$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/8bae045f-365b-43cf-99fc-12cbcbce5f67.roa File: 8bae045f-365b-43cf-99fc-12cbcbce5f67.roa (raw, json) Hash identifier: AODG7K6XV1q9LZy8+rVg874obdEkRO+mvj6dKlqRzew= Subject key identifier: 32:4A:78:9F:45:53:60:71:1C:99:6D:13:64:BA:B0:1A:9C:E2:46:6A Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 6B9CB1FB40E83719000F036A8CC8FFFCEA2F4573 Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/8bae045f-365b-43cf-99fc-12cbcbce5f67.roa Signing time: Tue 01 Jul 2025 00:20:13 +0000 ROA not before: Tue 01 Jul 2025 00:20:13 +0000 ROA not after: Tue 05 Aug 2025 23:59:59 +0000 asID: 62785 IP address blocks: 172.96.104.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:9c:b1:fb:40:e8:37:19:00:0f:03:6a:8c:c8:ff:fc:ea:2f:45:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: Jul 1 00:20:13 2025 GMT Not After : Aug 5 23:59:59 2025 GMT Subject: serialNumber=cd635c4d7c2cf9ddfc88c0e6644c690c5912c4c6eec1e5de7c7c1dbbb1fc00f7, CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:6a:28:b9:7d:3b:5b:4b:15:65:82:15:f9:80: 1a:c8:81:f5:f8:84:cf:7e:45:76:3d:68:65:53:bf: 94:02:b0:fc:63:3a:e1:03:7b:d9:01:4e:89:eb:ce: 83:e7:6b:77:73:38:b2:73:b0:ee:7b:7f:6c:eb:98: bb:19:08:9a:cc:b9:8e:43:64:cb:61:ec:06:50:17: 22:9c:59:c9:3e:66:9c:55:9a:6e:cd:c4:b3:f0:7c: a2:cd:fe:27:54:c6:2c:6b:c0:46:ec:9d:18:75:41: 78:a7:c6:72:d3:39:24:9a:e1:67:e2:cc:ce:3a:4e: 99:14:5a:dc:de:a5:e1:0d:c5:5e:95:9d:55:9f:c8: e9:57:fb:23:d3:ac:c0:e7:b5:87:79:1b:11:0d:88: f1:56:0c:e1:f2:9e:ea:cc:5f:2a:85:83:6a:35:f3: 7d:e0:98:da:d3:93:6a:cc:a9:e8:bc:c5:94:8f:c5: d3:d4:84:39:4a:66:ff:a5:fe:e3:be:54:c2:53:8e: d9:5d:63:1e:f0:fe:8c:c5:d4:fe:f4:c3:29:ae:98: b7:7f:53:95:5c:a9:06:f7:5d:05:94:69:21:64:d1: ef:f0:47:e5:78:da:f7:66:26:30:4b:cf:1f:5f:a3: a9:07:fe:52:51:35:33:8a:08:4e:4a:f7:b3:f3:a8: 18:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:4A:78:9F:45:53:60:71:1C:99:6D:13:64:BA:B0:1A:9C:E2:46:6A X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/8bae045f-365b-43cf-99fc-12cbcbce5f67.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 172.96.104.0/21 Signature Algorithm: sha256WithRSAEncryption 65:3f:0f:fd:e7:97:f9:b0:16:d9:29:4d:36:db:cf:b3:04:fd: b4:12:f9:c6:b3:9e:c1:6a:5a:b0:77:f4:4b:ca:91:87:f1:6c: cb:8a:26:bd:b8:ed:00:92:17:fb:50:ac:7f:e6:cf:ca:7c:e5: 95:d8:1a:59:ee:1d:2e:df:54:1a:19:e9:40:2a:53:dc:4c:5c: 64:d8:63:1a:b1:16:ca:e5:e4:7d:7b:3e:4c:95:8f:67:97:6c: 3d:99:f0:cb:7f:c5:6b:75:b5:b5:c7:10:5c:47:54:41:1c:8c: 07:fe:51:67:92:54:b9:96:74:17:64:6a:df:61:6f:96:90:0d: 13:16:d6:37:4a:9c:42:27:b8:67:b3:89:35:12:ce:9b:65:8c: 4c:95:0d:61:ee:51:f8:35:21:0d:8c:23:59:96:03:34:b1:94: 41:76:d8:50:c7:93:44:e6:ec:ef:c3:12:50:71:1c:55:97:f9: 7d:e6:39:27:24:75:ed:a6:34:33:4e:c3:02:c6:9b:ef:0f:ed: cf:1d:a3:75:7d:91:ec:b2:9b:68:41:d7:29:26:5d:a0:19:e9: 51:3c:3a:f6:68:2c:0a:f3:27:3e:c7:0c:04:20:4d:ef:49:51: 77:2a:0c:38:f7:7a:98:e1:45:f1:46:ff:52:da:62:5a:62:d5: 3b:5f:cb:37 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa5yx+0DoNxkADwNqjMj//OovRXMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjUwNzAxMDAyMDEzWhcNMjUwODA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZDYzNWM0ZDdjMmNmOWRkZmM4OGMwZTY2NDRjNjkwYzU5 MTJjNGM2ZWVjMWU1ZGU3YzdjMWRiYmIxZmMwMGY3MS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaaii5fTtbSxVlghX5gBrIgfX4hM9+RXY9aGVTv5QCsPxj OuEDe9kBTonrzoPna3dzOLJzsO57f2zrmLsZCJrMuY5DZMth7AZQFyKcWck+ZpxV mm7NxLPwfKLN/idUxixrwEbsnRh1QXinxnLTOSSa4WfizM46TpkUWtzepeENxV6V nVWfyOlX+yPTrMDntYd5GxENiPFWDOHynurMXyqFg2o1833gmNrTk2rMqei8xZSP xdPUhDlKZv+l/uO+VMJTjtldYx7w/ozF1P70wymumLd/U5VcqQb3XQWUaSFk0e/w R+V42vdmJjBLzx9fo6kH/lJRNTOKCE5K97PzqBhvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMkp4n0VTYHEcmW0TZLqwGpziRmowHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4LzhiYWUwNDVmLTM2NWItNDNjZi05OWZjLTEyY2JjYmNlNWY2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOsYGgwDQYJKoZIhvcNAQELBQADggEBAGU/D/3nl/mwFtkpTTbbz7ME/bQS +caznsFqWrB39EvKkYfxbMuKJr247QCSF/tQrH/mz8p85ZXYGlnuHS7fVBoZ6UAq U9xMXGTYYxqxFsrl5H17PkyVj2eXbD2Z8Mt/xWt1tbXHEFxHVEEcjAf+UWeSVLmW dBdkat9hb5aQDRMW1jdKnEInuGeziTUSzptljEyVDWHuUfg1IQ2MI1mWAzSxlEF2 2FDHk0Tm7O/DElBxHFWX+X3mOSckde2mNDNOwwLGm+8P7c8do3V9keyym2hB1ykm XaAZ6VE8OvZoLArzJz7HDAQgTe9JUXcqDDj3epjhRfFG/1LaYlpi1Ttfyzc= -----END CERTIFICATE-----Generated at Tue Jul 1 01:54:07 2025 by rpki-client