$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2ca7fb95-046b-408c-9d33-2af8b2e953f4.roa File: 2ca7fb95-046b-408c-9d33-2af8b2e953f4.roa (raw, json) Hash identifier: 6mpofPyoLObPWP5VrkFV5ygWotNXRjsQmni/JDuP8Sk= Subject key identifier: A5:8B:60:8C:39:72:AF:B2:71:B0:31:C5:E9:80:B0:74:C3:8C:98:22 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3B910017CB0F587E6C6ACE09868C2930FBACF6B7 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2ca7fb95-046b-408c-9d33-2af8b2e953f4.roa Signing time: Tue 22 Apr 2025 18:10:14 +0000 ROA not before: Tue 22 Apr 2025 18:10:14 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.192.0.0/12 maxlen: 12 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:91:00:17:cb:0f:58:7e:6c:6a:ce:09:86:8c:29:30:fb:ac:f6:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 22 18:10:14 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=a78cfc13e8d2f8e45feb56016bb72b5841a73fbd3d0e960878028704129fe87f, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b6:0f:2e:87:9c:cd:7c:35:0e:30:a1:e9:74: 61:2e:8f:39:f7:9d:52:68:a8:88:48:e9:bd:c9:20: 74:ac:18:fd:e3:a4:cd:88:a6:96:14:2c:59:57:30: 82:ad:cd:7b:c7:69:d3:2c:38:cc:26:48:af:51:72: dd:dc:35:8b:b4:97:cc:00:81:34:d3:ea:9a:58:ab: 28:ab:64:2b:2b:d4:7a:62:e7:64:8d:40:bf:02:8d: 10:03:1f:9f:0b:57:7e:8a:a5:ab:5f:0e:f9:38:1e: 4f:62:f0:9e:c0:8f:ae:a6:e5:89:a6:5d:32:5b:48: 65:b5:b2:92:8e:7d:40:56:13:de:93:b5:4f:12:fb: 37:42:1a:fb:66:e6:7a:73:17:16:a7:58:8a:a8:12: 97:2c:ac:3a:bc:3c:7b:af:b5:6a:d5:08:e9:85:99: e8:ee:cb:35:46:15:5c:c7:22:9e:c3:d3:18:3f:0b: 16:03:5b:95:cb:cf:25:ae:1e:1d:0f:29:8f:3f:7c: 9c:da:d5:ed:93:2c:6a:cd:f0:88:de:6d:64:42:bd: ec:b8:e9:2c:12:bc:cd:8a:9f:8c:1a:4a:a4:26:0a: e4:c2:43:ca:fc:ad:72:7b:0a:e7:4e:14:22:7e:cd: 5f:c6:b7:55:e1:d3:9b:a8:ff:76:bc:2d:f9:51:fa: 79:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:8B:60:8C:39:72:AF:B2:71:B0:31:C5:E9:80:B0:74:C3:8C:98:22 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2ca7fb95-046b-408c-9d33-2af8b2e953f4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.192.0.0/12 Signature Algorithm: sha256WithRSAEncryption a5:f4:66:82:81:d3:17:d0:42:d1:08:0c:23:be:00:d9:ee:8b: 3f:9e:83:15:fa:71:0b:fa:ec:22:10:c4:13:44:be:b9:95:3a: 47:f1:90:95:06:cb:5c:5d:44:8f:4a:b2:e6:a3:5c:f7:a4:98: 7f:75:61:9b:4c:13:cb:0c:2e:76:6b:33:f1:dd:c6:dd:16:d0: 29:de:d2:cb:76:1b:87:e1:1f:60:d6:c6:51:24:b4:e3:d1:47: d0:3d:45:03:ae:88:bf:95:d3:4e:b0:51:ac:83:01:64:1d:dd: b0:49:d9:4b:84:19:02:ef:c3:f5:fa:d7:97:eb:ec:e9:4f:95: 4c:8c:20:40:77:14:ec:92:66:dd:17:2b:99:ae:df:88:3e:06: 5d:45:d4:de:90:47:f4:4b:30:12:3d:dc:94:06:5c:fa:00:47: f9:20:71:e9:df:ec:1c:09:23:8f:8a:04:ec:5a:b2:d6:db:9b: 15:a0:01:92:1a:56:81:d0:97:1c:d3:af:b0:82:16:53:49:d6: 79:14:78:39:f1:77:0a:31:79:54:34:d7:67:f9:9f:c6:86:5b: 8f:ec:f0:e4:09:87:e6:8d:aa:af:e1:6a:d2:59:79:46:cc:e0: 2b:e1:a3:a5:85:d8:22:76:0f:2a:8e:b2:cf:64:4c:24:70:34: 15:5c:6f:54 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUO5EAF8sPWH5sas4JhowpMPus9rcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDIyMTgxMDE0WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNzhjZmMxM2U4ZDJmOGU0NWZlYjU2MDE2YmI3MmI1ODQx YTczZmJkM2QwZTk2MDg3ODAyODcwNDEyOWZlODdmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/tg8uh5zNfDUOMKHpdGEujzn3nVJoqIhI6b3JIHSsGP3j pM2IppYULFlXMIKtzXvHadMsOMwmSK9Rct3cNYu0l8wAgTTT6ppYqyirZCsr1Hpi 52SNQL8CjRADH58LV36KpatfDvk4Hk9i8J7Aj66m5YmmXTJbSGW1spKOfUBWE96T tU8S+zdCGvtm5npzFxanWIqoEpcsrDq8PHuvtWrVCOmFmejuyzVGFVzHIp7D0xg/ CxYDW5XLzyWuHh0PKY8/fJza1e2TLGrN8IjebWRCvey46SwSvM2Kn4waSqQmCuTC Q8r8rXJ7CudOFCJ+zV/Gt1Xh05uo/3a8LflR+nmXAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUpYtgjDlyr7JxsDHF6YCwdMOMmCIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzJjYTdmYjk1LTA0NmItNDA4Yy05ZDMzLTJhZjhiMmU5NTNmNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwQ2wDANBgkqhkiG9w0BAQsFAAOCAQEApfRmgoHTF9BC0QgMI74A2e6LP56D FfpxC/rsIhDEE0S+uZU6R/GQlQbLXF1Ej0qy5qNc96SYf3Vhm0wTywwudmsz8d3G 3RbQKd7Sy3Ybh+EfYNbGUSS049FH0D1FA66Iv5XTTrBRrIMBZB3dsEnZS4QZAu/D 9frXl+vs6U+VTIwgQHcU7JJm3Rcrma7fiD4GXUXU3pBH9EswEj3clAZc+gBH+SBx 6d/sHAkjj4oE7Fqy1tubFaABkhpWgdCXHNOvsIIWU0nWeRR4OfF3CjF5VDTXZ/mf xoZbj+zw5AmH5o2qr+Fq0ll5RszgK+GjpYXYInYPKo6yz2RMJHA0FVxvVA== -----END CERTIFICATE-----Generated at Sat Apr 26 12:51:08 2025 by rpki-client