$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0356e9e4-d743-4b1d-8b2a-8e60a25c336f.roa File: 0356e9e4-d743-4b1d-8b2a-8e60a25c336f.roa (raw, json) Hash identifier: aRvd++mI9lJ6vXnmpzBAuoPwWDYrGKQjuGHqWQvSY0g= Subject key identifier: 35:4B:8D:32:F5:85:08:80:38:87:1E:81:0C:2E:3F:97:64:52:FD:98 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 38F84566776B12680DF8FABF3015B7DBF4EE4438 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0356e9e4-d743-4b1d-8b2a-8e60a25c336f.roa Signing time: Tue 15 Apr 2025 00:40:49 +0000 ROA not before: Tue 15 Apr 2025 00:40:49 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 205.251.236.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:f8:45:66:77:6b:12:68:0d:f8:fa:bf:30:15:b7:db:f4:ee:44:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Apr 15 00:40:49 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=2e7ce479ce51d92a7ce3acbc4ae00fde2105b0fdad0eb1527e62526189f1da57, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:85:13:b7:d3:98:ad:48:fb:94:10:ba:81:a1: 1b:fa:71:80:82:c0:f0:67:71:bb:df:f4:0d:0b:8b: f9:91:49:28:7d:21:e7:70:78:5a:05:84:d4:a6:1e: 25:b6:fa:f0:c9:35:c9:8b:17:1a:ef:48:22:a3:b8: f6:d3:5d:2e:68:61:fa:60:e8:52:95:38:43:1c:2c: 11:4f:80:7c:2a:0f:53:26:96:8e:88:f9:8a:ef:bc: 45:26:97:ad:e9:ed:7a:07:76:03:6f:06:c4:50:61: 71:49:9b:11:cf:f8:fd:75:38:1e:9e:db:6c:72:2f: 8e:29:a6:a3:e1:ee:de:87:54:6e:71:8f:03:42:8f: 15:11:01:10:a9:12:26:1d:2b:05:88:41:bf:57:ca: 0e:b8:46:4f:24:16:61:1e:28:88:25:a7:9d:3c:27: 99:7a:25:b0:f3:bd:46:54:68:b3:09:67:33:e6:c1: d4:94:d8:16:65:b6:eb:9d:8f:8e:10:5d:3d:67:e3: a6:33:f6:4b:31:58:17:87:5e:e1:be:c9:47:8c:76: a7:ce:d0:1c:18:63:83:b3:37:5b:9a:a5:e3:25:57: a8:b4:c4:a7:5f:1d:28:95:cc:2b:d7:09:88:9a:49: 1f:3f:12:e0:60:e6:4a:9b:e3:2b:0b:01:9d:5a:dd: 6d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:4B:8D:32:F5:85:08:80:38:87:1E:81:0C:2E:3F:97:64:52:FD:98 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0356e9e4-d743-4b1d-8b2a-8e60a25c336f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.236.0/22 Signature Algorithm: sha256WithRSAEncryption 8c:f2:bf:86:4a:70:a5:06:68:0d:84:84:d8:05:4e:3b:c7:30: 99:5e:e1:22:b8:24:3e:16:b9:8d:3d:27:bb:e3:2e:3e:44:56: 22:ee:cb:e7:d1:e1:ca:41:f1:e3:09:93:9a:c4:c5:c5:a8:5b: 1b:13:54:c0:98:87:45:d8:3d:be:db:ef:9c:1f:8f:e7:30:2d: 99:68:ee:e1:89:89:64:db:0e:34:20:aa:17:3e:17:dd:dc:81: f7:a2:6e:fb:37:3b:d0:65:b1:48:2e:15:6e:a6:61:b7:d5:3d: 33:31:52:26:5f:de:99:45:f1:9d:57:50:f8:d1:77:4f:8d:de: 2e:0e:da:00:9a:fb:fc:08:65:b0:af:66:3b:77:b2:36:c6:ee: 49:11:0c:e9:7d:52:a9:50:19:ff:07:ef:21:6a:df:ef:48:0b: e1:45:bb:c6:07:82:82:75:40:06:a7:68:f7:bd:31:70:57:59: ba:41:d4:6f:6d:2e:88:81:83:48:b4:3c:84:54:a5:7f:35:61: fd:a9:e4:df:32:04:d0:b0:4e:bc:44:05:95:f0:e4:31:37:17: 6c:cc:1f:f6:a6:06:23:9a:47:b8:be:ca:1e:7c:d9:99:84:33: 1d:2f:d8:96:8d:f3:2a:26:2c:7b:6e:9e:dc:8d:ba:f6:ac:12: 89:2e:87:c5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOPhFZndrEmgN+Pq/MBW32/TuRDgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwNDE1MDA0MDQ5WhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZTdjZTQ3OWNlNTFkOTJhN2NlM2FjYmM0YWUwMGZkZTIx MDViMGZkYWQwZWIxNTI3ZTYyNTI2MTg5ZjFkYTU3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxhRO305itSPuUELqBoRv6cYCCwPBncbvf9A0Li/mRSSh9 IedweFoFhNSmHiW2+vDJNcmLFxrvSCKjuPbTXS5oYfpg6FKVOEMcLBFPgHwqD1Mm lo6I+YrvvEUml63p7XoHdgNvBsRQYXFJmxHP+P11OB6e22xyL44ppqPh7t6HVG5x jwNCjxURARCpEiYdKwWIQb9Xyg64Rk8kFmEeKIglp508J5l6JbDzvUZUaLMJZzPm wdSU2BZltuudj44QXT1n46Yz9ksxWBeHXuG+yUeMdqfO0BwYY4OzN1uapeMlV6i0 xKdfHSiVzCvXCYiaSR8/EuBg5kqb4ysLAZ1a3W05AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNUuNMvWFCIA4hx6BDC4/l2RS/ZgwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzAzNTZlOWU0LWQ3NDMtNGIxZC04YjJhLThlNjBhMjVjMzM2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALN++wwDQYJKoZIhvcNAQELBQADggEBAIzyv4ZKcKUGaA2EhNgFTjvHMJle 4SK4JD4WuY09J7vjLj5EViLuy+fR4cpB8eMJk5rExcWoWxsTVMCYh0XYPb7b75wf j+cwLZlo7uGJiWTbDjQgqhc+F93cgfeibvs3O9BlsUguFW6mYbfVPTMxUiZf3plF 8Z1XUPjRd0+N3i4O2gCa+/wIZbCvZjt3sjbG7kkRDOl9UqlQGf8H7yFq3+9IC+FF u8YHgoJ1QAanaPe9MXBXWbpB1G9tLoiBg0i0PIRUpX81Yf2p5N8yBNCwTrxEBZXw 5DE3F2zMH/amBiOaR7i+yh582ZmEMx0v2JaN8yomLHtuntyNuvasEokuh8U= -----END CERTIFICATE-----Generated at Sat Apr 26 18:34:17 2025 by rpki-client