$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/97e8e038-2f32-48eb-b946-6eb5e4c1682c.roa File: 97e8e038-2f32-48eb-b946-6eb5e4c1682c.roa (raw, json) Hash identifier: 0lzp/z8yD47ROoOkdq0dzp8UpxGcYuujK/LyTuhG8/Q= Subject key identifier: 09:0C:2A:07:FD:B6:AA:EE:37:0B:83:F8:EA:F7:40:A0:67:0F:A5:31 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 40DCC54C664838F8B363544A7FAB3F2B1F7A3AF6 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/97e8e038-2f32-48eb-b946-6eb5e4c1682c.roa Signing time: Mon 30 Jun 2025 16:21:44 +0000 ROA not before: Mon 30 Jun 2025 16:21:44 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 161.188.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:dc:c5:4c:66:48:38:f8:b3:63:54:4a:7f:ab:3f:2b:1f:7a:3a:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 30 16:21:44 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=dcb68bc6d37182e5f405e585964b087dbb4efdac440cdbd308fc1c6db18f8bea, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:d4:01:91:c4:91:2c:cb:94:89:51:47:1a:cd: 83:7b:d2:db:7e:db:e6:a3:82:97:7c:d7:bd:f3:aa: ab:41:24:c4:16:16:25:11:a0:68:d1:9b:84:bf:e4: 91:21:85:e1:a1:af:22:29:df:5e:b8:87:b1:8a:e2: d4:5e:9c:7f:51:2a:cd:19:97:57:6a:c7:48:ac:19: c9:4a:84:e7:24:b5:25:2f:0c:4d:e9:af:fd:79:2a: 05:ea:fa:b3:1c:c1:58:3a:7e:3b:58:3a:fd:4d:4d: c5:fa:55:51:64:14:12:6f:f8:af:0e:76:4e:30:94: 0e:11:38:e4:b2:1b:f7:c1:7e:47:5d:76:94:bc:6e: b9:5b:9d:27:c4:a5:19:8f:4d:3d:68:b2:4d:d7:06: c8:65:63:43:98:00:17:e0:9d:45:37:4d:4b:b0:85: d6:4a:80:7b:e3:a8:00:00:92:a0:b9:9f:ff:46:10: cd:a9:4d:24:5d:8a:a3:11:7e:1c:c3:cd:f4:49:c0: f9:a3:e3:e4:26:7e:4c:0b:d6:b9:67:c8:f9:e1:36: 72:50:cc:54:10:1e:94:03:a3:93:7e:12:ba:c1:28: 95:eb:6b:c9:ea:f4:1e:ce:c6:03:d7:48:04:8c:a4: 0a:b6:49:57:8f:f1:e6:96:0c:2f:85:c0:4d:cb:2e: 68:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:0C:2A:07:FD:B6:AA:EE:37:0B:83:F8:EA:F7:40:A0:67:0F:A5:31 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/97e8e038-2f32-48eb-b946-6eb5e4c1682c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.188.143.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:db:6e:49:91:6e:be:d6:b6:84:5b:00:35:9a:c5:e5:08:ff: 2f:97:7f:61:87:b3:da:1a:ce:75:ef:5d:21:51:4e:51:9d:98: 96:25:2a:dd:16:08:05:61:1d:dc:3a:17:a7:3d:76:46:06:17: 70:82:f8:75:5b:df:11:c7:fb:86:f4:b0:51:1b:35:7c:65:19: 18:16:9a:7d:f2:4c:3e:b1:81:08:d5:6d:c9:5b:09:b8:0d:48: 06:e0:48:cd:32:b0:d9:c7:91:cd:56:8e:01:24:f7:3a:d2:c7: 03:33:6d:ba:b2:dc:98:20:a7:7e:87:9c:22:4a:ed:e8:fa:2a: 0b:fa:af:93:db:86:80:43:e0:ec:ef:b7:6e:e4:32:29:ba:cc: 75:85:5d:be:26:e7:f0:5b:ed:39:f9:d6:df:06:75:34:04:5e: 03:99:57:84:89:c7:1f:5f:09:62:78:70:26:4c:f9:cd:dc:24: 54:e7:76:57:1b:8f:30:85:83:f1:7b:34:19:16:1d:1b:46:ab: 8f:f5:5a:84:8a:fd:fe:1d:44:f4:dd:51:eb:b6:3e:9f:be:ae: c6:bf:3e:d9:43:26:d4:c4:1e:c2:0c:af:ad:a8:c8:97:9a:d8: 6c:a8:28:42:72:51:1f:5a:19:a3:74:b6:76:f7:ef:b8:07:9b: 3a:63:c6:e8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQNzFTGZIOPizY1RKf6s/Kx96OvYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjMwMTYyMTQ0WhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkY2I2OGJjNmQzNzE4MmU1ZjQwNWU1ODU5NjRiMDg3ZGJi NGVmZGFjNDQwY2RiZDMwOGZjMWM2ZGIxOGY4YmVhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD61AGRxJEsy5SJUUcazYN70tt+2+ajgpd8173zqqtBJMQW FiURoGjRm4S/5JEhheGhryIp3164h7GK4tRenH9RKs0Zl1dqx0isGclKhOcktSUv DE3pr/15KgXq+rMcwVg6fjtYOv1NTcX6VVFkFBJv+K8Odk4wlA4ROOSyG/fBfkdd dpS8brlbnSfEpRmPTT1osk3XBshlY0OYABfgnUU3TUuwhdZKgHvjqAAAkqC5n/9G EM2pTSRdiqMRfhzDzfRJwPmj4+QmfkwL1rlnyPnhNnJQzFQQHpQDo5N+ErrBKJXr a8nq9B7OxgPXSASMpAq2SVeP8eaWDC+FwE3LLmhhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCQwqB/22qu43C4P46vdAoGcPpTEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzk3ZThlMDM4LTJmMzItNDhlYi1iOTQ2LTZlYjVlNGMxNjgyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAChvI8wDQYJKoZIhvcNAQELBQADggEBAH3bbkmRbr7WtoRbADWaxeUI/y+X f2GHs9oaznXvXSFRTlGdmJYlKt0WCAVhHdw6F6c9dkYGF3CC+HVb3xHH+4b0sFEb NXxlGRgWmn3yTD6xgQjVbclbCbgNSAbgSM0ysNnHkc1WjgEk9zrSxwMzbbqy3Jgg p36HnCJK7ej6Kgv6r5PbhoBD4Ozvt27kMim6zHWFXb4m5/Bb7Tn51t8GdTQEXgOZ V4SJxx9fCWJ4cCZM+c3cJFTndlcbjzCFg/F7NBkWHRtGq4/1WoSK/f4dRPTdUeu2 Pp++rsa/PtlDJtTEHsIMr62oyJea2GyoKEJyUR9aGaN0tnb377gHmzpjxug= -----END CERTIFICATE-----Generated at Mon Jun 30 23:11:16 2025 by rpki-client