$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/74f2ecdf-d5d5-4b42-92a4-04fcfd19f695.roa File: 74f2ecdf-d5d5-4b42-92a4-04fcfd19f695.roa (raw, json) Hash identifier: 2fnPgx537f2dMOvu6ZanK9S3Py3wPc7VZzmqqk5iTbc= Subject key identifier: FA:48:DD:CD:50:DC:D2:DC:EE:FF:24:A5:18:93:8E:D0:45:E9:20:E8 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 14A6D4AD77CF584BAA7C94A0247C9999B793E5E6 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/74f2ecdf-d5d5-4b42-92a4-04fcfd19f695.roa Signing time: Fri 18 Apr 2025 16:01:36 +0000 ROA not before: Fri 18 Apr 2025 16:01:36 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.204.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:a6:d4:ad:77:cf:58:4b:aa:7c:94:a0:24:7c:99:99:b7:93:e5:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 18 16:01:36 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=3e0cb30aebbc87de00a75c6e34955772e7fdcfce840f2eb7e5304974a8ae5f34, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:64:a9:0b:f6:55:cd:6d:82:71:70:9d:a3:b2: 66:2d:1c:77:9b:93:04:5c:9c:44:9d:d0:0c:9e:68: 1b:20:b3:3f:98:20:b0:8e:16:e7:22:c3:27:79:9d: 97:87:41:e4:2b:d9:6d:76:34:39:48:94:d5:a5:73: 30:20:60:62:68:99:73:e4:39:ee:d2:06:d7:8e:6b: 0e:ea:75:af:b3:3a:5a:70:9a:36:77:f5:e1:3f:4c: 88:81:54:c5:62:a0:3b:ad:3d:f8:2b:58:bc:dc:92: f8:6f:34:0d:d4:8a:fe:81:23:cd:3b:21:b6:aa:13: 7e:3e:d0:7d:1d:aa:c5:5a:1a:ad:c1:99:4a:df:22: 06:1d:c8:61:64:e9:7b:e4:dd:66:b1:d7:04:b0:cf: 94:26:90:35:0b:e9:8d:fa:0e:cf:61:e8:02:d1:0b: 97:01:4c:eb:1f:c7:68:0f:12:49:b1:11:4a:e6:95: 2a:04:48:8a:19:0c:60:08:c2:27:13:2e:62:83:a5: 06:cd:b2:40:4e:83:dd:37:4d:9d:bf:cb:d2:54:65: 50:05:d0:c7:2f:c7:1e:12:98:de:10:ce:81:b1:70: 02:b1:f2:ad:a7:53:13:5a:5a:c1:43:b7:34:95:a5: b6:4e:e8:60:0c:75:b1:81:92:fa:55:15:4e:02:09: d2:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:48:DD:CD:50:DC:D2:DC:EE:FF:24:A5:18:93:8E:D0:45:E9:20:E8 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/74f2ecdf-d5d5-4b42-92a4-04fcfd19f695.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.204.32.0/20 Signature Algorithm: sha256WithRSAEncryption 90:fc:d7:15:34:39:c8:07:75:c3:40:0d:d2:4d:29:35:77:74: 86:c2:64:9c:47:4b:67:5e:bb:a7:3b:46:54:da:f4:c5:e8:5a: 22:16:ab:74:66:a2:f8:c9:cc:aa:4e:d3:e0:51:77:16:13:0c: f7:13:4f:12:fc:52:ed:81:00:ac:50:d5:66:8b:87:cf:9c:df: 77:dc:64:e7:7e:31:03:91:57:1a:57:23:2d:d8:c4:c7:53:dd: 98:03:69:0a:82:85:88:9a:ab:85:46:49:de:a9:32:2c:4a:f6: 8c:29:8f:a1:f7:ba:b4:0a:c3:48:0d:ff:bc:01:c1:4c:a1:55: 7c:d6:73:de:07:a1:8d:f9:70:bc:63:91:9a:c5:c9:f5:be:d5: a6:2c:f3:38:04:8f:59:8f:65:75:ab:b7:e1:ca:fb:ae:9a:04: 1d:e9:0e:e4:4f:c5:3b:0d:25:2a:6f:fc:cd:6f:41:6c:86:67: 18:d3:70:75:6b:3d:e1:cb:1e:dd:47:05:f4:1a:68:cb:e3:05: 76:8b:31:91:e7:b5:91:e1:b6:6b:2b:2b:33:d0:ad:ce:a8:3d: af:84:35:13:91:5c:b7:da:81:3d:ea:f1:90:30:4e:78:bb:30: 7f:61:9f:32:e0:ed:64:5a:66:84:f3:a5:4d:c0:c4:6c:02:2e: 84:d1:92:bb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFKbUrXfPWEuqfJSgJHyZmbeT5eYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE4MTYwMTM2WhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTBjYjMwYWViYmM4N2RlMDBhNzVjNmUzNDk1NTc3MmU3 ZmRjZmNlODQwZjJlYjdlNTMwNDk3NGE4YWU1ZjM0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7ZKkL9lXNbYJxcJ2jsmYtHHebkwRcnESd0AyeaBsgsz+Y ILCOFuciwyd5nZeHQeQr2W12NDlIlNWlczAgYGJomXPkOe7SBteOaw7qda+zOlpw mjZ39eE/TIiBVMVioDutPfgrWLzckvhvNA3Uiv6BI807IbaqE34+0H0dqsVaGq3B mUrfIgYdyGFk6Xvk3Wax1wSwz5QmkDUL6Y36Ds9h6ALRC5cBTOsfx2gPEkmxEUrm lSoESIoZDGAIwicTLmKDpQbNskBOg903TZ2/y9JUZVAF0Mcvxx4SmN4QzoGxcAKx 8q2nUxNaWsFDtzSVpbZO6GAMdbGBkvpVFU4CCdJHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+kjdzVDc0tzu/ySlGJOO0EXpIOgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzc0ZjJlY2RmLWQ1ZDUtNGI0Mi05MmE0LTA0ZmNmZDE5ZjY5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQ2zCAwDQYJKoZIhvcNAQELBQADggEBAJD81xU0OcgHdcNADdJNKTV3dIbC ZJxHS2deu6c7RlTa9MXoWiIWq3RmovjJzKpO0+BRdxYTDPcTTxL8Uu2BAKxQ1WaL h8+c33fcZOd+MQORVxpXIy3YxMdT3ZgDaQqChYiaq4VGSd6pMixK9owpj6H3urQK w0gN/7wBwUyhVXzWc94HoY35cLxjkZrFyfW+1aYs8zgEj1mPZXWrt+HK+66aBB3p DuRPxTsNJSpv/M1vQWyGZxjTcHVrPeHLHt1HBfQaaMvjBXaLMZHntZHhtmsrKzPQ rc6oPa+ENRORXLfagT3q8ZAwTni7MH9hnzLg7WRaZoTzpU3AxGwCLoTRkrs= -----END CERTIFICATE-----Generated at Sat Apr 26 12:47:00 2025 by rpki-client