$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8049f3ec-35fc-441a-9546-52731bf857cb.roa File: 8049f3ec-35fc-441a-9546-52731bf857cb.roa (raw, json) Hash identifier: VN9evWt1DIZZwEblRdJemPtHg+ub6H9GXQ2yD4chqqE= Subject key identifier: 16:50:85:80:DD:0F:6B:77:BB:D8:22:82:40:D6:C3:1A:A3:0D:6D:A3 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1AA899A9654AA05E2927AC232288EC93B0F9F3 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8049f3ec-35fc-441a-9546-52731bf857cb.roa Signing time: Fri 25 Apr 2025 17:21:45 +0000 ROA not before: Fri 25 Apr 2025 17:21:45 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.87.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:a8:99:a9:65:4a:a0:5e:29:27:ac:23:22:88:ec:93:b0:f9:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 25 17:21:45 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=bdb43474e83b29484792615a34cbb96a17e88e140600340976dab1696b3bef91, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ec:6d:b2:df:4e:66:c7:f5:2e:1c:0f:2a:1a: fd:81:46:a1:a6:84:2d:df:b4:87:11:1a:0d:1c:f5: 54:0e:fb:49:02:26:c6:b8:7b:fa:75:c1:48:69:da: b2:a4:2c:df:71:6a:d3:d2:aa:d8:ed:bf:ef:4e:6f: 71:1a:13:a3:28:b3:ea:92:d7:d1:d3:f0:c0:9a:fd: 95:47:d2:b3:fb:92:13:67:1b:10:00:de:a7:17:60: 94:f6:98:b8:21:f1:f6:61:02:7e:aa:31:9b:77:3c: a3:1b:38:5e:d5:78:df:f9:1a:00:ee:6a:a9:0e:f4: 62:a1:f0:a0:3d:5f:ae:a5:80:03:5f:1c:6d:a2:c1: e8:bf:fb:1b:b4:e3:d6:0b:ec:ed:89:26:b7:3b:c8: ad:2b:02:22:3d:f3:31:c0:7e:f9:c5:0a:90:0f:e4: f5:d0:17:29:db:6d:02:ab:10:63:51:01:b2:c4:7e: e9:8d:a3:dd:4a:30:3c:a2:37:6e:31:f2:1f:ee:ba: b6:4a:99:cc:30:a7:5b:4a:90:d7:0e:07:0d:7b:fe: ec:26:b3:76:69:94:23:ff:3f:ae:b7:aa:ba:b5:72: 22:56:08:f3:41:20:75:94:a1:62:51:b4:39:7f:90: 7d:1f:45:b0:a7:19:28:3e:ff:30:57:f2:70:32:3f: bf:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:50:85:80:DD:0F:6B:77:BB:D8:22:82:40:D6:C3:1A:A3:0D:6D:A3 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8049f3ec-35fc-441a-9546-52731bf857cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.87.128.0/17 Signature Algorithm: sha256WithRSAEncryption 2e:0b:9d:50:04:d9:fd:16:5a:75:7c:9b:7b:c7:eb:6f:bd:08: 66:75:e3:48:36:1f:14:a7:fe:b8:ce:66:a4:43:ed:89:a4:fe: 56:02:50:92:2d:a8:de:07:16:68:ab:7c:ae:5b:bd:c0:c2:2a: b6:f3:29:de:74:86:6e:a7:dd:fa:6e:fd:15:8b:b7:d4:25:a7: e0:13:4e:31:82:c8:97:d5:39:25:2b:e5:39:84:ef:91:aa:a2: 5a:9e:ef:41:d6:6f:08:d8:52:ee:ac:cc:06:ee:82:fc:fc:28: 86:4c:94:37:06:6a:1a:0d:f6:70:bb:85:52:86:04:3b:f9:1e: 2a:a5:91:93:00:31:f2:ca:b7:a8:d6:0a:b9:02:b0:4b:a9:23: 22:67:d4:5e:e2:47:8a:28:8d:3f:aa:d7:8f:55:fb:82:b9:62: b8:30:79:9a:42:fc:d1:04:b3:da:ac:fb:bb:1a:c1:44:7e:ad: e4:50:98:4a:b5:e4:bc:91:19:c3:d2:e0:da:7c:0c:72:47:36: 07:b8:93:89:24:18:e2:0a:fa:bf:27:77:39:24:7d:b1:b4:e5: 1c:ea:b7:49:e7:ec:f5:f8:ac:c2:8c:75:1f:ed:2e:07:20:60: 7a:27:7a:5b:4f:20:7e:b7:6e:b3:58:0b:f3:42:cf:37:f7:95: 06:e2:43:10 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITGqiZqWVKoF4pJ6wjIojsk7D58zANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNTA0MjUxNzIxNDVaFw0yNTA1MzAyMzU5NTla MHoxSTBHBgNVBAUTQGJkYjQzNDc0ZTgzYjI5NDg0NzkyNjE1YTM0Y2JiOTZhMTdl ODhlMTQwNjAwMzQwOTc2ZGFiMTY5NmIzYmVmOTExLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBANTsbbLfTmbH9S4cDyoa/YFGoaaELd+0hxEaDRz1VA77SQIm xrh7+nXBSGnasqQs33Fq09Kq2O2/705vcRoToyiz6pLX0dPwwJr9lUfSs/uSE2cb EADepxdglPaYuCHx9mECfqoxm3c8oxs4XtV43/kaAO5qqQ70YqHwoD1frqWAA18c baLB6L/7G7Tj1gvs7YkmtzvIrSsCIj3zMcB++cUKkA/k9dAXKdttAqsQY1EBssR+ 6Y2j3UowPKI3bjHyH+66tkqZzDCnW0qQ1w4HDXv+7CazdmmUI/8/rrequrVyIlYI 80EgdZShYlG0OX+QfR9FsKcZKD7/MFfycDI/vy0CAwEAAaOCArEwggKtMB0GA1Ud DgQWBBQWUIWA3Q9rd7vYIoJA1sMaow1tozAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvODA0OWYzZWMtMzVmYy00NDFhLTk1NDYtNTI3MzFiZjg1N2NiLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBzZXgDANBgkqhkiG9w0BAQsFAAOCAQEALgudUATZ/RZadXybe8frb70IZnXj SDYfFKf+uM5mpEPtiaT+VgJQki2o3gcWaKt8rlu9wMIqtvMp3nSGbqfd+m79FYu3 1CWn4BNOMYLIl9U5JSvlOYTvkaqiWp7vQdZvCNhS7qzMBu6C/PwohkyUNwZqGg32 cLuFUoYEO/keKqWRkwAx8sq3qNYKuQKwS6kjImfUXuJHiiiNP6rXj1X7grliuDB5 mkL80QSz2qz7uxrBRH6t5FCYSrXkvJEZw9Lg2nwMckc2B7iTiSQY4gr6vyd3OSR9 sbTlHOq3Sefs9fiswox1H+0uByBgeid6W08gfrdus1gL80LPN/eVBuJDEA== -----END CERTIFICATE-----Generated at Sat Apr 26 15:53:36 2025 by rpki-client