$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/76a36ab9-ada7-4025-9224-bcf99f3e1a8c.roa File: 76a36ab9-ada7-4025-9224-bcf99f3e1a8c.roa (raw, json) Hash identifier: C5kXqitHc1otp/QjfOo/nqKMOUG4NiwKqCUqu54qdpc= Subject key identifier: 51:2A:B1:A5:31:7C:11:74:6D:54:F0:72:C0:0F:3D:56:D0:73:AF:08 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 216D031C4262782D3217B35566AA1AA21EF029ED Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/76a36ab9-ada7-4025-9224-bcf99f3e1a8c.roa Signing time: Sat 26 Apr 2025 00:21:34 +0000 ROA not before: Sat 26 Apr 2025 00:21:34 +0000 ROA not after: Sat 31 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 152.137.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:6d:03:1c:42:62:78:2d:32:17:b3:55:66:aa:1a:a2:1e:f0:29:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 26 00:21:34 2025 GMT Not After : May 31 23:59:59 2025 GMT Subject: serialNumber=63a84088272f3df3956217aa82d14a815153c353e3ad22891d49ac108ed260c6, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:50:4c:ec:57:8d:3c:9f:a6:7d:51:53:a3:4a: d2:a0:6d:09:67:b6:76:6c:ff:7a:c4:5f:cb:8c:2b: 28:73:9f:de:c0:e1:7b:5a:a6:57:41:ef:7f:43:57: fe:5a:b8:3d:f0:2d:76:b6:02:75:17:45:f2:3d:5c: a2:5f:80:20:51:81:df:f0:1f:9e:df:29:f1:6d:d8: a6:65:64:d0:be:57:35:e5:bc:fe:c2:ae:97:a4:ac: 2f:e8:f4:d4:19:be:78:79:17:98:13:88:f7:7d:83: f2:ed:15:fb:09:b5:27:d3:e5:d0:93:0a:82:04:94: 0b:d5:4b:46:b7:10:fb:46:78:30:d3:9d:39:75:f6: 88:ed:c0:09:72:bd:e5:c3:3d:f6:f4:d6:5c:c6:30: 20:44:93:51:7f:3a:3d:6c:13:82:de:8e:fb:e8:33: 36:7e:e6:74:4c:5e:42:be:fc:cc:c3:31:f4:d1:5d: a0:b1:c6:0b:85:b7:86:2d:c9:4a:47:5f:cf:9d:0f: bd:09:8a:48:54:c1:66:06:fc:f4:f6:ce:89:81:a2: dd:93:1c:66:2b:00:4b:27:a9:48:07:53:71:4f:15: 9e:0d:c4:5e:35:d1:3f:a7:71:de:83:f3:6e:6a:86: b7:34:76:b2:ed:a7:7c:99:7a:b8:ac:1c:2e:03:ce: 0a:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:2A:B1:A5:31:7C:11:74:6D:54:F0:72:C0:0F:3D:56:D0:73:AF:08 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/76a36ab9-ada7-4025-9224-bcf99f3e1a8c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 152.137.0.0/16 Signature Algorithm: sha256WithRSAEncryption 59:e2:81:7f:82:d3:a0:da:c7:6e:46:96:f9:ba:1e:88:af:4d: 26:2a:70:21:28:cd:1f:85:45:e3:fe:22:34:41:be:ba:2b:47: be:eb:7e:a3:d6:3d:3c:57:7b:14:9f:c2:0d:d5:09:51:88:2d: c5:f3:b2:2d:4f:3e:d3:ac:aa:ef:96:06:c3:64:72:2f:19:55: 80:44:46:04:f5:62:7d:ea:09:08:c2:90:63:01:c4:29:7d:c3: 39:57:d3:01:01:b0:67:b4:d5:b2:da:2d:0a:e2:8c:5c:e5:37: fd:a9:11:0e:6a:1f:e8:79:a2:29:f9:8e:25:16:71:1f:61:8b: 71:25:47:55:0a:4e:a8:e3:54:2e:4b:71:82:e9:60:32:02:f0: 48:02:eb:43:2b:fe:f7:e0:bd:4f:ee:10:b1:8f:b0:79:76:59: 8c:ee:99:31:2d:f3:42:33:b6:31:60:83:96:37:96:2c:26:4a: 29:58:48:47:a4:2a:fc:68:ed:ce:e4:d7:4a:ee:ca:87:0a:49: 7f:ba:c0:0b:7d:2b:10:ca:da:5d:89:33:bd:3a:b0:da:b9:5b: 6c:7d:e9:9d:4e:2c:e6:25:cb:94:26:9f:e3:51:ac:a1:a0:c0: 41:d9:97:54:db:19:ab:a3:23:31:03:96:d0:dc:01:a4:d0:3b: e7:c5:50:8e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIW0DHEJieC0yF7NVZqoaoh7wKe0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDI2MDAyMTM0WhcNMjUwNTMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2M2E4NDA4ODI3MmYzZGYzOTU2MjE3YWE4MmQxNGE4MTUx NTNjMzUzZTNhZDIyODkxZDQ5YWMxMDhlZDI2MGM2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSUEzsV408n6Z9UVOjStKgbQlntnZs/3rEX8uMKyhzn97A 4XtapldB739DV/5auD3wLXa2AnUXRfI9XKJfgCBRgd/wH57fKfFt2KZlZNC+VzXl vP7CrpekrC/o9NQZvnh5F5gTiPd9g/LtFfsJtSfT5dCTCoIElAvVS0a3EPtGeDDT nTl19ojtwAlyveXDPfb01lzGMCBEk1F/Oj1sE4LejvvoMzZ+5nRMXkK+/MzDMfTR XaCxxguFt4YtyUpHX8+dD70JikhUwWYG/PT2zomBot2THGYrAEsnqUgHU3FPFZ4N xF410T+ncd6D825qhrc0drLtp3yZerisHC4DzgptAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUUSqxpTF8EXRtVPBywA89VtBzrwgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzc2YTM2YWI5LWFkYTctNDAyNS05MjI0LWJjZjk5ZjNlMWE4Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCYiTANBgkqhkiG9w0BAQsFAAOCAQEAWeKBf4LToNrHbkaW+boeiK9NJipw ISjNH4VF4/4iNEG+uitHvut+o9Y9PFd7FJ/CDdUJUYgtxfOyLU8+06yq75YGw2Ry LxlVgERGBPVifeoJCMKQYwHEKX3DOVfTAQGwZ7TVstotCuKMXOU3/akRDmof6Hmi KfmOJRZxH2GLcSVHVQpOqONULktxgulgMgLwSALrQyv+9+C9T+4QsY+weXZZjO6Z MS3zQjO2MWCDljeWLCZKKVhIR6Qq/GjtzuTXSu7KhwpJf7rAC30rEMraXYkzvTqw 2rlbbH3pnU4s5iXLlCaf41GsoaDAQdmXVNsZq6MjMQOW0NwBpNA758VQjg== -----END CERTIFICATE-----Generated at Sat Apr 26 17:36:21 2025 by rpki-client