$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/aa5ff16a-b7a9-490e-99be-3eaaa71e154b.roa File: aa5ff16a-b7a9-490e-99be-3eaaa71e154b.roa (raw, json) Hash identifier: 06zkcE0anG6eSn930mfRvgWhduWR2hQXK8iPJ9tq8qk= Subject key identifier: 44:5B:D0:A5:5E:08:C0:51:26:DA:8A:24:BF:B5:B9:A9:38:F4:F9:48 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5B685159F9903308D3F8BAA0B5B083D659178AA0 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/aa5ff16a-b7a9-490e-99be-3eaaa71e154b.roa Signing time: Mon 30 Jun 2025 16:31:52 +0000 ROA not before: Mon 30 Jun 2025 16:31:52 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 34.254.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:68:51:59:f9:90:33:08:d3:f8:ba:a0:b5:b0:83:d6:59:17:8a:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 30 16:31:52 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=6c2f890d8442e29447cfe4c4dc278e9d2166e68b0f045e1315753e39009f55cd, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:86:e0:17:7d:8a:96:c4:47:b9:50:4a:e1:75: 01:c7:03:3c:e5:2d:32:7e:8b:d1:e8:ea:09:4d:8a: 64:ed:52:0b:cc:25:31:ff:52:05:22:fe:fa:d2:e6: ce:dc:c7:4a:bd:b2:99:32:65:af:49:bd:9f:7c:77: cb:75:59:19:5e:6f:13:79:55:a8:30:7a:6b:52:f6: ea:6b:28:db:44:ec:36:07:97:65:e1:39:4a:7d:a5: 8e:f5:68:e4:21:37:aa:fc:32:99:93:34:19:23:d2: 10:66:32:41:38:72:27:54:92:ea:2b:4b:67:bd:a4: 61:73:fe:3e:eb:ba:df:d2:f0:c8:78:1d:ca:6d:d1: 7a:7a:92:17:1d:0c:b1:2f:aa:b4:42:92:fb:2f:e6: 17:1b:68:4f:32:fb:4e:16:4d:e7:2b:54:60:53:7c: c5:4b:68:e4:b3:23:56:cb:38:cd:4b:ad:df:e9:aa: 37:1c:b9:61:36:92:70:20:f5:85:c9:72:69:41:04: 70:cf:14:86:ef:be:8e:5e:90:bd:50:b8:7c:60:85: d6:9b:4d:de:82:0e:96:9d:21:67:9f:77:f8:fa:b4: 3f:0d:73:05:82:ac:7a:e8:4b:9c:ca:1c:6f:8e:db: c8:a3:1c:62:1a:ed:4a:6e:08:21:7d:85:23:c5:7e: fb:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:5B:D0:A5:5E:08:C0:51:26:DA:8A:24:BF:B5:B9:A9:38:F4:F9:48 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/aa5ff16a-b7a9-490e-99be-3eaaa71e154b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 34.254.192.0/18 Signature Algorithm: sha256WithRSAEncryption 71:0a:79:02:ee:2f:45:8f:78:63:05:65:cb:4d:d3:08:3d:8a: 9f:53:4f:2b:56:20:00:a5:ee:28:40:0f:a1:8b:3e:87:f1:ac: 79:5e:ba:81:1c:04:50:53:c3:84:aa:91:be:d9:25:e7:1c:61: 4b:6f:0d:bd:12:99:e4:32:80:ce:4f:f9:3c:16:5b:55:b4:68: c1:92:bf:eb:59:9a:5a:e6:67:44:a4:db:b5:f1:15:99:2b:df: 9a:2d:0d:03:af:bb:76:bb:71:95:25:0a:f7:26:7d:c6:41:3d: 4d:45:03:5b:05:65:4a:c1:09:02:ea:c9:a8:b6:ad:21:0a:d9: 6b:16:09:c6:e0:d9:f0:96:3a:ff:e6:de:08:7d:a4:82:86:be: 87:91:63:1f:4a:e0:d8:fd:cc:a4:f8:63:19:8a:b3:4d:57:b8: 76:ba:9e:ba:eb:4e:3e:b2:31:d9:1f:c3:6a:63:0b:13:ca:3c: 3a:ce:3b:24:06:9c:d1:e7:fb:46:af:2e:50:d0:ee:94:66:31: 2a:6f:ed:8d:09:d1:31:d7:c5:a1:c2:c4:f5:4e:e1:45:fc:c3: 6a:42:55:21:0e:78:19:93:ad:22:fb:e4:e7:65:0f:1c:a5:b7: 95:2e:d1:f9:04:61:9f:b7:7e:9f:2b:c0:dc:c1:3b:1e:a3:9c: 70:44:89:74 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW2hRWfmQMwjT+LqgtbCD1lkXiqAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjMwMTYzMTUyWhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YzJmODkwZDg0NDJlMjk0NDdjZmU0YzRkYzI3OGU5ZDIx NjZlNjhiMGYwNDVlMTMxNTc1M2UzOTAwOWY1NWNkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGhuAXfYqWxEe5UErhdQHHAzzlLTJ+i9Ho6glNimTtUgvM JTH/UgUi/vrS5s7cx0q9spkyZa9JvZ98d8t1WRlebxN5VagwemtS9uprKNtE7DYH l2XhOUp9pY71aOQhN6r8MpmTNBkj0hBmMkE4cidUkuorS2e9pGFz/j7rut/S8Mh4 Hcpt0Xp6khcdDLEvqrRCkvsv5hcbaE8y+04WTecrVGBTfMVLaOSzI1bLOM1Lrd/p qjccuWE2knAg9YXJcmlBBHDPFIbvvo5ekL1QuHxghdabTd6CDpadIWefd/j6tD8N cwWCrHroS5zKHG+O28ijHGIa7UpuCCF9hSPFfvsJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURFvQpV4IwFEm2ookv7W5qTj0+UgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2FhNWZmMTZhLWI3YTktNDkwZS05OWJlLTNlYWFhNzFlMTU0Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYi/sAwDQYJKoZIhvcNAQELBQADggEBAHEKeQLuL0WPeGMFZctN0wg9ip9T TytWIACl7ihAD6GLPofxrHleuoEcBFBTw4Sqkb7ZJeccYUtvDb0SmeQygM5P+TwW W1W0aMGSv+tZmlrmZ0Sk27XxFZkr35otDQOvu3a7cZUlCvcmfcZBPU1FA1sFZUrB CQLqyai2rSEK2WsWCcbg2fCWOv/m3gh9pIKGvoeRYx9K4Nj9zKT4YxmKs01XuHa6 nrrrTj6yMdkfw2pjCxPKPDrOOyQGnNHn+0avLlDQ7pRmMSpv7Y0J0THXxaHCxPVO 4UX8w2pCVSEOeBmTrSL75OdlDxylt5Uu0fkEYZ+3fp8rwNzBOx6jnHBEiXQ= -----END CERTIFICATE-----Generated at Mon Jun 30 22:41:05 2025 by rpki-client