$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/478d6452-7f3d-4b30-8946-9237c1b66731.roa File: 478d6452-7f3d-4b30-8946-9237c1b66731.roa (raw, json) Hash identifier: hQu5cTZEBm6ZXn8GBejeejtv+iJ9OI3ASQ09pv8Y3JE= Subject key identifier: AB:C6:B3:B2:C0:3C:1B:53:DB:1A:2A:29:57:17:31:07:DC:ED:A0:3B Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 226FE50CE3C2CD8B4071E7CB305608B4689F1C31 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/478d6452-7f3d-4b30-8946-9237c1b66731.roa Signing time: Fri 25 Apr 2025 16:21:22 +0000 ROA not before: Fri 25 Apr 2025 16:21:22 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.100.74.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:6f:e5:0c:e3:c2:cd:8b:40:71:e7:cb:30:56:08:b4:68:9f:1c:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 25 16:21:22 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=90205b791fbbc7c6e6d1d15e7f40e75b8dd503cca0dba65a4832b5b2455bc17b, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:90:bc:a3:3e:e6:08:71:34:ed:04:69:02:12: ea:08:da:8e:a4:a1:30:a4:39:bb:7e:18:2a:61:cb: 8c:13:28:f7:90:bd:4d:67:1f:2a:0f:c8:ae:6b:68: ff:9b:9c:c6:34:a2:00:20:40:7c:0f:e4:8f:ea:28: 8c:8b:63:2b:e5:54:ca:1d:d4:65:cc:84:7a:21:65: a6:1e:73:1e:a2:d0:a9:dc:16:97:aa:dc:67:e4:e8: 50:ef:c0:d4:e5:d4:dd:ed:39:ab:29:39:b4:ea:ec: d5:8e:22:8f:5c:8f:6e:7f:28:1d:3c:bb:7e:a8:24: 78:9c:10:74:ae:a3:09:c9:a4:22:4b:d5:19:f3:2a: 56:cf:29:9e:3c:fb:d9:50:07:40:d4:19:ef:68:01: 69:f8:92:d0:27:6f:56:3b:01:8f:21:ae:8d:5a:d4: b6:a3:70:bd:a1:8b:da:53:eb:9d:0f:e7:df:4e:ea: 13:4f:63:53:2e:48:20:20:d4:bf:fc:26:bb:aa:85: 0f:60:62:0f:46:83:f6:83:d8:aa:00:56:17:2f:75: d7:56:d9:ec:89:12:36:85:3e:83:02:a3:2b:c7:28: 5c:d6:52:5f:c0:77:c4:3b:76:59:72:98:9e:33:c3: ad:04:db:c0:a5:1e:69:72:46:19:58:0a:f6:ba:3f: 6d:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:C6:B3:B2:C0:3C:1B:53:DB:1A:2A:29:57:17:31:07:DC:ED:A0:3B X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/478d6452-7f3d-4b30-8946-9237c1b66731.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.100.74.0/23 Signature Algorithm: sha256WithRSAEncryption 39:25:8a:79:29:72:9e:7d:4c:51:ae:39:28:ca:98:f5:fd:fd: 05:24:67:79:5a:1e:fc:1c:28:ca:8c:53:9a:cb:c5:a6:82:b4: 45:41:1e:a9:71:53:63:3f:bc:76:57:4e:b7:a2:93:03:3e:b0: a0:03:1d:f4:67:32:7a:64:87:48:f5:7c:3e:1d:08:3f:f5:25: 21:37:b0:5d:1b:1e:44:d9:9b:df:0f:9a:d5:35:63:dc:90:ed: d2:7e:bd:c4:83:2f:8a:ea:b4:b8:b2:d0:00:eb:77:0f:fa:d7: 1b:2e:b8:83:9a:39:e7:16:36:fd:cf:6b:31:2b:91:64:d5:d8: 8b:f2:3c:e5:d3:5a:fb:4c:c6:52:07:38:15:85:df:75:72:30: 74:7d:81:99:9d:ed:1d:f4:f5:d0:15:ef:1a:96:e8:ee:69:d8: 4e:f2:ee:34:c8:84:fe:d8:42:d4:91:57:ce:3e:cf:5e:7e:b0: d0:0c:46:39:18:c6:ea:d7:76:74:ea:a0:56:09:19:87:d2:69: 39:ab:ae:29:2a:f8:f6:89:46:77:7a:2d:d0:48:14:bd:a5:53: d6:99:5d:52:ad:a3:61:55:c2:de:94:1e:e2:17:4c:3e:3d:dc: 24:84:fc:56:7c:54:45:08:f5:4b:fd:6b:ba:68:f7:c9:d5:c0: 44:2a:65:f9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIm/lDOPCzYtAcefLMFYItGifHDEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDI1MTYyMTIyWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MDIwNWI3OTFmYmJjN2M2ZTZkMWQxNWU3ZjQwZTc1Yjhk ZDUwM2NjYTBkYmE2NWE0ODMyYjViMjQ1NWJjMTdiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCckLyjPuYIcTTtBGkCEuoI2o6koTCkObt+GCphy4wTKPeQ vU1nHyoPyK5raP+bnMY0ogAgQHwP5I/qKIyLYyvlVMod1GXMhHohZaYecx6i0Knc Fpeq3Gfk6FDvwNTl1N3tOaspObTq7NWOIo9cj25/KB08u36oJHicEHSuownJpCJL 1RnzKlbPKZ48+9lQB0DUGe9oAWn4ktAnb1Y7AY8hro1a1LajcL2hi9pT650P599O 6hNPY1MuSCAg1L/8JruqhQ9gYg9Gg/aD2KoAVhcvdddW2eyJEjaFPoMCoyvHKFzW Ul/Ad8Q7dllymJ4zw60E28ClHmlyRhlYCva6P21vAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUq8azssA8G1PbGiopVxcxB9ztoDswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQ3OGQ2NDUyLTdmM2QtNGIzMC04OTQ2LTkyMzdjMWI2NjczMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAESZEowDQYJKoZIhvcNAQELBQADggEBADklinkpcp59TFGuOSjKmPX9/QUk Z3laHvwcKMqMU5rLxaaCtEVBHqlxU2M/vHZXTreikwM+sKADHfRnMnpkh0j1fD4d CD/1JSE3sF0bHkTZm98PmtU1Y9yQ7dJ+vcSDL4rqtLiy0ADrdw/61xsuuIOaOecW Nv3PazErkWTV2IvyPOXTWvtMxlIHOBWF33VyMHR9gZmd7R309dAV7xqW6O5p2E7y 7jTIhP7YQtSRV84+z15+sNAMRjkYxurXdnTqoFYJGYfSaTmrrikq+PaJRnd6LdBI FL2lU9aZXVKto2FVwt6UHuIXTD493CSE/FZ8VEUI9Uv9a7po98nVwEQqZfk= -----END CERTIFICATE-----Generated at Mon Apr 28 12:32:31 2025 by rpki-client