$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6b9099d3-0730-40ba-bfda-3f00718bdd29.roa File: 6b9099d3-0730-40ba-bfda-3f00718bdd29.roa (raw, json) Hash identifier: CSZvCdUrfPAZqUrbDaYxaYQzm0eFsxKR8I59zlRj/qc= Subject key identifier: 66:09:7A:F9:3D:48:32:A4:EB:E5:D9:11:9A:E8:7D:CD:BA:74:2C:CE Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1E76A08F2F0D2439D3FA9433D75BD55E71CB0A6E Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6b9099d3-0730-40ba-bfda-3f00718bdd29.roa Signing time: Wed 16 Apr 2025 00:50:25 +0000 ROA not before: Wed 16 Apr 2025 00:50:25 +0000 ROA not after: Wed 21 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 52.46.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:76:a0:8f:2f:0d:24:39:d3:fa:94:33:d7:5b:d5:5e:71:cb:0a:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 16 00:50:25 2025 GMT Not After : May 21 23:59:59 2025 GMT Subject: serialNumber=9aaac51a5209a7fdda0e5f57784985e685680253c9973ba4f5a0bdac21003cb2, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9c:60:44:84:d9:95:b6:0b:88:36:b6:a3:f0: 65:21:b5:9d:a3:16:b0:f0:45:6e:21:05:ea:45:03: c5:2a:4f:7f:38:f5:ed:20:30:01:f8:22:48:9e:81: e6:70:c2:bd:b5:42:f5:9b:34:da:c4:6e:ed:00:aa: b4:b0:12:81:df:01:61:9e:b9:4f:d2:a7:89:25:06: ef:6a:ed:28:7d:c1:69:1f:f8:65:5f:ab:a0:e2:ab: ae:50:7d:17:8f:d2:b7:fb:0b:78:51:39:ae:2c:34: ef:c3:0f:de:5a:0d:21:93:e2:a3:8b:a2:76:3d:84: 96:53:82:1b:f2:3e:bc:6e:83:43:63:c7:7d:ed:35: 02:5a:6c:1e:5a:b0:48:64:69:41:2d:d2:b5:41:8f: e8:de:16:34:4f:a1:0e:b8:06:6a:da:7c:2e:b3:b3: a3:d2:35:06:31:96:bb:f2:d6:14:4d:98:dc:0d:55: 92:c4:a5:f0:f3:19:64:10:88:81:85:ec:5a:ed:6e: db:33:e9:2b:c8:4f:97:0a:da:5c:cd:35:e3:95:ac: 42:19:93:ea:8d:83:4c:87:5d:45:08:be:ac:e3:90: 9d:84:ec:1f:59:c9:bb:dd:24:e8:2d:0a:78:7a:25: cf:ec:9d:04:68:e8:04:46:81:6a:20:c8:ed:df:85: 11:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:09:7A:F9:3D:48:32:A4:EB:E5:D9:11:9A:E8:7D:CD:BA:74:2C:CE X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6b9099d3-0730-40ba-bfda-3f00718bdd29.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.46.96.0/19 Signature Algorithm: sha256WithRSAEncryption a1:3c:99:0d:e2:cc:b8:0e:56:8c:80:bf:5b:3f:c1:84:45:45: 98:77:7c:77:53:88:f8:08:b1:08:fe:e5:9d:69:78:89:c3:6f: 9e:0b:e7:6c:c5:f3:05:25:e9:0f:85:5b:ce:9d:28:ae:96:e5: dd:4c:77:09:35:93:c7:cb:59:eb:24:af:74:69:59:e8:a7:5b: bc:4e:94:81:ed:57:b2:7b:43:bf:ec:8c:7e:76:bd:00:0b:e0: 6e:31:3b:3d:12:2f:04:d5:4f:09:89:0c:66:ac:d3:4f:68:36: bd:52:3c:ba:35:38:47:4c:f4:ed:cd:44:4a:db:6e:5d:45:b5: c5:c8:a4:81:6a:5a:16:52:ce:27:b9:9b:bd:18:3e:ce:73:34: 11:23:9d:28:ad:59:49:b9:f6:60:b8:6c:5c:d7:91:5d:6c:15: 6e:5c:9e:72:bd:91:bd:09:41:5e:ea:60:ba:bb:60:1c:0f:35: ed:0d:b7:25:e8:0d:cf:b7:bd:6a:53:be:58:a3:8b:37:fc:10: 30:11:61:f1:f6:1b:cb:46:47:bc:66:3a:f1:fb:31:33:21:37: a7:85:07:07:22:39:8a:48:56:e1:a2:92:a0:50:7f:90:35:27: 8b:f8:1a:fd:65:38:40:92:98:8b:9d:a6:e0:2c:dc:3a:61:c4: 89:49:be:1c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHnagjy8NJDnT+pQz11vVXnHLCm4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE2MDA1MDI1WhcNMjUwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A5YWFhYzUxYTUyMDlhN2ZkZGEwZTVmNTc3ODQ5ODVlNjg1 NjgwMjUzYzk5NzNiYTRmNWEwYmRhYzIxMDAzY2IyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFnGBEhNmVtguINraj8GUhtZ2jFrDwRW4hBepFA8UqT384 9e0gMAH4IkiegeZwwr21QvWbNNrEbu0AqrSwEoHfAWGeuU/Sp4klBu9q7Sh9wWkf +GVfq6Diq65QfReP0rf7C3hROa4sNO/DD95aDSGT4qOLonY9hJZTghvyPrxug0Nj x33tNQJabB5asEhkaUEt0rVBj+jeFjRPoQ64BmrafC6zs6PSNQYxlrvy1hRNmNwN VZLEpfDzGWQQiIGF7Frtbtsz6SvIT5cK2lzNNeOVrEIZk+qNg0yHXUUIvqzjkJ2E 7B9ZybvdJOgtCnh6Jc/snQRo6ARGgWogyO3fhREHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZgl6+T1IMqTr5dkRmuh9zbp0LM4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzZiOTA5OWQzLTA3MzAtNDBiYS1iZmRhLTNmMDA3MThiZGQyOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU0LmAwDQYJKoZIhvcNAQELBQADggEBAKE8mQ3izLgOVoyAv1s/wYRFRZh3 fHdTiPgIsQj+5Z1peInDb54L52zF8wUl6Q+FW86dKK6W5d1Mdwk1k8fLWeskr3Rp WeinW7xOlIHtV7J7Q7/sjH52vQAL4G4xOz0SLwTVTwmJDGas009oNr1SPLo1OEdM 9O3NRErbbl1FtcXIpIFqWhZSzie5m70YPs5zNBEjnSitWUm59mC4bFzXkV1sFW5c nnK9kb0JQV7qYLq7YBwPNe0NtyXoDc+3vWpTvlijizf8EDARYfH2G8tGR7xmOvH7 MTMhN6eFBwciOYpIVuGikqBQf5A1J4v4Gv1lOECSmIudpuAs3DphxIlJvhw= -----END CERTIFICATE-----Generated at Sat Apr 26 12:50:20 2025 by rpki-client