$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/411e316c-2433-4368-9928-ce03ae418a63.roa File: 411e316c-2433-4368-9928-ce03ae418a63.roa (raw, json) Hash identifier: u0B1lTlDA8XWQgiUZv7YIer0oTwMpuymyw0c0TOYrYQ= Subject key identifier: BD:6F:20:14:7C:26:CC:98:80:E4:19:39:0C:2F:38:5C:1A:B6:3A:49 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2BADCF8D354A4F4D7067F57F2B4E7CBD4A1965FB Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/411e316c-2433-4368-9928-ce03ae418a63.roa Signing time: Mon 16 Jun 2025 17:31:09 +0000 ROA not before: Mon 16 Jun 2025 17:31:09 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.244.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:ad:cf:8d:35:4a:4f:4d:70:67:f5:7f:2b:4e:7c:bd:4a:19:65:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 16 17:31:09 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=8872f96fbe24e96fc99b0e91542149fa5ff8c1f171d50f3ac15f18ecda803abb, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:58:9d:4a:14:54:f3:6c:21:b9:c5:d6:11:9c: e4:0c:f8:2b:40:78:fa:80:cf:24:f3:23:99:46:ba: 00:c7:fa:bf:a2:73:1e:32:e3:e8:80:6b:ec:e5:e0: c3:40:48:8f:d9:49:9e:7a:1f:99:f4:5a:af:94:c0: a3:d2:6e:81:a8:34:8d:7a:d7:ed:0c:34:66:37:4d: 39:85:68:99:6b:21:88:4f:c1:db:99:11:de:6f:87: db:c1:63:97:f2:e6:d0:b0:ef:67:68:bb:4f:21:8d: 36:70:fe:8a:58:d6:23:a4:ab:52:ba:03:27:77:db: 3c:25:13:a8:09:51:d2:95:02:ee:08:fd:25:03:3d: 61:57:b8:8b:c5:be:01:4e:25:98:80:fe:b6:f8:f6: 40:3a:32:83:6c:60:72:d2:07:91:9a:9a:40:91:4c: b7:0a:fb:b5:00:0a:92:86:9d:02:60:f5:8c:03:fb: 71:96:39:58:c6:8a:1d:37:4f:a8:f4:cc:0f:81:1e: 8c:c3:df:f6:95:d4:df:77:e2:50:a8:ba:b9:bd:23: e6:38:6f:3a:a1:db:0d:b7:4e:9c:02:75:51:5f:f2: 91:13:49:fb:2d:db:7d:39:f2:18:f9:ed:34:4c:a0: c7:4c:b7:05:e7:9a:33:58:c4:24:91:5c:f1:fe:50: 82:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:6F:20:14:7C:26:CC:98:80:E4:19:39:0C:2F:38:5C:1A:B6:3A:49 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/411e316c-2433-4368-9928-ce03ae418a63.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.244.0.0/16 Signature Algorithm: sha256WithRSAEncryption 39:5a:e3:a8:e7:3b:c2:42:35:5c:e7:f8:b8:44:23:ac:27:bc: 39:4d:04:03:4d:2e:6d:52:95:6e:60:4c:a8:1e:96:34:3f:e4: e3:33:93:e7:8c:de:1d:aa:f0:28:4c:aa:7c:ca:08:ff:1f:35: 70:37:98:5a:1a:18:6c:86:45:46:7a:bc:c1:09:91:3c:55:d6: 94:c0:29:64:0e:04:83:08:81:77:0f:45:e9:c9:ff:0e:f6:8e: 92:f8:4e:c9:f8:79:5b:51:0d:1f:cc:86:23:d6:54:18:30:4c: 41:0d:c8:b4:75:e6:a2:4f:ff:84:07:d1:a5:49:ca:02:26:98: 24:3c:53:59:35:ac:e1:f0:c2:04:1e:24:a0:9c:08:49:e3:47: 18:d5:46:b6:b7:ed:a5:49:cf:73:b2:1c:2a:b9:b0:00:ec:d2: 97:c6:24:4e:50:bc:7f:46:27:d3:9f:7f:48:b9:93:cd:3f:73: 60:8b:0f:aa:71:5c:a4:ca:16:51:e0:d9:60:15:08:fe:8a:46: 7c:d6:af:18:f0:35:80:55:12:2c:61:72:08:75:9a:eb:7a:f1: 57:3b:f2:b6:89:c1:32:ab:f8:b4:5f:46:0f:3b:7e:7d:65:38: b8:bb:6d:d0:a9:9d:07:e1:3c:51:d8:27:f7:a0:5c:b0:b2:f9: 10:f4:82:a6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUK63PjTVKT01wZ/V/K058vUoZZfswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjE2MTczMTA5WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ODcyZjk2ZmJlMjRlOTZmYzk5YjBlOTE1NDIxNDlmYTVm ZjhjMWYxNzFkNTBmM2FjMTVmMThlY2RhODAzYWJiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/WJ1KFFTzbCG5xdYRnOQM+CtAePqAzyTzI5lGugDH+r+i cx4y4+iAa+zl4MNASI/ZSZ56H5n0Wq+UwKPSboGoNI161+0MNGY3TTmFaJlrIYhP wduZEd5vh9vBY5fy5tCw72dou08hjTZw/opY1iOkq1K6Ayd32zwlE6gJUdKVAu4I /SUDPWFXuIvFvgFOJZiA/rb49kA6MoNsYHLSB5GamkCRTLcK+7UACpKGnQJg9YwD +3GWOVjGih03T6j0zA+BHozD3/aV1N934lCourm9I+Y4bzqh2w23TpwCdVFf8pET Sfst23058hj57TRMoMdMtwXnmjNYxCSRXPH+UIIDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUvW8gFHwmzJiA5Bk5DC84XBq2OkkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQxMWUzMTZjLTI0MzMtNDM2OC05OTI4LWNlMDNhZTQxOGE2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAP9DANBgkqhkiG9w0BAQsFAAOCAQEAOVrjqOc7wkI1XOf4uEQjrCe8OU0E A00ubVKVbmBMqB6WND/k4zOT54zeHarwKEyqfMoI/x81cDeYWhoYbIZFRnq8wQmR PFXWlMApZA4EgwiBdw9F6cn/DvaOkvhOyfh5W1ENH8yGI9ZUGDBMQQ3ItHXmok// hAfRpUnKAiaYJDxTWTWs4fDCBB4koJwISeNHGNVGtrftpUnPc7IcKrmwAOzSl8Yk TlC8f0Yn059/SLmTzT9zYIsPqnFcpMoWUeDZYBUI/opGfNavGPA1gFUSLGFyCHWa 63rxVzvytonBMqv4tF9GDzt+fWU4uLtt0KmdB+E8Udgn96BcsLL5EPSCpg== -----END CERTIFICATE-----Generated at Sun Jun 29 11:21:54 2025 by rpki-client