$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b0d33020-6ece-4acd-b13b-856d17693653.roa File: b0d33020-6ece-4acd-b13b-856d17693653.roa (raw, json) Hash identifier: vyyDrD2jwDx+YD4r0sIGUD47Kq3z11N5mmHffnUZe48= Subject key identifier: 19:E1:78:FA:7C:78:F5:C6:72:5C:AC:46:52:4C:B5:D2:25:F6:58:5C Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 51B5AE11375C806139129AE25D1617C50F1F2BB4 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b0d33020-6ece-4acd-b13b-856d17693653.roa Signing time: Tue 15 Apr 2025 00:40:38 +0000 ROA not before: Tue 15 Apr 2025 00:40:38 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.246.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:b5:ae:11:37:5c:80:61:39:12:9a:e2:5d:16:17:c5:0f:1f:2b:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Apr 15 00:40:38 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=cee191c457314f49f4b0026cb4deb54523122640b2df7c7b040a8014236a37dc, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:53:d1:f7:db:c8:2c:99:17:a3:18:29:f5:ad: 65:f9:4f:66:a8:c7:3c:aa:7a:7e:79:a9:7b:c6:2a: 86:b7:7d:d9:13:8e:56:8b:10:28:08:cd:3f:4b:5d: 9b:a4:80:3f:0f:98:0a:f2:b8:7f:29:2c:2c:9c:75: 18:5e:fe:e3:48:40:de:55:0d:d9:66:e3:5c:24:47: e5:30:00:a2:7f:d2:bb:e1:aa:09:72:6a:39:7d:85: 61:69:2e:fb:fa:a7:9a:24:f8:34:ea:9e:f6:aa:9a: f2:06:86:ad:b2:06:34:5a:66:8e:d2:31:e9:c4:72: a3:d8:00:e9:c6:7c:15:ac:81:53:25:63:b6:36:71: db:4a:77:f1:8a:91:d1:77:94:02:74:a9:49:72:65: c1:5c:7b:0d:f2:79:01:78:67:83:a8:07:3b:92:f5: eb:73:e7:c1:f9:83:10:0a:8a:dc:b6:73:45:28:c6: 01:04:1c:3a:a0:ac:10:22:be:46:7e:c3:f9:d4:e6: 0f:48:82:72:33:05:47:b4:ed:56:ef:b0:79:3f:db: 18:6c:f2:43:07:4c:02:09:c2:a1:74:97:24:c3:60: bf:f2:a4:60:66:e9:83:77:60:2d:30:13:92:4e:93: 7c:c2:86:13:a2:41:f1:3d:f2:89:5d:66:08:a2:90: 5f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:E1:78:FA:7C:78:F5:C6:72:5C:AC:46:52:4C:B5:D2:25:F6:58:5C X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b0d33020-6ece-4acd-b13b-856d17693653.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.246.160.0/19 Signature Algorithm: sha256WithRSAEncryption 5c:00:22:a4:65:f0:f1:7e:bb:d9:7f:4f:dc:11:8f:6f:cd:15: 3a:5b:c1:a4:c6:09:30:67:44:3c:74:9a:9e:f7:c9:6b:90:b2: 30:96:a8:d6:46:11:f9:a1:98:9f:47:3c:ae:bc:bd:52:94:02: a4:22:dc:2a:02:b7:f4:1e:ea:55:a1:41:6c:32:8e:1a:df:64: d5:6f:43:22:00:2a:d1:04:31:84:5a:51:5b:20:0b:37:22:53: 17:7f:be:f5:93:95:1b:62:86:35:67:f5:6f:39:f6:af:b6:d8: a6:d8:24:91:26:9c:0b:57:2a:b5:ca:b9:c9:fe:7f:57:4d:1f: c4:f1:c8:81:2c:20:e8:f9:ea:94:1e:f5:83:a6:c7:35:1d:c3: 3a:8c:b5:3a:79:f6:1d:a8:3c:11:e5:9c:8a:5e:4d:cf:9b:f8: 7f:a1:c3:af:9c:1c:cc:f0:c1:8f:fa:e1:10:8f:45:d5:f9:66: 2d:e5:8d:47:80:3c:57:59:f0:91:4a:1a:65:13:5e:52:de:f3: 68:db:f8:9a:2d:a6:95:06:2f:96:f1:fa:d7:88:3b:78:11:7a: d2:40:7e:46:17:5e:2c:90:88:bb:c9:66:a8:77:1a:57:7e:ca: 8e:b3:32:9f:a8:78:95:85:be:aa:17:94:78:31:b3:ae:dd:d1: 2a:77:87:b9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUbWuETdcgGE5EpriXRYXxQ8fK7QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwNDE1MDA0MDM4WhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjZWUxOTFjNDU3MzE0ZjQ5ZjRiMDAyNmNiNGRlYjU0NTIz MTIyNjQwYjJkZjdjN2IwNDBhODAxNDIzNmEzN2RjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQU9H328gsmRejGCn1rWX5T2aoxzyqen55qXvGKoa3fdkT jlaLECgIzT9LXZukgD8PmAryuH8pLCycdRhe/uNIQN5VDdlm41wkR+UwAKJ/0rvh qglyajl9hWFpLvv6p5ok+DTqnvaqmvIGhq2yBjRaZo7SMenEcqPYAOnGfBWsgVMl Y7Y2cdtKd/GKkdF3lAJ0qUlyZcFcew3yeQF4Z4OoBzuS9etz58H5gxAKity2c0Uo xgEEHDqgrBAivkZ+w/nU5g9IgnIzBUe07VbvsHk/2xhs8kMHTAIJwqF0lyTDYL/y pGBm6YN3YC0wE5JOk3zChhOiQfE98oldZgiikF+tAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGeF4+nx49cZyXKxGUky10iX2WFwwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2IwZDMzMDIwLTZlY2UtNGFjZC1iMTNiLTg1NmQxNzY5MzY1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXM9qAwDQYJKoZIhvcNAQELBQADggEBAFwAIqRl8PF+u9l/T9wRj2/NFTpb waTGCTBnRDx0mp73yWuQsjCWqNZGEfmhmJ9HPK68vVKUAqQi3CoCt/Qe6lWhQWwy jhrfZNVvQyIAKtEEMYRaUVsgCzciUxd/vvWTlRtihjVn9W859q+22KbYJJEmnAtX KrXKucn+f1dNH8TxyIEsIOj56pQe9YOmxzUdwzqMtTp59h2oPBHlnIpeTc+b+H+h w6+cHMzwwY/64RCPRdX5Zi3ljUeAPFdZ8JFKGmUTXlLe82jb+JotppUGL5bx+teI O3gRetJAfkYXXiyQiLvJZqh3Gld+yo6zMp+oeJWFvqoXlHgxs67d0Sp3h7k= -----END CERTIFICATE-----Generated at Sat Apr 26 12:53:48 2025 by rpki-client