$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4e5c4526-620b-4572-a2b1-7b2759cb8e7c.roa File: 4e5c4526-620b-4572-a2b1-7b2759cb8e7c.roa (raw, json) Hash identifier: UzOlgL7tzsH7MfIxkunRwY2w55GM4tGBLH3VUJADLwM= Subject key identifier: CD:35:67:77:32:8E:25:99:26:1C:5B:F3:CA:A3:1A:33:21:5D:33:2B Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5F28603DAE0B96EAAC8A9BD072AE4D7DCBFC97F4 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4e5c4526-620b-4572-a2b1-7b2759cb8e7c.roa Signing time: Fri 25 Apr 2025 16:10:17 +0000 ROA not before: Fri 25 Apr 2025 16:10:17 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.156.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:28:60:3d:ae:0b:96:ea:ac:8a:9b:d0:72:ae:4d:7d:cb:fc:97:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 25 16:10:17 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=3bdfefe6f523d4840914ff4b48e3c446114e0c40a15d573742b71d4328e7a929, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:4b:63:c1:07:e4:67:2d:24:7c:c3:71:cc:77: 6c:cb:a4:de:38:4e:7e:49:a3:bd:3c:17:6c:71:0e: 65:ab:15:92:84:04:50:14:26:00:84:7c:1e:ba:08: 71:0d:f2:6e:1d:4a:74:82:80:87:54:c6:69:06:bb: 35:67:94:d3:b8:35:16:2c:be:24:63:51:d1:13:68: f3:98:4d:f2:dc:fd:36:8e:a7:a6:09:89:a3:41:66: 04:d1:7d:79:ec:d5:77:4b:42:bd:46:4c:4d:9a:62: 0d:ae:56:f8:d5:d1:1a:8d:87:3b:1c:af:80:dc:cc: 31:85:48:d2:84:4f:20:de:37:86:d5:6b:6f:59:21: 64:4c:fb:22:5c:2c:77:95:3f:ff:2f:e8:01:a7:39: 10:d7:4c:9e:24:d1:09:76:ff:57:34:9b:15:12:47: cb:01:f8:46:ac:f2:59:72:3d:87:10:24:e3:ce:91: f6:1e:47:a4:11:e7:eb:a8:2c:60:ae:13:2a:cc:9e: 16:ce:da:3a:54:eb:4b:ec:62:95:a7:2e:14:e6:fd: 2a:8f:bb:50:52:94:ce:3d:3a:8c:cd:14:c2:64:6c: 57:26:4c:66:10:cf:93:e8:df:c3:d4:a5:67:c3:f7: 1e:bc:f6:31:e1:1e:60:8c:8b:fa:91:22:27:9a:54: bf:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:35:67:77:32:8E:25:99:26:1C:5B:F3:CA:A3:1A:33:21:5D:33:2B X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4e5c4526-620b-4572-a2b1-7b2759cb8e7c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.156.0.0/15 Signature Algorithm: sha256WithRSAEncryption 48:67:09:5b:cc:3a:f7:a6:34:61:79:bc:7f:8d:4b:d4:d1:01: 6d:39:e7:80:e6:ad:90:2c:6b:d9:38:ff:06:b2:42:3c:60:b0: 9c:03:1e:46:87:41:44:be:e6:77:23:ab:0c:35:52:8b:99:13: ec:7f:8f:33:77:39:8b:2e:c1:4d:d7:9f:da:c1:d2:a9:36:30: 8e:91:68:ea:8e:5a:e2:1e:7b:41:50:a2:6e:42:c4:bf:ee:91: f1:b2:f2:37:03:46:4a:0b:98:f5:c3:71:4c:f7:60:67:71:19: e1:02:5b:1d:bf:17:12:b0:ae:1f:2c:6d:e3:62:6a:78:1d:7d: 6f:e5:54:67:66:1e:c2:25:5d:84:6a:51:ab:78:c8:59:da:8f: e9:66:e5:99:d5:0d:e9:45:56:65:cd:93:f5:ad:2b:4c:ee:b4: 8e:a6:0f:0b:2c:ad:bc:95:f4:ff:05:16:36:a0:15:2e:bf:94: 1f:6d:e5:e8:53:32:8e:9c:c2:f6:d1:3e:20:ef:fe:8d:c0:a6: 0c:f4:01:68:59:69:27:b4:5f:84:3f:01:30:17:af:a0:e6:fa: 52:c5:ea:e7:2e:7a:69:2e:2d:8f:32:92:58:41:d3:bc:f2:1d: 37:8a:09:1a:9e:55:8a:c8:27:a0:a0:d7:6c:cd:8d:ab:47:18: 0c:50:a2:14 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXyhgPa4LluqsipvQcq5Nfcv8l/QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDI1MTYxMDE3WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYmRmZWZlNmY1MjNkNDg0MDkxNGZmNGI0OGUzYzQ0NjEx NGUwYzQwYTE1ZDU3Mzc0MmI3MWQ0MzI4ZTdhOTI5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWS2PBB+RnLSR8w3HMd2zLpN44Tn5Jo708F2xxDmWrFZKE BFAUJgCEfB66CHEN8m4dSnSCgIdUxmkGuzVnlNO4NRYsviRjUdETaPOYTfLc/TaO p6YJiaNBZgTRfXns1XdLQr1GTE2aYg2uVvjV0RqNhzscr4DczDGFSNKETyDeN4bV a29ZIWRM+yJcLHeVP/8v6AGnORDXTJ4k0Ql2/1c0mxUSR8sB+Eas8llyPYcQJOPO kfYeR6QR5+uoLGCuEyrMnhbO2jpU60vsYpWnLhTm/SqPu1BSlM49OozNFMJkbFcm TGYQz5Po38PUpWfD9x689jHhHmCMi/qRIieaVL9NAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUzTVndzKOJZkmHFvzyqMaMyFdMyswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzRlNWM0NTI2LTYyMGItNDU3Mi1hMmIxLTdiMjc1OWNiOGU3Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEPnDANBgkqhkiG9w0BAQsFAAOCAQEASGcJW8w696Y0YXm8f41L1NEBbTnn gOatkCxr2Tj/BrJCPGCwnAMeRodBRL7mdyOrDDVSi5kT7H+PM3c5iy7BTdef2sHS qTYwjpFo6o5a4h57QVCibkLEv+6R8bLyNwNGSguY9cNxTPdgZ3EZ4QJbHb8XErCu Hyxt42JqeB19b+VUZ2YewiVdhGpRq3jIWdqP6WblmdUN6UVWZc2T9a0rTO60jqYP CyytvJX0/wUWNqAVLr+UH23l6FMyjpzC9tE+IO/+jcCmDPQBaFlpJ7RfhD8BMBev oOb6UsXq5y56aS4tjzKSWEHTvPIdN4oJGp5VisgnoKDXbM2Nq0cYDFCiFA== -----END CERTIFICATE-----Generated at Sat Apr 26 17:38:01 2025 by rpki-client