$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/caf8452d-bc01-45b7-a1a6-dd04100ef8d6.roa File: caf8452d-bc01-45b7-a1a6-dd04100ef8d6.roa (raw, json) Hash identifier: YHnJ7TiCSyQ9b3U+08SijOhN6CfaE2JpGR1eJKAcmFE= Subject key identifier: 3E:2D:C1:BF:7F:30:5B:AD:94:06:CE:8B:7E:5B:95:10:A9:07:9D:5E Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6792DD09056C1914FA0677D76A4CB9BC6E0552B0 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/caf8452d-bc01-45b7-a1a6-dd04100ef8d6.roa Signing time: Mon 30 Jun 2025 17:01:23 +0000 ROA not before: Mon 30 Jun 2025 17:01:23 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.160.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:92:dd:09:05:6c:19:14:fa:06:77:d7:6a:4c:b9:bc:6e:05:52:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 30 17:01:23 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=7e651e0e6ee8aac0de55f1e8e7df473cd58047459dc2e79096051eeb81aa7638, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:83:c1:e9:70:a9:e0:4c:19:7c:c7:33:8a:31: f2:15:71:f6:ba:8c:5f:db:62:64:ef:d5:b5:59:17: 66:34:ef:a5:b8:03:fe:82:21:df:5a:e1:06:f7:62: 13:55:d3:d9:cd:92:25:cb:3a:63:b2:6d:24:a2:12: a6:14:57:45:78:3a:46:fb:9b:d7:b8:fd:bb:23:57: 4d:54:fe:57:e4:c7:09:1c:d0:4a:16:2e:6f:09:31: 47:8e:23:1d:9d:8a:7f:60:91:c9:0d:aa:58:d9:28: 36:f6:5f:e4:56:f3:71:bd:34:24:c3:34:e7:35:27: e3:9f:92:f9:82:a8:9c:0f:0e:44:da:f6:6f:a9:4e: 57:11:54:aa:b1:82:15:e9:f7:ab:4f:7e:8e:94:10: e9:23:6e:86:d1:6d:f4:2c:08:5e:67:d1:2f:fd:8f: d1:13:f0:24:84:3b:63:9e:a8:b7:28:8f:ca:58:e0: a2:2e:ad:e1:05:25:7b:29:16:d8:40:9d:70:e9:57: 95:de:ea:30:5f:2c:fc:b4:16:ad:ed:7c:a6:84:c5: 92:f5:71:bc:9f:ba:82:8e:27:e6:3b:41:4d:1c:5d: 04:0d:4b:f3:47:56:ff:26:ca:49:01:fb:aa:6e:f1: c1:11:4c:ce:cb:aa:3c:1b:8f:5f:0b:3c:c0:ac:75: fc:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:2D:C1:BF:7F:30:5B:AD:94:06:CE:8B:7E:5B:95:10:A9:07:9D:5E X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/caf8452d-bc01-45b7-a1a6-dd04100ef8d6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.160.128.0/17 Signature Algorithm: sha256WithRSAEncryption 7c:09:3e:07:a9:8d:59:f4:80:b8:12:ae:16:8d:d2:46:de:46: 4d:f3:dd:ef:ce:bb:e1:44:1c:03:f5:ae:e5:bd:9a:51:27:02: 02:67:32:8b:86:cc:92:ec:a0:13:41:4e:6d:65:1e:62:25:d1: 00:71:8f:ce:b8:c2:e1:0f:da:0b:97:80:83:7c:a9:2e:5c:56: 29:16:af:0b:bb:e4:04:cf:60:16:24:41:84:1a:12:88:7a:c8: 93:6c:9a:ac:2c:31:d1:04:8c:9a:00:9f:c0:fe:34:12:ee:ff: fd:c5:26:fa:88:c3:85:19:98:d7:69:46:33:44:86:71:d8:4e: b9:9c:c6:31:9a:24:28:d3:da:7d:36:92:41:fa:9a:d3:b2:3f: e0:2e:cd:75:3d:1c:a6:8f:c4:33:92:0b:9f:82:73:43:27:f3: 03:99:39:d0:2e:c5:5e:a2:19:3d:2d:aa:3f:11:cb:bb:05:3f: a4:82:5d:48:8b:d1:ea:d7:9c:57:6c:ca:e5:eb:2b:dc:32:58: a3:05:a2:80:5c:f3:9c:26:be:c5:76:15:23:3a:72:8f:c9:18: e9:ea:41:02:20:c5:f1:8c:e7:06:40:55:63:08:3f:3b:9b:88: c1:00:60:46:61:b7:d5:bd:3a:07:4f:44:13:ea:46:94:68:73: f7:2e:ec:31 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZ5LdCQVsGRT6BnfXaky5vG4FUrAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjMwMTcwMTIzWhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZTY1MWUwZTZlZThhYWMwZGU1NWYxZThlN2RmNDczY2Q1 ODA0NzQ1OWRjMmU3OTA5NjA1MWVlYjgxYWE3NjM4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCag8HpcKngTBl8xzOKMfIVcfa6jF/bYmTv1bVZF2Y076W4 A/6CId9a4Qb3YhNV09nNkiXLOmOybSSiEqYUV0V4Okb7m9e4/bsjV01U/lfkxwkc 0EoWLm8JMUeOIx2din9gkckNqljZKDb2X+RW83G9NCTDNOc1J+OfkvmCqJwPDkTa 9m+pTlcRVKqxghXp96tPfo6UEOkjbobRbfQsCF5n0S/9j9ET8CSEO2OeqLcoj8pY 4KIureEFJXspFthAnXDpV5Xe6jBfLPy0Fq3tfKaExZL1cbyfuoKOJ+Y7QU0cXQQN S/NHVv8mykkB+6pu8cERTM7Lqjwbj18LPMCsdfzrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPi3Bv38wW62UBs6LfluVEKkHnV4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2NhZjg0NTJkLWJjMDEtNDViNy1hMWE2LWRkMDQxMDBlZjhkNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc2oIAwDQYJKoZIhvcNAQELBQADggEBAHwJPgepjVn0gLgSrhaN0kbeRk3z 3e/Ou+FEHAP1ruW9mlEnAgJnMouGzJLsoBNBTm1lHmIl0QBxj864wuEP2guXgIN8 qS5cVikWrwu75ATPYBYkQYQaEoh6yJNsmqwsMdEEjJoAn8D+NBLu//3FJvqIw4UZ mNdpRjNEhnHYTrmcxjGaJCjT2n02kkH6mtOyP+AuzXU9HKaPxDOSC5+Cc0Mn8wOZ OdAuxV6iGT0tqj8Ry7sFP6SCXUiL0erXnFdsyuXrK9wyWKMFooBc85wmvsV2FSM6 co/JGOnqQQIgxfGM5wZAVWMIPzubiMEAYEZht9W9OgdPRBPqRpRoc/cu7DE= -----END CERTIFICATE-----Generated at Tue Jul 1 06:15:59 2025 by rpki-client