$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b7529512-d3e8-458c-b43f-9e84bd73caed.roa File: b7529512-d3e8-458c-b43f-9e84bd73caed.roa (raw, json) Hash identifier: 8B6sH+Vqpeuydy2EIj3pAtYfDk7mh4Vo5I3LCB92Uig= Subject key identifier: 5F:E8:7D:B8:45:F2:A8:07:4D:EF:25:2A:19:F4:4F:8B:C3:0C:1D:B8 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6E4B4B830F6CC93E4693CA83696FDA63D04D89A8 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b7529512-d3e8-458c-b43f-9e84bd73caed.roa Signing time: Wed 07 May 2025 00:50:31 +0000 ROA not before: Wed 07 May 2025 00:50:31 +0000 ROA not after: Wed 11 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.177.64.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:4b:4b:83:0f:6c:c9:3e:46:93:ca:83:69:6f:da:63:d0:4d:89:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 7 00:50:31 2025 GMT Not After : Jun 11 23:59:59 2025 GMT Subject: serialNumber=88f8a90573c2ddc495bdb8072abbabbaf343d0ff26ebd23ee1829dd23c23d927, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:7f:91:f0:34:19:6a:c9:25:70:66:b1:bb:a1: 8f:ea:50:98:58:85:d3:47:31:05:53:62:0e:50:9e: e0:8c:ad:15:05:c1:22:17:1b:df:e1:45:ec:0f:7e: 0f:bc:fc:78:b3:66:bd:b2:11:2d:04:70:14:66:f3: b6:3b:c4:8f:2f:8a:22:05:1d:5e:cb:03:2f:be:dc: 41:70:a1:77:89:d2:b6:47:c9:d2:d5:56:a7:d5:31: e2:d1:fc:a2:55:6e:1e:77:81:17:9a:7f:e2:bd:95: 16:71:d5:bc:e3:79:3c:91:dd:c1:c5:fc:ef:8c:ef: 65:fc:45:89:6d:6f:fc:8d:4c:cf:79:8b:39:87:88: 79:6c:97:32:9c:4e:9c:ab:10:fb:a5:02:a0:64:a7: 87:ab:15:8e:1f:33:87:67:09:ae:b8:ee:d3:32:9d: cf:87:20:ba:2e:92:54:60:d2:42:47:b6:ff:1d:f1: 86:d6:89:52:a9:aa:79:81:e7:02:39:bd:28:08:f8: 4c:14:b4:3f:f7:9e:ce:ad:f1:e6:75:61:bc:09:21: 29:c5:79:36:9e:91:4a:68:1f:6c:42:8f:e6:9d:1a: 59:cb:ed:46:73:1d:eb:ac:2b:3b:6d:ce:ad:9d:33: 80:14:c2:13:a0:a0:82:84:f8:67:7a:b0:40:7f:e5: 9f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:E8:7D:B8:45:F2:A8:07:4D:EF:25:2A:19:F4:4F:8B:C3:0C:1D:B8 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b7529512-d3e8-458c-b43f-9e84bd73caed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.177.64.0/23 Signature Algorithm: sha256WithRSAEncryption 45:a9:c4:a2:b4:14:32:37:f3:33:60:50:b5:f5:76:02:f2:34: 4f:8c:45:17:40:85:d6:30:66:b1:bf:50:a7:62:55:9b:5c:38: ce:87:d1:fa:fb:3e:45:7d:d9:93:ef:14:bc:db:ca:83:c5:95: 8d:75:1d:a6:8a:c7:8a:9c:df:7f:2f:b6:cc:af:dd:c3:29:a6: b9:e1:67:4c:85:77:4d:cd:14:ef:53:5a:00:b2:d7:fe:0c:23: 35:16:92:2e:9f:59:81:b4:89:e2:3e:42:4b:d4:25:46:2c:b6: 7b:1d:fc:9e:1a:99:79:50:6e:5f:b6:ef:03:bf:4f:55:87:45: 71:b0:0c:c0:1c:ff:74:bf:14:80:77:3f:91:cb:32:44:05:12: 4f:74:fb:bf:2e:f3:b3:b8:17:df:15:9b:03:68:66:53:22:b5: f8:bf:65:d3:87:0f:70:fc:ed:6e:68:30:0c:2f:ef:7d:dc:a1: 0f:35:bb:80:a9:f2:d6:73:7a:ff:79:6e:2e:69:23:3f:8e:df: 01:ae:71:51:da:74:b6:65:02:ed:a1:04:65:fe:3f:25:80:72: d3:87:15:cf:a5:fc:f7:d2:c6:08:9e:03:89:ec:d0:e9:62:38: 4f:29:5b:4f:23:21:59:64:06:4a:0f:b0:65:e5:61:cd:8c:0a: 8f:d0:5f:6b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbktLgw9syT5Gk8qDaW/aY9BNiagwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTA3MDA1MDMxWhcNMjUwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0A4OGY4YTkwNTczYzJkZGM0OTViZGI4MDcyYWJiYWJiYWYz NDNkMGZmMjZlYmQyM2VlMTgyOWRkMjNjMjNkOTI3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCNf5HwNBlqySVwZrG7oY/qUJhYhdNHMQVTYg5QnuCMrRUF wSIXG9/hRewPfg+8/HizZr2yES0EcBRm87Y7xI8viiIFHV7LAy++3EFwoXeJ0rZH ydLVVqfVMeLR/KJVbh53gReaf+K9lRZx1bzjeTyR3cHF/O+M72X8RYltb/yNTM95 izmHiHlslzKcTpyrEPulAqBkp4erFY4fM4dnCa647tMync+HILouklRg0kJHtv8d 8YbWiVKpqnmB5wI5vSgI+EwUtD/3ns6t8eZ1YbwJISnFeTaekUpoH2xCj+adGlnL 7UZzHeusKzttzq2dM4AUwhOgoIKE+Gd6sEB/5Z9TAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUX+h9uEXyqAdN7yUqGfRPi8MMHbgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2I3NTI5NTEyLWQzZTgtNDU4Yy1iNDNmLTllODRiZDczY2FlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEPsUAwDQYJKoZIhvcNAQELBQADggEBAEWpxKK0FDI38zNgULX1dgLyNE+M RRdAhdYwZrG/UKdiVZtcOM6H0fr7PkV92ZPvFLzbyoPFlY11HaaKx4qc338vtsyv 3cMpprnhZ0yFd03NFO9TWgCy1/4MIzUWki6fWYG0ieI+QkvUJUYstnsd/J4amXlQ bl+27wO/T1WHRXGwDMAc/3S/FIB3P5HLMkQFEk90+78u87O4F98VmwNoZlMitfi/ ZdOHD3D87W5oMAwv733coQ81u4Cp8tZzev95bi5pIz+O3wGucVHadLZlAu2hBGX+ PyWActOHFc+l/PfSxgieA4ns0OliOE8pW08jIVlkBkoPsGXlYc2MCo/QX2s= -----END CERTIFICATE-----Generated at Fri May 9 17:34:43 2025 by rpki-client