$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3698a28a-faab-459c-8417-ccc4e03ad257.roa File: 3698a28a-faab-459c-8417-ccc4e03ad257.roa (raw, json) Hash identifier: 2VlLLZ6y0rcRzjZOZaVHHLPp6DBMBp54RnTmZMqfdqM= Subject key identifier: 08:18:78:4E:B0:4B:23:B6:5A:C2:7B:88:00:57:68:30:AF:6F:7A:A8 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4E51A74B5D5A621A730CA455C2C30C589343CD11 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3698a28a-faab-459c-8417-ccc4e03ad257.roa Signing time: Sat 26 Apr 2025 00:20:13 +0000 ROA not before: Sat 26 Apr 2025 00:20:13 +0000 ROA not after: Sat 31 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 156.7.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:51:a7:4b:5d:5a:62:1a:73:0c:a4:55:c2:c3:0c:58:93:43:cd:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 26 00:20:13 2025 GMT Not After : May 31 23:59:59 2025 GMT Subject: serialNumber=792abb4312d84cfca370f6c3db4518fa84a3bec1185cccb5654fc7eea4c832a6, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:06:de:40:ad:ab:f2:0d:ba:4d:40:51:7b:19: 1e:dd:87:a5:42:32:5d:6f:54:60:0f:6b:60:e4:74: 94:ba:5f:78:dd:f3:a7:33:91:cf:1b:97:b9:f9:08: 90:35:f7:83:a8:55:4f:bb:ba:0d:20:7d:f5:73:32: 14:a2:21:64:c8:6d:9d:1f:e3:4b:df:08:fa:31:1a: 5f:6e:a7:e5:7a:36:1b:14:e5:2d:ee:5e:10:30:f2: be:db:cc:14:4d:db:02:4f:3e:da:bf:ab:33:30:ac: cd:24:87:05:fc:49:58:f9:5f:81:ef:60:5b:21:69: 67:09:26:40:24:b9:ee:e2:7a:54:d5:c0:25:d3:75: c1:71:78:80:f2:35:c6:a9:84:bc:b7:7c:e3:c9:c0: c4:dc:9e:94:1a:d0:ae:5c:4e:2b:2f:9a:a3:9c:53: 3b:ac:9d:64:d1:64:dd:cc:57:3f:80:f3:e4:91:2f: cd:06:b3:f1:19:8b:7e:80:97:a5:8f:40:c1:d5:4a: 68:22:57:ce:6a:ac:5f:93:ca:d1:f6:0d:9f:72:f7: 4b:18:03:50:ae:19:6e:7b:b2:e4:0d:bd:cf:1c:fa: 62:7c:56:a2:5d:6b:3d:b0:5b:58:13:30:d0:1c:97: 71:b5:ed:3f:b0:d3:0c:6b:85:94:ac:e9:d1:7c:01: 4c:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:18:78:4E:B0:4B:23:B6:5A:C2:7B:88:00:57:68:30:AF:6F:7A:A8 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3698a28a-faab-459c-8417-ccc4e03ad257.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 156.7.0.0/16 Signature Algorithm: sha256WithRSAEncryption ac:e0:8b:ac:0b:46:5e:6b:77:07:e5:44:42:e0:eb:e1:50:54: 4e:b8:84:ce:0c:e3:49:42:71:08:fd:58:08:7b:7d:f5:be:d4: cb:96:07:0c:ed:66:62:7d:83:a1:ee:2a:5c:77:b6:6e:81:e4: 89:ed:d6:c3:45:ff:fd:d3:a3:36:b8:6e:6a:bf:0a:d0:b6:b3: 9c:35:bf:e9:f2:5e:9a:8e:78:5a:91:39:9b:c3:38:0b:21:f4: 3d:47:62:57:be:90:96:fd:e6:c5:89:2c:5c:ea:e1:79:f0:c9: 12:ac:b3:d8:67:21:4f:7f:5f:24:4e:7e:24:cd:a2:9c:72:b9: c8:91:e2:8b:5c:c5:73:69:23:33:80:ad:49:22:5d:ac:63:a1: 78:a1:ee:62:f2:41:b7:e0:79:07:eb:02:02:4f:88:8c:4b:4c: 2b:98:57:f6:8e:3a:ae:e1:c5:81:20:62:f5:77:ec:93:a1:a2: 98:7d:47:3a:38:fc:da:c5:f5:e0:3e:35:19:b1:c1:94:87:3c: 74:e0:a1:70:65:07:0f:6a:9d:dc:16:02:1e:f5:37:a9:ea:0e: 7c:8f:1d:64:f0:22:33:db:e2:35:06:79:6d:19:b9:8e:9f:15: 5e:87:29:89:7c:ba:fc:90:d4:85:bc:83:e3:86:2c:fe:76:0a: bf:e3:5b:d1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTlGnS11aYhpzDKRVwsMMWJNDzREwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDI2MDAyMDEzWhcNMjUwNTMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3OTJhYmI0MzEyZDg0Y2ZjYTM3MGY2YzNkYjQ1MThmYTg0 YTNiZWMxMTg1Y2NjYjU2NTRmYzdlZWE0YzgzMmE2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBBt5AravyDbpNQFF7GR7dh6VCMl1vVGAPa2DkdJS6X3jd 86czkc8bl7n5CJA194OoVU+7ug0gffVzMhSiIWTIbZ0f40vfCPoxGl9up+V6NhsU 5S3uXhAw8r7bzBRN2wJPPtq/qzMwrM0khwX8SVj5X4HvYFshaWcJJkAkue7ielTV wCXTdcFxeIDyNcaphLy3fOPJwMTcnpQa0K5cTisvmqOcUzusnWTRZN3MVz+A8+SR L80Gs/EZi36Al6WPQMHVSmgiV85qrF+TytH2DZ9y90sYA1CuGW57suQNvc8c+mJ8 VqJdaz2wW1gTMNAcl3G17T+w0wxrhZSs6dF8AUxBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUCBh4TrBLI7ZawnuIAFdoMK9veqgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzM2OThhMjhhLWZhYWItNDU5Yy04NDE3LWNjYzRlMDNhZDI1Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCcBzANBgkqhkiG9w0BAQsFAAOCAQEArOCLrAtGXmt3B+VEQuDr4VBUTriE zgzjSUJxCP1YCHt99b7Uy5YHDO1mYn2Doe4qXHe2boHkie3Ww0X//dOjNrhuar8K 0LaznDW/6fJemo54WpE5m8M4CyH0PUdiV76Qlv3mxYksXOrhefDJEqyz2GchT39f JE5+JM2inHK5yJHii1zFc2kjM4CtSSJdrGOheKHuYvJBt+B5B+sCAk+IjEtMK5hX 9o46ruHFgSBi9Xfsk6GimH1HOjj82sX14D41GbHBlIc8dOChcGUHD2qd3BYCHvU3 qeoOfI8dZPAiM9viNQZ5bRm5jp8VXocpiXy6/JDUhbyD44Ys/nYKv+Nb0Q== -----END CERTIFICATE-----Generated at Sat Apr 26 12:51:58 2025 by rpki-client