$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5933b4db-ccbb-47a3-a37b-fa7ff2d0ad09.roa File: 5933b4db-ccbb-47a3-a37b-fa7ff2d0ad09.roa (raw, json) Hash identifier: yb+jJKXCpTrwP6Y6hI0hFbBn5/ll+YvuFikrYv+kjwI= Subject key identifier: 75:99:D8:4D:47:57:23:D6:0F:78:62:EE:61:14:EC:50:85:18:EC:EF Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 151FE55E32F5F6DB059E904A19F7A323059F7820 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5933b4db-ccbb-47a3-a37b-fa7ff2d0ad09.roa Signing time: Sat 26 Apr 2025 00:20:14 +0000 ROA not before: Sat 26 Apr 2025 00:20:14 +0000 ROA not after: Sat 31 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 159.209.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:1f:e5:5e:32:f5:f6:db:05:9e:90:4a:19:f7:a3:23:05:9f:78:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 26 00:20:14 2025 GMT Not After : May 31 23:59:59 2025 GMT Subject: serialNumber=264859e75fb347b97515d4267b0fac8ac468b88397bd5db84e2a56f4d8200c83, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:33:76:9b:49:56:a5:32:75:80:f3:0f:ac:a9: 9b:d8:68:f6:39:c0:64:11:db:a3:4e:a5:e5:71:8f: d5:70:35:40:d5:bb:6a:5f:a5:22:5f:4e:3a:b4:bf: 10:86:a4:48:6a:76:a3:c2:3f:16:73:8a:15:42:fd: 04:3c:14:70:67:cd:40:24:67:59:80:66:1b:5c:0d: 77:ad:4d:5f:48:31:9e:33:6d:6f:e0:6d:7c:dc:56: fd:d0:62:2f:d9:df:b0:53:9e:65:86:7c:dd:5a:dc: 2a:04:ed:4c:17:fc:7d:69:39:9b:bb:d6:7a:05:76: 8b:8a:81:db:84:c6:35:87:50:02:b0:bc:8d:de:64: ea:10:47:72:65:47:15:01:b0:d7:a0:b1:9a:0c:05: 73:62:e1:56:7b:1f:f9:91:b7:5e:6e:16:ae:0a:b1: 24:13:47:22:3b:d3:83:fc:01:03:9e:b7:47:0a:23: 7c:fa:4b:de:d0:bd:37:22:91:11:d6:6c:34:c0:91: f3:8c:af:9f:6c:11:41:57:33:36:36:c3:e8:c5:81: ae:3a:27:3a:f8:96:c3:36:52:6d:11:90:3b:e0:79: 5d:2f:80:ab:bc:50:b4:9e:e5:67:8d:b6:84:81:e0: 09:fd:24:16:9e:d4:bf:e1:67:39:95:55:94:f3:8b: d8:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:99:D8:4D:47:57:23:D6:0F:78:62:EE:61:14:EC:50:85:18:EC:EF X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5933b4db-ccbb-47a3-a37b-fa7ff2d0ad09.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.209.0.0/16 Signature Algorithm: sha256WithRSAEncryption 62:b0:d7:8d:4c:66:fd:60:a2:b1:b7:6e:a5:85:de:91:85:d2: 2c:32:0c:b5:88:88:53:76:41:39:53:64:b0:ff:e4:6a:a1:15: e5:a9:99:97:16:bb:be:d6:ec:4d:c2:e9:7e:b5:0a:95:a5:79: b7:1a:44:42:88:df:db:d6:c4:97:4d:19:41:88:c9:88:64:4d: 4b:07:8a:19:70:12:ca:80:96:3c:1a:3e:5f:84:5a:3b:07:33: 58:ef:55:20:04:24:41:34:c5:46:b4:5d:dd:3b:dd:90:ea:70: a2:94:ac:86:e9:20:a9:31:32:2d:90:4c:64:fe:15:0b:f0:5c: 9d:f0:a6:e5:3a:ca:c6:1c:58:14:80:2d:3a:c4:22:70:81:a0: 7b:cc:7c:06:4d:58:bb:1a:4d:76:97:94:b9:42:1b:bb:7b:81: cb:e2:70:35:4b:06:9d:7e:26:ba:dd:18:5a:d3:01:6d:35:f0: 17:e6:85:a5:0d:41:f6:9b:de:f6:f9:82:bc:94:25:dc:95:cb: 0d:0b:6a:e3:3a:aa:05:c4:5a:92:a9:08:3e:05:6b:da:27:ff: 3e:be:cd:9c:ab:16:27:06:6f:8e:13:c5:7a:91:8b:63:b7:4e: 0b:5c:50:14:a5:f7:ed:d1:01:0b:23:1e:7a:2b:03:c0:c9:0d: d1:4f:cb:09 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFR/lXjL19tsFnpBKGfejIwWfeCAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDI2MDAyMDE0WhcNMjUwNTMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNjQ4NTllNzVmYjM0N2I5NzUxNWQ0MjY3YjBmYWM4YWM0 NjhiODgzOTdiZDVkYjg0ZTJhNTZmNGQ4MjAwYzgzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQM3abSValMnWA8w+sqZvYaPY5wGQR26NOpeVxj9VwNUDV u2pfpSJfTjq0vxCGpEhqdqPCPxZzihVC/QQ8FHBnzUAkZ1mAZhtcDXetTV9IMZ4z bW/gbXzcVv3QYi/Z37BTnmWGfN1a3CoE7UwX/H1pOZu71noFdouKgduExjWHUAKw vI3eZOoQR3JlRxUBsNegsZoMBXNi4VZ7H/mRt15uFq4KsSQTRyI704P8AQOet0cK I3z6S97QvTcikRHWbDTAkfOMr59sEUFXMzY2w+jFga46Jzr4lsM2Um0RkDvgeV0v gKu8ULSe5WeNtoSB4An9JBae1L/hZzmVVZTzi9i3AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUdZnYTUdXI9YPeGLuYRTsUIUY7O8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzU5MzNiNGRiLWNjYmItNDdhMy1hMzdiLWZhN2ZmMmQwYWQwOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCf0TANBgkqhkiG9w0BAQsFAAOCAQEAYrDXjUxm/WCisbdupYXekYXSLDIM tYiIU3ZBOVNksP/kaqEV5amZlxa7vtbsTcLpfrUKlaV5txpEQojf29bEl00ZQYjJ iGRNSweKGXASyoCWPBo+X4RaOwczWO9VIAQkQTTFRrRd3TvdkOpwopSshukgqTEy LZBMZP4VC/BcnfCm5TrKxhxYFIAtOsQicIGge8x8Bk1YuxpNdpeUuUIbu3uBy+Jw NUsGnX4mut0YWtMBbTXwF+aFpQ1B9pve9vmCvJQl3JXLDQtq4zqqBcRakqkIPgVr 2if/Pr7NnKsWJwZvjhPFepGLY7dOC1xQFKX37dEBCyMeeisDwMkN0U/LCQ== -----END CERTIFICATE-----Generated at Sat Apr 26 15:49:11 2025 by rpki-client