$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/cd77292d-6ccc-4c44-80a7-c789a16f02b2.roa File: cd77292d-6ccc-4c44-80a7-c789a16f02b2.roa (raw, json) Hash identifier: FELA+lCMFPtfncHaoFPCYMNGufrQkDhXT6QeX6G9t24= Subject key identifier: A4:CF:A4:95:87:D1:1E:60:45:02:47:55:E8:98:5C:C7:8A:71:98:5A Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3665F0BEB617A4E5E4DF48C7C704248BF7A560A3 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/cd77292d-6ccc-4c44-80a7-c789a16f02b2.roa Signing time: Mon 16 Jun 2025 16:31:25 +0000 ROA not before: Mon 16 Jun 2025 16:31:25 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.114.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:65:f0:be:b6:17:a4:e5:e4:df:48:c7:c7:04:24:8b:f7:a5:60:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 16 16:31:25 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=81787772ec4e7320be5122548c397b0c567bf15c7538b49bab49f3024c940ea5, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:36:e1:e7:6d:57:ed:ad:b2:41:d9:d2:1b:7a: 31:12:1c:53:16:33:98:7f:a4:06:c6:9c:f6:5e:5e: 94:87:02:93:31:44:fc:ca:67:35:ee:34:86:ce:57: 18:73:d8:01:ac:41:ef:7c:c4:aa:0c:e1:b0:17:c6: 1e:22:be:9a:4d:80:84:b3:a8:80:87:d1:3e:ec:fb: 96:92:f2:43:04:fb:8c:e5:f3:33:c4:5b:58:dd:8f: 3c:4c:f3:56:49:9c:ce:05:ce:b8:d8:55:9c:0e:9d: f3:b5:f4:1a:76:51:83:04:74:20:20:f5:5b:22:78: 18:1d:ed:b5:6d:a7:f5:04:3d:85:83:c9:cd:f6:26: 8e:58:ea:4e:b9:df:8a:0c:96:3c:69:08:81:bb:8b: e6:22:dc:38:6d:c0:7c:9f:7a:6d:d5:33:3e:fb:8b: 43:b9:a1:32:ab:0c:79:3d:9b:69:57:6f:82:4d:31: 15:ac:1b:01:a9:2b:7b:d7:08:87:df:cc:54:9d:04: f5:9b:c6:12:7a:f5:08:33:f4:ab:27:16:e7:c8:78: 9b:c3:df:13:a1:43:88:74:f8:1a:aa:2d:01:67:26: 90:ae:84:8c:71:fd:d5:47:c5:99:6e:94:53:55:4d: f0:9c:d1:9f:8f:a3:d3:a1:ff:69:35:27:51:d9:7c: e3:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:CF:A4:95:87:D1:1E:60:45:02:47:55:E8:98:5C:C7:8A:71:98:5A X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/cd77292d-6ccc-4c44-80a7-c789a16f02b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.114.128.0/18 Signature Algorithm: sha256WithRSAEncryption 43:d3:0d:c3:5b:08:a1:f9:be:06:59:4f:26:60:9b:b4:8e:93: e4:54:e3:0a:69:2f:c8:5e:73:d3:83:39:f1:a2:ba:43:02:0e: dc:eb:d5:44:bc:49:21:5c:6c:c3:1f:a3:15:3a:4e:96:dc:a5: 91:33:e9:29:c9:45:58:52:cf:63:0e:77:2d:70:81:e0:aa:7d: 99:89:48:1c:f0:db:17:6d:4d:2e:27:a6:88:11:96:14:fa:71: 5d:24:bd:c7:54:62:0d:06:40:1d:3f:c9:90:c7:c0:9d:62:dd: ef:61:53:3d:27:56:72:00:ec:15:13:11:61:6a:11:c8:a8:8b: b3:77:8b:a9:ce:ba:dc:62:e0:1d:d9:d2:7d:01:49:3c:ce:ae: 48:fe:c8:94:ea:24:ec:25:0d:ae:ac:41:62:36:5f:a8:84:d9: 1d:c5:19:24:eb:a3:e0:69:85:23:6b:ac:ec:eb:63:88:66:f3: 6a:da:56:84:4b:46:f6:18:91:25:98:58:55:2d:73:a0:c4:40: 66:55:7c:ba:05:e4:b8:5f:3f:d2:02:c1:63:9a:7a:dc:04:f4: c8:21:c0:69:93:15:5e:d9:b5:57:11:de:bf:31:23:18:5f:62: a8:71:c0:d2:32:b7:e0:78:e7:c4:dc:c7:a7:3e:93:3d:4f:2b: 04:37:6f:15 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNmXwvrYXpOXk30jHxwQki/elYKMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjE2MTYzMTI1WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MTc4Nzc3MmVjNGU3MzIwYmU1MTIyNTQ4YzM5N2IwYzU2 N2JmMTVjNzUzOGI0OWJhYjQ5ZjMwMjRjOTQwZWE1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrNuHnbVftrbJB2dIbejESHFMWM5h/pAbGnPZeXpSHApMx RPzKZzXuNIbOVxhz2AGsQe98xKoM4bAXxh4ivppNgISzqICH0T7s+5aS8kME+4zl 8zPEW1jdjzxM81ZJnM4FzrjYVZwOnfO19Bp2UYMEdCAg9VsieBgd7bVtp/UEPYWD yc32Jo5Y6k6534oMljxpCIG7i+Yi3DhtwHyfem3VMz77i0O5oTKrDHk9m2lXb4JN MRWsGwGpK3vXCIffzFSdBPWbxhJ69Qgz9KsnFufIeJvD3xOhQ4h0+BqqLQFnJpCu hIxx/dVHxZlulFNVTfCc0Z+Po9Oh/2k1J1HZfONHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpM+klYfRHmBFAkdV6Jhcx4pxmFowHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2NkNzcyOTJkLTZjY2MtNGM0NC04MGE3LWM3ODlhMTZmMDJiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYNcoAwDQYJKoZIhvcNAQELBQADggEBAEPTDcNbCKH5vgZZTyZgm7SOk+RU 4wppL8hec9ODOfGiukMCDtzr1US8SSFcbMMfoxU6TpbcpZEz6SnJRVhSz2MOdy1w geCqfZmJSBzw2xdtTS4npogRlhT6cV0kvcdUYg0GQB0/yZDHwJ1i3e9hUz0nVnIA 7BUTEWFqEcioi7N3i6nOutxi4B3Z0n0BSTzOrkj+yJTqJOwlDa6sQWI2X6iE2R3F GSTro+BphSNrrOzrY4hm82raVoRLRvYYkSWYWFUtc6DEQGZVfLoF5LhfP9ICwWOa etwE9MghwGmTFV7ZtVcR3r8xIxhfYqhxwNIyt+B458Tcx6c+kz1PKwQ3bxU= -----END CERTIFICATE-----Generated at Sun Jun 29 05:15:36 2025 by rpki-client