$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1267e82a-7f12-45b7-a2e5-131a59a06c58.roa File: 1267e82a-7f12-45b7-a2e5-131a59a06c58.roa (raw, json) Hash identifier: 6ZOG4OoqQS/7LWDdQwVYrCaqFd1GmsyQhCqb6vHm0bc= Subject key identifier: AC:6D:DE:80:37:60:22:C5:23:72:BA:8B:01:61:84:B9:51:9D:8A:F7 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0E0FA5BFA9503C4F73DCA0113857BBDB1E3C246D Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1267e82a-7f12-45b7-a2e5-131a59a06c58.roa Signing time: Fri 25 Apr 2025 16:50:06 +0000 ROA not before: Fri 25 Apr 2025 16:50:06 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.95.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:0f:a5:bf:a9:50:3c:4f:73:dc:a0:11:38:57:bb:db:1e:3c:24:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 25 16:50:06 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=75d635b61f85d29c6d2bc9755d562bd3eab734e3d62a8a32e1b88a86773712a6, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:aa:a5:08:a1:ec:9e:07:20:77:47:c6:04:d6: 6b:2a:e5:e8:1b:25:60:6e:f2:67:5d:81:11:5b:cb: 14:ba:20:d6:87:43:e1:e8:06:dd:12:59:a0:b8:0f: 51:fe:a4:4c:10:79:14:11:16:d8:33:ed:a0:44:88: 36:de:77:cb:e9:ba:9b:f7:66:9a:5d:83:36:7a:11: e1:ca:4d:8c:3b:c2:bd:a5:0e:e3:5b:e4:ac:06:7d: a9:34:da:4a:6f:6f:4a:42:fd:0a:d3:35:ad:f2:7d: 7b:e4:9a:30:f4:de:5f:dc:0c:4d:da:bc:d1:04:16: d7:68:7e:d1:78:48:29:10:5f:d4:5f:86:b6:cd:15: 65:e8:49:10:99:af:65:e9:25:f7:bc:22:36:82:56: 24:3e:7d:6d:d1:89:2e:77:33:27:dd:c6:0b:3f:5e: a1:c8:0c:b2:2d:7c:ec:af:39:ee:cc:5e:6f:38:e1: 48:57:a2:64:22:a5:35:55:c7:fc:85:05:4b:b5:0d: 80:29:6a:2d:37:a5:63:98:4b:e2:f6:bb:97:d3:3d: 46:87:57:9e:49:f6:a7:c6:c2:09:2c:80:d3:11:bf: 40:68:04:92:2d:8e:07:ce:44:9a:70:99:3a:c1:ee: 34:4b:12:a5:21:fe:43:80:cb:54:56:19:bd:72:6f: d5:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:6D:DE:80:37:60:22:C5:23:72:BA:8B:01:61:84:B9:51:9D:8A:F7 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1267e82a-7f12-45b7-a2e5-131a59a06c58.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.95.41.0/24 Signature Algorithm: sha256WithRSAEncryption 84:0e:8e:87:88:36:13:80:fe:ce:60:e7:e1:6b:06:0c:c7:c2: 46:86:63:a5:60:00:b5:bc:1e:e9:09:ad:9f:67:c3:87:2b:01: c1:8b:ce:8f:87:53:6d:37:0d:0d:3c:a4:b1:31:e8:2e:ef:7b: ba:b1:0f:98:bc:c1:f4:25:b8:12:57:5e:1e:55:ae:dd:12:b2: de:54:03:df:d0:22:84:33:71:85:36:d8:c3:d2:5f:01:43:a4: 0a:0a:04:ee:75:22:d1:19:30:ce:d7:1d:84:d9:db:2b:40:4a: c4:82:2d:cd:a8:09:29:d5:ad:bb:cc:5a:9d:18:9b:00:63:80: 65:ac:76:b9:8d:48:47:51:d6:4d:48:e8:3b:b1:0d:37:7d:04: 64:4a:85:53:0c:79:52:55:8a:2a:46:2b:20:1e:1a:8b:98:ef: 36:57:17:f6:84:a0:aa:71:39:1f:f2:cf:60:a1:b3:a0:39:e5: b8:b0:91:c9:8e:53:78:7c:78:a9:1b:65:40:76:45:14:f8:e4: 6d:e5:d9:2c:58:84:d4:d5:6e:f4:40:9a:08:86:cc:ff:1c:12: c2:e5:36:10:b0:85:00:fd:74:ff:5d:6f:4b:ae:79:aa:4c:2c: 2a:88:81:57:e7:c4:3d:6f:81:7c:53:68:a6:6a:f5:54:5f:78: 34:22:bb:c6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDg+lv6lQPE9z3KAROFe72x48JG0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDI1MTY1MDA2WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NWQ2MzViNjFmODVkMjljNmQyYmM5NzU1ZDU2MmJkM2Vh YjczNGUzZDYyYThhMzJlMWI4OGE4Njc3MzcxMmE2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDqqUIoeyeByB3R8YE1msq5egbJWBu8mddgRFbyxS6INaH Q+HoBt0SWaC4D1H+pEwQeRQRFtgz7aBEiDbed8vpupv3ZppdgzZ6EeHKTYw7wr2l DuNb5KwGfak02kpvb0pC/QrTNa3yfXvkmjD03l/cDE3avNEEFtdoftF4SCkQX9Rf hrbNFWXoSRCZr2XpJfe8IjaCViQ+fW3RiS53Myfdxgs/XqHIDLItfOyvOe7MXm84 4UhXomQipTVVx/yFBUu1DYApai03pWOYS+L2u5fTPUaHV55J9qfGwgksgNMRv0Bo BJItjgfORJpwmTrB7jRLEqUh/kOAy1RWGb1yb9UFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrG3egDdgIsUjcrqLAWGEuVGdivcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzEyNjdlODJhLTdmMTItNDViNy1hMmU1LTEzMWE1OWEwNmM1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0XykwDQYJKoZIhvcNAQELBQADggEBAIQOjoeINhOA/s5g5+FrBgzHwkaG Y6VgALW8HukJrZ9nw4crAcGLzo+HU203DQ08pLEx6C7ve7qxD5i8wfQluBJXXh5V rt0Sst5UA9/QIoQzcYU22MPSXwFDpAoKBO51ItEZMM7XHYTZ2ytASsSCLc2oCSnV rbvMWp0YmwBjgGWsdrmNSEdR1k1I6DuxDTd9BGRKhVMMeVJViipGKyAeGouY7zZX F/aEoKpxOR/yz2Chs6A55biwkcmOU3h8eKkbZUB2RRT45G3l2SxYhNTVbvRAmgiG zP8cEsLlNhCwhQD9dP9db0uueapMLCqIgVfnxD1vgXxTaKZq9VRfeDQiu8Y= -----END CERTIFICATE-----Generated at Sat Apr 26 19:48:45 2025 by rpki-client