$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1e6d17b7-34a6-4151-8a41-12f370573800.roa File: 1e6d17b7-34a6-4151-8a41-12f370573800.roa (raw, json) Hash identifier: aRX5IssMDgr0autKY1srYBkQngwDr1faIpdEvu3G+u4= Subject key identifier: 6E:4A:57:59:83:D4:A2:B7:46:11:97:F7:1A:7E:46:68:45:FA:BA:23 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 65D6A81677BC1CCE12DBF52ECDCB81C3606EEB9B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1e6d17b7-34a6-4151-8a41-12f370573800.roa Signing time: Fri 25 Apr 2025 17:21:49 +0000 ROA not before: Fri 25 Apr 2025 17:21:49 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.82.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:d6:a8:16:77:bc:1c:ce:12:db:f5:2e:cd:cb:81:c3:60:6e:eb:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 25 17:21:49 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=85c6dd30b45c33cb81f5fade45c71276fbbe57b96e60eeea9d463611996da23f, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:0c:3f:49:95:76:ae:16:7a:65:4c:09:07:b6: e3:e4:61:18:a6:15:9f:31:22:64:9b:d9:42:1a:7a: 34:c8:ca:95:cc:ca:38:07:79:33:39:67:5b:e5:fc: a0:8f:f8:d5:30:41:5a:38:c8:7c:39:fc:f5:21:65: 0b:1d:3a:ca:45:06:d0:1e:18:d8:1d:a6:81:8c:4b: 85:0b:0c:5b:7d:57:89:44:fc:44:b4:74:ca:6b:72: 21:92:c7:55:4c:9e:34:81:c3:35:81:4f:6c:93:0c: 25:65:14:c7:6e:a7:c0:df:66:2f:4b:8a:80:6e:69: 54:11:2d:3e:27:21:64:f0:29:12:5a:52:5e:5d:02: fc:8e:93:76:6b:94:5c:0b:94:98:f9:4c:90:69:6c: 99:a0:c5:d8:b4:23:42:1c:e4:af:44:76:cf:f0:a2: b7:36:26:dc:40:df:22:04:49:96:97:0e:17:f6:d6: aa:c9:cd:66:3e:ce:f9:24:78:e9:60:57:18:60:2c: 9c:2d:a3:37:2b:ae:7e:64:94:5e:d0:6b:de:d5:c8: e4:32:25:fb:19:10:42:9d:c5:d3:c9:50:86:36:59: 85:fc:73:d4:97:b6:4f:eb:86:40:db:cd:22:87:31: 1c:da:a5:d4:a8:e7:27:dd:5c:a6:0b:46:f2:73:50: 88:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:4A:57:59:83:D4:A2:B7:46:11:97:F7:1A:7E:46:68:45:FA:BA:23 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1e6d17b7-34a6-4151-8a41-12f370573800.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.82.0.0/17 Signature Algorithm: sha256WithRSAEncryption 1a:63:64:ff:34:ce:8b:4c:e9:08:8c:0e:fc:3e:3b:86:ea:ab: 9d:25:19:05:27:fc:69:18:75:17:87:e7:40:76:d4:d8:2c:4f: 37:2a:e0:7a:b4:72:31:82:67:55:e7:7b:42:26:1e:7a:18:2e: df:f8:57:94:77:79:94:18:0f:b7:f4:dd:32:70:a4:46:4b:b8: 4d:fa:8b:b3:b0:3d:0a:3d:84:f7:15:05:bd:ae:78:6e:96:c1: 32:74:2a:a1:43:ce:02:2b:70:5e:f9:3e:4c:26:5c:8e:23:db: f6:91:01:02:45:f7:c1:3b:06:ca:4f:4a:6d:d7:df:75:bd:16: 75:8a:ea:7f:73:75:09:64:86:76:f9:a4:51:f0:df:11:10:d0: e6:d9:b9:a9:10:d4:0f:f5:95:a2:4a:66:53:8c:60:ff:f4:d0: 7d:6d:26:c5:e5:c4:59:4b:80:50:5e:82:c3:f8:86:ae:c6:a5: be:b4:31:16:a5:0b:f0:80:0f:1e:01:cb:63:78:a9:9a:45:e8: e5:1c:03:bb:d5:ad:c6:61:6f:ac:4f:e2:e1:7d:eb:53:09:80: fc:f4:74:e9:b9:34:54:ca:77:8d:33:4e:42:e7:0a:9a:5c:3b: e7:32:93:2f:6a:37:f0:71:48:5a:90:65:a5:00:a4:99:b0:8d: bc:4f:b9:ae -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZdaoFne8HM4S2/UuzcuBw2Bu65swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDI1MTcyMTQ5WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NWM2ZGQzMGI0NWMzM2NiODFmNWZhZGU0NWM3MTI3NmZi YmU1N2I5NmU2MGVlZWE5ZDQ2MzYxMTk5NmRhMjNmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDODD9JlXauFnplTAkHtuPkYRimFZ8xImSb2UIaejTIypXM yjgHeTM5Z1vl/KCP+NUwQVo4yHw5/PUhZQsdOspFBtAeGNgdpoGMS4ULDFt9V4lE /ES0dMprciGSx1VMnjSBwzWBT2yTDCVlFMdup8DfZi9LioBuaVQRLT4nIWTwKRJa Ul5dAvyOk3ZrlFwLlJj5TJBpbJmgxdi0I0Ic5K9Eds/worc2JtxA3yIESZaXDhf2 1qrJzWY+zvkkeOlgVxhgLJwtozcrrn5klF7Qa97VyOQyJfsZEEKdxdPJUIY2WYX8 c9SXtk/rhkDbzSKHMRzapdSo5yfdXKYLRvJzUIhfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbkpXWYPUordGEZf3Gn5GaEX6uiMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzFlNmQxN2I3LTM0YTYtNDE1MS04YTQxLTEyZjM3MDU3MzgwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc2UgAwDQYJKoZIhvcNAQELBQADggEBABpjZP80zotM6QiMDvw+O4bqq50l GQUn/GkYdReH50B21NgsTzcq4Hq0cjGCZ1Xne0ImHnoYLt/4V5R3eZQYD7f03TJw pEZLuE36i7OwPQo9hPcVBb2ueG6WwTJ0KqFDzgIrcF75PkwmXI4j2/aRAQJF98E7 BspPSm3X33W9FnWK6n9zdQlkhnb5pFHw3xEQ0ObZuakQ1A/1laJKZlOMYP/00H1t JsXlxFlLgFBegsP4hq7Gpb60MRalC/CADx4By2N4qZpF6OUcA7vVrcZhb6xP4uF9 61MJgPz0dOm5NFTKd40zTkLnCppcO+cyky9qN/BxSFqQZaUApJmwjbxPua4= -----END CERTIFICATE-----Generated at Sat Apr 26 17:38:46 2025 by rpki-client