$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/37a22513-4fd4-4a36-ac5b-6fef6b888edc.roa File: 37a22513-4fd4-4a36-ac5b-6fef6b888edc.roa (raw, json) Hash identifier: /a+saKx3q+n8/pBedw0Ab61qpVKZObzfna/bXUje1ac= Subject key identifier: 99:DB:53:DF:11:C3:97:55:74:6D:BE:6E:2C:EF:BA:0E:91:28:17:84 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1E3D50B35EFF6583073A11CFF7FC0749C29B8BB9 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/37a22513-4fd4-4a36-ac5b-6fef6b888edc.roa Signing time: Mon 14 Apr 2025 17:10:14 +0000 ROA not before: Mon 14 Apr 2025 17:10:14 +0000 ROA not after: Mon 19 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.179.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:3d:50:b3:5e:ff:65:83:07:3a:11:cf:f7:fc:07:49:c2:9b:8b:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 14 17:10:14 2025 GMT Not After : May 19 23:59:59 2025 GMT Subject: serialNumber=e50618692d4a7dbc78925211b61f33b88ceef55fe99312da361689b03569c2ab, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:89:4d:72:49:32:51:4c:84:46:6e:76:c3:4f: 5c:e5:a6:f6:4e:cf:ce:e0:5b:85:97:1d:96:9e:c2: 0c:28:db:ae:b3:90:31:3c:11:d9:9c:6a:ca:2a:44: cd:65:41:d7:39:7c:73:14:8a:c2:43:0b:42:fc:24: c7:1f:18:f9:3b:46:7d:54:c5:64:62:2d:97:94:3a: 0d:4c:38:01:27:50:5a:db:79:3c:7f:ae:26:aa:f3: 37:54:a7:82:24:7a:54:57:95:b1:74:c2:4a:57:9d: 6b:b1:2d:c6:40:7d:bb:3d:a9:30:12:d0:78:f5:7b: 9c:6e:cc:21:dc:9b:d1:95:a3:f8:3b:fd:a5:f8:de: 5a:58:9b:e7:08:46:ed:d8:40:36:3a:d7:d8:3e:b5: f3:c8:8d:5d:83:fe:80:7e:1c:0e:2c:55:26:dd:9f: a7:07:49:93:d3:84:d4:b5:f7:cd:a3:45:9a:2c:16: c1:96:29:ec:1f:9b:d3:e4:e1:ab:e7:6a:63:35:12: 3c:9d:8b:81:11:1c:d1:13:ac:8d:83:2c:f3:4b:66: 86:e8:ba:c0:21:36:1a:3f:02:43:64:36:13:82:49: 94:91:86:24:fe:aa:f9:72:e1:39:b5:9c:c9:49:bb: bd:a7:fb:31:1d:1f:22:0d:17:89:90:fb:48:a8:40: 60:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:DB:53:DF:11:C3:97:55:74:6D:BE:6E:2C:EF:BA:0E:91:28:17:84 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/37a22513-4fd4-4a36-ac5b-6fef6b888edc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.179.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5c:8c:88:3c:24:ab:72:35:fb:49:84:5a:d3:69:45:92:dc:23: 43:15:eb:3f:99:59:34:91:e0:3f:88:81:34:28:6d:0d:86:86: 46:f9:98:4a:97:3a:aa:da:b2:fb:ca:43:68:91:c9:8e:9e:ee: 4c:66:c3:90:19:a0:67:bb:84:30:54:57:e8:5a:9b:82:cd:87: 2e:a5:68:dc:d6:3b:60:d6:6c:74:a8:b1:96:5b:4c:0a:45:10: e0:07:db:d1:48:26:7b:7f:60:cb:90:d0:01:fe:5f:ae:58:90: 38:58:35:c1:e9:1d:38:8c:69:14:d0:7d:c9:0a:62:65:87:e2: ed:b1:93:29:47:2a:db:85:81:b3:20:63:57:2d:b9:2c:0c:2f: a8:ac:09:d2:06:a8:c8:fd:78:f7:43:cc:30:e9:91:f1:ef:a5: bc:16:15:02:ad:ad:ce:02:5e:ad:fe:ee:56:6d:ba:ef:89:d2: 60:7a:08:94:3d:42:2c:40:72:0f:2c:2c:90:42:cc:ed:b5:37: 98:2d:3a:d6:e5:ea:48:1c:81:31:3f:b6:13:a3:7b:34:05:c0: 1d:6d:44:a2:c2:c0:d8:3d:5f:51:55:ac:98:ad:5b:38:a7:a0: 87:f4:31:d9:99:0f:8c:01:cf:68:6c:da:04:8f:fa:92:a9:4e: 9f:d2:1d:04 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHj1Qs17/ZYMHOhHP9/wHScKbi7kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE0MTcxMDE0WhcNMjUwNTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNTA2MTg2OTJkNGE3ZGJjNzg5MjUyMTFiNjFmMzNiODhj ZWVmNTVmZTk5MzEyZGEzNjE2ODliMDM1NjljMmFiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCPiU1ySTJRTIRGbnbDT1zlpvZOz87gW4WXHZaewgwo266z kDE8EdmcasoqRM1lQdc5fHMUisJDC0L8JMcfGPk7Rn1UxWRiLZeUOg1MOAEnUFrb eTx/riaq8zdUp4IkelRXlbF0wkpXnWuxLcZAfbs9qTAS0Hj1e5xuzCHcm9GVo/g7 /aX43lpYm+cIRu3YQDY619g+tfPIjV2D/oB+HA4sVSbdn6cHSZPThNS1982jRZos FsGWKewfm9Pk4avnamM1Ejydi4ERHNETrI2DLPNLZobousAhNho/AkNkNhOCSZSR hiT+qvly4Tm1nMlJu72n+zEdHyINF4mQ+0ioQGCpAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUmdtT3xHDl1V0bb5uLO+6DpEoF4QwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzM3YTIyNTEzLTRmZDQtNGEzNi1hYzViLTZmZWY2Yjg4OGVkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2szANBgkqhkiG9w0BAQsFAAOCAQEAXIyIPCSrcjX7SYRa02lFktwjQxXr P5lZNJHgP4iBNChtDYaGRvmYSpc6qtqy+8pDaJHJjp7uTGbDkBmgZ7uEMFRX6Fqb gs2HLqVo3NY7YNZsdKixlltMCkUQ4Afb0Ugme39gy5DQAf5frliQOFg1wekdOIxp FNB9yQpiZYfi7bGTKUcq24WBsyBjVy25LAwvqKwJ0gaoyP1490PMMOmR8e+lvBYV Aq2tzgJerf7uVm2674nSYHoIlD1CLEByDywskELM7bU3mC061uXqSByBMT+2E6N7 NAXAHW1EosLA2D1fUVWsmK1bOKegh/Qx2ZkPjAHPaGzaBI/6kqlOn9IdBA== -----END CERTIFICATE-----Generated at Sat Apr 26 14:46:55 2025 by rpki-client