$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6de0e09c-7fc0-44f1-91c5-605dba16855c.roa File: 6de0e09c-7fc0-44f1-91c5-605dba16855c.roa (raw, json) Hash identifier: mPnklvJ93RYxujqs98ZLO+z+1JRDhEsdPFC/XIEnMVQ= Subject key identifier: B1:D5:DD:CC:53:8C:94:81:16:D5:4D:3C:28:22:49:29:6E:0A:DE:CD Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 17A9E892F4D8E0FFC7697C3E9FA568F803AEAFB0 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6de0e09c-7fc0-44f1-91c5-605dba16855c.roa Signing time: Mon 16 Jun 2025 16:20:07 +0000 ROA not before: Mon 16 Jun 2025 16:20:07 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.185.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:a9:e8:92:f4:d8:e0:ff:c7:69:7c:3e:9f:a5:68:f8:03:ae:af:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 16 16:20:07 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=4a6deace875dd37794f96683cee6897ff16c689a78640f6d3f6c920736ae3b0a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:52:03:ae:22:71:f7:52:4b:7e:1a:be:ac:81: 4d:b2:f3:4b:f4:da:19:41:b0:bd:70:47:ef:bd:d9: 4a:b0:cb:67:23:cc:27:6d:ae:3f:8c:12:3e:91:fd: 2c:30:20:e0:61:39:54:62:f4:19:db:16:58:74:83: 4f:60:43:f0:5d:97:90:11:25:ce:d6:48:4b:4c:e6: 75:f9:a9:92:a3:ab:c2:a4:3e:e0:cd:80:47:83:a1: 67:fd:a8:b4:88:c1:c0:95:b8:6a:04:05:fd:41:b7: 69:35:07:55:ce:1d:1d:bd:26:2d:f1:ae:4a:0e:bc: ba:b1:1a:de:87:b6:84:e8:47:b4:e4:46:cd:f1:67: 5a:d1:d0:18:28:3f:7e:0d:91:5d:03:26:7e:19:77: a3:ef:c2:0b:12:a0:f0:04:fe:91:b3:f1:ef:8a:58: ca:b6:77:44:59:2b:0f:c2:7f:ed:f3:91:c0:6f:2c: 5d:b4:81:27:23:e0:68:22:57:d1:b8:0e:32:93:e5: 86:80:b6:d9:46:13:f7:93:be:1a:4a:1e:29:66:58: 89:88:8b:3e:ac:03:8e:5d:2b:f7:9c:d2:0a:f0:c2: 8e:e5:44:45:51:01:c8:84:22:5d:35:0a:00:1a:7b: 3b:38:3e:08:5f:f9:4b:7c:92:21:40:74:41:d5:58: 88:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:D5:DD:CC:53:8C:94:81:16:D5:4D:3C:28:22:49:29:6E:0A:DE:CD X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6de0e09c-7fc0-44f1-91c5-605dba16855c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.185.0.0/22 Signature Algorithm: sha256WithRSAEncryption 39:ce:37:58:cf:c6:ad:b9:f3:8f:98:ea:ea:82:45:e0:08:6a: 88:f0:75:e3:6b:ed:01:1b:37:4b:4b:74:2c:5e:ce:8a:49:a2: 56:9e:1f:2a:7a:83:96:d0:17:30:10:3b:19:17:c1:91:01:bd: 2c:a7:39:8c:3e:3a:14:9b:1c:09:5f:9a:aa:07:c0:03:09:23: 34:a3:e9:86:aa:da:3f:b7:9d:37:c2:c2:f0:df:e3:a1:89:28: 89:d1:a1:ba:ea:cc:91:7d:02:19:51:08:a8:04:89:94:83:9e: 5c:95:30:33:37:0e:78:1c:d2:c1:07:ac:67:1b:0d:ef:67:76: a5:0f:0d:da:b1:7d:0e:00:72:ca:7e:63:05:29:8a:84:ee:46: 2b:cb:a1:33:42:01:92:ea:23:dc:2d:91:0b:a5:86:25:b9:7e: ff:25:1e:61:b0:04:be:ef:18:20:45:db:83:38:b0:6f:47:ac: 28:07:9f:bc:1a:35:68:b1:de:c0:b7:0e:ea:19:dd:04:67:25: 1c:26:ee:7b:a4:c0:a6:3d:85:d4:d3:72:8e:05:78:ce:65:84: e1:d4:24:93:28:ec:c3:bb:f4:16:5c:0b:14:88:c9:3a:b1:56: 11:3e:d1:89:39:ae:76:54:d7:af:ad:6f:7f:9b:98:77:b9:85: 1f:cb:fe:6e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUF6nokvTY4P/HaXw+n6Vo+AOur7AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjE2MTYyMDA3WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0YTZkZWFjZTg3NWRkMzc3OTRmOTY2ODNjZWU2ODk3ZmYx NmM2ODlhNzg2NDBmNmQzZjZjOTIwNzM2YWUzYjBhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwUgOuInH3Ukt+Gr6sgU2y80v02hlBsL1wR++92Uqwy2cj zCdtrj+MEj6R/SwwIOBhOVRi9BnbFlh0g09gQ/Bdl5ARJc7WSEtM5nX5qZKjq8Kk PuDNgEeDoWf9qLSIwcCVuGoEBf1Bt2k1B1XOHR29Ji3xrkoOvLqxGt6HtoToR7Tk Rs3xZ1rR0BgoP34NkV0DJn4Zd6PvwgsSoPAE/pGz8e+KWMq2d0RZKw/Cf+3zkcBv LF20gScj4GgiV9G4DjKT5YaAttlGE/eTvhpKHilmWImIiz6sA45dK/ec0grwwo7l REVRAciEIl01CgAaezs4Pghf+Ut8kiFAdEHVWIgRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsdXdzFOMlIEW1U08KCJJKW4K3s0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzZkZTBlMDljLTdmYzAtNDRmMS05MWM1LTYwNWRiYTE2ODU1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIPuQAwDQYJKoZIhvcNAQELBQADggEBADnON1jPxq2584+Y6uqCReAIaojw deNr7QEbN0tLdCxezopJolaeHyp6g5bQFzAQOxkXwZEBvSynOYw+OhSbHAlfmqoH wAMJIzSj6Yaq2j+3nTfCwvDf46GJKInRobrqzJF9AhlRCKgEiZSDnlyVMDM3Dngc 0sEHrGcbDe9ndqUPDdqxfQ4Acsp+YwUpioTuRivLoTNCAZLqI9wtkQulhiW5fv8l HmGwBL7vGCBF24M4sG9HrCgHn7waNWix3sC3DuoZ3QRnJRwm7nukwKY9hdTTco4F eM5lhOHUJJMo7MO79BZcCxSIyTqxVhE+0Yk5rnZU16+tb3+bmHe5hR/L/m4= -----END CERTIFICATE-----Generated at Sun Jun 29 04:55:38 2025 by rpki-client