$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5edb979c-9e4e-4ecc-8602-4f07e5e7b0bd.roa File: 5edb979c-9e4e-4ecc-8602-4f07e5e7b0bd.roa (raw, json) Hash identifier: NQAmY3WgzNOg6vDDrhm7lCVF09qWPagXeZYm+XjmOUQ= Subject key identifier: C4:30:30:7E:6A:F4:A2:E3:12:F0:2A:77:5E:BE:4B:15:1F:74:AA:23 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 787AF9C3798C3A6C5F315C12C88AD6150C864E41 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5edb979c-9e4e-4ecc-8602-4f07e5e7b0bd.roa Signing time: Fri 18 Apr 2025 17:01:29 +0000 ROA not before: Fri 18 Apr 2025 17:01:29 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.239.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:7a:f9:c3:79:8c:3a:6c:5f:31:5c:12:c8:8a:d6:15:0c:86:4e:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 18 17:01:29 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=bd7f55b538c145ebe163f221f3e6adf0144d418402982e5ca7c9e1168231672f, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:60:b1:8d:b9:5e:80:21:46:79:cd:ef:90:65: fb:49:f4:02:d2:e8:11:e4:0a:fe:14:d8:48:74:dd: 93:6a:8d:37:be:aa:3e:8a:a9:ee:3e:04:f9:50:c4: b1:b3:05:b4:77:bb:32:8e:02:e0:c4:0d:ca:64:f7: 4d:3d:f4:be:78:9f:3c:a2:40:45:99:f4:78:d7:91: 71:e9:45:90:50:08:9d:55:84:9e:41:7d:71:9a:c7: c0:8f:18:45:26:d3:53:4c:7f:87:b8:54:b1:9b:49: f1:3d:6a:0d:88:14:c9:a2:3f:b2:b6:d8:65:b3:c2: 26:12:1f:75:b4:69:04:2c:75:c2:5a:33:a1:6b:e4: da:3a:9b:39:b2:0c:52:f5:9a:7c:5f:ec:94:4c:36: aa:3b:b6:f4:26:f0:af:31:59:5e:93:42:93:2b:59: 4e:16:1c:96:69:70:86:aa:32:1f:e4:47:45:6e:09: c8:67:17:f9:7d:ee:e3:8a:6c:3a:c2:df:b1:c3:91: 7e:88:22:56:fb:57:a9:50:80:5d:d4:ea:03:20:cf: f1:9e:a1:28:41:5e:58:7e:83:9c:ee:c5:56:e6:2a: 42:f6:06:cf:da:7f:5a:fa:83:38:32:1a:fb:8a:04: ca:22:5c:5b:d1:1a:58:3d:7b:f1:97:3e:38:9f:9e: 89:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:30:30:7E:6A:F4:A2:E3:12:F0:2A:77:5E:BE:4B:15:1F:74:AA:23 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5edb979c-9e4e-4ecc-8602-4f07e5e7b0bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.239.192.0/19 Signature Algorithm: sha256WithRSAEncryption 2a:12:7f:fe:bd:2d:81:8b:77:a0:02:82:60:c4:9f:3e:3e:1b: e7:9f:d7:75:cd:1e:90:ba:31:3c:f7:8e:0a:96:20:b1:31:a3: 78:a9:8f:e1:8b:9a:7b:15:1e:ae:e9:49:1c:87:f6:83:a0:17: f4:fd:cf:51:3c:ad:eb:be:9b:c2:df:52:8e:d7:51:b6:0c:d2: d6:4d:99:18:5f:41:71:f0:69:7d:01:71:06:94:2f:44:af:2b: f4:3c:67:63:0e:5c:5b:d7:3a:d3:d8:07:bc:74:58:84:f7:54: 87:89:7d:55:45:0c:95:27:35:06:2a:17:58:64:fd:75:54:2a: f9:6e:fc:db:59:dd:a0:0b:8b:3f:6a:0f:6f:e9:b6:ed:6d:f4: e3:fa:89:e0:c8:32:48:87:0d:8e:cb:41:26:fc:7b:b7:19:9f: 83:0c:62:70:c5:bd:d3:f5:72:d6:0c:b8:b4:bf:76:f9:f6:1d: a8:fc:2f:1c:26:f3:ea:30:ab:19:f9:8d:5d:9e:82:9f:c2:37: 09:72:12:38:e5:8c:aa:7a:54:c4:03:19:40:f9:86:f2:39:d5: 59:1a:8a:8a:82:dc:f6:be:e8:df:6e:7b:e1:a8:a6:9d:15:08: 70:26:a9:b3:58:06:d3:5d:29:27:bb:9f:29:55:19:d2:0d:98: 32:a7:ca:44 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeHr5w3mMOmxfMVwSyIrWFQyGTkEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE4MTcwMTI5WhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZDdmNTViNTM4YzE0NWViZTE2M2YyMjFmM2U2YWRmMDE0 NGQ0MTg0MDI5ODJlNWNhN2M5ZTExNjgyMzE2NzJmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHYLGNuV6AIUZ5ze+QZftJ9ALS6BHkCv4U2Eh03ZNqjTe+ qj6Kqe4+BPlQxLGzBbR3uzKOAuDEDcpk90099L54nzyiQEWZ9HjXkXHpRZBQCJ1V hJ5BfXGax8CPGEUm01NMf4e4VLGbSfE9ag2IFMmiP7K22GWzwiYSH3W0aQQsdcJa M6Fr5No6mzmyDFL1mnxf7JRMNqo7tvQm8K8xWV6TQpMrWU4WHJZpcIaqMh/kR0Vu CchnF/l97uOKbDrC37HDkX6IIlb7V6lQgF3U6gMgz/GeoShBXlh+g5zuxVbmKkL2 Bs/af1r6gzgyGvuKBMoiXFvRGlg9e/GXPjifnonJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxDAwfmr0ouMS8Cp3Xr5LFR90qiMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzVlZGI5NzljLTllNGUtNGVjYy04NjAyLTRmMDdlNWU3YjBiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU278AwDQYJKoZIhvcNAQELBQADggEBACoSf/69LYGLd6ACgmDEnz4+G+ef 13XNHpC6MTz3jgqWILExo3ipj+GLmnsVHq7pSRyH9oOgF/T9z1E8reu+m8LfUo7X UbYM0tZNmRhfQXHwaX0BcQaUL0SvK/Q8Z2MOXFvXOtPYB7x0WIT3VIeJfVVFDJUn NQYqF1hk/XVUKvlu/NtZ3aALiz9qD2/ptu1t9OP6ieDIMkiHDY7LQSb8e7cZn4MM YnDFvdP1ctYMuLS/dvn2Haj8Lxwm8+owqxn5jV2egp/CNwlyEjjljKp6VMQDGUD5 hvI51VkaioqC3Pa+6N9ue+Gopp0VCHAmqbNYBtNdKSe7nylVGdINmDKnykQ= -----END CERTIFICATE-----Generated at Sat Apr 26 18:26:55 2025 by rpki-client