$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/72eaefd1-9fd2-48be-828b-856127447e1b.roa File: 72eaefd1-9fd2-48be-828b-856127447e1b.roa (raw, json) Hash identifier: Zm03YhaWmo8eedxX7WhRd4WHtkzoOn+7599pJQa05AU= Subject key identifier: 29:AD:4F:6B:84:13:4D:AF:44:5D:0C:AD:8B:C0:F8:51:6C:E2:86:64 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2974B04EC2BAAE5A4443C5C8050ACDC881025BF9 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/72eaefd1-9fd2-48be-828b-856127447e1b.roa Signing time: Fri 18 Apr 2025 18:01:36 +0000 ROA not before: Fri 18 Apr 2025 18:01:36 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.244.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:74:b0:4e:c2:ba:ae:5a:44:43:c5:c8:05:0a:cd:c8:81:02:5b:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 18 18:01:36 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=d3e78dc180b401b3c6d042c956d43f6402c4d23464e3efd956ba39ffcb7fae1d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:2c:30:bb:c9:2e:7a:fa:df:1a:f0:6a:f2:94: c8:d2:54:53:c4:ff:c1:d1:c5:8f:1d:7f:aa:48:c1: ee:42:bf:b2:9f:b4:15:36:04:4d:90:92:5d:37:e4: 2a:4e:6f:ed:e6:df:be:03:23:ab:d3:ff:2e:a5:87: 6b:f6:34:51:ec:3b:25:cd:24:c1:84:7c:9c:9b:79: fe:07:94:ee:5d:23:c3:0a:22:a3:f4:d2:a1:76:78: ca:b3:52:47:49:3c:07:a8:6a:49:a6:7a:67:95:c9: 25:53:1d:f8:78:09:ce:8c:92:a3:c8:5f:cd:73:ab: b2:83:0c:ac:1e:9d:54:2d:66:ab:1b:be:77:9e:eb: 2d:e4:28:5b:0b:e6:13:70:ad:74:a6:df:b9:d5:3c: d3:c1:be:54:56:5d:f5:02:30:e5:c3:92:b7:fe:4d: cc:4b:72:9a:71:d6:b1:82:86:21:ee:ee:3e:dc:30: df:f1:e5:53:6d:77:3f:ba:37:d2:e1:cd:fc:4d:6a: 71:d5:db:eb:44:48:73:fe:83:45:59:cf:40:de:cb: a9:03:15:cf:cd:45:c5:4f:f0:ab:be:22:e1:ca:b1: dc:f4:59:85:79:12:c6:3b:9c:f5:f6:db:93:5a:56: e3:9f:84:d7:d4:9f:cf:6f:b6:fc:a1:21:68:66:e4: c5:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:AD:4F:6B:84:13:4D:AF:44:5D:0C:AD:8B:C0:F8:51:6C:E2:86:64 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/72eaefd1-9fd2-48be-828b-856127447e1b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.244.64.0/18 Signature Algorithm: sha256WithRSAEncryption 34:39:8e:09:61:25:95:5c:9f:79:6f:b4:70:8b:4e:45:f4:fd: 47:3a:b4:de:28:3c:c1:74:2b:1d:a4:99:46:c0:84:43:77:94: d8:4f:b0:6b:81:2c:17:11:c1:dc:ab:46:86:a1:2c:45:a4:98: a9:7c:04:5d:21:5a:5b:b0:a9:07:bb:bd:03:29:ad:ff:e8:83: ff:59:89:93:ba:9f:69:fc:62:05:10:86:93:45:bd:0c:71:5d: 58:2e:36:eb:3f:73:3b:79:9a:5f:91:51:59:8a:09:ae:76:31: 4e:ac:77:22:22:34:84:5b:92:3f:64:3a:4f:c7:1b:19:14:7c: 35:49:a5:14:6b:18:6b:d4:37:67:36:01:cf:0c:d4:91:ff:98: f1:19:cb:47:1b:1a:33:22:4c:2f:a7:c5:37:ef:33:c7:0f:2b: 1d:63:62:ae:3d:d1:91:b0:28:17:da:9b:de:1b:71:4d:cc:b7: c9:05:ea:4a:6d:f2:47:9a:9f:34:cf:94:e8:25:fe:05:a5:89: 4b:58:a3:47:de:db:de:ee:af:1b:fc:18:97:09:e8:2d:2d:08: fc:a2:88:fa:af:e5:8e:45:ff:c2:96:8c:3b:dd:c5:fd:36:b7: e8:08:c2:cc:1c:87:5f:ac:e8:ad:12:31:58:72:db:55:4d:68: e0:e5:de:3c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKXSwTsK6rlpEQ8XIBQrNyIECW/kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE4MTgwMTM2WhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkM2U3OGRjMTgwYjQwMWIzYzZkMDQyYzk1NmQ0M2Y2NDAy YzRkMjM0NjRlM2VmZDk1NmJhMzlmZmNiN2ZhZTFkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDwLDC7yS56+t8a8GrylMjSVFPE/8HRxY8df6pIwe5Cv7Kf tBU2BE2Qkl035CpOb+3m374DI6vT/y6lh2v2NFHsOyXNJMGEfJybef4HlO5dI8MK IqP00qF2eMqzUkdJPAeoakmmemeVySVTHfh4Cc6MkqPIX81zq7KDDKwenVQtZqsb vnee6y3kKFsL5hNwrXSm37nVPNPBvlRWXfUCMOXDkrf+TcxLcppx1rGChiHu7j7c MN/x5VNtdz+6N9LhzfxNanHV2+tESHP+g0VZz0Dey6kDFc/NRcVP8Ku+IuHKsdz0 WYV5EsY7nPX225NaVuOfhNfUn89vtvyhIWhm5MV3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKa1Pa4QTTa9EXQyti8D4UWzihmQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzcyZWFlZmQxLTlmZDItNDhiZS04MjhiLTg1NjEyNzQ0N2UxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY29EAwDQYJKoZIhvcNAQELBQADggEBADQ5jglhJZVcn3lvtHCLTkX0/Uc6 tN4oPMF0Kx2kmUbAhEN3lNhPsGuBLBcRwdyrRoahLEWkmKl8BF0hWluwqQe7vQMp rf/og/9ZiZO6n2n8YgUQhpNFvQxxXVguNus/czt5ml+RUVmKCa52MU6sdyIiNIRb kj9kOk/HGxkUfDVJpRRrGGvUN2c2Ac8M1JH/mPEZy0cbGjMiTC+nxTfvM8cPKx1j Yq490ZGwKBfam94bcU3Mt8kF6kpt8keanzTPlOgl/gWliUtYo0fe297urxv8GJcJ 6C0tCPyiiPqv5Y5F/8KWjDvdxf02t+gIwswch1+s6K0SMVhy21VNaODl3jw= -----END CERTIFICATE-----Generated at Sat Apr 26 15:52:41 2025 by rpki-client