$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/67f608cb-5ec5-4705-951e-e51e20a86d55.roa File: 67f608cb-5ec5-4705-951e-e51e20a86d55.roa (raw, json) Hash identifier: y3Ob7CBRM9/dfsCPoZRq+nYZpDF8hH3cAtE3aNQpikQ= Subject key identifier: 66:4B:DA:BE:32:5A:56:E8:DE:4F:D7:75:8E:0C:FF:1C:8A:B5:DE:83 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 72B659B3F31B5EB3E68C2CE41DF0C730F9760C5A Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/67f608cb-5ec5-4705-951e-e51e20a86d55.roa Signing time: Wed 16 Apr 2025 00:31:05 +0000 ROA not before: Wed 16 Apr 2025 00:31:05 +0000 ROA not after: Wed 21 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.230.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:b6:59:b3:f3:1b:5e:b3:e6:8c:2c:e4:1d:f0:c7:30:f9:76:0c:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 16 00:31:05 2025 GMT Not After : May 21 23:59:59 2025 GMT Subject: serialNumber=525fb5a39cbf76e40f1f8dbe52098c7c6d73351209889ce9dbda0a9d2bdb2b9e, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:8f:ae:0b:a3:6a:57:ab:66:7c:17:0a:79:64: 7d:32:d7:58:bd:47:ed:87:3e:1f:95:4d:b5:89:6a: 9c:6a:ec:e6:11:a2:3a:da:ea:e7:07:52:a0:56:33: 08:2d:52:ae:bb:f8:e7:2d:02:22:4c:b5:c9:58:f9: 3c:18:f1:79:11:e1:39:3e:17:af:74:06:a4:68:b4: 6a:09:47:4e:c0:33:1a:99:5d:d4:b9:1a:75:87:96: 3b:97:57:ca:94:cc:a6:29:a9:36:0a:92:d2:66:a3: b4:04:03:ad:63:36:ee:6b:ee:88:7a:02:60:34:55: ac:64:88:dd:e8:a7:00:3a:bc:b7:3b:7d:2e:0d:f2: 6e:d3:e3:d7:16:2d:8b:9b:32:5f:27:36:36:a7:0e: ef:44:4c:eb:a1:b3:47:f3:ef:7f:f4:5d:39:bd:d6: cd:35:ad:ea:4b:9b:31:58:be:49:45:35:1e:55:4f: 4f:8c:27:3c:d6:9c:b2:99:f8:f5:dd:c2:4e:ae:3d: 37:12:2a:de:35:cc:fb:e7:6e:7a:de:81:4f:c6:e6: 79:ee:75:e0:d7:91:ea:34:b8:41:03:45:d0:a9:67: b7:0a:35:a1:3f:41:1b:0c:a4:9d:85:e6:ba:bd:34: 80:12:2c:7a:f4:4c:d4:ca:a3:a6:0e:55:7f:82:b5: 7e:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:4B:DA:BE:32:5A:56:E8:DE:4F:D7:75:8E:0C:FF:1C:8A:B5:DE:83 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/67f608cb-5ec5-4705-951e-e51e20a86d55.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.230.130.0/24 Signature Algorithm: sha256WithRSAEncryption a0:a3:72:9e:c3:73:71:a9:1a:41:b1:6d:72:21:e6:5b:c7:a2: 56:e6:5e:9e:7c:30:3a:4b:71:da:fe:ad:05:7b:f8:94:76:65: 9c:c6:71:08:12:6d:66:78:33:dc:0c:c5:eb:39:c1:bc:98:34: f5:9f:a5:90:65:bc:6b:b0:c6:11:c0:3e:44:fe:b7:4e:11:f6: c1:03:b9:1d:eb:2c:63:53:33:ee:60:f6:f2:6e:7e:5d:69:75: 63:d6:50:50:0e:c2:34:e2:e0:44:8a:dd:2b:bc:93:b2:62:d3: 13:fa:06:fb:b3:2f:df:69:12:d4:61:0b:67:e5:9c:24:84:45: 45:a7:dc:49:52:20:dc:54:80:2f:e8:bb:4e:40:ef:27:fc:f7: 61:8c:39:88:62:6b:a6:65:77:bc:79:29:fc:8b:78:a7:21:fa: 44:8b:27:4c:f5:a2:c3:16:a9:25:a7:95:6f:c4:0b:b0:e3:31: f2:79:5f:48:db:ba:fd:85:a9:35:7e:c2:01:2c:1d:46:29:8b: 30:90:7e:b4:d3:0c:a3:dc:7c:92:f2:7d:4d:51:90:58:62:65: 5f:59:67:a7:3a:02:07:7d:69:80:8e:85:93:4b:ae:81:8e:13: 2d:b0:83:9e:c2:c5:5b:0a:da:f0:5e:bd:26:18:b8:b9:e7:f3: 72:14:5b:6b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcrZZs/MbXrPmjCzkHfDHMPl2DFowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE2MDAzMTA1WhcNMjUwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MjVmYjVhMzljYmY3NmU0MGYxZjhkYmU1MjA5OGM3YzZk NzMzNTEyMDk4ODljZTlkYmRhMGE5ZDJiZGIyYjllMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmj64Lo2pXq2Z8Fwp5ZH0y11i9R+2HPh+VTbWJapxq7OYR ojra6ucHUqBWMwgtUq67+OctAiJMtclY+TwY8XkR4Tk+F690BqRotGoJR07AMxqZ XdS5GnWHljuXV8qUzKYpqTYKktJmo7QEA61jNu5r7oh6AmA0VaxkiN3opwA6vLc7 fS4N8m7T49cWLYubMl8nNjanDu9ETOuhs0fz73/0XTm91s01repLmzFYvklFNR5V T0+MJzzWnLKZ+PXdwk6uPTcSKt41zPvnbnregU/G5nnudeDXkeo0uEEDRdCpZ7cK NaE/QRsMpJ2F5rq9NIASLHr0TNTKo6YOVX+CtX4rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZkvavjJaVujeT9d1jgz/HIq13oMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzY3ZjYwOGNiLTVlYzUtNDcwNS05NTFlLWU1MWUyMGE4NmQ1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAP5oIwDQYJKoZIhvcNAQELBQADggEBAKCjcp7Dc3GpGkGxbXIh5lvHolbm Xp58MDpLcdr+rQV7+JR2ZZzGcQgSbWZ4M9wMxes5wbyYNPWfpZBlvGuwxhHAPkT+ t04R9sEDuR3rLGNTM+5g9vJufl1pdWPWUFAOwjTi4ESK3Su8k7Ji0xP6BvuzL99p EtRhC2flnCSERUWn3ElSINxUgC/ou05A7yf892GMOYhia6Zld7x5KfyLeKch+kSL J0z1osMWqSWnlW/EC7DjMfJ5X0jbuv2FqTV+wgEsHUYpizCQfrTTDKPcfJLyfU1R kFhiZV9ZZ6c6Agd9aYCOhZNLroGOEy2wg57CxVsK2vBevSYYuLnn83IUW2s= -----END CERTIFICATE-----Generated at Sat Apr 26 12:49:13 2025 by rpki-client