$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5f5ec269-4223-4a97-9c74-2227dc1f1b15.roa File: 5f5ec269-4223-4a97-9c74-2227dc1f1b15.roa (raw, json) Hash identifier: PRRR6gl+EFJDxJAOjvFbVCBxrKcjLazLEs5FYMqdYAw= Subject key identifier: 46:60:E2:C3:0F:BD:FD:CD:B9:7C:EB:A3:B3:6C:A8:1A:65:7C:CE:85 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 05F2DC58D7CC39366C82B983D01B9812A8AB31C6 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5f5ec269-4223-4a97-9c74-2227dc1f1b15.roa Signing time: Sat 26 Apr 2025 00:30:18 +0000 ROA not before: Sat 26 Apr 2025 00:30:18 +0000 ROA not after: Sat 31 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.70.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:f2:dc:58:d7:cc:39:36:6c:82:b9:83:d0:1b:98:12:a8:ab:31:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 26 00:30:18 2025 GMT Not After : May 31 23:59:59 2025 GMT Subject: serialNumber=6e8daa19b841a7bccd9f2eede923546407b46c7f385f13c9489e06ce1aa934b9, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:29:99:ea:f5:0e:3c:31:1d:25:fd:7b:ea:4d: 0c:91:91:81:ea:d9:50:aa:8a:3b:f9:83:5c:5a:72: 0c:e5:1d:54:7b:04:9d:18:02:83:43:35:96:7a:bc: 03:f5:a2:bf:69:4d:6a:b0:67:8b:90:bf:08:66:5e: dc:03:0a:64:a0:36:3f:50:65:ee:64:16:43:da:a1: 08:18:cc:b0:22:c9:ea:53:7b:37:e4:d8:26:85:22: 8e:d5:32:96:42:87:8e:2b:93:3a:11:ee:a9:0e:b1: 6b:8c:fb:6a:59:39:a3:ca:98:2e:49:e3:e5:2c:7a: 04:3b:5a:e0:3a:3f:b5:e1:4b:d5:da:d1:fe:c1:e3: 58:41:f7:d9:e3:82:cd:ba:90:ea:62:3b:db:86:65: c4:1d:9c:03:b3:22:0c:4b:62:ec:a4:01:9e:99:86: 19:7e:ca:e1:e4:f4:d1:ac:be:67:c5:da:b3:0c:61: f4:a9:7d:71:50:c8:2d:8a:f8:37:ff:39:eb:7e:d3: d1:9b:6a:1f:09:62:88:b1:4a:db:e5:9e:a8:a0:44: 26:8e:e6:be:e9:e6:c1:22:4d:d4:be:a0:39:70:f6: c9:9b:42:d9:bc:91:85:0e:f3:2e:a6:a3:49:7f:7c: 9c:e6:2d:b8:45:e9:b4:56:53:71:87:a5:6b:e8:32: de:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:60:E2:C3:0F:BD:FD:CD:B9:7C:EB:A3:B3:6C:A8:1A:65:7C:CE:85 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5f5ec269-4223-4a97-9c74-2227dc1f1b15.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.70.0.0/15 Signature Algorithm: sha256WithRSAEncryption 8e:f3:f3:ef:ee:a8:11:b4:8f:da:49:f1:f8:3b:84:cc:3c:a9: f3:ae:21:ad:75:0f:e6:1c:d5:8b:fb:63:b1:92:aa:13:a6:a1: dd:16:94:d3:52:49:3f:8e:2d:cd:fc:85:47:c1:4a:be:de:4d: aa:24:31:40:87:08:3a:36:d1:0b:03:fd:1e:aa:98:26:17:7e: c7:f7:3b:17:12:33:3c:ea:b6:3e:b5:52:88:1c:78:b3:ed:ab: 8d:ba:df:23:6d:1e:bc:6e:ca:f9:5d:3b:99:fd:73:10:ad:d5: 47:ec:d2:33:74:91:91:53:ae:50:ce:ac:9e:6a:83:21:f8:01: cd:4b:e5:bf:dd:7b:e2:f2:98:96:7f:d4:3b:b5:e2:68:4b:d5: 78:e9:42:2e:2f:d2:26:e3:75:cf:4e:1d:e1:e6:21:12:7a:c9: 3c:ca:00:f8:25:fb:08:c3:9c:cd:c9:c6:93:04:3c:52:34:3c: 77:4c:f9:fb:c1:78:fd:7d:7d:c1:a0:19:2f:ea:98:65:a5:10: 4f:f6:32:ed:c6:6f:33:de:c7:69:1f:4c:2c:ee:c7:41:b7:e3: 44:fc:0e:0b:4d:4a:fe:6e:04:fe:bd:86:09:df:11:9c:a8:96: 95:d5:4b:92:56:60:21:93:29:2e:12:e9:b3:4f:dd:18:11:ea: e1:7e:bd:38 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBfLcWNfMOTZsgrmD0BuYEqirMcYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDI2MDAzMDE4WhcNMjUwNTMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZThkYWExOWI4NDFhN2JjY2Q5ZjJlZWRlOTIzNTQ2NDA3 YjQ2YzdmMzg1ZjEzYzk0ODllMDZjZTFhYTkzNGI5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkKZnq9Q48MR0l/XvqTQyRkYHq2VCqijv5g1xacgzlHVR7 BJ0YAoNDNZZ6vAP1or9pTWqwZ4uQvwhmXtwDCmSgNj9QZe5kFkPaoQgYzLAiyepT ezfk2CaFIo7VMpZCh44rkzoR7qkOsWuM+2pZOaPKmC5J4+UsegQ7WuA6P7XhS9Xa 0f7B41hB99njgs26kOpiO9uGZcQdnAOzIgxLYuykAZ6Zhhl+yuHk9NGsvmfF2rMM YfSpfXFQyC2K+Df/Oet+09Gbah8JYoixStvlnqigRCaO5r7p5sEiTdS+oDlw9smb Qtm8kYUO8y6mo0l/fJzmLbhF6bRWU3GHpWvoMt6TAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQURmDiww+9/c25fOujs2yoGmV8zoUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzVmNWVjMjY5LTQyMjMtNGE5Ny05Yzc0LTIyMjdkYzFmMWIxNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwESRjANBgkqhkiG9w0BAQsFAAOCAQEAjvPz7+6oEbSP2knx+DuEzDyp864h rXUP5hzVi/tjsZKqE6ah3RaU01JJP44tzfyFR8FKvt5NqiQxQIcIOjbRCwP9HqqY Jhd+x/c7FxIzPOq2PrVSiBx4s+2rjbrfI20evG7K+V07mf1zEK3VR+zSM3SRkVOu UM6snmqDIfgBzUvlv9174vKYln/UO7XiaEvVeOlCLi/SJuN1z04d4eYhEnrJPMoA +CX7CMOczcnGkwQ8UjQ8d0z5+8F4/X19waAZL+qYZaUQT/Yy7cZvM97HaR9MLO7H QbfjRPwOC01K/m4E/r2GCd8RnKiWldVLklZgIZMpLhLps0/dGBHq4X69OA== -----END CERTIFICATE-----Generated at Sat Apr 26 14:46:48 2025 by rpki-client