$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c983e574-bfee-43d5-a8ee-79bdfdd8e179.roa File: c983e574-bfee-43d5-a8ee-79bdfdd8e179.roa (raw, json) Hash identifier: AGCMMCUmCXMr2KqHyE7ZxUixbaQPAtCv/3guf027SFM= Subject key identifier: 75:52:5F:3A:4E:21:F8:53:85:17:66:01:97:E3:DA:73:65:DC:5F:B9 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7F5AC75DCA177C4EDFB4B1ED944EA393C80DD6FF Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c983e574-bfee-43d5-a8ee-79bdfdd8e179.roa Signing time: Tue 01 Jul 2025 00:21:28 +0000 ROA not before: Tue 01 Jul 2025 00:21:28 +0000 ROA not after: Tue 05 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.248.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:5a:c7:5d:ca:17:7c:4e:df:b4:b1:ed:94:4e:a3:93:c8:0d:d6:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 1 00:21:28 2025 GMT Not After : Aug 5 23:59:59 2025 GMT Subject: serialNumber=0212c0e26edf84ed9305ec6cffb742b6174dec7d123e870f932f4e36bff1d6cd, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e5:64:64:08:f6:40:43:e5:7d:14:5e:5c:ff: 41:1e:07:d9:a9:fd:28:0e:4a:e9:30:80:f1:63:6a: 0b:67:af:e3:ca:05:be:9e:17:58:8e:0d:af:f2:a3: 3e:f2:be:04:64:3e:d0:2e:09:75:a6:0f:07:2c:7e: ab:79:1b:7f:5d:f3:dd:2c:9a:0a:1a:3d:6f:a4:a7: bb:41:cb:7a:6f:fd:a7:b1:39:8e:fd:a4:1d:18:4d: a0:1f:2e:ee:76:48:e1:6c:40:da:ac:6e:04:80:ce: f8:e6:f4:36:b7:c1:d4:67:70:7c:5e:f0:08:31:9c: 72:ed:fc:a6:fb:d6:7b:0c:8c:ce:c5:6d:9d:47:54: af:10:48:31:ee:39:d2:90:0e:da:99:1c:b2:a8:26: ae:0a:72:75:d5:28:04:1d:86:86:05:3b:27:83:b6: 71:fd:c9:56:0f:28:2f:fb:e5:a6:ff:0a:0d:57:e8: 8b:6d:b0:73:65:4d:d5:ae:63:ab:85:c0:aa:b7:82: ad:aa:76:24:5d:8c:c6:75:16:bb:b2:21:11:94:f1: 9f:dd:05:71:ab:93:8b:40:94:3a:c2:83:72:b1:ad: 89:c8:31:49:17:88:0c:7a:bd:24:24:8f:10:cd:10: b4:eb:03:d2:5e:5f:11:27:9e:f3:d2:64:e3:d6:dc: 72:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:52:5F:3A:4E:21:F8:53:85:17:66:01:97:E3:DA:73:65:DC:5F:B9 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c983e574-bfee-43d5-a8ee-79bdfdd8e179.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.248.96.0/20 Signature Algorithm: sha256WithRSAEncryption 97:47:63:9a:42:51:72:a8:4c:e9:4a:8f:0f:c9:4f:78:b8:b7: 1d:65:d6:b7:3d:3e:e7:18:3d:78:d9:d7:25:b2:bf:cb:56:7a: 14:35:7e:4a:cb:a8:e0:7c:c3:47:3a:de:eb:f6:a0:b5:51:60: 19:54:cf:76:e9:17:e7:fc:db:82:76:71:ff:cd:41:ae:67:d5: 60:da:2a:6d:ef:57:d3:3d:86:6f:ef:79:18:8a:11:af:b0:d5: 09:dc:52:77:9e:3e:1c:db:16:f4:a2:f8:b1:9b:dd:40:8f:0a: e8:43:7c:91:5d:43:3c:61:af:3d:f8:b0:d0:02:d1:6f:cf:f4: 74:2c:dc:26:49:fa:94:9f:82:10:33:6e:d1:a9:26:c2:49:e0: 42:ea:44:49:11:fb:80:83:4d:06:55:36:58:cc:97:ef:30:fb: f5:59:06:45:3a:63:09:5c:4f:ad:b1:2d:c8:a8:7f:fd:b8:da: 69:e4:b8:23:54:57:ee:e2:67:2f:12:92:cc:15:ec:f4:ce:e9: 58:1f:31:c6:5a:6b:bd:45:d2:14:e9:09:cf:29:dd:96:d0:81: b3:5c:65:0e:97:a0:90:ba:e2:08:1b:e7:40:f8:6d:05:54:de: d1:b5:a4:4b:4a:4d:1f:37:b9:6a:ea:32:92:20:6e:31:eb:f0: b0:ca:f8:8c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUf1rHXcoXfE7ftLHtlE6jk8gN1v8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzAxMDAyMTI4WhcNMjUwODA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMjEyYzBlMjZlZGY4NGVkOTMwNWVjNmNmZmI3NDJiNjE3 NGRlYzdkMTIzZTg3MGY5MzJmNGUzNmJmZjFkNmNkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDL5WRkCPZAQ+V9FF5c/0EeB9mp/SgOSukwgPFjagtnr+PK Bb6eF1iODa/yoz7yvgRkPtAuCXWmDwcsfqt5G39d890smgoaPW+kp7tBy3pv/aex OY79pB0YTaAfLu52SOFsQNqsbgSAzvjm9Da3wdRncHxe8AgxnHLt/Kb71nsMjM7F bZ1HVK8QSDHuOdKQDtqZHLKoJq4KcnXVKAQdhoYFOyeDtnH9yVYPKC/75ab/Cg1X 6IttsHNlTdWuY6uFwKq3gq2qdiRdjMZ1FruyIRGU8Z/dBXGrk4tAlDrCg3KxrYnI MUkXiAx6vSQkjxDNELTrA9JeXxEnnvPSZOPW3HJnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdVJfOk4h+FOFF2YBl+Pac2XcX7kwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2M5ODNlNTc0LWJmZWUtNDNkNS1hOGVlLTc5YmRmZGQ4ZTE3OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQN+GAwDQYJKoZIhvcNAQELBQADggEBAJdHY5pCUXKoTOlKjw/JT3i4tx1l 1rc9PucYPXjZ1yWyv8tWehQ1fkrLqOB8w0c63uv2oLVRYBlUz3bpF+f824J2cf/N Qa5n1WDaKm3vV9M9hm/veRiKEa+w1QncUneePhzbFvSi+LGb3UCPCuhDfJFdQzxh rz34sNAC0W/P9HQs3CZJ+pSfghAzbtGpJsJJ4ELqREkR+4CDTQZVNljMl+8w+/VZ BkU6YwlcT62xLciof/242mnkuCNUV+7iZy8SkswV7PTO6VgfMcZaa71F0hTpCc8p 3ZbQgbNcZQ6XoJC64ggb50D4bQVU3tG1pEtKTR83uWrqMpIgbjHr8LDK+Iw= -----END CERTIFICATE-----Generated at Tue Jul 1 01:33:22 2025 by rpki-client