$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/592229fc-0992-48a6-b4d6-3aa5c5bede73.roa File: 592229fc-0992-48a6-b4d6-3aa5c5bede73.roa (raw, json) Hash identifier: Xvr2qUNAwhdPKMp8dC1oPwYBmG2YrBj8sur6/Il1p6U= Subject key identifier: 4A:5E:50:01:85:63:26:5C:0E:A0:F0:B9:84:13:24:68:2E:08:A6:1F Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0A6D4BD3D5C3DF45A6D232B1AD72509571BA1983 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/592229fc-0992-48a6-b4d6-3aa5c5bede73.roa Signing time: Fri 25 Apr 2025 17:30:41 +0000 ROA not before: Fri 25 Apr 2025 17:30:41 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.89.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:6d:4b:d3:d5:c3:df:45:a6:d2:32:b1:ad:72:50:95:71:ba:19:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 25 17:30:41 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=19317f5742dad7311700accd5a83a2e45a3b7e250a06664414f9e8cd04f42387, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c5:99:90:97:4e:05:4f:2e:02:ac:f9:f0:c4: 99:49:f2:a3:dd:b9:e8:f7:d1:e8:5d:45:93:f8:b8: 3e:e1:62:50:9a:2b:4c:76:57:26:07:fd:94:6a:e5: cc:5d:12:ef:49:9e:0f:2d:61:52:8f:4d:4e:f4:9d: 9b:4b:14:00:c7:4c:31:74:96:a8:e2:30:95:22:8b: f2:53:5f:e5:ee:15:95:34:3d:c9:bb:79:a7:40:42: 2f:7e:9f:b1:10:62:43:7e:00:6c:15:22:64:4e:8f: c4:ff:fa:14:b9:40:49:be:97:6c:d3:3d:b7:63:a7: 65:9a:c3:bd:af:49:fa:99:69:a4:ac:5e:ec:a6:e9: 2c:b9:5f:c9:39:75:72:f2:58:6d:ce:69:81:62:06: ef:eb:f1:15:b9:c3:41:94:25:f6:83:c9:ec:ca:38: 18:77:83:1c:74:28:e5:83:80:67:1f:f2:41:47:0f: 0a:46:5b:08:02:71:0c:f1:f7:71:8d:4f:4d:c0:95: 94:a6:17:d7:88:dc:85:9f:d8:e9:5f:03:d9:e6:5f: 70:0d:46:61:08:ad:11:e3:5f:92:f1:68:ab:cb:97: d9:ba:de:5f:85:07:12:10:7b:42:ef:12:37:53:c0: 1d:f4:95:2c:23:d5:a5:c7:d1:37:d5:c9:cf:80:25: cc:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:5E:50:01:85:63:26:5C:0E:A0:F0:B9:84:13:24:68:2E:08:A6:1F X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/592229fc-0992-48a6-b4d6-3aa5c5bede73.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.89.0.0/16 Signature Algorithm: sha256WithRSAEncryption 96:77:db:a8:1d:3c:a8:cc:b3:8f:7c:46:97:60:cf:25:94:c6: 66:d2:73:69:6b:2c:9d:be:a6:01:04:12:2b:41:7f:fb:39:64: 0e:d2:6d:26:a9:98:76:a7:32:3a:4f:90:29:4b:e7:70:8d:56: 40:c1:96:77:ec:b6:42:94:5d:f7:eb:7a:dc:65:50:b1:ff:3d: f4:45:ba:4e:0f:7a:87:3d:83:d2:50:d1:9a:4b:df:dd:0e:aa: 05:97:ca:04:6a:f4:4e:30:23:ee:00:03:cf:00:78:4f:07:f2: 4e:eb:16:81:58:68:b2:46:46:f8:28:fa:38:1b:b5:18:f1:ec: e2:2f:fc:d2:3d:e3:1a:32:22:3d:2f:5c:79:4f:79:b3:ed:82: 4d:53:19:91:01:5a:28:62:79:23:ba:db:1b:11:16:ca:df:13: fa:5e:24:a6:25:fc:2a:54:b7:bf:f8:81:21:fb:9f:90:59:db: 46:85:82:f7:ff:dc:d2:72:bf:dc:f3:13:f6:33:69:e4:17:4c: c1:41:25:1c:d2:f3:73:72:40:d5:dc:83:72:04:8f:ed:9f:8d: 76:4b:0c:27:e5:91:7b:cb:58:6f:54:28:ff:4f:b6:3d:14:d4: 62:bb:c2:51:94:2d:29:c2:42:d2:8d:56:f5:85:14:3d:4c:90: 32:df:fa:36 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCm1L09XD30Wm0jKxrXJQlXG6GYMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDI1MTczMDQxWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxOTMxN2Y1NzQyZGFkNzMxMTcwMGFjY2Q1YTgzYTJlNDVh M2I3ZTI1MGEwNjY2NDQxNGY5ZThjZDA0ZjQyMzg3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2xZmQl04FTy4CrPnwxJlJ8qPduej30ehdRZP4uD7hYlCa K0x2VyYH/ZRq5cxdEu9Jng8tYVKPTU70nZtLFADHTDF0lqjiMJUii/JTX+XuFZU0 Pcm7eadAQi9+n7EQYkN+AGwVImROj8T/+hS5QEm+l2zTPbdjp2Waw72vSfqZaaSs Xuym6Sy5X8k5dXLyWG3OaYFiBu/r8RW5w0GUJfaDyezKOBh3gxx0KOWDgGcf8kFH DwpGWwgCcQzx93GNT03AlZSmF9eI3IWf2OlfA9nmX3ANRmEIrRHjX5LxaKvLl9m6 3l+FBxIQe0LvEjdTwB30lSwj1aXH0TfVyc+AJcyBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUSl5QAYVjJlwOoPC5hBMkaC4Iph8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzU5MjIyOWZjLTA5OTItNDhhNi1iNGQ2LTNhYTVjNWJlZGU3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2WTANBgkqhkiG9w0BAQsFAAOCAQEAlnfbqB08qMyzj3xGl2DPJZTGZtJz aWssnb6mAQQSK0F/+zlkDtJtJqmYdqcyOk+QKUvncI1WQMGWd+y2QpRd9+t63GVQ sf899EW6Tg96hz2D0lDRmkvf3Q6qBZfKBGr0TjAj7gADzwB4TwfyTusWgVhoskZG +Cj6OBu1GPHs4i/80j3jGjIiPS9ceU95s+2CTVMZkQFaKGJ5I7rbGxEWyt8T+l4k piX8KlS3v/iBIfufkFnbRoWC9//c0nK/3PMT9jNp5BdMwUElHNLzc3JA1dyDcgSP 7Z+NdksMJ+WRe8tYb1Qo/0+2PRTUYrvCUZQtKcJC0o1W9YUUPUyQMt/6Ng== -----END CERTIFICATE-----Generated at Sat Apr 26 12:54:06 2025 by rpki-client