$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/24380034-e10c-4d59-ac88-4ced5057129c.roa File: 24380034-e10c-4d59-ac88-4ced5057129c.roa (raw, json) Hash identifier: yDHF1mTexvNMR8UljWowlhAk5BgnZU4xtYoUfEbq60k= Subject key identifier: D1:CD:40:0C:C1:E1:A2:9A:D4:4C:EF:B9:BC:63:4A:EE:90:26:7B:18 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 14BD6BE6BB7E058EF3083511C10B5B4128F18763 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/24380034-e10c-4d59-ac88-4ced5057129c.roa Signing time: Fri 25 Apr 2025 16:00:14 +0000 ROA not before: Fri 25 Apr 2025 16:00:14 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 15.248.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:bd:6b:e6:bb:7e:05:8e:f3:08:35:11:c1:0b:5b:41:28:f1:87:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 25 16:00:14 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=bd31b6684d87bac283ff0832908b7ca59c6a57c581ebf170b88cbe7837ccd34e, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f0:65:e2:e2:6c:1a:fd:f8:c4:e5:da:ad:a6: 01:76:e3:ca:1e:99:ff:ca:02:b5:4d:93:1f:4f:e6: aa:95:34:58:6a:aa:e0:9f:52:d0:fb:d9:e4:ea:71: 43:3a:76:fe:41:04:73:0f:e0:20:d7:67:7f:8b:13: ed:ce:aa:97:1e:07:d8:5c:27:ab:b9:39:63:64:49: d1:1d:64:11:5a:eb:59:36:d7:37:17:00:aa:24:5a: b3:36:bd:43:15:4c:b8:77:f5:7a:3e:7c:14:90:89: ce:7c:b1:f2:c1:50:f1:65:15:cd:57:da:65:2f:87: 82:2f:04:67:fa:fe:62:6d:02:ac:3c:15:96:7d:fe: f2:6a:8b:f3:72:97:03:5c:fb:6f:65:78:7d:97:22: bd:5d:db:8b:f6:72:4d:3a:dc:58:f3:37:4f:b2:16: 10:a2:16:14:aa:62:a4:47:a5:35:6e:c6:bc:54:c8: 8e:23:60:0e:3a:3e:33:4d:5b:7c:eb:15:1b:93:80: ab:45:d2:ac:11:af:c8:44:50:c4:b0:90:cf:dd:52: 6d:df:4f:b5:d8:fa:8d:b5:42:67:c7:c2:60:f7:eb: 07:4d:12:f6:d5:1f:1b:4d:fe:d8:55:8b:46:21:42: 8b:68:23:37:80:db:0c:c8:99:8c:d2:cb:5b:5e:7d: 59:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:CD:40:0C:C1:E1:A2:9A:D4:4C:EF:B9:BC:63:4A:EE:90:26:7B:18 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/24380034-e10c-4d59-ac88-4ced5057129c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.248.123.0/24 Signature Algorithm: sha256WithRSAEncryption 67:14:bb:79:f1:e6:71:d0:21:5b:93:95:cf:8d:6e:29:d8:51: b7:cc:7e:dd:f9:ca:28:a1:71:17:3c:55:2e:5b:fb:61:59:3b: 2b:de:4e:8f:bb:87:55:21:27:d2:07:0e:37:03:a8:fd:fa:8c: 79:50:ae:17:02:d9:6f:3f:87:e3:4b:54:ee:92:7a:ab:01:55: 3e:28:d0:5d:f6:d2:66:ec:e0:4a:21:4c:dc:e1:39:13:76:1c: 8f:bd:0f:31:0f:6b:6e:64:c7:13:ef:76:0b:6a:e8:42:97:17: 64:f0:04:95:d8:c5:b1:2e:15:4b:d2:9f:51:ec:07:87:8e:31: 7a:01:2f:c8:e9:6d:01:70:1c:2b:79:af:82:d7:7b:a6:de:5f: 2c:48:85:b7:8c:74:3d:10:51:a7:71:ab:8a:3f:e3:7d:13:0d: 1d:34:a5:df:4b:22:61:83:35:0d:ab:c4:7f:c3:51:4f:d7:5f: 16:4d:e5:03:e2:5e:51:bf:9a:51:be:14:9a:63:0c:19:3f:e1: 0b:77:7e:ef:c5:da:6b:5a:b4:cb:2c:c8:f5:c2:bf:2b:fc:63: 61:f0:0f:14:5e:6b:f1:51:eb:d7:a7:a6:37:3e:da:0a:a6:16: 94:56:08:7d:e2:93:11:06:53:36:fe:d7:5c:33:a1:db:d8:48: 66:05:4e:72 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFL1r5rt+BY7zCDURwQtbQSjxh2MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDI1MTYwMDE0WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZDMxYjY2ODRkODdiYWMyODNmZjA4MzI5MDhiN2NhNTlj NmE1N2M1ODFlYmYxNzBiODhjYmU3ODM3Y2NkMzRlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCx8GXi4mwa/fjE5dqtpgF248oemf/KArVNkx9P5qqVNFhq quCfUtD72eTqcUM6dv5BBHMP4CDXZ3+LE+3OqpceB9hcJ6u5OWNkSdEdZBFa61k2 1zcXAKokWrM2vUMVTLh39Xo+fBSQic58sfLBUPFlFc1X2mUvh4IvBGf6/mJtAqw8 FZZ9/vJqi/NylwNc+29leH2XIr1d24v2ck063FjzN0+yFhCiFhSqYqRHpTVuxrxU yI4jYA46PjNNW3zrFRuTgKtF0qwRr8hEUMSwkM/dUm3fT7XY+o21QmfHwmD36wdN EvbVHxtN/thVi0YhQotoIzeA2wzImYzSy1tefVn9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0c1ADMHhoprUTO+5vGNK7pAmexgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzI0MzgwMDM0LWUxMGMtNGQ1OS1hYzg4LTRjZWQ1MDU3MTI5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAP+HswDQYJKoZIhvcNAQELBQADggEBAGcUu3nx5nHQIVuTlc+NbinYUbfM ft35yiihcRc8VS5b+2FZOyveTo+7h1UhJ9IHDjcDqP36jHlQrhcC2W8/h+NLVO6S eqsBVT4o0F320mbs4EohTNzhORN2HI+9DzEPa25kxxPvdgtq6EKXF2TwBJXYxbEu FUvSn1HsB4eOMXoBL8jpbQFwHCt5r4LXe6beXyxIhbeMdD0QUadxq4o/430TDR00 pd9LImGDNQ2rxH/DUU/XXxZN5QPiXlG/mlG+FJpjDBk/4Qt3fu/F2mtatMssyPXC vyv8Y2HwDxRea/FR69enpjc+2gqmFpRWCH3ikxEGUzb+11wzodvYSGYFTnI= -----END CERTIFICATE-----Generated at Sat Apr 26 12:52:16 2025 by rpki-client