$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/708a8cbd-6d44-4d2f-b6e9-45131391be6d.roa File: 708a8cbd-6d44-4d2f-b6e9-45131391be6d.roa (raw, json) Hash identifier: 2Z12NkFduRhKTofRT3Tv5W6pyR4wVwUUs8qyhhu0qTU= Subject key identifier: E2:FA:7F:C9:79:D1:9F:A9:D6:77:A8:1A:97:A8:CA:92:87:B3:B1:51 Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 257AD3BEEB3D78E9CFDC57CC9B568BC778E4A535 Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/708a8cbd-6d44-4d2f-b6e9-45131391be6d.roa Signing time: Fri 25 Apr 2025 15:20:11 +0000 ROA not before: Fri 25 Apr 2025 15:20:11 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.80.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:7a:d3:be:eb:3d:78:e9:cf:dc:57:cc:9b:56:8b:c7:78:e4:a5:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Apr 25 15:20:11 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=c20d2a27c07f61d976da1e1fb9d1f72acbccdbc715a23cdf107742e57bf4116a, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a5:2c:43:f7:ee:fc:21:06:3a:99:40:ab:6f: ab:10:2c:c9:dc:d9:09:a9:70:1d:b3:7b:e3:7b:6b: 62:f3:84:c5:9d:45:72:86:d3:f2:30:49:80:9d:01: de:83:28:57:2d:de:69:bc:e4:fd:1e:5d:97:8c:51: f8:cc:d9:5a:dc:1e:83:83:ef:a4:a9:97:a7:39:7b: 7f:91:e2:14:19:6d:b8:41:95:4d:a9:c3:31:95:2f: 2c:71:52:73:27:d6:b3:8c:bc:29:b3:2c:23:c9:57: 75:73:c8:e4:af:72:ff:bf:1a:c6:ee:6f:9b:cd:08: 8d:85:6d:b4:3c:29:2f:68:e6:34:6f:3f:9b:af:91: 75:0c:01:a1:86:b8:c3:a0:e7:9a:c6:3a:9b:72:b8: 45:3b:3a:da:f5:b3:7e:0e:ae:df:c3:d1:1b:84:9e: 7b:d0:10:ad:a5:08:92:2a:0d:b7:6d:e7:65:a3:3c: 28:02:47:39:8b:c5:93:48:29:4d:97:df:dc:e8:c8: 32:5e:4a:f0:43:0a:41:40:59:80:3b:d4:71:e9:b7: cd:62:56:32:a7:b7:36:37:a1:83:e1:71:e1:00:c9: 26:e5:c9:31:2c:eb:b5:ba:3a:d6:60:7e:39:e6:d7: b7:b8:04:05:2e:aa:80:22:b3:e3:06:b7:04:eb:a8: 92:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:FA:7F:C9:79:D1:9F:A9:D6:77:A8:1A:97:A8:CA:92:87:B3:B1:51 X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/708a8cbd-6d44-4d2f-b6e9-45131391be6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.80.0/21 Signature Algorithm: sha256WithRSAEncryption 33:8e:6f:2c:f0:e7:c8:02:6b:f9:12:8a:ad:e1:41:bf:78:7e: c2:6a:dc:9e:92:2f:09:8b:31:29:88:c0:77:7f:25:ae:9c:52: b2:a0:83:ad:15:4c:eb:af:70:9c:b1:61:cb:cc:c1:29:4c:80: 19:82:fd:4b:0e:ae:da:65:b1:7b:56:48:26:3c:bc:7c:18:40: 65:20:7e:2a:06:b4:d0:e6:dd:72:b0:8c:c7:e7:0d:7f:75:d8: 9e:dd:e2:e5:e7:8e:4c:c8:46:81:24:83:09:be:c7:a7:7b:e9: 2a:5d:b3:a6:75:e5:a0:5e:91:b8:c9:b5:f1:91:bb:fe:23:d5: c2:cb:cc:c7:e4:d7:10:d1:6d:64:b5:80:b4:65:08:22:e4:a8: 98:b3:32:a1:bb:80:b0:f6:8f:84:ed:e4:35:a2:fd:52:b8:49: 91:a9:1f:29:fa:67:f1:fd:b6:20:1a:fc:7e:b9:99:46:1b:7d: bb:09:5f:b3:1e:85:97:52:31:16:97:bd:8c:4b:09:16:1c:87: c0:6d:78:d2:9b:2f:2a:d8:c7:33:78:2b:dd:ae:31:3f:4a:58: ca:60:c0:47:d9:c2:d3:4f:3a:a5:f0:0c:7f:cc:4e:e8:c4:98: ad:04:4a:48:20:79:d5:97:85:b3:e3:75:ef:67:17:0b:83:ff: b7:25:04:eb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJXrTvus9eOnP3FfMm1aLx3jkpTUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUwNDI1MTUyMDExWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMjBkMmEyN2MwN2Y2MWQ5NzZkYTFlMWZiOWQxZjcyYWNi Y2NkYmM3MTVhMjNjZGYxMDc3NDJlNTdiZjQxMTZhMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqpSxD9+78IQY6mUCrb6sQLMnc2QmpcB2ze+N7a2LzhMWd RXKG0/IwSYCdAd6DKFct3mm85P0eXZeMUfjM2VrcHoOD76Spl6c5e3+R4hQZbbhB lU2pwzGVLyxxUnMn1rOMvCmzLCPJV3VzyOSvcv+/Gsbub5vNCI2FbbQ8KS9o5jRv P5uvkXUMAaGGuMOg55rGOptyuEU7Otr1s34Ort/D0RuEnnvQEK2lCJIqDbdt52Wj PCgCRzmLxZNIKU2X39zoyDJeSvBDCkFAWYA71HHpt81iVjKntzY3oYPhceEAySbl yTEs67W6OtZgfjnm17e4BAUuqoAis+MGtwTrqJI/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4vp/yXnRn6nWd6gal6jKkoezsVEwHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5LzcwOGE4Y2JkLTZkNDQtNGQyZi1iNmU5LTQ1MTMxMzkxYmU2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMycFAwDQYJKoZIhvcNAQELBQADggEBADOObyzw58gCa/kSiq3hQb94fsJq 3J6SLwmLMSmIwHd/Ja6cUrKgg60VTOuvcJyxYcvMwSlMgBmC/UsOrtplsXtWSCY8 vHwYQGUgfioGtNDm3XKwjMfnDX912J7d4uXnjkzIRoEkgwm+x6d76Spds6Z15aBe kbjJtfGRu/4j1cLLzMfk1xDRbWS1gLRlCCLkqJizMqG7gLD2j4Tt5DWi/VK4SZGp Hyn6Z/H9tiAa/H65mUYbfbsJX7MehZdSMRaXvYxLCRYch8BteNKbLyrYxzN4K92u MT9KWMpgwEfZwtNPOqXwDH/MTujEmK0ESkggedWXhbPjde9nFwuD/7clBOs= -----END CERTIFICATE-----Generated at Sat Apr 26 19:12:41 2025 by rpki-client