$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/79fe20c6-aa3f-42dc-9fef-f3ece477751f.roa File: 79fe20c6-aa3f-42dc-9fef-f3ece477751f.roa (raw, json) Hash identifier: +N4Ar1WlAJ+h+ua/Kd4dooyaJ0vNTJaeT+2caLso38c= Subject key identifier: 7A:77:D3:2E:0D:10:E4:94:E7:2F:C2:21:E6:6C:1F:78:0C:9C:AF:C9 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4B306947D060A76B0C70A93FB729BF62594B49D9 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/79fe20c6-aa3f-42dc-9fef-f3ece477751f.roa Signing time: Mon 16 Jun 2025 17:12:03 +0000 ROA not before: Mon 16 Jun 2025 17:12:03 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 36263 IP address blocks: 161.188.216.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:30:69:47:d0:60:a7:6b:0c:70:a9:3f:b7:29:bf:62:59:4b:49:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 16 17:12:03 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=b3c1b373b924ba50e43593bd1cb4072fc1b000337399ab8957d8b9d1c703a56a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e0:85:15:5f:06:0c:e9:58:c4:4a:54:99:e8: 59:f4:f9:fc:38:ea:eb:10:68:d8:5b:e7:38:9a:98: 69:d0:a2:34:a9:05:ac:12:27:1a:7b:e1:0e:f0:85: a8:6f:21:d9:ee:7e:e1:2c:78:f3:18:1d:c5:df:d8: c8:b9:ab:3c:0e:e9:8c:30:0e:db:74:04:89:4e:ce: 1e:9e:6b:d5:95:39:c4:a8:34:9c:80:3d:34:61:59: 15:50:fc:67:bd:f2:2d:29:b4:4e:a7:46:c3:b6:6e: 22:94:48:78:ec:06:f0:30:75:4f:1e:c2:eb:9c:25: ed:f1:1f:ae:f1:0f:57:21:d7:62:18:77:d0:0b:b2: 98:94:af:b7:1e:1c:5e:54:1d:d7:d8:5c:bf:c2:1f: 63:52:03:b5:89:3c:05:33:fd:e1:f1:e3:0f:01:ea: b3:61:80:d8:cc:91:21:44:b0:7f:6f:54:82:c7:58: 66:24:e9:de:28:84:56:08:38:b8:8d:ec:47:03:8e: 49:37:17:e0:3e:cb:21:25:34:1b:c4:dd:fa:19:2d: c4:fc:5e:7f:03:92:4a:91:92:35:2c:16:74:8f:da: d6:8d:c1:09:9b:d7:ee:4f:78:88:a5:16:6e:ea:9e: a9:4f:8d:2c:2c:c7:f0:a7:b1:6a:19:02:8b:2f:ba: de:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:77:D3:2E:0D:10:E4:94:E7:2F:C2:21:E6:6C:1F:78:0C:9C:AF:C9 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/79fe20c6-aa3f-42dc-9fef-f3ece477751f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.188.216.0/21 Signature Algorithm: sha256WithRSAEncryption 2c:65:de:4d:f2:a1:ac:16:4c:a0:64:6d:23:34:2d:59:45:7f: f3:19:4c:88:8d:86:50:e5:ad:f9:12:73:83:e5:ae:ef:c2:34: 44:3f:b4:bd:9d:47:39:2a:f7:0e:50:2c:25:2e:64:fc:55:cf: 73:a5:7f:ae:46:fa:27:32:6d:c6:2a:bc:82:15:d9:c4:5e:c3: 55:91:5f:36:45:fa:04:26:29:d9:88:17:e2:35:a5:0d:2d:42: 32:18:f1:ce:cf:59:ce:ab:74:60:bb:9c:20:8b:b5:e3:2e:78: 53:4d:e4:7d:07:dd:24:1c:9c:63:f6:90:13:55:a0:cd:d5:5b: 49:5c:34:a4:6c:3a:67:42:9b:b4:56:51:4d:0f:7e:15:9f:74: 2d:94:3e:47:c1:b7:c0:68:01:68:4a:0f:ca:b6:5c:18:bf:04: c4:2c:69:bc:23:f6:53:2a:c8:c5:de:db:e7:aa:d2:1b:69:43: dc:9c:3f:7a:f1:25:e2:a5:94:7f:64:3b:dd:a3:fc:8b:75:54: ae:88:8a:02:ef:90:ee:3d:83:f9:5c:b5:62:a0:bb:4d:20:dd: 96:12:54:8a:2a:d6:c6:b1:b8:4c:44:82:af:13:d1:0e:17:a4: 2a:4d:5a:34:06:f8:96:55:c9:1d:de:82:5a:b2:ef:ad:31:fe: 01:e3:8c:ba -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSzBpR9Bgp2sMcKk/tym/YllLSdkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjE2MTcxMjAzWhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BiM2MxYjM3M2I5MjRiYTUwZTQzNTkzYmQxY2I0MDcyZmMx YjAwMDMzNzM5OWFiODk1N2Q4YjlkMWM3MDNhNTZhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDK4IUVXwYM6VjESlSZ6Fn0+fw46usQaNhb5ziamGnQojSp BawSJxp74Q7whahvIdnufuEsePMYHcXf2Mi5qzwO6YwwDtt0BIlOzh6ea9WVOcSo NJyAPTRhWRVQ/Ge98i0ptE6nRsO2biKUSHjsBvAwdU8ewuucJe3xH67xD1ch12IY d9ALspiUr7ceHF5UHdfYXL/CH2NSA7WJPAUz/eHx4w8B6rNhgNjMkSFEsH9vVILH WGYk6d4ohFYIOLiN7EcDjkk3F+A+yyElNBvE3foZLcT8Xn8DkkqRkjUsFnSP2taN wQmb1+5PeIilFm7qnqlPjSwsx/CnsWoZAosvut7rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUenfTLg0Q5JTnL8Ih5mwfeAycr8kwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzc5ZmUyMGM2LWFhM2YtNDJkYy05ZmVmLWYzZWNlNDc3NzUxZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOhvNgwDQYJKoZIhvcNAQELBQADggEBACxl3k3yoawWTKBkbSM0LVlFf/MZ TIiNhlDlrfkSc4Plru/CNEQ/tL2dRzkq9w5QLCUuZPxVz3Olf65G+icybcYqvIIV 2cRew1WRXzZF+gQmKdmIF+I1pQ0tQjIY8c7PWc6rdGC7nCCLteMueFNN5H0H3SQc nGP2kBNVoM3VW0lcNKRsOmdCm7RWUU0PfhWfdC2UPkfBt8BoAWhKD8q2XBi/BMQs abwj9lMqyMXe2+eq0htpQ9ycP3rxJeKllH9kO92j/It1VK6IigLvkO49g/lctWKg u00g3ZYSVIoq1saxuExEgq8T0Q4XpCpNWjQG+JZVyR3eglqy760x/gHjjLo= -----END CERTIFICATE-----Generated at Tue Jul 1 01:37:11 2025 by rpki-client