$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/32656923-9ec4-40b4-9ede-e8bf9d5fca35.roa File: 32656923-9ec4-40b4-9ede-e8bf9d5fca35.roa (raw, json) Hash identifier: gK+qLGGRA9cgVymG9NXLcPSAkK6vIcHmdhnt4GOw+Ow= Subject key identifier: E2:02:4F:81:21:72:59:13:20:3E:7C:03:A8:27:4E:EE:98:21:D2:82 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 06C9A4F5C3B3FCFEC401EADCFB3D7112D24D3125 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/32656923-9ec4-40b4-9ede-e8bf9d5fca35.roa Signing time: Fri 18 Apr 2025 15:30:30 +0000 ROA not before: Fri 18 Apr 2025 15:30:30 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.94.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:c9:a4:f5:c3:b3:fc:fe:c4:01:ea:dc:fb:3d:71:12:d2:4d:31:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 18 15:30:30 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=d35a4923241a997647f08a632fdc277bcf3b39670912b8e70f8b8b2562369a01, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:04:4c:57:b5:e9:fd:3a:41:de:3c:50:40:51: dc:89:07:b0:16:74:24:7e:d1:4b:46:04:05:42:b5: c2:04:24:17:d7:27:6b:50:6b:28:39:80:b7:77:06: 8c:82:50:16:43:7c:e0:a5:fe:a8:3a:cb:b3:f2:c7: 85:93:9c:9f:db:a1:d4:c1:04:41:f5:b0:fa:35:84: d8:b0:ac:4f:fb:a7:70:cb:69:ae:ef:3d:45:88:36: 24:e4:8c:30:76:47:9c:d6:74:12:85:e3:f7:ff:2e: ed:f5:8b:72:4f:0c:6e:b3:f2:65:03:c8:b3:70:2c: 49:16:c2:19:19:1c:15:36:77:0b:23:bb:12:7e:db: 19:85:73:80:79:61:f5:90:30:4c:0e:cd:b5:4c:7f: cc:8f:d9:fd:b6:88:2d:9b:49:6a:8c:a7:41:6a:fb: ee:36:2f:5a:2a:3f:19:3b:53:3a:63:b3:41:0e:93: 4f:6f:16:9b:37:69:5a:e3:53:b8:2a:fd:78:84:c0: c4:dc:bc:d4:7c:23:66:6f:fe:e1:6f:9c:33:cf:2d: 86:a6:f4:d5:e7:31:58:f2:09:3c:36:e4:21:e9:e9: 57:a6:e9:98:c3:f3:7c:bb:f0:2c:aa:ec:ce:c5:c3: 26:4f:d6:99:bf:00:4f:32:ec:79:c8:fb:82:96:47: 4b:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:02:4F:81:21:72:59:13:20:3E:7C:03:A8:27:4E:EE:98:21:D2:82 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/32656923-9ec4-40b4-9ede-e8bf9d5fca35.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.94.152.0/21 Signature Algorithm: sha256WithRSAEncryption 43:5f:f7:d8:9d:ff:3d:4e:04:38:1e:a5:cb:83:8f:82:13:17: 37:08:f6:4b:8d:69:67:1b:d7:a7:be:67:cb:75:10:09:31:9e: 88:10:4c:c4:ae:05:e5:91:13:9d:28:e9:6b:5e:da:74:41:59: cf:ff:c4:05:d0:e3:25:c9:73:0f:f7:4e:90:a5:7f:6c:3b:66: 41:ab:e6:f7:e5:47:80:81:6f:59:de:90:5a:bc:ca:f1:e8:51: 3c:fd:94:3c:bc:ab:76:98:46:f5:7a:77:0f:0c:05:01:ed:76: c7:ff:36:29:88:98:39:8f:c1:41:6e:4d:9f:c5:ca:87:a9:5b: 93:35:67:82:cb:85:47:b0:56:f2:cd:56:09:c5:94:57:ae:ed: df:b4:74:e5:a8:a4:a1:ae:87:d8:85:5a:01:42:b5:9c:e3:38: 46:5a:86:3e:34:c8:bd:d0:49:ea:95:ad:e2:19:48:f5:8e:ab: e8:67:67:a9:21:f7:d3:74:06:06:80:b0:83:6e:1c:f9:db:a7: 8f:9a:d9:51:a5:f4:42:1d:ba:f7:92:33:83:7e:f9:58:56:c9: b2:f7:ea:1a:b3:99:23:22:9c:e2:1f:40:50:bc:36:e5:80:2f: 61:3f:13:90:68:ea:90:4d:11:89:45:31:44:bc:51:0c:45:75: 37:af:b8:b9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBsmk9cOz/P7EAerc+z1xEtJNMSUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE4MTUzMDMwWhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMzVhNDkyMzI0MWE5OTc2NDdmMDhhNjMyZmRjMjc3YmNm M2IzOTY3MDkxMmI4ZTcwZjhiOGIyNTYyMzY5YTAxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXBExXten9OkHePFBAUdyJB7AWdCR+0UtGBAVCtcIEJBfX J2tQayg5gLd3BoyCUBZDfOCl/qg6y7Pyx4WTnJ/bodTBBEH1sPo1hNiwrE/7p3DL aa7vPUWINiTkjDB2R5zWdBKF4/f/Lu31i3JPDG6z8mUDyLNwLEkWwhkZHBU2dwsj uxJ+2xmFc4B5YfWQMEwOzbVMf8yP2f22iC2bSWqMp0Fq++42L1oqPxk7Uzpjs0EO k09vFps3aVrjU7gq/XiEwMTcvNR8I2Zv/uFvnDPPLYam9NXnMVjyCTw25CHp6Vem 6ZjD83y78Cyq7M7FwyZP1pm/AE8y7HnI+4KWR0tdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4gJPgSFyWRMgPnwDqCdO7pgh0oIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzMyNjU2OTIzLTllYzQtNDBiNC05ZWRlLWU4YmY5ZDVmY2EzNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM0XpgwDQYJKoZIhvcNAQELBQADggEBAENf99id/z1OBDgepcuDj4ITFzcI 9kuNaWcb16e+Z8t1EAkxnogQTMSuBeWRE50o6Wte2nRBWc//xAXQ4yXJcw/3TpCl f2w7ZkGr5vflR4CBb1nekFq8yvHoUTz9lDy8q3aYRvV6dw8MBQHtdsf/NimImDmP wUFuTZ/FyoepW5M1Z4LLhUewVvLNVgnFlFeu7d+0dOWopKGuh9iFWgFCtZzjOEZa hj40yL3QSeqVreIZSPWOq+hnZ6kh99N0BgaAsINuHPnbp4+a2VGl9EIduveSM4N+ +VhWybL36hqzmSMinOIfQFC8NuWAL2E/E5Bo6pBNEYlFMUS8UQxFdTevuLk= -----END CERTIFICATE-----Generated at Sat Apr 26 12:52:16 2025 by rpki-client