$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b2504247-930a-4d81-afa2-bd56d5414b8d.roa File: b2504247-930a-4d81-afa2-bd56d5414b8d.roa (raw, json) Hash identifier: zeNgmVX844NkIbtlo4JT92M7YomTnjcPs0H+6d/emrE= Subject key identifier: 06:97:89:CA:23:BA:C9:D2:A3:1E:DE:7E:21:DD:C2:18:2D:87:0F:70 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3BB73AD94B54D588AC65A6C1DDB78621264F2AE7 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b2504247-930a-4d81-afa2-bd56d5414b8d.roa Signing time: Mon 16 Jun 2025 17:10:23 +0000 ROA not before: Mon 16 Jun 2025 17:10:23 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 150.222.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:b7:3a:d9:4b:54:d5:88:ac:65:a6:c1:dd:b7:86:21:26:4f:2a:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 16 17:10:23 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=1350220e8411dbebf319e55474c43b47891b8697e4519ed8af03cee357e89592, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:da:60:10:72:c6:18:07:a0:05:29:cf:55:b1: f5:c4:21:ec:cb:de:8f:3d:6f:a4:5c:f9:07:b6:05: d2:c7:89:f3:d7:a2:c8:af:02:60:3b:14:48:31:77: 32:30:1c:58:67:9d:49:4f:4e:f1:e2:c9:e9:23:99: f4:a1:ac:6c:51:4a:8a:c8:59:63:3b:34:ac:d6:49: 97:ea:75:a3:18:c2:67:0b:f5:6c:ff:6a:fd:c5:0f: e0:7e:91:9a:ae:94:45:4a:ec:94:83:95:0a:62:f3: 4b:51:18:95:4d:55:8c:89:cf:30:16:ea:1c:13:24: cb:1b:2e:6a:bc:6b:2e:59:f5:1a:94:81:f1:6a:8e: 7e:82:fb:3a:f0:a7:b6:c9:ae:f5:0b:ea:3f:83:ff: 88:51:6f:4b:e5:65:45:25:88:e8:d1:7e:1c:83:97: ed:f5:22:5b:4d:4c:7f:40:8b:c5:2f:c1:04:c3:1c: f9:d2:f3:04:61:54:60:d6:7c:41:bb:2d:03:b2:a8: ee:b9:6f:b5:f5:8e:98:7b:6a:9f:96:14:b3:4e:a1: f4:02:52:e8:ee:c0:a8:a8:ab:2b:65:38:a2:94:a9: a0:72:31:d8:7c:69:0c:4d:ca:46:ed:d4:8e:a1:33: 29:23:58:4f:0d:29:fc:15:14:ba:0a:e9:e1:08:8a: 42:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:97:89:CA:23:BA:C9:D2:A3:1E:DE:7E:21:DD:C2:18:2D:87:0F:70 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b2504247-930a-4d81-afa2-bd56d5414b8d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.222.99.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:f5:e4:f5:85:9b:a8:38:98:af:be:e2:4d:32:b3:c9:2f:d3: 67:8f:f2:5e:7d:7d:6b:3b:c4:c6:1d:7b:01:c2:ee:fd:a4:98: 97:34:53:1a:4e:cb:40:b1:28:e6:ac:9e:a5:3a:de:9c:8f:39: 24:18:e5:67:ac:b4:ed:7c:21:fa:93:a0:ca:9c:b3:dd:71:01: d4:44:4b:3b:2b:20:3c:d6:13:0d:4a:0b:3c:27:8a:c9:c8:21: cf:af:fa:59:14:c8:62:6b:ec:80:e9:20:71:db:c9:bf:2d:4f: 11:b1:03:99:4d:46:2d:b5:dc:78:04:62:69:e1:14:20:af:74: de:52:7c:34:78:22:5c:bb:28:99:e8:7e:d5:f8:2f:56:7f:96: 13:0e:2c:0e:11:d6:7d:66:f8:76:0e:ca:e0:08:8d:ab:67:14: 54:a1:27:f9:bd:a2:3f:4e:ee:a2:0c:d8:e6:ff:09:8d:db:31: 38:c0:39:64:b8:18:62:3d:96:8c:4b:33:a0:b9:71:b5:b3:0a: c3:4e:ca:60:0c:ba:b3:b2:c3:5d:de:2a:77:59:df:be:a0:a7: ac:c6:62:1d:16:70:79:ba:69:34:7d:ee:ba:f5:20:2f:28:be: fc:58:70:5a:2d:a2:43:d9:1f:3e:a4:ea:41:af:fb:ce:0a:8b: 10:f4:91:2f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUO7c62UtU1YisZabB3beGISZPKucwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjE2MTcxMDIzWhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMzUwMjIwZTg0MTFkYmViZjMxOWU1NTQ3NGM0M2I0Nzg5 MWI4Njk3ZTQ1MTllZDhhZjAzY2VlMzU3ZTg5NTkyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZ2mAQcsYYB6AFKc9VsfXEIezL3o89b6Rc+Qe2BdLHifPX osivAmA7FEgxdzIwHFhnnUlPTvHiyekjmfShrGxRSorIWWM7NKzWSZfqdaMYwmcL 9Wz/av3FD+B+kZqulEVK7JSDlQpi80tRGJVNVYyJzzAW6hwTJMsbLmq8ay5Z9RqU gfFqjn6C+zrwp7bJrvUL6j+D/4hRb0vlZUUliOjRfhyDl+31IltNTH9Ai8UvwQTD HPnS8wRhVGDWfEG7LQOyqO65b7X1jph7ap+WFLNOofQCUujuwKioqytlOKKUqaBy Mdh8aQxNykbt1I6hMykjWE8NKfwVFLoK6eEIikLPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBpeJyiO6ydKjHt5+Id3CGC2HD3AwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2IyNTA0MjQ3LTkzMGEtNGQ4MS1hZmEyLWJkNTZkNTQxNGI4ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACW3mMwDQYJKoZIhvcNAQELBQADggEBAAv15PWFm6g4mK++4k0ys8kv02eP 8l59fWs7xMYdewHC7v2kmJc0UxpOy0CxKOasnqU63pyPOSQY5WestO18IfqToMqc s91xAdRESzsrIDzWEw1KCzwnisnIIc+v+lkUyGJr7IDpIHHbyb8tTxGxA5lNRi21 3HgEYmnhFCCvdN5SfDR4Ily7KJnoftX4L1Z/lhMOLA4R1n1m+HYOyuAIjatnFFSh J/m9oj9O7qIM2Ob/CY3bMTjAOWS4GGI9loxLM6C5cbWzCsNOymAMurOyw13eKndZ 376gp6zGYh0WcHm6aTR97rr1IC8ovvxYcFotokPZHz6k6kGv+84KixD0kS8= -----END CERTIFICATE-----Generated at Sun Jun 29 00:38:30 2025 by rpki-client