$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a6073f80-fafc-4e6b-940c-475df5662892.roa File: a6073f80-fafc-4e6b-940c-475df5662892.roa (raw, json) Hash identifier: uuz7BLwwQxjERjjbk8oWDsVo1PpElMhmtx2a03NRzWM= Subject key identifier: FA:A3:13:4B:FE:FB:F0:C3:20:7C:80:E8:0A:17:5F:FC:96:94:AF:45 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2F6E88C2B09A17130CAD898257E1BF0A3AECF646 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a6073f80-fafc-4e6b-940c-475df5662892.roa Signing time: Fri 09 May 2025 00:51:11 +0000 ROA not before: Fri 09 May 2025 00:51:11 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.250.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:6e:88:c2:b0:9a:17:13:0c:ad:89:82:57:e1:bf:0a:3a:ec:f6:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 9 00:51:11 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=302f59c8b527425247b06a7e6ff54031e9fb2c0f9ab0f7557e2253c8cf97653f, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0e:35:ae:f5:93:85:f2:34:73:60:f0:5d:80: 63:e4:cf:30:9c:74:3d:67:e0:3b:39:4f:19:ed:7d: 2b:ad:5d:50:11:e9:ef:85:6e:19:d9:d8:80:f2:8d: 37:93:e3:04:88:02:3c:c8:4a:9e:40:72:9d:b5:dc: 66:f0:68:09:e3:bc:d0:76:cc:21:fb:2d:0e:c2:e3: 55:f7:27:ae:ed:d1:ab:93:73:d2:0c:32:ff:d6:ca: e8:38:19:f8:3c:c3:fe:15:76:3a:4a:df:fe:bb:94: a3:6c:54:45:66:91:6c:41:fd:ab:c0:11:0d:d0:c1: 02:be:4a:46:65:36:64:2b:b7:72:f9:ce:62:d1:86: f5:e2:88:ee:ce:a1:6a:2a:d9:8e:93:cb:31:13:53: 89:6e:0b:d6:c6:38:15:79:c0:e2:b1:c4:ce:41:19: 9e:ea:08:b4:58:25:bb:a7:b2:75:87:e8:c6:28:54: 16:13:3c:e2:19:e4:de:cf:ec:ee:0d:5b:28:ed:d4: 12:b3:51:f3:7d:78:4f:f3:bf:2d:5d:b4:f0:04:38: 06:6f:9a:50:7f:6e:eb:5e:d1:d1:26:96:2f:d4:8f: 1b:49:33:b4:c9:72:3e:58:17:bc:d8:bb:70:cb:46: 2f:f7:36:f8:1a:a9:92:44:c5:e5:18:50:c5:d8:05: 38:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:A3:13:4B:FE:FB:F0:C3:20:7C:80:E8:0A:17:5F:FC:96:94:AF:45 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a6073f80-fafc-4e6b-940c-475df5662892.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.250.0.0/15 Signature Algorithm: sha256WithRSAEncryption 22:c1:77:0b:29:7e:34:e4:b5:36:6f:c3:ce:9d:cc:64:0a:e9: 33:10:26:52:87:48:5b:98:31:89:71:39:c5:74:57:93:21:29: 9e:7d:2a:c3:da:d2:07:42:57:18:48:fa:ea:b6:ce:09:bd:d4: 03:0d:35:f2:99:dd:04:7e:34:6f:99:84:3f:d5:87:a6:6a:0c: 76:b8:3c:e0:78:a6:83:9f:ec:4b:0d:b7:dd:fe:4e:0a:a4:28: 63:42:27:32:a2:c3:cc:83:8b:fa:99:71:60:9c:01:a5:48:94: 75:ec:9f:d0:b2:87:37:60:e2:28:57:c0:59:6f:fc:9d:e6:8b: f2:9f:2f:bb:1c:29:59:98:a6:ec:f4:37:64:6f:cc:ba:de:be: f6:1d:96:5b:9b:6b:f4:b4:1e:b1:88:ae:13:be:4f:eb:e5:22: f8:e7:6d:68:21:98:50:e8:78:e7:16:40:c8:d2:71:0b:48:4d: 05:61:57:d0:54:05:07:fb:1c:10:4d:38:2e:4d:ae:53:20:66: ec:52:89:bd:aa:20:2d:23:6d:43:8f:4b:f2:7e:8c:06:9f:ae: 27:8d:9d:a7:1a:97:39:2e:5c:36:6d:1c:2d:ba:84:2c:1c:fc: 2a:93:18:cc:65:71:ae:1d:29:b0:ed:3f:98:fa:92:cc:e0:c8: d5:3e:8c:88 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUL26IwrCaFxMMrYmCV+G/Cjrs9kYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTA5MDA1MTExWhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMDJmNTljOGI1Mjc0MjUyNDdiMDZhN2U2ZmY1NDAzMWU5 ZmIyYzBmOWFiMGY3NTU3ZTIyNTNjOGNmOTc2NTNmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3DjWu9ZOF8jRzYPBdgGPkzzCcdD1n4Ds5TxntfSutXVAR 6e+FbhnZ2IDyjTeT4wSIAjzISp5Acp213GbwaAnjvNB2zCH7LQ7C41X3J67t0auT c9IMMv/Wyug4Gfg8w/4VdjpK3/67lKNsVEVmkWxB/avAEQ3QwQK+SkZlNmQrt3L5 zmLRhvXiiO7OoWoq2Y6TyzETU4luC9bGOBV5wOKxxM5BGZ7qCLRYJbunsnWH6MYo VBYTPOIZ5N7P7O4NWyjt1BKzUfN9eE/zvy1dtPAEOAZvmlB/bute0dEmli/UjxtJ M7TJcj5YF7zYu3DLRi/3NvgaqZJExeUYUMXYBTinAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU+qMTS/778MMgfIDoChdf/JaUr0UwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2E2MDczZjgwLWZhZmMtNGU2Yi05NDBjLTQ3NWRmNTY2Mjg5Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwED+jANBgkqhkiG9w0BAQsFAAOCAQEAIsF3Cyl+NOS1Nm/Dzp3MZArpMxAm UodIW5gxiXE5xXRXkyEpnn0qw9rSB0JXGEj66rbOCb3UAw018pndBH40b5mEP9WH pmoMdrg84Himg5/sSw233f5OCqQoY0InMqLDzIOL+plxYJwBpUiUdeyf0LKHN2Di KFfAWW/8neaL8p8vuxwpWZim7PQ3ZG/Mut6+9h2WW5tr9LQesYiuE75P6+Ui+Odt aCGYUOh45xZAyNJxC0hNBWFX0FQFB/scEE04Lk2uUyBm7FKJvaogLSNtQ49L8n6M Bp+uJ42dpxqXOS5cNm0cLbqELBz8KpMYzGVxrh0psO0/mPqSzODI1T6MiA== -----END CERTIFICATE-----Generated at Fri May 9 15:17:48 2025 by rpki-client