$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d64498fc-b63a-4ccc-8da8-df5718749032.roa File: d64498fc-b63a-4ccc-8da8-df5718749032.roa (raw, json) Hash identifier: 8U55sv1F+RSCvNKoGqf5rMgyX3hpgdDFMOgBCZHT94c= Subject key identifier: F3:58:DF:A5:70:55:65:BE:B2:69:50:81:4C:53:3F:B9:47:33:33:26 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 579DC0A26C443AA2A1B177FB572A529364096F94 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d64498fc-b63a-4ccc-8da8-df5718749032.roa Signing time: Mon 16 Jun 2025 16:41:06 +0000 ROA not before: Mon 16 Jun 2025 16:41:06 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 150.222.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:9d:c0:a2:6c:44:3a:a2:a1:b1:77:fb:57:2a:52:93:64:09:6f:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 16 16:41:06 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=21d1a14db7b2f1339129362160d8a85324ea201b41dd5c1f71d093c46bf18f76, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:be:18:9d:cb:b4:0a:c0:07:38:5a:69:35:2c: 5e:b9:ba:32:f7:d6:13:3b:c8:48:1c:cf:12:aa:79: 3a:75:86:86:39:e9:47:55:c3:92:25:ce:fc:1f:80: ba:ca:84:1b:5e:e2:6f:45:2b:17:74:ce:19:54:92: 41:32:8a:25:20:09:04:44:fb:fd:4c:be:01:2f:8f: 1c:25:d6:8a:e9:31:50:bb:5e:9a:6d:d5:6a:fc:47: 83:d8:6e:ee:0b:a9:2d:62:4a:5e:e0:8a:3b:f2:56: bd:ea:6b:db:a3:7b:89:ad:22:e5:d9:fe:21:6a:94: aa:87:7c:84:36:7c:b6:19:bc:08:6b:b7:f7:00:34: be:de:52:32:ea:00:fb:f5:fa:67:d4:d0:2f:0e:1d: 6c:37:29:52:86:19:4c:1d:f2:c5:64:40:3f:62:10: 55:48:2d:3d:82:e9:2c:e0:06:34:71:12:a8:26:90: 12:2e:36:d1:60:82:6b:8f:f2:9f:34:2b:45:bd:d6: 09:62:3f:0f:2f:79:4e:71:80:f9:3d:ce:db:ae:c4: 86:2c:c9:36:14:35:48:b2:17:dd:6c:73:c6:a6:83: 53:99:12:d5:44:b2:68:4f:9a:6c:6c:6f:da:d8:52: ea:08:b0:f7:4e:e3:2b:1b:99:df:30:84:55:07:56: fc:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:58:DF:A5:70:55:65:BE:B2:69:50:81:4C:53:3F:B9:47:33:33:26 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d64498fc-b63a-4ccc-8da8-df5718749032.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.222.100.0/24 Signature Algorithm: sha256WithRSAEncryption a6:b6:7e:7a:9b:cc:aa:33:bc:87:60:76:1d:23:55:15:c4:4b: 72:31:d0:21:23:dc:9f:0e:a5:ba:3c:f0:8f:75:39:3b:38:c6: eb:42:3c:9d:98:f4:10:77:20:a3:19:a8:10:11:7c:2c:28:3b: 19:09:14:b1:f1:a2:3d:87:25:fc:d0:c1:9e:9b:36:1b:23:33: 55:c1:63:80:79:f4:f9:5d:fc:11:47:a9:e6:84:71:8b:b2:a4: 5d:f5:3e:6a:6e:ee:8c:4a:5e:17:b1:ff:74:62:f7:70:e4:95: 14:e4:85:64:95:b7:0c:0d:94:d7:8b:0d:72:87:6f:ae:f0:f9: 2f:05:c9:d8:43:b8:8a:63:6f:a8:5c:c0:d8:f3:fd:d6:d3:8c: 30:2d:9e:d9:33:8a:69:f0:41:43:6e:9e:14:37:72:f5:3d:84: e4:a8:b0:0f:ad:e6:67:71:16:2f:19:cf:27:da:03:b2:6a:64: e8:e5:d3:9a:c7:12:9d:a5:4b:8a:87:98:a3:16:53:25:c4:0d: 97:31:d9:26:38:54:0f:f8:87:fa:e2:11:bd:a0:03:5f:55:f7: 11:9b:27:f9:73:e1:d1:23:b0:fd:8e:1e:0c:dd:29:7d:4b:8b: 0c:0a:da:63:a3:7a:7e:66:13:a7:5e:0c:89:d2:47:37:e8:16: ca:8e:e3:38 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUV53AomxEOqKhsXf7VypSk2QJb5QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjE2MTY0MTA2WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMWQxYTE0ZGI3YjJmMTMzOTEyOTM2MjE2MGQ4YTg1MzI0 ZWEyMDFiNDFkZDVjMWY3MWQwOTNjNDZiZjE4Zjc2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDevhidy7QKwAc4Wmk1LF65ujL31hM7yEgczxKqeTp1hoY5 6UdVw5IlzvwfgLrKhBte4m9FKxd0zhlUkkEyiiUgCQRE+/1MvgEvjxwl1orpMVC7 Xppt1Wr8R4PYbu4LqS1iSl7gijvyVr3qa9uje4mtIuXZ/iFqlKqHfIQ2fLYZvAhr t/cANL7eUjLqAPv1+mfU0C8OHWw3KVKGGUwd8sVkQD9iEFVILT2C6SzgBjRxEqgm kBIuNtFggmuP8p80K0W91gliPw8veU5xgPk9ztuuxIYsyTYUNUiyF91sc8amg1OZ EtVEsmhPmmxsb9rYUuoIsPdO4ysbmd8whFUHVvxlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU81jfpXBVZb6yaVCBTFM/uUczMyYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2Q2NDQ5OGZjLWI2M2EtNGNjYy04ZGE4LWRmNTcxODc0OTAzMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACW3mQwDQYJKoZIhvcNAQELBQADggEBAKa2fnqbzKozvIdgdh0jVRXES3Ix 0CEj3J8Opbo88I91OTs4xutCPJ2Y9BB3IKMZqBARfCwoOxkJFLHxoj2HJfzQwZ6b NhsjM1XBY4B59Pld/BFHqeaEcYuypF31Pmpu7oxKXhex/3Ri93DklRTkhWSVtwwN lNeLDXKHb67w+S8FydhDuIpjb6hcwNjz/dbTjDAtntkzimnwQUNunhQ3cvU9hOSo sA+t5mdxFi8ZzyfaA7JqZOjl05rHEp2lS4qHmKMWUyXEDZcx2SY4VA/4h/riEb2g A19V9xGbJ/lz4dEjsP2OHgzdKX1LiwwK2mOjen5mE6deDInSRzfoFsqO4zg= -----END CERTIFICATE-----Generated at Sun Jun 29 02:57:52 2025 by rpki-client