$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/db0b227f-9958-4ebb-9f23-65cc24c5c799.roa File: db0b227f-9958-4ebb-9f23-65cc24c5c799.roa (raw, json) Hash identifier: bPEZZNSliJNYDigjnsxcb/SN0MHmScPWeqXrbhPcX08= Subject key identifier: 5F:20:25:06:4A:92:9C:7E:F2:33:60:11:64:28:7C:88:5A:6A:8E:B8 Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 1FF3B91D57B520676DE6EC64DCE4F811C1020545 Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/db0b227f-9958-4ebb-9f23-65cc24c5c799.roa Signing time: Tue 01 Jul 2025 00:20:14 +0000 ROA not before: Tue 01 Jul 2025 00:20:14 +0000 ROA not after: Tue 05 Aug 2025 23:59:59 +0000 asID: 62785 IP address blocks: 172.96.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:f3:b9:1d:57:b5:20:67:6d:e6:ec:64:dc:e4:f8:11:c1:02:05:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: Jul 1 00:20:14 2025 GMT Not After : Aug 5 23:59:59 2025 GMT Subject: serialNumber=ef0696a25ace5810a4ca20232ec89d4eb71badc9b6d1927fa10f7fe621e9bc8d, CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:33:7b:4c:c3:19:63:17:8f:b7:2b:e9:bd:e2: 3c:be:10:f2:9a:51:62:5e:90:1d:65:00:e5:f8:13: 30:e5:33:5d:71:05:b0:8e:0c:87:d7:48:bb:3d:59: 00:25:09:86:db:34:d9:06:02:64:c5:36:94:97:c9: d2:45:2c:18:f3:ac:a9:b4:ba:b5:e4:e9:14:2f:de: 90:25:6c:00:94:77:72:ec:97:31:09:44:0d:2c:1e: c9:c2:aa:bc:8c:f2:b9:a4:68:fb:7c:44:e6:37:32: 07:b8:6c:e5:2c:47:b2:a0:db:74:28:25:6c:04:0a: fc:72:b9:46:57:6d:1e:ac:1b:89:f1:56:f2:44:fd: 66:8f:21:4c:5d:82:d6:8a:0b:d2:4b:93:35:a8:32: 7b:c1:81:20:61:86:b4:1d:ce:11:52:b1:41:af:89: f8:5f:a7:26:2e:0f:af:90:f7:ef:63:9d:93:ab:9c: 79:c5:5c:65:95:c7:35:d4:4f:1c:01:f3:ad:a8:a0: e4:8c:ad:2d:9b:c0:90:89:34:c8:24:12:c1:4f:39: 5b:3b:39:2d:c8:16:e4:0c:f0:cf:d1:9d:0f:c9:b3: 28:65:d9:d5:4d:85:33:8a:8f:ca:5a:17:b0:a3:5c: 60:97:d9:25:37:7b:2b:5b:ac:86:ca:f4:05:21:54: 6e:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:20:25:06:4A:92:9C:7E:F2:33:60:11:64:28:7C:88:5A:6A:8E:B8 X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/db0b227f-9958-4ebb-9f23-65cc24c5c799.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 172.96.96.0/20 Signature Algorithm: sha256WithRSAEncryption 71:df:88:92:5c:48:b5:4a:47:72:94:e9:12:0b:90:b3:46:fa: 72:e6:b4:46:ad:4a:b4:e4:be:b5:08:bf:0f:49:00:09:4f:c6: 58:6b:f2:ba:31:4c:9e:f3:92:2f:5c:93:68:40:24:2c:e5:5c: 70:ae:4b:bc:30:ad:7d:6c:0f:2b:e3:d2:c1:6d:37:10:15:56: 9d:78:17:f3:23:50:7e:45:8c:03:fd:57:4b:5c:60:df:67:8d: 29:c6:3d:06:83:5a:aa:4e:1a:77:bb:3d:74:dc:1e:ff:e2:5e: a5:33:bb:7b:2f:55:fe:b0:78:68:b1:91:75:bd:b8:01:22:15: 78:21:ce:c9:84:e6:f4:9d:5f:4c:a3:d3:bf:9a:8b:98:84:41: b8:ec:a5:af:3f:e1:e5:86:39:23:10:71:bf:30:4c:93:b5:3f: ab:d1:bc:f0:76:14:2a:66:01:61:07:9e:ac:89:c6:e3:a8:54: 9d:79:7b:a0:71:37:ba:e0:b3:a9:3a:ff:d0:79:cb:18:c2:87: 6d:ef:72:62:d9:c7:07:42:92:b2:61:0f:02:e6:94:4f:f2:b8: 18:a7:54:21:47:ce:5a:9f:c7:83:5a:b7:52:52:b1:2c:87:d6: 90:5c:fa:61:df:fa:3f:11:fc:6e:ff:37:87:f3:a8:cc:96:6f: 35:7e:20:6d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUH/O5HVe1IGdt5uxk3OT4EcECBUUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjUwNzAxMDAyMDE0WhcNMjUwODA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZjA2OTZhMjVhY2U1ODEwYTRjYTIwMjMyZWM4OWQ0ZWI3 MWJhZGM5YjZkMTkyN2ZhMTBmN2ZlNjIxZTliYzhkMS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDpM3tMwxljF4+3K+m94jy+EPKaUWJekB1lAOX4EzDlM11x BbCODIfXSLs9WQAlCYbbNNkGAmTFNpSXydJFLBjzrKm0urXk6RQv3pAlbACUd3Ls lzEJRA0sHsnCqryM8rmkaPt8ROY3Mge4bOUsR7Kg23QoJWwECvxyuUZXbR6sG4nx VvJE/WaPIUxdgtaKC9JLkzWoMnvBgSBhhrQdzhFSsUGvifhfpyYuD6+Q9+9jnZOr nHnFXGWVxzXUTxwB862ooOSMrS2bwJCJNMgkEsFPOVs7OS3IFuQM8M/RnQ/Jsyhl 2dVNhTOKj8paF7CjXGCX2SU3eytbrIbK9AUhVG7lAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXyAlBkqSnH7yM2ARZCh8iFpqjrgwHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4L2RiMGIyMjdmLTk5NTgtNGViYi05ZjIzLTY1Y2MyNGM1Yzc5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBASsYGAwDQYJKoZIhvcNAQELBQADggEBAHHfiJJcSLVKR3KU6RILkLNG+nLm tEatSrTkvrUIvw9JAAlPxlhr8roxTJ7zki9ck2hAJCzlXHCuS7wwrX1sDyvj0sFt NxAVVp14F/MjUH5FjAP9V0tcYN9njSnGPQaDWqpOGne7PXTcHv/iXqUzu3svVf6w eGixkXW9uAEiFXghzsmE5vSdX0yj07+ai5iEQbjspa8/4eWGOSMQcb8wTJO1P6vR vPB2FCpmAWEHnqyJxuOoVJ15e6BxN7rgs6k6/9B5yxjCh23vcmLZxwdCkrJhDwLm lE/yuBinVCFHzlqfx4Nat1JSsSyH1pBc+mHf+j8R/G7/N4fzqMyWbzV+IG0= -----END CERTIFICATE-----Generated at Tue Jul 1 02:07:29 2025 by rpki-client