$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0ea66562-2b47-4847-be06-40c82e3c114e.roa File: 0ea66562-2b47-4847-be06-40c82e3c114e.roa (raw, json) Hash identifier: WMjZbSU7zLOFtAbwxSCUvExSo7jqrvLvxAiLD+yDh9U= Subject key identifier: 59:C6:48:3C:D7:81:D0:9E:E6:AB:5E:EC:50:E5:DB:FE:65:88:68:D7 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 59EDC05D2A7FFA7F1572D97F4C9271E0FECE1B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0ea66562-2b47-4847-be06-40c82e3c114e.roa Signing time: Fri 18 Apr 2025 15:01:25 +0000 ROA not before: Fri 18 Apr 2025 15:01:25 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.156.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:ed:c0:5d:2a:7f:fa:7f:15:72:d9:7f:4c:92:71:e0:fe:ce:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 18 15:01:25 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=58c9e1a6a40f03add3726d842465fe3daa2aee2213897b9c11d75048f8f8f83f, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:72:96:21:36:9e:eb:cb:cb:94:fb:7d:8f:8f: 66:71:69:5c:aa:c4:34:d2:fe:2a:18:ea:5e:0c:74: 68:92:87:32:bb:63:f0:11:14:21:21:00:c2:70:ee: bb:fa:79:58:27:26:c7:84:93:9e:02:e9:e3:5c:69: d0:6b:1e:47:a2:d6:e0:23:31:a7:be:83:4a:7e:1a: 11:85:7d:05:79:25:c7:70:a6:4a:5f:d5:38:2d:39: 1f:26:2a:c4:20:74:c4:1b:09:d6:06:3f:77:2e:2a: 7f:87:8a:d8:ce:39:42:a6:ea:0d:6f:95:87:ca:f6: 54:c4:ef:cc:96:23:5f:0b:ba:1f:ea:11:c0:67:2d: f5:ab:26:7b:73:3c:40:7a:ff:fb:db:25:70:64:05: c1:e0:ab:40:12:33:6a:02:28:b0:df:04:a6:6a:90: 9f:de:72:c1:dd:a5:51:7c:f5:50:88:b6:94:57:22: d7:21:f6:a7:34:9e:48:2f:3e:00:32:43:9d:0b:ab: 61:25:d5:be:f1:db:25:0f:ed:4e:53:38:4e:59:1f: cd:6f:65:22:d0:2b:71:4d:0c:4e:eb:f8:72:d5:a4: 85:9d:6f:8b:37:01:e6:9a:d0:6f:6f:de:03:4a:5a: 36:17:8c:f3:f6:bb:32:1e:96:eb:50:f8:99:2d:cf: bd:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:C6:48:3C:D7:81:D0:9E:E6:AB:5E:EC:50:E5:DB:FE:65:88:68:D7 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0ea66562-2b47-4847-be06-40c82e3c114e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.156.4.0/22 Signature Algorithm: sha256WithRSAEncryption 4c:af:1d:3f:68:92:83:aa:c8:5a:ff:b0:04:05:17:af:9e:78: 47:99:b1:b5:a8:58:96:4d:16:76:ae:22:c1:f2:2c:6a:4d:a0: f9:f4:84:dd:aa:d1:4c:0b:f3:ed:0e:50:b9:13:8c:d2:05:9d: d7:f4:35:98:93:33:cc:2a:cf:8d:08:50:7d:b4:9b:4c:b2:82: 0d:d1:26:02:8d:d7:f8:d5:fd:83:10:66:ea:1d:12:47:86:2d: 4a:90:3d:c1:c5:35:f3:4a:17:4c:9b:35:32:67:30:bd:e7:64: 85:85:70:4d:80:4a:95:8f:5a:f0:e6:89:84:84:51:c3:cb:93: 85:78:f7:00:54:ab:10:b5:13:ad:f8:70:2d:10:59:b6:d4:25: db:b6:c3:64:48:82:30:9a:81:48:71:00:de:96:13:da:21:a5: f2:7a:5e:b7:6e:9b:5b:24:54:c4:ab:1c:91:e1:a1:e4:c6:e5: 00:e0:ac:ef:0b:4f:33:b3:77:f8:ce:58:51:7c:7a:d1:2b:8f: 1d:a8:40:b4:d9:47:13:9d:18:18:32:5c:8f:5e:34:de:06:4b: 2e:7c:30:10:cd:e2:76:d5:70:28:da:f5:04:91:d8:f7:13:92: a6:a0:97:b1:08:0a:4d:42:92:3a:d2:7a:ce:02:50:73:6c:31: 6c:6d:94:b9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITWe3AXSp/+n8Vctl/TJJx4P7OGzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNTA0MTgxNTAxMjVaFw0yNTA1MjMyMzU5NTla MHoxSTBHBgNVBAUTQDU4YzllMWE2YTQwZjAzYWRkMzcyNmQ4NDI0NjVmZTNkYWEy YWVlMjIxMzg5N2I5YzExZDc1MDQ4ZjhmOGY4M2YxLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBANNyliE2nuvLy5T7fY+PZnFpXKrENNL+KhjqXgx0aJKHMrtj 8BEUISEAwnDuu/p5WCcmx4STngLp41xp0GseR6LW4CMxp76DSn4aEYV9BXklx3Cm Sl/VOC05HyYqxCB0xBsJ1gY/dy4qf4eK2M45QqbqDW+Vh8r2VMTvzJYjXwu6H+oR wGct9asme3M8QHr/+9slcGQFweCrQBIzagIosN8EpmqQn95ywd2lUXz1UIi2lFci 1yH2pzSeSC8+ADJDnQurYSXVvvHbJQ/tTlM4TlkfzW9lItArcU0MTuv4ctWkhZ1v izcB5prQb2/eA0paNheM8/a7Mh6W61D4mS3PvaECAwEAAaOCArEwggKtMB0GA1Ud DgQWBBRZxkg814HQnuarXuxQ5dv+ZYho1zAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvMGVhNjY1NjItMmI0Ny00ODQ3LWJlMDYtNDBjODJlM2MxMTRlLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAjacBDANBgkqhkiG9w0BAQsFAAOCAQEATK8dP2iSg6rIWv+wBAUXr554R5mx tahYlk0Wdq4iwfIsak2g+fSE3arRTAvz7Q5QuROM0gWd1/Q1mJMzzCrPjQhQfbSb TLKCDdEmAo3X+NX9gxBm6h0SR4YtSpA9wcU180oXTJs1MmcwvedkhYVwTYBKlY9a 8OaJhIRRw8uThXj3AFSrELUTrfhwLRBZttQl27bDZEiCMJqBSHEA3pYT2iGl8npe t26bWyRUxKsckeGh5MblAOCs7wtPM7N3+M5YUXx60SuPHahAtNlHE50YGDJcj140 3gZLLnwwEM3idtVwKNr1BJHY9xOSpqCXsQgKTUKSOtJ6zgJQc2wxbG2UuQ== -----END CERTIFICATE-----Generated at Sat Apr 26 12:50:05 2025 by rpki-client