$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/47d76cb8-4a77-4b47-bcc1-2306da9cea6d.roa File: 47d76cb8-4a77-4b47-bcc1-2306da9cea6d.roa (raw, json) Hash identifier: I3JdGerRfAWE07xFrbjKfnjxy3psI68a45tiVx5lrHQ= Subject key identifier: 63:C2:1D:AB:A1:3B:A8:E2:84:5E:E5:61:B2:9C:E8:FB:6F:D4:7D:AD Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 07B38B55BD1BC10695017DE6B959CDE6C6D0744E Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/47d76cb8-4a77-4b47-bcc1-2306da9cea6d.roa Signing time: Sat 26 Apr 2025 00:42:18 +0000 ROA not before: Sat 26 Apr 2025 00:42:18 +0000 ROA not after: Sat 31 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.95.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:b3:8b:55:bd:1b:c1:06:95:01:7d:e6:b9:59:cd:e6:c6:d0:74:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 26 00:42:18 2025 GMT Not After : May 31 23:59:59 2025 GMT Subject: serialNumber=d685a052fb112297601a1071fb6bb1705cff20f5eead35c7a93429f86bdbfeb2, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1e:68:ca:e9:4a:44:52:02:fb:83:46:b4:a2: c7:6b:4a:8c:a4:dd:71:2e:f2:93:b0:a0:e6:46:31: b8:41:ce:28:96:55:54:7d:23:76:e2:9d:36:7a:b6: e1:0e:c8:3a:66:60:4d:53:0a:0a:8e:49:d6:c4:9d: 21:a0:63:f9:89:84:e4:73:f6:15:06:a4:34:93:c0: ad:b4:d9:01:11:43:e9:7c:58:65:11:3e:0d:bd:29: 93:c2:b6:9f:8b:90:9f:ce:25:d0:2e:2d:55:37:3d: 91:39:4e:91:e6:6e:d6:4c:e6:c4:9f:72:da:98:3e: d1:f2:1c:5a:e2:73:12:fa:36:1f:5c:37:69:f9:97: f4:0d:76:34:89:c8:e3:59:b8:cd:9f:85:5c:71:db: 41:28:5b:5d:a5:47:33:ab:63:d2:06:96:e0:8d:ba: 96:33:1d:f0:06:62:41:67:da:26:61:0d:b9:82:71: ff:37:c4:87:b5:ce:83:76:a2:57:90:16:55:0f:eb: 56:b4:44:8f:ed:51:7d:7f:33:d6:0c:f9:73:4e:7b: 1c:44:7e:10:6e:6e:9d:1a:30:28:d0:c6:9a:92:9c: f2:60:67:d5:6c:5f:c2:5c:33:28:3d:9a:16:dc:bc: c1:34:56:dc:6f:7a:21:9b:31:91:c1:25:ec:84:3c: 84:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:C2:1D:AB:A1:3B:A8:E2:84:5E:E5:61:B2:9C:E8:FB:6F:D4:7D:AD X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/47d76cb8-4a77-4b47-bcc1-2306da9cea6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.95.248.0/24 Signature Algorithm: sha256WithRSAEncryption 69:10:69:b8:1e:fd:b6:cb:70:9e:1e:f4:8b:ec:d4:7f:e8:67: c9:cb:b5:47:f8:b4:b2:b9:76:df:b6:6a:33:bf:b9:ed:d0:1b: 46:95:c2:38:a4:ad:bd:12:e2:13:d1:6f:6d:88:c8:1c:54:d6: e6:c6:7f:16:b9:d9:ad:a5:3e:50:9b:2a:d4:e0:15:b2:22:c6: c7:19:e3:6f:22:86:16:06:06:c5:0e:d7:2a:69:c3:3a:6d:04: 65:c4:c4:13:df:d6:0b:a1:f4:77:a7:ce:f7:b3:d2:1b:76:ff: 66:4a:53:48:9c:49:ca:72:37:0f:ad:34:3f:63:2e:e4:9b:96: 79:1c:bd:ac:09:cf:a3:cd:20:db:85:5d:fb:d1:e6:8f:44:36: a1:ec:a6:c3:f4:66:f5:6e:4b:62:b0:f8:e8:6b:d8:5b:46:bd: 8f:c6:8b:3e:9f:6f:39:ea:d4:78:c6:96:d7:9f:a8:8f:87:13: 26:18:d9:b2:bf:62:95:e9:ac:68:1c:b1:a4:55:df:05:50:4a: 84:65:be:26:22:3c:81:ea:87:41:ba:42:b2:6c:67:ce:51:60: cf:a9:13:96:cf:47:03:16:60:aa:e6:26:7c:dc:b2:ce:f1:38: d7:19:0a:cc:69:d5:8d:9e:73:11:ff:a6:39:73:70:6c:59:9e: c7:ef:42:45 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUB7OLVb0bwQaVAX3muVnN5sbQdE4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDI2MDA0MjE4WhcNMjUwNTMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNjg1YTA1MmZiMTEyMjk3NjAxYTEwNzFmYjZiYjE3MDVj ZmYyMGY1ZWVhZDM1YzdhOTM0MjlmODZiZGJmZWIyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkHmjK6UpEUgL7g0a0osdrSoyk3XEu8pOwoOZGMbhBziiW VVR9I3binTZ6tuEOyDpmYE1TCgqOSdbEnSGgY/mJhORz9hUGpDSTwK202QERQ+l8 WGURPg29KZPCtp+LkJ/OJdAuLVU3PZE5TpHmbtZM5sSfctqYPtHyHFricxL6Nh9c N2n5l/QNdjSJyONZuM2fhVxx20EoW12lRzOrY9IGluCNupYzHfAGYkFn2iZhDbmC cf83xIe1zoN2oleQFlUP61a0RI/tUX1/M9YM+XNOexxEfhBubp0aMCjQxpqSnPJg Z9VsX8JcMyg9mhbcvME0VtxveiGbMZHBJeyEPIRfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUY8Idq6E7qOKEXuVhspzo+2/Ufa0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQ3ZDc2Y2I4LTRhNzctNGI0Ny1iY2MxLTIzMDZkYTljZWE2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0X/gwDQYJKoZIhvcNAQELBQADggEBAGkQabge/bbLcJ4e9Ivs1H/oZ8nL tUf4tLK5dt+2ajO/ue3QG0aVwjikrb0S4hPRb22IyBxU1ubGfxa52a2lPlCbKtTg FbIixscZ428ihhYGBsUO1yppwzptBGXExBPf1guh9Henzvez0ht2/2ZKU0icScpy Nw+tND9jLuSblnkcvawJz6PNINuFXfvR5o9ENqHspsP0ZvVuS2Kw+Ohr2FtGvY/G iz6fbznq1HjGltefqI+HEyYY2bK/YpXprGgcsaRV3wVQSoRlviYiPIHqh0G6QrJs Z85RYM+pE5bPRwMWYKrmJnzcss7xONcZCsxp1Y2ecxH/pjlzcGxZnsfvQkU= -----END CERTIFICATE-----Generated at Sat Apr 26 12:48:11 2025 by rpki-client