$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8503bd8f-e8e3-409e-8145-d172fcc08621.roa File: 8503bd8f-e8e3-409e-8145-d172fcc08621.roa (raw, json) Hash identifier: DWKudX5Lzy3EvlmNF/mgmN3apWA36METpSREOt/RHHo= Subject key identifier: C4:02:70:07:99:4C:98:17:80:07:D9:F6:8C:FD:51:B5:C9:8F:40:C0 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1DA3DF8D4233EB0ABC0F4E380F19B2757C03B845 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8503bd8f-e8e3-409e-8145-d172fcc08621.roa Signing time: Fri 09 May 2025 15:01:45 +0000 ROA not before: Fri 09 May 2025 15:01:45 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.101.206.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:a3:df:8d:42:33:eb:0a:bc:0f:4e:38:0f:19:b2:75:7c:03:b8:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 9 15:01:45 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=25f2f033d05b65ce072d86c9f004ec8522ffd7d9128be56631803363b9b6a6a1, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:f1:85:ae:a9:a1:cb:20:72:5b:94:30:47:77: 48:0c:14:82:37:31:d0:b8:7b:c4:90:17:c3:75:4b: 7f:9e:bd:0a:bb:ba:94:65:9e:af:a9:a5:16:41:8c: 72:13:5c:f6:72:5f:90:02:20:0c:3d:aa:0c:44:07: 9f:30:a7:72:a0:8c:f7:4f:00:c7:79:e4:48:6c:75: 69:22:a3:60:72:a4:bd:af:c4:5b:ce:46:c6:1d:02: 8f:e2:7e:fd:a3:2d:e0:dc:01:15:e9:50:96:fe:ce: 9e:2b:1b:7b:0a:f0:0f:88:35:4f:54:00:8f:40:3b: f5:09:14:08:f6:d5:1e:c4:0b:74:c3:2f:33:08:eb: b3:56:61:fa:f7:6a:fe:bf:61:d1:38:3e:3d:41:77: e3:65:a4:a6:32:1c:af:e1:45:41:6e:6d:e9:00:0b: 85:d8:ab:57:10:04:fe:9b:41:35:ef:d5:6f:1b:8e: 26:cc:82:3c:26:02:9b:c7:9f:53:4e:ea:b9:31:c5: c1:ee:21:b5:ed:ec:64:d8:87:e6:2e:51:4b:96:4b: 43:72:70:6b:12:23:cf:5c:0f:93:93:d1:30:2e:01: d3:6f:59:53:a5:dd:8a:37:cd:d7:c5:4e:da:fe:7f: 08:43:2d:47:cb:30:e4:5b:40:16:9e:ac:84:e5:47: f1:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:02:70:07:99:4C:98:17:80:07:D9:F6:8C:FD:51:B5:C9:8F:40:C0 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8503bd8f-e8e3-409e-8145-d172fcc08621.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.101.206.0/23 Signature Algorithm: sha256WithRSAEncryption 50:ad:ec:37:ac:01:40:2c:69:19:ba:fa:93:33:ba:ca:36:3b: ff:94:92:4a:53:7e:18:83:3d:e0:d6:88:e9:08:40:f0:dd:f5: fa:f1:d3:c6:4f:6e:c5:11:3b:00:56:29:47:83:24:5e:7e:56: f8:f6:f3:96:78:43:11:ab:ae:8c:6a:58:eb:90:4c:9d:2e:e8: 7d:bb:bd:38:67:10:7c:bb:cb:1e:c8:28:2a:9e:d8:9e:c0:13: ae:4a:e9:30:71:5e:d5:cf:71:8a:85:24:b9:a2:5a:d8:e2:a8: 1e:85:74:e2:83:d5:4e:9c:23:2a:1a:42:22:bd:50:bc:65:30: 75:07:88:da:86:09:56:99:9a:65:af:e6:24:8a:3c:8e:3f:ab: 18:66:c3:19:5c:cc:ca:4c:a0:67:bf:c0:d1:fe:23:b5:74:f9: 4e:8e:dd:e9:5c:9c:f3:94:81:d8:4d:60:a9:69:f5:03:43:2c: 95:24:2d:df:90:ff:3e:60:10:c2:5f:34:35:90:10:12:8c:97: 16:cf:d0:39:86:27:7e:42:46:32:ac:52:fc:2d:f2:32:8d:53: e8:99:c6:4c:f0:7f:af:6e:38:7a:06:f0:8f:7c:ee:81:e9:2b: 7f:15:29:50:df:ce:09:2d:d0:de:dd:16:ec:75:86:78:fb:fc: 27:35:15:81 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHaPfjUIz6wq8D044DxmydXwDuEUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTA5MTUwMTQ1WhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNWYyZjAzM2QwNWI2NWNlMDcyZDg2YzlmMDA0ZWM4NTIy ZmZkN2Q5MTI4YmU1NjYzMTgwMzM2M2I5YjZhNmExMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCY8YWuqaHLIHJblDBHd0gMFII3MdC4e8SQF8N1S3+evQq7 upRlnq+ppRZBjHITXPZyX5ACIAw9qgxEB58wp3KgjPdPAMd55EhsdWkio2BypL2v xFvORsYdAo/ifv2jLeDcARXpUJb+zp4rG3sK8A+INU9UAI9AO/UJFAj21R7EC3TD LzMI67NWYfr3av6/YdE4Pj1Bd+NlpKYyHK/hRUFubekAC4XYq1cQBP6bQTXv1W8b jibMgjwmApvHn1NO6rkxxcHuIbXt7GTYh+YuUUuWS0NycGsSI89cD5OT0TAuAdNv WVOl3Yo3zdfFTtr+fwhDLUfLMORbQBaerITlR/G9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxAJwB5lMmBeAB9n2jP1RtcmPQMAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzg1MDNiZDhmLWU4ZTMtNDA5ZS04MTQ1LWQxNzJmY2MwODYyMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEDZc4wDQYJKoZIhvcNAQELBQADggEBAFCt7DesAUAsaRm6+pMzuso2O/+U kkpTfhiDPeDWiOkIQPDd9frx08ZPbsUROwBWKUeDJF5+Vvj285Z4QxGrroxqWOuQ TJ0u6H27vThnEHy7yx7IKCqe2J7AE65K6TBxXtXPcYqFJLmiWtjiqB6FdOKD1U6c IyoaQiK9ULxlMHUHiNqGCVaZmmWv5iSKPI4/qxhmwxlczMpMoGe/wNH+I7V0+U6O 3elcnPOUgdhNYKlp9QNDLJUkLd+Q/z5gEMJfNDWQEBKMlxbP0DmGJ35CRjKsUvwt 8jKNU+iZxkzwf69uOHoG8I987oHpK38VKVDfzgkt0N7dFux1hnj7/Cc1FYE= -----END CERTIFICATE-----Generated at Fri May 9 20:05:10 2025 by rpki-client