$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/86cb1ccd-a306-4ede-8bf6-662335dd41c1.roa File: 86cb1ccd-a306-4ede-8bf6-662335dd41c1.roa (raw, json) Hash identifier: 8zbQcvR5zt/6QEBGh4sQsJE6STRnloj3CoBM7u89l6k= Subject key identifier: 8B:DC:FE:02:AD:94:07:26:8C:05:EF:A5:DE:D4:23:15:01:11:C7:10 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5831565674FD3667085FD9B6AEB38DCA34A712ED Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/86cb1ccd-a306-4ede-8bf6-662335dd41c1.roa Signing time: Mon 30 Jun 2025 16:10:14 +0000 ROA not before: Mon 30 Jun 2025 16:10:14 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.177.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:31:56:56:74:fd:36:67:08:5f:d9:b6:ae:b3:8d:ca:34:a7:12:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 30 16:10:14 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=428d41da124ce35fa88ec1e4b6aa576cfab56fd0c47cf6fd990417fa5efffd29, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:bc:a4:4c:3b:ba:86:a9:12:f6:a4:74:ec:58: 51:dc:06:9b:4d:05:39:f2:d8:fa:f0:37:10:59:e3: c1:e3:fb:b3:31:02:6a:af:3f:f5:29:bd:2e:ab:00: 41:77:dd:8d:02:13:3c:11:14:55:d9:2c:cc:10:3e: a8:06:9c:d7:1e:50:d2:ae:93:20:ab:35:89:64:45: 5a:b9:0e:8f:19:b3:b8:62:bc:43:65:c9:16:5f:d6: 9a:a3:8e:1a:3d:60:17:9e:34:90:2b:33:2d:9a:e2: 38:45:2d:ca:ac:27:98:b2:5f:82:18:62:3c:4a:1f: 4f:07:35:98:a4:cc:61:c3:42:cf:df:a7:d8:df:8d: 31:0d:7f:7a:c9:56:b3:74:aa:43:e3:57:54:92:f7: 10:91:fd:b1:5b:95:9b:71:21:2e:9e:d3:83:d0:1d: 19:23:d1:9f:49:6c:35:7f:17:4b:b0:92:68:2d:8d: d8:22:b3:cf:37:cf:1e:c6:92:53:65:4c:99:41:cc: 40:d7:e8:ec:17:f7:8e:53:72:2a:48:86:a0:9a:dc: 44:d6:fb:23:7d:00:a8:97:3a:bc:40:99:91:45:fd: 17:3e:c5:3e:e4:bf:2a:a7:bd:57:1b:6e:78:dd:c7: a3:3f:2c:e8:ed:9f:16:e8:20:58:ab:11:e9:01:3e: 90:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:DC:FE:02:AD:94:07:26:8C:05:EF:A5:DE:D4:23:15:01:11:C7:10 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/86cb1ccd-a306-4ede-8bf6-662335dd41c1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.177.16.0/21 Signature Algorithm: sha256WithRSAEncryption 5c:d2:8b:46:c2:b1:e9:47:1f:a6:06:46:97:07:80:04:6a:75: e6:09:8a:7d:2d:cb:22:14:f2:eb:ba:d4:60:6a:b3:9c:cf:a6: b1:4f:dd:af:43:d8:2f:a7:af:7a:d5:f4:dc:3a:a4:d8:db:a7: 15:fd:d2:f3:4d:d0:2b:53:56:30:86:00:09:fc:87:37:d5:35: 7b:d7:78:6b:9a:66:2f:f0:d2:69:9e:ea:10:b3:69:95:2d:99: 28:b0:6a:37:35:cf:50:e6:38:46:6c:81:a0:3c:aa:84:91:82: c4:06:0f:af:22:9b:29:cc:b3:34:aa:59:56:49:61:12:9d:86: 91:ae:f2:94:87:b6:43:8a:8d:9d:b2:60:91:7b:7c:b7:fe:94: ca:70:2f:4d:ab:7b:c1:a0:f4:0d:c2:5e:83:29:d7:57:88:58: 82:b0:cb:d2:66:12:e0:3b:17:7d:61:cf:89:2b:7e:c8:c1:32: 2e:37:56:2f:bc:64:5c:54:ac:1e:78:ae:4d:14:c3:4c:74:40: fd:68:45:76:b4:f9:dd:a7:07:bc:b8:6c:76:14:8d:c1:9d:ff: 15:76:ce:cc:78:2a:d2:35:30:35:bd:37:07:46:84:0d:ac:e9: 06:af:b3:54:4b:21:11:05:ec:69:dc:31:cc:6e:b6:51:b7:3a: 20:bf:54:ad -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWDFWVnT9NmcIX9m2rrONyjSnEu0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjMwMTYxMDE0WhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MjhkNDFkYTEyNGNlMzVmYTg4ZWMxZTRiNmFhNTc2Y2Zh YjU2ZmQwYzQ3Y2Y2ZmQ5OTA0MTdmYTVlZmZmZDI5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkvKRMO7qGqRL2pHTsWFHcBptNBTny2PrwNxBZ48Hj+7Mx AmqvP/UpvS6rAEF33Y0CEzwRFFXZLMwQPqgGnNceUNKukyCrNYlkRVq5Do8Zs7hi vENlyRZf1pqjjho9YBeeNJArMy2a4jhFLcqsJ5iyX4IYYjxKH08HNZikzGHDQs/f p9jfjTENf3rJVrN0qkPjV1SS9xCR/bFblZtxIS6e04PQHRkj0Z9JbDV/F0uwkmgt jdgis883zx7GklNlTJlBzEDX6OwX945TcipIhqCa3ETW+yN9AKiXOrxAmZFF/Rc+ xT7kvyqnvVcbbnjdx6M/LOjtnxboIFirEekBPpCpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUi9z+Aq2UByaMBe+l3tQjFQERxxAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzg2Y2IxY2NkLWEzMDYtNGVkZS04YmY2LTY2MjMzNWRkNDFjMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMPsRAwDQYJKoZIhvcNAQELBQADggEBAFzSi0bCselHH6YGRpcHgARqdeYJ in0tyyIU8uu61GBqs5zPprFP3a9D2C+nr3rV9Nw6pNjbpxX90vNN0CtTVjCGAAn8 hzfVNXvXeGuaZi/w0mme6hCzaZUtmSiwajc1z1DmOEZsgaA8qoSRgsQGD68imynM szSqWVZJYRKdhpGu8pSHtkOKjZ2yYJF7fLf+lMpwL02re8Gg9A3CXoMp11eIWIKw y9JmEuA7F31hz4krfsjBMi43Vi+8ZFxUrB54rk0Uw0x0QP1oRXa0+d2nB7y4bHYU jcGd/xV2zsx4KtI1MDW9NwdGhA2s6Qavs1RLIREF7GncMcxutlG3OiC/VK0= -----END CERTIFICATE-----Generated at Mon Jun 30 23:43:36 2025 by rpki-client