$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/66496eeb-98fc-4220-823f-0c3b38023275.roa File: 66496eeb-98fc-4220-823f-0c3b38023275.roa (raw, json) Hash identifier: +0NAlCqW+8ta7rY3/6q5cQCEU7QI1S9fhJ7mXy7URd0= Subject key identifier: 96:FC:90:E3:A1:13:BE:66:06:0F:37:C0:A1:69:FF:AE:A8:81:1B:3E Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7870D7E2BA56E3F3EFAE0F298333383506616213 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/66496eeb-98fc-4220-823f-0c3b38023275.roa Signing time: Fri 25 Apr 2025 16:00:23 +0000 ROA not before: Fri 25 Apr 2025 16:00:23 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 7224 IP address blocks: 15.248.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:70:d7:e2:ba:56:e3:f3:ef:ae:0f:29:83:33:38:35:06:61:62:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 25 16:00:23 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=ed4c685e24df59d3a7998af05706a046ddc5873c1c2f4ad246e151b4abe90da5, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4c:e9:49:0b:27:51:ac:c3:7e:0c:2e:cf:4b: 15:d3:cf:84:d4:9d:12:98:cb:e4:83:9d:68:c5:86: 47:66:fb:32:78:27:bc:51:ca:21:eb:1b:5d:f1:b6: b6:72:e4:d9:f0:b2:85:44:1d:f6:10:67:5d:e0:ab: da:52:ae:15:17:d6:31:c3:10:10:45:e5:e4:ec:68: f9:fc:9d:23:ec:99:28:91:1f:dd:34:2f:a6:f7:36: 4f:f4:10:63:38:13:db:07:b1:57:95:db:e3:9c:07: e4:fa:6e:96:23:52:7c:f1:15:26:cf:ce:3d:0b:88: 31:a9:a7:94:84:ef:af:61:7c:6f:d8:c0:47:4f:29: 90:65:fb:40:98:99:30:bd:3f:c1:cd:af:40:bf:e2: e5:de:d8:bd:12:4c:86:36:d7:3c:1b:e1:c2:a3:96: 47:6b:2f:6f:0a:d6:49:52:5d:54:e6:e3:92:09:19: ab:c1:e5:63:e5:88:45:2e:d5:37:fa:53:75:7b:a0: 2d:a8:8f:fa:50:55:da:1e:7e:9c:33:7c:65:f4:f1: 05:e7:ce:0a:53:ee:29:5d:86:48:49:ec:e5:33:24: 7f:fa:49:e2:47:07:2e:5a:12:fe:37:b2:52:43:b6: 3e:e5:e3:fb:91:53:03:4f:18:4b:fc:98:5f:8d:a0: 26:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:FC:90:E3:A1:13:BE:66:06:0F:37:C0:A1:69:FF:AE:A8:81:1B:3E X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/66496eeb-98fc-4220-823f-0c3b38023275.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.248.105.0/24 Signature Algorithm: sha256WithRSAEncryption 76:4a:a3:58:b2:a0:0d:50:7e:1e:a1:f6:4e:c5:10:01:2a:c2: a7:be:af:50:13:35:60:43:3c:29:60:34:50:3c:b5:bf:76:6a: 24:33:e1:60:95:77:55:1f:34:66:af:d0:c8:36:9e:a7:5a:4f: be:a5:04:0f:82:20:74:e3:5f:76:46:90:ee:1b:fc:98:84:09: b4:a2:77:5c:fa:d3:d2:13:c5:25:ef:bc:c5:71:8e:4d:f5:9e: 9f:24:1d:49:62:2e:a8:bf:9d:8e:d2:9c:f4:24:49:e1:67:11: 91:62:03:3c:77:c1:8d:35:0c:8c:31:e2:54:44:af:fa:cc:4b: 71:08:1c:4f:7e:c1:41:40:db:ff:7d:f3:ea:5b:a9:f5:16:35: 0c:1a:81:b0:9f:09:fb:94:84:88:e4:72:98:c7:89:30:9e:4f: 0b:d5:e5:76:27:ee:ab:ee:71:de:2e:08:50:4f:34:58:23:04: da:20:6f:1c:ee:30:0e:e8:58:92:f3:55:2f:bd:74:65:1c:11: b9:4e:e7:fd:c2:1d:7c:eb:c5:c9:71:81:80:2a:76:3d:56:9d: f1:44:df:11:4e:25:4b:36:e3:ae:d8:37:f7:02:8d:f0:e3:8a: a2:ac:7e:46:ce:c6:e3:67:e8:8e:e1:af:67:de:69:83:89:03: d0:5b:e1:cc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeHDX4rpW4/Pvrg8pgzM4NQZhYhMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDI1MTYwMDIzWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZDRjNjg1ZTI0ZGY1OWQzYTc5OThhZjA1NzA2YTA0NmRk YzU4NzNjMWMyZjRhZDI0NmUxNTFiNGFiZTkwZGE1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+TOlJCydRrMN+DC7PSxXTz4TUnRKYy+SDnWjFhkdm+zJ4 J7xRyiHrG13xtrZy5NnwsoVEHfYQZ13gq9pSrhUX1jHDEBBF5eTsaPn8nSPsmSiR H900L6b3Nk/0EGM4E9sHsVeV2+OcB+T6bpYjUnzxFSbPzj0LiDGpp5SE769hfG/Y wEdPKZBl+0CYmTC9P8HNr0C/4uXe2L0STIY21zwb4cKjlkdrL28K1klSXVTm45IJ GavB5WPliEUu1Tf6U3V7oC2oj/pQVdoefpwzfGX08QXnzgpT7ildhkhJ7OUzJH/6 SeJHBy5aEv43slJDtj7l4/uRUwNPGEv8mF+NoCbHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlvyQ46ETvmYGDzfAoWn/rqiBGz4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzY2NDk2ZWViLTk4ZmMtNDIyMC04MjNmLTBjM2IzODAyMzI3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAP+GkwDQYJKoZIhvcNAQELBQADggEBAHZKo1iyoA1Qfh6h9k7FEAEqwqe+ r1ATNWBDPClgNFA8tb92aiQz4WCVd1UfNGav0Mg2nqdaT76lBA+CIHTjX3ZGkO4b /JiECbSid1z609ITxSXvvMVxjk31np8kHUliLqi/nY7SnPQkSeFnEZFiAzx3wY01 DIwx4lREr/rMS3EIHE9+wUFA2/998+pbqfUWNQwagbCfCfuUhIjkcpjHiTCeTwvV 5XYn7qvucd4uCFBPNFgjBNogbxzuMA7oWJLzVS+9dGUcEblO5/3CHXzrxclxgYAq dj1WnfFE3xFOJUs2467YN/cCjfDjiqKsfkbOxuNn6I7hr2feaYOJA9Bb4cw= -----END CERTIFICATE-----Generated at Sat Apr 26 12:52:01 2025 by rpki-client