$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/591d659e-61c5-42c8-876e-4dd35852d25a.roa File: 591d659e-61c5-42c8-876e-4dd35852d25a.roa (raw, json) Hash identifier: DslTP9KebmsWs11b2LPcuzgnWVhMAutpeeRKhrf6YDg= Subject key identifier: 1F:E4:9F:CC:5F:74:ED:D6:AD:2F:4B:81:AD:95:B1:15:F7:74:08:42 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 195B6B2F1EBB7A24434EA7B95D2FADA6D32432B6 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/591d659e-61c5-42c8-876e-4dd35852d25a.roa Signing time: Sat 12 Apr 2025 00:51:54 +0000 ROA not before: Sat 12 Apr 2025 00:51:54 +0000 ROA not after: Sat 17 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.208.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:5b:6b:2f:1e:bb:7a:24:43:4e:a7:b9:5d:2f:ad:a6:d3:24:32:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 12 00:51:54 2025 GMT Not After : May 17 23:59:59 2025 GMT Subject: serialNumber=bd093fc99e2cf8ee194f13e79898e3ada6571f6ad69c5964cfe6d890cf202594, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:44:ba:49:c8:d9:8c:b3:95:f9:03:8a:b1:99: ee:32:00:ba:8f:9a:0e:23:35:b2:71:f1:ec:67:20: 06:73:1f:cc:3a:97:56:e2:78:3b:ef:7a:31:81:3a: 2d:72:4a:d4:74:a3:d3:1a:c1:83:a7:27:7c:7f:46: 35:19:19:2b:80:f0:58:87:83:93:e2:0b:ae:87:aa: c4:23:87:60:0b:72:fb:f0:b7:4d:b6:bf:26:23:7d: d7:81:1a:98:0a:17:c3:19:c3:5b:7b:c8:08:d5:1a: a4:0e:f3:60:9d:be:9f:87:a4:c4:c1:ce:79:18:04: 19:25:18:e8:28:68:31:c3:4e:36:48:7a:29:f0:8f: 18:ac:58:9c:32:c6:f9:47:27:36:bc:9b:04:45:5a: e4:ca:9f:48:b3:b5:7c:e7:2a:63:0a:b0:b5:b2:65: f1:d3:a3:05:be:d0:9b:eb:54:73:56:f1:0f:91:00: 41:59:a3:95:64:37:42:61:2e:f3:aa:38:e2:3c:b8: 48:77:0a:cc:00:78:73:67:1c:4b:1d:0a:cc:85:69: bf:25:24:87:70:d9:6e:af:6a:69:f6:0c:32:a7:46: f1:7f:4a:d3:52:22:26:8b:cb:b4:7e:84:f5:f3:47: b2:ef:3e:21:92:32:d3:74:b6:c5:9a:f9:b6:8c:84: 15:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:E4:9F:CC:5F:74:ED:D6:AD:2F:4B:81:AD:95:B1:15:F7:74:08:42 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/591d659e-61c5-42c8-876e-4dd35852d25a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.208.128.0/17 Signature Algorithm: sha256WithRSAEncryption 02:f5:84:c2:1a:67:1f:6a:32:8c:fe:41:16:90:cf:b0:81:57: a2:f9:09:a9:01:0e:a0:1d:13:9d:32:3f:63:39:21:71:79:58: 04:68:0f:b1:fd:5b:af:4b:c2:4a:fa:bf:3b:6f:df:f7:f9:38: 80:c1:40:c9:23:4d:00:f8:2c:b8:38:c2:2b:1a:81:3b:9c:76: a0:3b:30:47:03:5d:6c:51:94:0c:b2:7a:41:ba:63:bd:bd:a4: 9d:97:9e:25:0c:04:45:3d:ff:3a:18:18:97:a2:7f:56:1d:a6: c5:99:67:0c:06:be:2d:aa:5c:c1:5f:93:f2:12:47:86:7a:68: c3:62:90:09:d8:5e:da:18:fc:ef:3d:68:01:0c:6d:b8:c6:12: 51:0e:6b:02:a7:c2:c9:2d:7d:86:f3:73:7d:61:f5:4f:42:65: 7d:82:30:4f:6f:a3:16:f1:7c:26:55:74:e8:64:4a:d3:0b:02: 0d:03:93:31:9f:fa:c9:6a:e0:0d:0d:94:c6:e7:cf:fe:bf:ce: ef:74:57:ec:ca:d8:96:1c:c0:c1:9e:96:13:2f:b0:84:6c:98: 55:39:ff:b4:e6:3a:47:f7:7d:c4:ed:94:11:22:e7:63:c9:10: 55:51:54:3e:a8:c2:5b:99:ea:96:4c:8c:b8:f4:70:06:59:69: b3:2a:b7:e8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGVtrLx67eiRDTqe5XS+tptMkMrYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDEyMDA1MTU0WhcNMjUwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZDA5M2ZjOTllMmNmOGVlMTk0ZjEzZTc5ODk4ZTNhZGE2 NTcxZjZhZDY5YzU5NjRjZmU2ZDg5MGNmMjAyNTk0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjRLpJyNmMs5X5A4qxme4yALqPmg4jNbJx8exnIAZzH8w6 l1bieDvvejGBOi1yStR0o9MawYOnJ3x/RjUZGSuA8FiHg5PiC66HqsQjh2ALcvvw t022vyYjfdeBGpgKF8MZw1t7yAjVGqQO82Cdvp+HpMTBznkYBBklGOgoaDHDTjZI einwjxisWJwyxvlHJza8mwRFWuTKn0iztXznKmMKsLWyZfHTowW+0JvrVHNW8Q+R AEFZo5VkN0JhLvOqOOI8uEh3CswAeHNnHEsdCsyFab8lJIdw2W6vamn2DDKnRvF/ StNSIiaLy7R+hPXzR7LvPiGSMtN0tsWa+baMhBU9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUH+SfzF907datL0uBrZWxFfd0CEIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzU5MWQ2NTllLTYxYzUtNDJjOC04NzZlLTRkZDM1ODUyZDI1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcN0IAwDQYJKoZIhvcNAQELBQADggEBAAL1hMIaZx9qMoz+QRaQz7CBV6L5 CakBDqAdE50yP2M5IXF5WARoD7H9W69Lwkr6vztv3/f5OIDBQMkjTQD4LLg4wisa gTucdqA7MEcDXWxRlAyyekG6Y729pJ2XniUMBEU9/zoYGJeif1YdpsWZZwwGvi2q XMFfk/ISR4Z6aMNikAnYXtoY/O89aAEMbbjGElEOawKnwsktfYbzc31h9U9CZX2C ME9voxbxfCZVdOhkStMLAg0DkzGf+slq4A0NlMbnz/6/zu90V+zK2JYcwMGelhMv sIRsmFU5/7TmOkf3fcTtlBEi52PJEFVRVD6owluZ6pZMjLj0cAZZabMqt+g= -----END CERTIFICATE-----Generated at Sat Apr 26 18:27:08 2025 by rpki-client