$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6d380ee2-1b52-4d82-b5a3-ee2fe211eb06.roa File: 6d380ee2-1b52-4d82-b5a3-ee2fe211eb06.roa (raw, json) Hash identifier: NoImFbivSoFEQRpeX1BR9TYiv24/E6ciFG6gpiFGFO8= Subject key identifier: AF:6E:54:7A:F1:79:D1:B6:6A:80:B1:49:3F:35:CE:A6:6C:9D:05:A1 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 62DD408A48ED578BDB4978F60AAC89926A0DD890 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6d380ee2-1b52-4d82-b5a3-ee2fe211eb06.roa Signing time: Fri 25 Apr 2025 16:40:11 +0000 ROA not before: Fri 25 Apr 2025 16:40:11 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.87.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:dd:40:8a:48:ed:57:8b:db:49:78:f6:0a:ac:89:92:6a:0d:d8:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 25 16:40:11 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=8505d89281bc36c5485bdfdf8b487f47fdadd09f92d0bd42cffa01710f1af429, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7d:d9:35:18:22:ed:01:06:f8:f2:44:b6:10: 6f:0d:1e:7c:2b:67:a2:ce:10:f7:ab:53:d4:15:1c: 31:f3:ec:7a:f6:39:3b:b3:e1:de:62:b8:24:df:39: 3a:27:44:a7:bd:f7:a2:f3:b7:d6:9e:3f:ac:b3:2e: 24:19:a9:8c:9b:40:22:ae:5e:d6:dc:b3:20:1a:8e: be:4c:fa:5e:b3:fa:85:e2:4d:d5:da:01:0e:a5:f8: d6:9f:46:3c:23:e4:7e:f4:38:bf:99:58:af:93:b8: 1e:7e:56:ba:3b:f0:c6:df:61:84:51:7d:72:27:fa: f5:be:63:50:e4:e6:8b:c0:6a:71:60:88:9c:3a:4e: a8:9e:ea:00:c1:09:88:79:25:cd:2e:55:ad:c4:28: 2d:59:1e:d8:6a:c7:87:5b:a4:ec:84:af:37:d2:67: 41:cb:e4:c1:76:f5:16:9b:ce:96:67:49:9c:12:70: 74:59:e9:a5:72:04:4e:9d:b5:d0:87:7f:0c:98:b2: 6b:05:0b:49:e1:3c:12:58:58:b0:6e:c3:5c:6f:2a: c9:3c:61:a2:d5:e1:3b:65:41:fa:a9:64:f2:6c:33: c1:b4:bc:71:57:20:66:cb:47:c0:70:0b:bc:f6:15: 40:08:84:67:63:e4:50:52:fa:4e:2e:51:15:fc:6a: 67:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:6E:54:7A:F1:79:D1:B6:6A:80:B1:49:3F:35:CE:A6:6C:9D:05:A1 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6d380ee2-1b52-4d82-b5a3-ee2fe211eb06.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.87.0.0/16 Signature Algorithm: sha256WithRSAEncryption 76:af:ce:fb:6c:22:b6:eb:f9:48:c6:f8:1a:e3:85:15:98:b4: df:d1:ec:91:79:c3:23:e0:11:57:83:9c:b8:79:b9:b5:f3:17: f2:4f:76:4d:ba:55:fb:f3:14:64:2d:d6:11:d3:2a:99:6d:86: f8:e0:f7:42:12:b1:43:64:f6:ce:83:99:4d:f8:b7:53:9a:7c: 98:ad:bc:43:cc:e8:5a:2c:be:b5:54:21:3b:5f:e4:34:57:b2: 19:3a:b0:ec:7d:1f:e0:ec:0b:ed:8a:1d:61:29:6e:ad:48:f3: 5f:36:ba:04:38:a0:a9:26:6b:d2:4c:b4:f6:ed:7d:ec:ef:71: 41:bb:82:70:bc:af:3f:2c:28:1a:c8:9b:e7:30:64:cf:89:3e: d0:1a:e9:17:82:24:2f:4c:1a:f2:87:fb:af:be:2b:22:68:c8: 95:99:5a:88:76:f2:10:fe:28:3a:a8:c1:fb:06:17:0c:89:67: cf:31:6e:e7:7c:90:b0:3f:ce:05:9a:cd:48:51:33:ab:03:1f: bd:f4:cd:4b:3a:7e:92:53:fd:d5:e7:ea:63:42:a1:31:43:20: 61:96:5e:f8:19:51:e0:88:49:68:71:a2:9d:ff:2e:e4:9a:10: 87:90:d6:d2:a5:d3:db:09:3a:2e:35:c8:52:bd:7b:43:63:b0: 11:1d:c3:8f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUYt1AikjtV4vbSXj2CqyJkmoN2JAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDI1MTY0MDExWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NTA1ZDg5MjgxYmMzNmM1NDg1YmRmZGY4YjQ4N2Y0N2Zk YWRkMDlmOTJkMGJkNDJjZmZhMDE3MTBmMWFmNDI5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+fdk1GCLtAQb48kS2EG8NHnwrZ6LOEPerU9QVHDHz7Hr2 OTuz4d5iuCTfOTonRKe996Lzt9aeP6yzLiQZqYybQCKuXtbcsyAajr5M+l6z+oXi TdXaAQ6l+NafRjwj5H70OL+ZWK+TuB5+Vro78MbfYYRRfXIn+vW+Y1Dk5ovAanFg iJw6Tqie6gDBCYh5Jc0uVa3EKC1ZHthqx4dbpOyErzfSZ0HL5MF29RabzpZnSZwS cHRZ6aVyBE6dtdCHfwyYsmsFC0nhPBJYWLBuw1xvKsk8YaLV4TtlQfqpZPJsM8G0 vHFXIGbLR8BwC7z2FUAIhGdj5FBS+k4uURX8amf3AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUr25UevF50bZqgLFJPzXOpmydBaEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzZkMzgwZWUyLTFiNTItNGQ4Mi1iNWEzLWVlMmZlMjExZWIwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwASVzANBgkqhkiG9w0BAQsFAAOCAQEAdq/O+2wituv5SMb4GuOFFZi039Hs kXnDI+ARV4OcuHm5tfMX8k92TbpV+/MUZC3WEdMqmW2G+OD3QhKxQ2T2zoOZTfi3 U5p8mK28Q8zoWiy+tVQhO1/kNFeyGTqw7H0f4OwL7YodYSlurUjzXza6BDigqSZr 0ky09u197O9xQbuCcLyvPywoGsib5zBkz4k+0BrpF4IkL0wa8of7r74rImjIlZla iHbyEP4oOqjB+wYXDIlnzzFu53yQsD/OBZrNSFEzqwMfvfTNSzp+klP91efqY0Kh MUMgYZZe+BlR4IhJaHGinf8u5JoQh5DW0qXT2wk6LjXIUr17Q2OwER3Djw== -----END CERTIFICATE-----Generated at Sat Apr 26 12:49:05 2025 by rpki-client