:2a:cc:b3:23:59:82:45: 64:ba:31:8e:eb:e1:9c:f2:81:c6:f4:a2:5d:04:6c: e8:bd:00:1f:95:b4:23:e8:5e:f4:42:63:62:32:36: 0d:f7:c8:c5:37:9e:0c:81:1f:f5:b5:37:ed:02:05: 4f:a9:3f:4a:f1:67:ad:cd:4c:4f:cb:2d:0a:f9:88: 0d:1d:57:69:33:83:08:c4:a5:a9:db:af:99:f0:17: b9:ba:5b:dd:ba:50:d1:55:82:ea:77:c3:d2:4b:a7: e7:a2:27:0b:35:94:e8:cf:02:db:4a:fe:23:cd:3c: d9:76:96:31:c2:23:14:30:61:08:07:53:58:06:23: 91:2d:0a:8f:70:b2:db:90:59:38:5a:90:9f:3c:a2: 26:2c:ec:56:37:ea:aa:c6:cc:b7:a4:47:22:1d:22: f8:82:fa:f7:83:55:f4:6d:5a:85:b4:f7:6a:6a:cf: 70:66:e1:97:6e:da:a6:af:e7:07:d9:ce:4b:f7:47: 0e:54:2a:2a:67:98:ef:57:13:4a:07:08:0a:53:2a: eb:4a:79:ff:33:7d:8d:59:fb:be:9e:aa:9a:2d:8e: 89:b5:c1:91:64:09:63:43:b9:06:b2:5d:3f:43:39: ab:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:98:C7:8B:0B:3A:A6:EE:2C:C6:4C:B1:95:22:68:02:15:73:6D:B0 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7a4cd46e-b055-47b6-a4f5-54b4d9014b9e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.236.60.0/22 Signature Algorithm: sha256WithRSAEncryption 04:fe:cb:7d:a5:c7:fe:7a:23:a4:f4:42:c6:89:2c:e9:dc:7e: 42:6a:50:d3:2c:bf:a8:7a:91:3b:4d:1c:83:a8:62:78:d6:f3: 40:d2:cb:42:b4:63:48:58:53:d3:ba:80:23:f1:07:15:f3:3a: 91:cd:14:9b:21:06:83:62:60:3d:25:da:87:8a:b0:40:dd:5e: bc:c4:21:d6:13:6a:c2:ac:3a:53:57:5b:4b:f4:f6:c9:f7:58: b9:10:d6:2c:56:e9:41:8c:e3:c9:5d:9e:70:1b:51:33:e7:cb: f4:a8:36:37:c8:74:93:e4:e4:18:aa:24:e3:39:58:4a:33:a2: 59:74:d6:2c:f1:2a:98:dc:a7:61:a2:fb:ee:dc:31:9b:a8:fa: 04:bc:c6:87:56:38:5d:21:44:9b:9a:4b:22:f5:8e:07:6b:45: 88:49:69:54:8b:6f:04:fd:90:1b:b1:12:2f:95:90:76:9d:32: b2:bc:e7:08:d5:c2:4c:fc:72:a6:44:2d:6e:70:76:ed:28:ed: ef:34:0f:15:57:ec:46:e2:fe:70:23:bc:ca:55:a6:b9:0f:f2: 1a:5f:d0:2e:e8:8a:05:b0:c7:6c:4a:50:69:d6:1f:6a:9b:82: 21:33:e8:83:4f:37:c5:bc:32:98:65:76:3e:b6:dd:09:eb:69: d0:b6:86:c8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITG3HRiB+fWWfPEkegsvsq246UvDANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNTA2MzAxNjAwMTlaFw0yNTA4MDQyMzU5NTla MHoxSTBHBgNVBAUTQDUzZDVhNmJkZTg5OTY4N2FlNzFmMTA5NmEyOWIzY2I3MzM1 Y2QxNTk5N2EyMjE4MjVjNTNkNDM3N2Q4ZTI2YjExLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBALLGyYVIT3giLZ1M3ZyFqJ69oSX8i5sqzLMjWYJFZLoxjuvh nPKBxvSiXQRs6L0AH5W0I+he9EJjYjI2DffIxTeeDIEf9bU37QIFT6k/SvFnrc1M T8stCvmIDR1XaTODCMSlqduvmfAXubpb3bpQ0VWC6nfD0kun56InCzWU6M8C20r+ I8082XaWMcIjFDBhCAdTWAYjkS0Kj3Cy25BZOFqQnzyiJizsVjfqqsbMt6RHIh0i +IL694NV9G1ahbT3amrPcGbhl27apq/nB9nOS/dHDlQqKmeY71cTSgcIClMq60p5 /zN9jVn7vp6qmi2OibXBkWQJY0O5BrJdP0M5q4MCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBQymMeLCzqm7izGTLGVImgCFXNtsDAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvN2E0Y2Q0NmUtYjA1NS00N2I2LWE0ZjUtNTRiNGQ5MDE0YjllLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAgPsPDANBgkqhkiG9w0BAQsFAAOCAQEABP7LfaXH/nojpPRCxoks6dx+QmpQ 0yy/qHqRO00cg6hieNbzQNLLQrRjSFhT07qAI/EHFfM6kc0UmyEGg2JgPSXah4qw QN1evMQh1hNqwqw6U1dbS/T2yfdYuRDWLFbpQYzjyV2ecBtRM+fL9Kg2N8h0k+Tk GKok4zlYSjOiWXTWLPEqmNynYaL77twxm6j6BLzGh1Y4XSFEm5pLIvWOB2tFiElp VItvBP2QG7ESL5WQdp0ysrznCNXCTPxypkQtbnB27Sjt7zQPFVfsRuL+cCO8ylWm uQ/yGl/QLuiKBbDHbEpQadYfapuCITPog083xbwymGV2PrbdCetp0LaGyA== -----END CERTIFICATE-----Generated at Mon Jun 30 22:55:08 2025 by rpki-client