$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4524df21-4ec7-4287-b1ee-e4f4bf219d5c.roa File: 4524df21-4ec7-4287-b1ee-e4f4bf219d5c.roa (raw, json) Hash identifier: 0N2A6qyFkYpEEpU94Cjd+bEjKUH0BKfdhljvlPf+kqc= Subject key identifier: 3B:1E:04:22:DD:44:52:39:99:58:F9:F1:30:77:F0:C6:9E:23:03:3D Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 730B22091F057F9B6C79D6AF9C56888E49E7C931 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4524df21-4ec7-4287-b1ee-e4f4bf219d5c.roa Signing time: Fri 25 Apr 2025 15:31:49 +0000 ROA not before: Fri 25 Apr 2025 15:31:49 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.168.96.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:0b:22:09:1f:05:7f:9b:6c:79:d6:af:9c:56:88:8e:49:e7:c9:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 25 15:31:49 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=12ed2a16e887573a58e6f103c3de4c75fa333d26531688002fff21c3fd6c78fd, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:7c:c6:09:1a:fb:f8:28:d8:a0:24:9c:d5:34: 4e:2a:d0:9f:2b:df:64:52:e3:9b:54:0d:88:e8:2f: 9a:04:0a:3e:da:79:12:33:b8:bd:67:8d:4a:64:38: 62:82:cb:2f:7e:4a:ed:6c:90:08:58:84:2c:49:7b: db:ee:6d:aa:20:30:ce:14:e8:e4:08:79:b2:ff:f6: 73:c3:56:6b:0f:10:37:82:3e:6c:c5:24:61:0e:52: c7:81:f5:e2:30:03:97:ba:61:cf:86:2d:81:d4:b6: 97:60:37:f3:d9:27:a2:51:f9:c0:27:ce:51:f7:16: 62:45:73:17:95:0f:17:19:4f:aa:8c:3d:c4:37:f7: 80:3f:49:95:a4:e9:09:e6:52:ad:9e:68:de:9b:b4: 23:a6:2b:27:50:c1:ae:62:77:4a:2f:c9:de:e5:84: 92:63:93:5d:d1:80:6e:9e:ab:db:0f:7c:3d:f9:a5: a7:1c:cf:0c:d5:b3:f9:0b:59:dd:f9:5b:8f:af:ca: 10:d9:65:44:04:5a:c8:ba:ee:ef:aa:2e:ec:49:2c: ac:57:55:77:37:50:6d:01:2d:d8:65:81:82:2f:c5: 08:88:64:58:96:25:aa:02:4f:9f:10:4c:21:69:8f: 8e:e5:8e:76:9b:fb:0a:9c:1a:fc:73:fe:b9:5d:3b: f0:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:1E:04:22:DD:44:52:39:99:58:F9:F1:30:77:F0:C6:9E:23:03:3D X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4524df21-4ec7-4287-b1ee-e4f4bf219d5c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.168.96.0/22 Signature Algorithm: sha256WithRSAEncryption a7:d7:aa:8c:dd:35:4a:38:1f:d0:11:69:89:06:f2:25:47:e9: c6:7e:1f:3d:0c:fa:14:96:3f:8f:6b:63:29:f3:6e:78:44:ea: a1:1e:40:98:5d:f1:fa:36:7c:44:fb:a3:c1:58:e5:dc:d2:38: 41:d7:ef:30:be:4c:85:78:3f:ad:d0:28:db:ed:26:6d:fa:e9: 4d:02:c6:a8:fe:fa:d1:42:3c:f8:dc:52:14:e5:22:b2:bf:54: 36:7d:eb:f7:cc:2d:52:47:b7:e8:83:cd:05:b3:b5:94:f2:8b: 83:8c:d7:28:b6:d7:c3:b3:ad:c2:fa:ce:7c:bf:16:ae:21:03: 4c:2a:ce:af:0b:03:ea:be:64:05:d4:b0:eb:5f:d3:09:94:94: 4f:80:ef:09:e4:20:24:80:f1:d0:4f:15:0d:35:34:2d:1f:36: 5b:30:98:6c:0c:f7:b8:f6:c7:98:06:f2:d2:35:ad:c3:39:7b: 65:8c:15:55:ca:3e:ad:a8:24:2e:e8:3f:54:4d:2c:0f:4a:d6: bb:a4:3a:04:40:37:ed:58:6c:d4:21:59:98:a7:09:27:43:70: 24:6d:45:b7:99:4a:52:c9:e0:7d:bc:57:61:fc:84:7a:d4:c7: 31:f6:77:2b:ce:56:14:90:c7:f1:45:9d:3a:24:24:d0:ca:be: e1:86:fd:fd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcwsiCR8Ff5tsedavnFaIjknnyTEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDI1MTUzMTQ5WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMmVkMmExNmU4ODc1NzNhNThlNmYxMDNjM2RlNGM3NWZh MzMzZDI2NTMxNjg4MDAyZmZmMjFjM2ZkNmM3OGZkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCOfMYJGvv4KNigJJzVNE4q0J8r32RS45tUDYjoL5oECj7a eRIzuL1njUpkOGKCyy9+Su1skAhYhCxJe9vubaogMM4U6OQIebL/9nPDVmsPEDeC PmzFJGEOUseB9eIwA5e6Yc+GLYHUtpdgN/PZJ6JR+cAnzlH3FmJFcxeVDxcZT6qM PcQ394A/SZWk6QnmUq2eaN6btCOmKydQwa5id0ovyd7lhJJjk13RgG6eq9sPfD35 pacczwzVs/kLWd35W4+vyhDZZUQEWsi67u+qLuxJLKxXVXc3UG0BLdhlgYIvxQiI ZFiWJaoCT58QTCFpj47ljnab+wqcGvxz/rldO/BlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOx4EIt1EUjmZWPnxMHfwxp4jAz0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQ1MjRkZjIxLTRlYzctNDI4Ny1iMWVlLWU0ZjRiZjIxOWQ1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIPqGAwDQYJKoZIhvcNAQELBQADggEBAKfXqozdNUo4H9ARaYkG8iVH6cZ+ Hz0M+hSWP49rYynzbnhE6qEeQJhd8fo2fET7o8FY5dzSOEHX7zC+TIV4P63QKNvt Jm366U0Cxqj++tFCPPjcUhTlIrK/VDZ96/fMLVJHt+iDzQWztZTyi4OM1yi218Oz rcL6zny/Fq4hA0wqzq8LA+q+ZAXUsOtf0wmUlE+A7wnkICSA8dBPFQ01NC0fNlsw mGwM97j2x5gG8tI1rcM5e2WMFVXKPq2oJC7oP1RNLA9K1rukOgRAN+1YbNQhWZin CSdDcCRtRbeZSlLJ4H28V2H8hHrUxzH2dyvOVhSQx/FFnTokJNDKvuGG/f0= -----END CERTIFICATE-----Generated at Sat Apr 26 18:28:43 2025 by rpki-client