$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/581d3fec-1929-406d-8d07-00ea84378921.roa File: 581d3fec-1929-406d-8d07-00ea84378921.roa (raw, json) Hash identifier: jESTwL74gbwHyCpo9MDD4KC1dAUd91zNaTSO1MYMhV8= Subject key identifier: 14:0F:81:44:26:B4:E3:6A:1E:35:8D:28:81:CB:87:85:B4:13:A1:AE Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5AF3C6E0838C3479BEF4A15C47BD4757B5360ACD Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/581d3fec-1929-406d-8d07-00ea84378921.roa Signing time: Fri 18 Apr 2025 17:11:12 +0000 ROA not before: Fri 18 Apr 2025 17:11:12 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.234.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:f3:c6:e0:83:8c:34:79:be:f4:a1:5c:47:bd:47:57:b5:36:0a:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 18 17:11:12 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=f786bbd45568c92d559719e95f382a4d42a6c99159b24584fc0d9cb23dd55f85, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:40:02:ad:f1:68:18:b4:47:2a:e1:2e:52:d3: 42:83:1b:0b:16:88:9f:84:dd:d8:5d:07:36:16:37: c8:59:60:76:ce:19:07:b5:27:ca:0a:54:2e:4f:f3: 31:98:98:0c:3f:99:f6:e2:dd:72:1b:ba:19:c8:a7: 2f:8d:6b:86:a3:7d:65:71:53:43:61:e3:c2:65:67: 6c:e2:23:65:75:29:27:17:d1:55:37:73:a0:a8:0d: ce:d7:9e:35:ad:29:0e:cc:61:e8:c2:f8:91:84:eb: c3:12:fd:be:58:6d:7b:a7:f0:4f:38:f4:39:b8:ba: 1f:a8:ed:52:f9:0f:53:9f:41:b2:1b:02:7b:70:41: 06:d8:df:fd:8c:da:e9:ad:fa:8a:1e:55:70:ee:67: b7:7a:05:aa:90:58:bc:17:c6:95:52:91:da:b6:21: ab:c9:33:2c:ce:b8:47:1f:3e:b1:e9:47:90:54:22: d2:3c:9e:52:39:43:04:11:3d:36:39:97:07:3e:18: a0:da:28:32:53:ff:e1:5e:d9:cc:c6:c4:cb:76:99: 95:6a:13:b8:e4:c7:04:dd:e1:8d:36:96:af:e7:62: 05:74:7a:6f:6a:60:44:e3:f8:37:4c:5b:f0:37:ec: 4a:83:8b:df:d0:0d:74:91:ba:7f:0b:34:ec:55:ae: 76:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:0F:81:44:26:B4:E3:6A:1E:35:8D:28:81:CB:87:85:B4:13:A1:AE X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/581d3fec-1929-406d-8d07-00ea84378921.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.234.0.0/16 Signature Algorithm: sha256WithRSAEncryption af:ec:9c:4f:bd:7b:53:fa:0c:2a:6f:e1:43:83:6d:3b:6b:0a: 1d:b5:7e:3c:cc:8e:c7:1e:c2:62:8b:16:1a:d5:93:de:77:d1: c0:00:92:f7:8f:0b:c7:e0:b7:0e:e6:94:e3:fd:26:42:9b:81: 54:17:a4:eb:37:e8:50:72:7d:d2:13:c6:f1:ea:a7:5e:cb:21: dd:3e:0d:9c:08:b7:44:15:cb:2a:f9:5b:1d:07:51:85:6a:df: c8:e9:d0:f0:b4:d7:9d:02:55:4d:57:56:b0:c9:61:ea:f0:92: 8b:2b:fe:3e:07:a4:b8:98:f8:9d:2c:18:61:07:17:b8:e9:e2: 02:60:5c:bb:63:d3:e2:49:04:60:9d:b1:48:a1:19:50:07:64: 6f:50:85:ed:db:fe:8b:b8:47:9b:1a:71:3e:ed:91:9e:c3:75: 96:1c:6f:ec:e0:9f:2d:8f:ce:29:47:7e:0c:cc:57:fa:85:07: f2:1e:2c:f5:5d:12:fa:b6:08:b2:9b:83:e8:b5:d0:8a:7f:f9: 22:bd:0d:c7:63:77:1e:a5:4c:77:f8:63:97:90:ef:22:2b:a3: 71:15:ea:95:71:a3:98:79:08:1a:e4:99:06:ef:a1:18:8c:dc: 61:78:06:e9:a4:c1:47:cd:9b:24:ee:dd:44:7f:f3:55:8d:44: 79:9f:6a:a5 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWvPG4IOMNHm+9KFcR71HV7U2Cs0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE4MTcxMTEyWhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNzg2YmJkNDU1NjhjOTJkNTU5NzE5ZTk1ZjM4MmE0ZDQy YTZjOTkxNTliMjQ1ODRmYzBkOWNiMjNkZDU1Zjg1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNQAKt8WgYtEcq4S5S00KDGwsWiJ+E3dhdBzYWN8hZYHbO GQe1J8oKVC5P8zGYmAw/mfbi3XIbuhnIpy+Na4ajfWVxU0Nh48JlZ2ziI2V1KScX 0VU3c6CoDc7XnjWtKQ7MYejC+JGE68MS/b5YbXun8E849Dm4uh+o7VL5D1OfQbIb AntwQQbY3/2M2umt+ooeVXDuZ7d6BaqQWLwXxpVSkdq2IavJMyzOuEcfPrHpR5BU ItI8nlI5QwQRPTY5lwc+GKDaKDJT/+Fe2czGxMt2mZVqE7jkxwTd4Y02lq/nYgV0 em9qYETj+DdMW/A37EqDi9/QDXSRun8LNOxVrnZ7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUFA+BRCa042oeNY0ogcuHhbQToa4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzU4MWQzZmVjLTE5MjktNDA2ZC04ZDA3LTAwZWE4NDM3ODkyMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA26jANBgkqhkiG9w0BAQsFAAOCAQEAr+ycT717U/oMKm/hQ4NtO2sKHbV+ PMyOxx7CYosWGtWT3nfRwACS948Lx+C3DuaU4/0mQpuBVBek6zfoUHJ90hPG8eqn Xssh3T4NnAi3RBXLKvlbHQdRhWrfyOnQ8LTXnQJVTVdWsMlh6vCSiyv+PgekuJj4 nSwYYQcXuOniAmBcu2PT4kkEYJ2xSKEZUAdkb1CF7dv+i7hHmxpxPu2RnsN1lhxv 7OCfLY/OKUd+DMxX+oUH8h4s9V0S+rYIspuD6LXQin/5Ir0Nx2N3HqVMd/hjl5Dv IiujcRXqlXGjmHkIGuSZBu+hGIzcYXgG6aTBR82bJO7dRH/zVY1EeZ9qpQ== -----END CERTIFICATE-----Generated at Sat Apr 26 12:53:57 2025 by rpki-client