$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4cec34c2-012a-40bd-b862-8fd84e94fa25.roa File: 4cec34c2-012a-40bd-b862-8fd84e94fa25.roa (raw, json) Hash identifier: nTOJhov9J14erl9JpyhHlfQhS98DX5Mdexkc4TLoPkA= Subject key identifier: 1E:35:80:02:0F:36:E4:CF:11:30:18:5F:43:75:90:C9:4A:02:F6:AC Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5395D042CBF28B102646BA1CE3B384C5819B30EA Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4cec34c2-012a-40bd-b862-8fd84e94fa25.roa Signing time: Wed 16 Apr 2025 00:20:51 +0000 ROA not before: Wed 16 Apr 2025 00:20:51 +0000 ROA not after: Wed 21 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.181.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:95:d0:42:cb:f2:8b:10:26:46:ba:1c:e3:b3:84:c5:81:9b:30:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 16 00:20:51 2025 GMT Not After : May 21 23:59:59 2025 GMT Subject: serialNumber=5c058b547aee7b85459fbcfcdad1f7c4da808d6baaf97a8d005911d0a6890d07, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a0:62:84:29:1d:55:32:73:76:ed:a4:16:f8: 59:88:a7:e2:1c:20:3c:13:e2:00:5d:93:fa:a3:0f: 00:67:5a:c5:19:f3:b0:21:22:dc:4e:99:13:9a:23: ce:02:65:45:e9:47:f6:66:67:bb:c4:c5:b8:e6:f3: 37:62:cc:0b:85:72:d2:0b:2d:76:8e:45:16:67:32: 3a:7d:75:ea:bf:25:3e:16:ad:0c:c4:59:52:56:98: cf:b9:37:69:0f:13:80:09:c1:42:f7:8e:2a:7d:f3: 2a:5e:01:93:71:74:91:4e:08:80:01:05:b2:4e:4e: a1:91:a8:84:94:0f:65:0f:ca:6f:76:94:cc:75:ec: fa:fa:dc:a5:3f:ad:05:15:a6:71:8b:f6:c3:fe:47: aa:b5:ba:a6:f6:99:83:20:ec:29:a6:07:1b:c3:ef: ee:df:0c:d9:cf:ca:6b:3c:b1:5c:74:fd:3e:c4:02: b9:89:10:e8:51:00:16:47:be:6f:bf:41:3c:e7:18: 32:a7:6c:48:9c:36:27:9f:36:6b:59:b2:25:70:f0: 27:c9:42:0a:74:42:59:72:bf:31:0e:45:59:10:2b: 7e:02:4f:71:f2:df:fe:b2:99:0e:3e:fd:8e:2c:a0: 3d:67:81:5b:6c:45:fb:7b:e1:42:fb:bf:5a:78:10: 60:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:35:80:02:0F:36:E4:CF:11:30:18:5F:43:75:90:C9:4A:02:F6:AC X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4cec34c2-012a-40bd-b862-8fd84e94fa25.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.181.64.0/20 Signature Algorithm: sha256WithRSAEncryption 71:c2:48:64:54:59:e8:b5:9a:c4:db:a6:d7:5b:fb:5d:f3:7f: 89:73:95:93:ad:5d:59:1b:03:25:5b:e0:63:74:02:f3:71:18: 50:89:e3:c1:0e:10:bf:66:d3:da:94:20:ca:c3:2e:e9:f4:bb: 01:46:e2:1c:ba:47:0a:f7:94:04:16:8c:e6:37:bb:a8:b3:fa: c7:9b:b6:6a:85:58:8d:1e:97:47:b4:aa:28:5a:8b:94:e4:48: 54:93:e4:a0:20:c4:15:57:b7:00:a0:11:5e:f1:4e:4a:8e:23: c1:7f:89:85:c7:96:85:2d:f9:4e:d8:00:6a:ee:77:3e:2f:d8: 3a:12:ae:5c:4a:42:9b:9f:6e:6b:41:f8:06:c7:c3:94:6b:b7: 91:2d:54:da:b8:09:e3:c4:1d:5e:25:ea:d7:cb:02:07:e8:8f: cb:57:96:f4:49:97:fa:bd:c0:92:f9:a1:e9:ae:c9:08:9a:96: da:c6:ef:73:7f:b2:f3:bc:a4:37:67:48:5d:1a:88:95:30:8f: bc:bf:7e:cf:56:3b:0b:05:f0:2a:e5:73:43:f7:f9:bb:eb:5d: 0d:70:0e:1d:5c:49:ce:56:81:07:66:5f:cc:59:fa:a2:f4:83: 69:3a:b9:7a:35:bb:0b:d0:af:4e:a7:de:b8:dd:b2:db:79:28: 0b:cb:4f:d9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUU5XQQsvyixAmRroc47OExYGbMOowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE2MDAyMDUxWhcNMjUwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A1YzA1OGI1NDdhZWU3Yjg1NDU5ZmJjZmNkYWQxZjdjNGRh ODA4ZDZiYWFmOTdhOGQwMDU5MTFkMGE2ODkwZDA3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7oGKEKR1VMnN27aQW+FmIp+IcIDwT4gBdk/qjDwBnWsUZ 87AhItxOmROaI84CZUXpR/ZmZ7vExbjm8zdizAuFctILLXaORRZnMjp9deq/JT4W rQzEWVJWmM+5N2kPE4AJwUL3jip98ypeAZNxdJFOCIABBbJOTqGRqISUD2UPym92 lMx17Pr63KU/rQUVpnGL9sP+R6q1uqb2mYMg7CmmBxvD7+7fDNnPyms8sVx0/T7E ArmJEOhRABZHvm+/QTznGDKnbEicNiefNmtZsiVw8CfJQgp0QllyvzEORVkQK34C T3Hy3/6ymQ4+/Y4soD1ngVtsRft74UL7v1p4EGA3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHjWAAg825M8RMBhfQ3WQyUoC9qwwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzRjZWMzNGMyLTAxMmEtNDBiZC1iODYyLThmZDg0ZTk0ZmEyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQPtUAwDQYJKoZIhvcNAQELBQADggEBAHHCSGRUWei1msTbptdb+13zf4lz lZOtXVkbAyVb4GN0AvNxGFCJ48EOEL9m09qUIMrDLun0uwFG4hy6Rwr3lAQWjOY3 u6iz+sebtmqFWI0el0e0qihai5TkSFST5KAgxBVXtwCgEV7xTkqOI8F/iYXHloUt +U7YAGrudz4v2DoSrlxKQpufbmtB+AbHw5Rrt5EtVNq4CePEHV4l6tfLAgfoj8tX lvRJl/q9wJL5oemuyQialtrG73N/svO8pDdnSF0aiJUwj7y/fs9WOwsF8Crlc0P3 +bvrXQ1wDh1cSc5WgQdmX8xZ+qL0g2k6uXo1uwvQr06n3rjdstt5KAvLT9k= -----END CERTIFICATE-----Generated at Sat Apr 26 18:30:36 2025 by rpki-client