$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3ae1ba2b-193c-40d3-9ad5-7e6126ae6f18.roa File: 3ae1ba2b-193c-40d3-9ad5-7e6126ae6f18.roa (raw, json) Hash identifier: p1Yy6EIb4ZsD3dC8UY/Zk9ashnDt4kwi1ITAnBx9OE4= Subject key identifier: 33:C3:71:32:12:75:5F:D3:F3:CF:78:18:10:B9:53:DF:88:CA:F2:C4 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 788312295B5B2C83A75F75902BDBA8A9EB5255EA Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3ae1ba2b-193c-40d3-9ad5-7e6126ae6f18.roa Signing time: Fri 25 Apr 2025 16:00:24 +0000 ROA not before: Fri 25 Apr 2025 16:00:24 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.248.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:83:12:29:5b:5b:2c:83:a7:5f:75:90:2b:db:a8:a9:eb:52:55:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 25 16:00:24 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=bb4c87601ddfea16df418ad91cde17ada003f8e93abcb0ee23d4e21c7daf1c55, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:e2:40:e7:da:e9:cf:49:7f:93:8a:c2:3e:68: 38:97:5b:4a:09:f2:ab:c1:8b:0e:e1:05:1e:63:73: 82:73:f4:3b:11:3d:60:ce:73:8d:04:9b:c1:90:d6: ff:92:92:35:0e:f0:6f:5f:53:c6:5a:60:44:1b:25: 2a:90:c2:a8:46:9e:f8:07:8b:c3:a6:76:b5:7b:be: 90:5f:1c:73:3f:d3:ad:de:80:d2:e0:e9:50:9d:9a: 2f:af:6c:a9:40:e1:f9:88:b9:7d:20:9b:74:3f:5f: e3:20:ab:28:69:6f:1f:2a:af:7f:dd:c4:8e:68:3f: dc:30:44:20:24:78:5c:f2:99:23:7d:7c:da:f7:ba: 75:33:eb:c7:d3:ba:76:10:21:b5:02:74:52:e1:04: 3a:50:20:61:fb:05:51:71:73:59:59:66:1c:55:44: a1:fa:d2:aa:66:d1:14:74:ab:4e:71:ac:88:00:43: 57:94:44:b6:ab:52:e3:ee:a3:51:7d:2d:02:75:8e: 56:ce:02:d6:9b:6c:7e:82:2c:6c:0e:eb:00:d2:1d: 33:c3:f7:cc:67:71:f7:f9:ef:fe:ee:1a:bd:2f:1b: 03:cb:6a:ca:1c:4b:9a:bd:77:16:6d:37:0e:22:a2: ce:22:f0:a7:f6:dd:3e:ac:e8:86:74:27:65:4e:49: 26:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:C3:71:32:12:75:5F:D3:F3:CF:78:18:10:B9:53:DF:88:CA:F2:C4 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3ae1ba2b-193c-40d3-9ad5-7e6126ae6f18.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.248.115.0/24 Signature Algorithm: sha256WithRSAEncryption 32:b0:22:0e:9d:ee:a6:4b:30:9f:47:e7:c4:c9:ac:b7:cf:ba: 64:4a:ea:2b:1e:0e:72:ee:00:e4:06:27:99:39:72:8e:50:d4: 58:bf:c0:ee:ad:8d:df:a2:ee:df:ea:c3:57:b5:32:b5:b6:20: 55:73:38:dc:6f:43:bd:33:19:57:35:8b:aa:94:65:48:f5:90: f1:5c:b4:f7:af:ab:e1:88:75:0d:bf:f5:64:ee:77:fa:0b:74: b5:ae:4b:17:00:f7:b6:95:e4:7a:59:35:35:e4:3e:63:4a:04: 41:3b:4c:b0:89:7a:c1:d7:3b:1d:90:64:af:6c:b9:c2:c6:f7: a7:ce:cb:88:81:6b:15:e8:6b:e2:2e:87:c7:0a:d4:1c:34:74: 51:30:c5:ad:11:60:83:63:17:a8:1b:51:20:30:a3:e1:de:8e: 48:e8:09:43:ac:94:55:9a:71:52:25:fe:c1:1b:95:93:51:ce: ca:97:51:7c:2a:c9:8e:58:d9:30:21:18:81:95:d5:6e:27:c0: 39:ea:66:5d:76:52:b0:14:09:c9:fa:82:fa:bc:b8:55:3d:fb: a6:bf:f6:5f:31:07:e4:5d:4d:ac:0c:f7:53:44:15:88:cb:52: ff:53:54:26:ca:65:22:a6:7c:49:09:90:f3:1f:26:98:ec:c8: d3:4c:e4:08 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeIMSKVtbLIOnX3WQK9uoqetSVeowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDI1MTYwMDI0WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYjRjODc2MDFkZGZlYTE2ZGY0MThhZDkxY2RlMTdhZGEw MDNmOGU5M2FiY2IwZWUyM2Q0ZTIxYzdkYWYxYzU1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCM4kDn2unPSX+TisI+aDiXW0oJ8qvBiw7hBR5jc4Jz9DsR PWDOc40Em8GQ1v+SkjUO8G9fU8ZaYEQbJSqQwqhGnvgHi8OmdrV7vpBfHHM/063e gNLg6VCdmi+vbKlA4fmIuX0gm3Q/X+Mgqyhpbx8qr3/dxI5oP9wwRCAkeFzymSN9 fNr3unUz68fTunYQIbUCdFLhBDpQIGH7BVFxc1lZZhxVRKH60qpm0RR0q05xrIgA Q1eURLarUuPuo1F9LQJ1jlbOAtabbH6CLGwO6wDSHTPD98xncff57/7uGr0vGwPL asocS5q9dxZtNw4ios4i8Kf23T6s6IZ0J2VOSSZlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUM8NxMhJ1X9Pzz3gYELlT34jK8sQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzNhZTFiYTJiLTE5M2MtNDBkMy05YWQ1LTdlNjEyNmFlNmYxOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAP+HMwDQYJKoZIhvcNAQELBQADggEBADKwIg6d7qZLMJ9H58TJrLfPumRK 6iseDnLuAOQGJ5k5co5Q1Fi/wO6tjd+i7t/qw1e1MrW2IFVzONxvQ70zGVc1i6qU ZUj1kPFctPevq+GIdQ2/9WTud/oLdLWuSxcA97aV5HpZNTXkPmNKBEE7TLCJesHX Ox2QZK9sucLG96fOy4iBaxXoa+Iuh8cK1Bw0dFEwxa0RYINjF6gbUSAwo+Hejkjo CUOslFWacVIl/sEblZNRzsqXUXwqyY5Y2TAhGIGV1W4nwDnqZl12UrAUCcn6gvq8 uFU9+6a/9l8xB+RdTawM91NEFYjLUv9TVCbKZSKmfEkJkPMfJpjsyNNM5Ag= -----END CERTIFICATE-----Generated at Sat Apr 26 12:48:08 2025 by rpki-client