$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/380eee99-99c9-4ca5-95e3-d588e1af6898.roa File: 380eee99-99c9-4ca5-95e3-d588e1af6898.roa (raw, json) Hash identifier: //80f/kt3PgT//bFgq0c1XV7O4SRLMVoJ4hqP7pUUWc= Subject key identifier: FF:DD:08:5C:4E:34:A6:C6:FD:E4:46:CD:08:FB:BE:BF:8F:5D:48:EF Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 04FD70A557A14439BA4279CF47B27707202314F1 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/380eee99-99c9-4ca5-95e3-d588e1af6898.roa Signing time: Fri 25 Apr 2025 15:50:05 +0000 ROA not before: Fri 25 Apr 2025 15:50:05 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.114.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:fd:70:a5:57:a1:44:39:ba:42:79:cf:47:b2:77:07:20:23:14:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 25 15:50:05 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=13e8de2e8b98c4b84841ae3b2608b1267b46569ae7a789a618dd3102dcf675c7, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:11:83:55:c1:21:b4:2f:5a:20:13:62:95:88: 84:72:5c:a7:55:45:9c:ed:62:c5:d5:c3:35:49:ff: 35:57:b3:15:c4:c4:41:9f:e9:f0:7d:57:10:ea:75: b8:b9:91:ea:56:19:ab:35:e0:38:4f:f3:f3:69:f3: bf:33:ba:09:05:ba:86:00:52:e4:c3:7b:c4:57:9f: 60:cb:c8:d0:57:e6:5a:01:64:97:04:27:1d:9b:73: 87:4b:5e:22:8e:de:1c:35:84:c4:71:e8:f9:2e:d6: 10:3e:df:0c:da:40:fe:c6:fa:f1:15:95:83:65:09: 9c:5a:05:01:3f:b0:75:b9:23:1c:51:96:ae:14:e0: 9e:95:b1:33:8c:78:e6:6f:6c:73:e4:e0:16:47:fc: fa:90:03:dd:05:06:60:df:b3:e3:b0:c8:6a:39:1a: e7:39:a9:cb:63:07:f0:79:0b:13:6f:b6:2e:73:8a: 2e:93:70:df:0d:da:19:6f:af:c2:ab:6b:27:79:c6: 57:71:a8:8d:45:fa:65:fa:2a:ad:f1:bf:c9:70:b2: 95:5d:a2:66:51:8f:ef:f2:85:73:5a:9f:89:1f:3e: 80:12:83:0c:67:41:4e:46:ee:75:31:a6:73:9d:69: c7:32:bc:5a:09:32:8e:a1:1c:cb:b8:f0:48:d0:7c: 17:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:DD:08:5C:4E:34:A6:C6:FD:E4:46:CD:08:FB:BE:BF:8F:5D:48:EF X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/380eee99-99c9-4ca5-95e3-d588e1af6898.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.114.192.0/18 Signature Algorithm: sha256WithRSAEncryption 3e:ce:97:60:b3:c4:06:88:0a:1b:00:52:da:1a:03:94:e6:db: f7:c2:1b:e5:b0:51:22:05:72:ad:bd:8c:fd:db:b0:9e:2f:55: b4:91:eb:4a:c6:d3:1b:d7:d3:9c:9d:e6:81:e4:02:17:75:6d: 4c:21:e4:b6:b8:63:ec:77:7c:da:81:d3:bf:73:bc:50:f7:15: 3f:e9:17:57:b3:37:51:af:b1:24:e4:eb:62:e4:14:57:a1:9e: 20:e6:de:94:bb:41:2b:e0:56:dd:6c:5c:73:64:96:41:87:3d: fb:b6:35:bd:b2:2b:5b:1f:11:b5:03:a6:97:a1:1b:f4:5f:ed: c2:83:8c:18:20:83:10:7e:fe:bc:94:c0:8c:0a:85:b9:d6:c6: ba:68:9e:d5:62:38:97:92:01:a7:1a:cf:2f:e9:9b:78:df:eb: 1a:e2:8b:a1:fd:3c:04:34:a4:65:70:2b:09:ea:f9:78:fa:35: 0e:21:be:f5:5d:50:d1:ac:09:89:b8:55:8e:51:41:b8:43:c9: 47:bd:fa:f2:6c:3b:42:7d:4e:3f:a5:f2:cc:ae:63:0b:b2:22: ee:5e:ae:63:7f:f9:8d:88:39:22:a8:96:3f:37:39:eb:61:12: 55:52:66:e2:dc:13:04:a8:25:a8:b7:55:01:aa:c0:d9:0c:b2: 77:45:a4:c0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBP1wpVehRDm6QnnPR7J3ByAjFPEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDI1MTU1MDA1WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxM2U4ZGUyZThiOThjNGI4NDg0MWFlM2IyNjA4YjEyNjdi NDY1NjlhZTdhNzg5YTYxOGRkMzEwMmRjZjY3NWM3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDaEYNVwSG0L1ogE2KViIRyXKdVRZztYsXVwzVJ/zVXsxXE xEGf6fB9VxDqdbi5kepWGas14DhP8/Np878zugkFuoYAUuTDe8RXn2DLyNBX5loB ZJcEJx2bc4dLXiKO3hw1hMRx6Pku1hA+3wzaQP7G+vEVlYNlCZxaBQE/sHW5IxxR lq4U4J6VsTOMeOZvbHPk4BZH/PqQA90FBmDfs+OwyGo5Guc5qctjB/B5CxNvti5z ii6TcN8N2hlvr8Krayd5xldxqI1F+mX6Kq3xv8lwspVdomZRj+/yhXNan4kfPoAS gwxnQU5G7nUxpnOdaccyvFoJMo6hHMu48EjQfBenAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/90IXE40psb95EbNCPu+v49dSO8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzM4MGVlZTk5LTk5YzktNGNhNS05NWUzLWQ1ODhlMWFmNjg5OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYNcsAwDQYJKoZIhvcNAQELBQADggEBAD7Ol2CzxAaIChsAUtoaA5Tm2/fC G+WwUSIFcq29jP3bsJ4vVbSR60rG0xvX05yd5oHkAhd1bUwh5La4Y+x3fNqB079z vFD3FT/pF1ezN1GvsSTk62LkFFehniDm3pS7QSvgVt1sXHNklkGHPfu2Nb2yK1sf EbUDppehG/Rf7cKDjBgggxB+/ryUwIwKhbnWxrpontViOJeSAacazy/pm3jf6xri i6H9PAQ0pGVwKwnq+Xj6NQ4hvvVdUNGsCYm4VY5RQbhDyUe9+vJsO0J9Tj+l8syu YwuyIu5ermN/+Y2IOSKolj83OethElVSZuLcEwSoJai3VQGqwNkMsndFpMA= -----END CERTIFICATE-----Generated at Sat Apr 26 20:50:34 2025 by rpki-client