$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/86cb1ccd-a306-4ede-8bf6-662335dd41c1.roa File: 86cb1ccd-a306-4ede-8bf6-662335dd41c1.roa (raw, json) Hash identifier: cTmr5hSgZah9IBJsHQ/XK6J0rynby1d8DqwAyOJrWxk= Subject key identifier: 34:63:2D:5D:0B:90:30:B0:80:69:68:B0:AF:26:96:30:BA:7A:9B:6B Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4BD7418D6D60A7F621710786022AF7775D862EBD Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/86cb1ccd-a306-4ede-8bf6-662335dd41c1.roa Signing time: Fri 09 May 2025 15:00:18 +0000 ROA not before: Fri 09 May 2025 15:00:18 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.177.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:d7:41:8d:6d:60:a7:f6:21:71:07:86:02:2a:f7:77:5d:86:2e:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 9 15:00:18 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=534b2ce34888f1bbb46eb60faefb2859c97950824a4e3cecaf9215d66f2ac426, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:93:e9:3a:b6:e3:58:3d:21:14:bd:d3:fd:a5: cd:83:a1:0c:6a:5c:ad:5d:c4:ea:2c:aa:64:4b:44: 49:92:1a:c1:e8:69:24:d3:93:93:0f:4b:87:5b:a7: 45:a2:7f:b5:28:79:34:f6:9b:e5:33:ef:e5:3b:a1: 68:0e:75:03:d8:84:0e:60:b7:cf:2e:dd:81:c5:e9: 4b:96:2e:66:17:8b:7f:1a:58:3b:9f:4e:11:b8:c8: 82:2d:38:dd:9e:f0:fd:eb:33:13:71:37:bc:40:d5: 2a:bc:37:32:d0:e7:eb:14:f8:0c:5f:09:3d:b5:16: 06:93:bb:fe:36:ec:86:6c:b0:83:98:6d:9d:0a:dc: e0:0a:20:e2:a7:88:7d:7b:21:5d:ff:db:ef:92:08: 37:62:03:ec:64:d8:f0:4d:f7:56:fa:69:d6:ea:94: 56:69:05:21:63:f6:69:cd:a0:bc:6e:fb:05:ee:f8: 1d:e9:71:1a:e4:01:df:78:b4:e6:7d:8e:91:d5:d4: 3e:1b:4f:67:d0:d6:bf:5e:42:4c:ba:10:ba:03:0c: 6e:af:07:20:44:67:62:06:5b:19:7b:67:b5:08:20: 57:68:54:43:c7:09:44:a1:c1:57:51:60:ab:30:c1: db:ec:7a:7d:bb:ab:10:fc:9f:1c:69:45:78:2a:0e: 91:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:63:2D:5D:0B:90:30:B0:80:69:68:B0:AF:26:96:30:BA:7A:9B:6B X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/86cb1ccd-a306-4ede-8bf6-662335dd41c1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.177.16.0/21 Signature Algorithm: sha256WithRSAEncryption 78:8a:ea:93:60:47:23:1a:41:eb:10:64:ad:8f:54:56:a8:22: 5c:91:e1:01:1c:a2:49:f2:16:96:a3:3a:f2:d3:3b:01:47:8d: b1:5e:51:15:e6:b2:ee:22:1f:3b:c2:0d:d7:48:46:60:cd:d2: d5:90:4d:de:f7:ec:a9:86:28:d6:0a:56:86:5b:52:f0:eb:2b: 64:32:72:96:54:61:ab:6b:02:fe:b8:15:07:7f:78:58:d0:a9: d9:bb:31:30:39:2e:23:17:18:cf:48:a9:48:7e:a4:f8:0c:e7: ef:cc:37:a7:52:92:78:4f:1e:0c:87:4a:63:d4:76:2c:6f:f1: 26:cc:ed:3c:c1:3c:d4:db:69:35:a2:1c:64:a8:fa:80:1b:ad: 95:5f:75:8f:76:1a:12:28:e0:86:98:f1:c7:7e:1c:29:34:9d: 98:f6:52:46:bb:7b:5a:79:1c:cc:2f:35:a1:fb:28:05:8d:32: e9:c5:de:ee:44:8f:0d:5d:de:70:09:8a:de:8a:1d:b3:6d:b5: 50:a4:b9:11:5b:35:ed:b9:47:4b:bb:42:de:da:81:2d:40:63: 42:46:41:73:32:9a:82:0f:87:d9:bd:6d:9e:3a:b1:15:ef:99: 1b:e7:17:29:51:9f:f2:3b:be:6b:46:d0:b0:1b:18:2c:b5:79: f2:12:c5:b4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUS9dBjW1gp/YhcQeGAir3d12GLr0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTA5MTUwMDE4WhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MzRiMmNlMzQ4ODhmMWJiYjQ2ZWI2MGZhZWZiMjg1OWM5 Nzk1MDgyNGE0ZTNjZWNhZjkyMTVkNjZmMmFjNDI2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdk+k6tuNYPSEUvdP9pc2DoQxqXK1dxOosqmRLREmSGsHo aSTTk5MPS4dbp0Wif7UoeTT2m+Uz7+U7oWgOdQPYhA5gt88u3YHF6UuWLmYXi38a WDufThG4yIItON2e8P3rMxNxN7xA1Sq8NzLQ5+sU+AxfCT21FgaTu/427IZssIOY bZ0K3OAKIOKniH17IV3/2++SCDdiA+xk2PBN91b6adbqlFZpBSFj9mnNoLxu+wXu +B3pcRrkAd94tOZ9jpHV1D4bT2fQ1r9eQky6ELoDDG6vByBEZ2IGWxl7Z7UIIFdo VEPHCUShwVdRYKswwdvsen27qxD8nxxpRXgqDpEvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNGMtXQuQMLCAaWiwryaWMLp6m2swHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzg2Y2IxY2NkLWEzMDYtNGVkZS04YmY2LTY2MjMzNWRkNDFjMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMPsRAwDQYJKoZIhvcNAQELBQADggEBAHiK6pNgRyMaQesQZK2PVFaoIlyR 4QEcoknyFpajOvLTOwFHjbFeURXmsu4iHzvCDddIRmDN0tWQTd737KmGKNYKVoZb UvDrK2QycpZUYatrAv64FQd/eFjQqdm7MTA5LiMXGM9IqUh+pPgM5+/MN6dSknhP HgyHSmPUdixv8SbM7TzBPNTbaTWiHGSo+oAbrZVfdY92GhIo4IaY8cd+HCk0nZj2 Uka7e1p5HMwvNaH7KAWNMunF3u5Ejw1d3nAJit6KHbNttVCkuRFbNe25R0u7Qt7a gS1AY0JGQXMymoIPh9m9bZ46sRXvmRvnFylRn/I7vmtG0LAbGCy1efISxbQ= -----END CERTIFICATE-----Generated at Fri May 9 16:36:29 2025 by rpki-client