$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3e289b8b-2eb3-4694-a4fc-e8ce7237fbd6.roa File: 3e289b8b-2eb3-4694-a4fc-e8ce7237fbd6.roa (raw, json) Hash identifier: shdhf9Z+yLYxq4CSN0rU47oFY7k+3J3jG6CJ5OaTEyk= Subject key identifier: 18:F4:4D:D0:DD:DC:F6:3E:12:05:1F:6A:AC:4A:A3:44:4F:FC:7B:D7 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 60AD6278C4A7ED2F77E860ACEEF2526BE544B4FC Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3e289b8b-2eb3-4694-a4fc-e8ce7237fbd6.roa Signing time: Fri 25 Apr 2025 16:20:09 +0000 ROA not before: Fri 25 Apr 2025 16:20:09 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.141.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:ad:62:78:c4:a7:ed:2f:77:e8:60:ac:ee:f2:52:6b:e5:44:b4:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 25 16:20:09 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=7d40472a94b6859eb50ca2a40241f1d83fdedfc9000c66e6f2c48de1ef71ef80, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e5:51:3f:70:4c:f2:b8:25:f0:07:3a:ef:f4: 6a:7d:1f:84:20:6d:ff:02:d6:20:6b:27:6e:98:d8: 3a:cb:c6:7a:af:51:e6:3d:51:06:ab:37:3e:f0:3b: fa:c9:d3:98:e5:b9:8a:a2:9c:e1:a6:fd:f8:f7:6d: 5e:74:ad:51:80:df:55:e0:b9:12:a4:72:b1:b0:27: 64:a4:5a:d5:ce:49:dc:33:72:21:c0:a8:ce:25:53: 9f:c3:3c:91:ec:d5:21:f6:91:98:13:8d:db:06:1c: 53:6f:fc:64:ec:18:68:c3:b2:67:90:39:be:8b:b8: 4f:c7:3f:0f:ef:92:b7:03:33:81:da:98:55:7a:bf: d0:d3:df:20:6b:a3:7a:5e:74:ed:b2:62:68:13:f0: 93:c5:91:b4:e8:ee:58:16:7f:92:03:92:0c:d1:c0: c4:c9:80:bb:a1:c9:04:e7:dd:bc:5f:22:95:94:ae: 5b:9e:81:4a:29:93:65:a9:9a:5a:d5:46:1b:4d:20: 77:a4:a6:ea:31:0d:a1:3b:f2:e8:6c:c8:46:d6:e2: 60:55:88:e1:43:7b:93:0a:ea:35:f9:53:c7:2b:c0: ae:4e:2c:f0:0a:53:5f:39:a2:e8:76:29:dc:b1:b4: 50:07:34:ba:86:f1:47:f7:23:b4:ef:13:0b:87:57: 8b:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:F4:4D:D0:DD:DC:F6:3E:12:05:1F:6A:AC:4A:A3:44:4F:FC:7B:D7 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3e289b8b-2eb3-4694-a4fc-e8ce7237fbd6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.141.170.0/24 Signature Algorithm: sha256WithRSAEncryption 95:d3:37:2f:e4:1a:e7:53:a9:f5:ff:b7:d3:95:96:6f:4b:46: ad:a6:ef:b0:b2:26:37:be:ee:2f:87:14:a6:92:28:e2:68:84: 18:f3:1c:5a:cb:24:e5:24:21:46:7b:42:56:66:26:9a:d9:e1: c8:4b:3e:ba:b3:2c:af:27:87:42:09:4a:5d:98:77:d3:89:f7: 2d:d6:98:ac:6b:5c:3e:0a:ba:90:b8:e5:d8:91:5d:5a:a0:a6: a1:ba:ed:9b:e5:3b:e3:53:8f:00:85:5f:54:43:ac:09:10:fe: 16:36:31:45:3a:53:c7:15:8e:d7:85:03:29:52:dd:45:d3:20: 02:40:dd:0a:43:c5:af:e4:00:cb:d3:e7:cd:ec:db:de:b3:98: 0f:b1:fd:31:cf:6e:97:bd:0d:f0:c1:55:7b:20:df:bf:6d:a2: 39:f3:ba:08:d9:44:4f:82:ba:fc:d5:9a:5e:a8:c7:82:85:32: 0e:5a:19:0b:d4:5c:39:33:33:54:61:f9:84:84:c3:6c:a7:92: 7e:54:68:6d:4d:ba:da:fc:57:de:8a:b2:e2:89:f5:ea:4f:18: d4:2a:3a:6b:c5:44:a1:c4:26:ee:0d:3c:74:e8:cd:12:e1:83: 88:fb:cd:f6:11:3d:cc:a4:01:8c:ba:7f:72:09:68:c2:88:62: f8:4a:d2:5c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYK1ieMSn7S936GCs7vJSa+VEtPwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDI1MTYyMDA5WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZDQwNDcyYTk0YjY4NTllYjUwY2EyYTQwMjQxZjFkODNm ZGVkZmM5MDAwYzY2ZTZmMmM0OGRlMWVmNzFlZjgwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCi5VE/cEzyuCXwBzrv9Gp9H4Qgbf8C1iBrJ26Y2DrLxnqv UeY9UQarNz7wO/rJ05jluYqinOGm/fj3bV50rVGA31XguRKkcrGwJ2SkWtXOSdwz ciHAqM4lU5/DPJHs1SH2kZgTjdsGHFNv/GTsGGjDsmeQOb6LuE/HPw/vkrcDM4Ha mFV6v9DT3yBro3pedO2yYmgT8JPFkbTo7lgWf5IDkgzRwMTJgLuhyQTn3bxfIpWU rluegUopk2WpmlrVRhtNIHekpuoxDaE78uhsyEbW4mBViOFDe5MK6jX5U8crwK5O LPAKU185ouh2KdyxtFAHNLqG8Uf3I7TvEwuHV4t/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGPRN0N3c9j4SBR9qrEqjRE/8e9cwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzNlMjg5YjhiLTJlYjMtNDY5NC1hNGZjLWU4Y2U3MjM3ZmJkNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASjaowDQYJKoZIhvcNAQELBQADggEBAJXTNy/kGudTqfX/t9OVlm9LRq2m 77CyJje+7i+HFKaSKOJohBjzHFrLJOUkIUZ7QlZmJprZ4chLPrqzLK8nh0IJSl2Y d9OJ9y3WmKxrXD4KupC45diRXVqgpqG67ZvlO+NTjwCFX1RDrAkQ/hY2MUU6U8cV jteFAylS3UXTIAJA3QpDxa/kAMvT583s296zmA+x/THPbpe9DfDBVXsg379tojnz ugjZRE+CuvzVml6ox4KFMg5aGQvUXDkzM1Rh+YSEw2ynkn5UaG1Nutr8V96KsuKJ 9epPGNQqOmvFRKHEJu4NPHTozRLhg4j7zfYRPcykAYy6f3IJaMKIYvhK0lw= -----END CERTIFICATE-----Generated at Sat Apr 26 12:48:03 2025 by rpki-client