$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/09f2a28b-bc83-44b1-b088-f2cab4682327.roa File: 09f2a28b-bc83-44b1-b088-f2cab4682327.roa (raw, json) Hash identifier: fCctrd7BlnRMS0jrrejsgV9hl1m5wuHlqOUeJ/wTVNI= Subject key identifier: 35:B0:B0:59:06:0D:A6:99:F8:64:4F:FA:53:A2:55:3E:D8:07:29:55 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4DFB3B05109C528060EF84B885D3CC8B082A6968 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/09f2a28b-bc83-44b1-b088-f2cab4682327.roa Signing time: Mon 14 Apr 2025 15:40:29 +0000 ROA not before: Mon 14 Apr 2025 15:40:29 +0000 ROA not after: Mon 19 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.131.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:fb:3b:05:10:9c:52:80:60:ef:84:b8:85:d3:cc:8b:08:2a:69:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 14 15:40:29 2025 GMT Not After : May 19 23:59:59 2025 GMT Subject: serialNumber=8426360d65d37d79570e19f15a99061bd08d4b1b99109dfa3cc8c135c667bbcd, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:c5:36:4d:74:65:82:de:cb:8b:9b:94:b7:96: 30:21:69:c1:50:b6:18:0c:2b:be:b8:63:1b:96:f2: c7:6e:97:92:15:01:22:45:a0:59:a2:4a:2f:56:28: 2b:37:2b:84:8a:a8:4f:c9:c7:4d:d9:bb:be:15:82: c8:d8:ed:b6:86:3f:20:7d:d4:a9:a7:44:15:2f:96: df:82:14:fb:23:7c:98:0a:c9:25:03:a5:31:40:38: e3:ea:ab:a1:ce:03:9d:cd:9f:ee:54:a7:48:a2:81: 53:6e:a3:b0:d7:63:71:5e:51:4d:7e:2b:f4:98:71: 27:dd:42:64:30:c0:17:e8:3f:5c:f9:28:bc:8f:c4: 54:7b:4c:2b:28:8e:42:48:3d:6c:45:4a:0c:58:7d: 2c:0d:ae:09:d4:c6:27:82:91:48:cd:82:c8:91:8c: 85:d2:d8:9d:bc:2e:cf:2e:bb:de:1c:73:f6:d5:cf: 90:85:a2:02:92:77:f3:2f:8a:52:30:8c:8f:ac:d5: 78:62:b4:84:d0:ec:3f:7a:40:30:a8:cf:fd:39:c3: 9a:5f:e6:6a:95:da:9f:23:0a:8d:c8:1d:cc:19:c5: 98:36:a6:01:f6:c9:d0:16:d0:fd:49:2a:7e:77:89: 1b:57:6f:c6:f6:d6:f4:ed:83:64:ba:88:47:de:ce: 02:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:B0:B0:59:06:0D:A6:99:F8:64:4F:FA:53:A2:55:3E:D8:07:29:55 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/09f2a28b-bc83-44b1-b088-f2cab4682327.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.131.0.0/16 Signature Algorithm: sha256WithRSAEncryption a6:51:ac:dc:c7:7a:d8:dc:be:94:b7:f2:f3:d9:a7:46:3f:99: 90:0b:ee:a3:f5:23:34:44:e8:4d:4c:8a:a5:db:15:f8:30:59: 71:06:10:fa:05:f0:2e:4e:e4:90:a6:f2:db:ff:22:e4:9a:9b: 66:84:42:a6:7d:74:a3:e1:c7:73:31:b6:c2:90:a7:11:ac:b2: e2:43:a9:8b:fe:79:fe:44:0d:1b:f8:64:08:d7:e5:0c:ed:e1: ea:e0:8b:ad:e2:05:54:6c:96:8e:bb:93:b3:0f:6d:bc:4f:81: e4:96:ff:d3:b8:6c:b8:d5:3d:67:d9:bf:bf:3a:85:74:9c:5d: 7c:ae:a1:2d:72:28:0c:77:b3:92:3a:3b:0a:6f:81:c8:d3:05: 8c:e6:bb:82:2d:3a:98:70:e1:a4:37:cc:df:03:7a:43:df:00: c7:4a:0d:6a:dd:a5:23:42:08:7e:64:1a:eb:17:c7:2c:d2:6b: 26:b5:1d:dc:bb:11:ac:e1:7c:cf:ac:6c:54:c1:93:62:5d:ae: 66:cb:bc:14:71:51:16:f9:96:a2:4c:15:03:3b:55:80:74:ef: 4e:e7:98:29:b4:d1:2d:ea:c8:7b:be:e7:25:53:11:c0:02:44: 2f:ea:1b:65:03:dc:13:5a:43:69:b9:15:90:72:1b:29:53:80: da:d0:88:30 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTfs7BRCcUoBg74S4hdPMiwgqaWgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE0MTU0MDI5WhcNMjUwNTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NDI2MzYwZDY1ZDM3ZDc5NTcwZTE5ZjE1YTk5MDYxYmQw OGQ0YjFiOTkxMDlkZmEzY2M4YzEzNWM2NjdiYmNkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCLxTZNdGWC3suLm5S3ljAhacFQthgMK764YxuW8sdul5IV ASJFoFmiSi9WKCs3K4SKqE/Jx03Zu74VgsjY7baGPyB91KmnRBUvlt+CFPsjfJgK ySUDpTFAOOPqq6HOA53Nn+5Up0iigVNuo7DXY3FeUU1+K/SYcSfdQmQwwBfoP1z5 KLyPxFR7TCsojkJIPWxFSgxYfSwNrgnUxieCkUjNgsiRjIXS2J28Ls8uu94cc/bV z5CFogKSd/MvilIwjI+s1XhitITQ7D96QDCoz/05w5pf5mqV2p8jCo3IHcwZxZg2 pgH2ydAW0P1JKn53iRtXb8b21vTtg2S6iEfezgIhAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUNbCwWQYNppn4ZE/6U6JVPtgHKVUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzA5ZjJhMjhiLWJjODMtNDRiMS1iMDg4LWYyY2FiNDY4MjMyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwADgzANBgkqhkiG9w0BAQsFAAOCAQEAplGs3Md62Ny+lLfy89mnRj+ZkAvu o/UjNEToTUyKpdsV+DBZcQYQ+gXwLk7kkKby2/8i5JqbZoRCpn10o+HHczG2wpCn Eayy4kOpi/55/kQNG/hkCNflDO3h6uCLreIFVGyWjruTsw9tvE+B5Jb/07hsuNU9 Z9m/vzqFdJxdfK6hLXIoDHezkjo7Cm+ByNMFjOa7gi06mHDhpDfM3wN6Q98Ax0oN at2lI0IIfmQa6xfHLNJrJrUd3LsRrOF8z6xsVMGTYl2uZsu8FHFRFvmWokwVAztV gHTvTueYKbTRLerIe77nJVMRwAJEL+obZQPcE1pDabkVkHIbKVOA2tCIMA== -----END CERTIFICATE-----Generated at Sat Apr 26 15:52:33 2025 by rpki-client