$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8af8a158-8bde-4268-a5db-85868bfe4ce7.roa File: 8af8a158-8bde-4268-a5db-85868bfe4ce7.roa (raw, json) Hash identifier: HNHBppSEPUczjzU2jFf1uWXGbKxipK9PLxHINu/bTvo= Subject key identifier: 3E:7D:BE:CF:47:83:4C:3C:25:66:4C:FD:55:BA:E3:A6:E3:73:CD:7E Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3B3B7612E6D24A919110C38F71C975BB17560FE5 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8af8a158-8bde-4268-a5db-85868bfe4ce7.roa Signing time: Mon 14 Apr 2025 17:11:09 +0000 ROA not before: Mon 14 Apr 2025 17:11:09 +0000 ROA not after: Mon 19 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.215.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:3b:76:12:e6:d2:4a:91:91:10:c3:8f:71:c9:75:bb:17:56:0f:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 14 17:11:09 2025 GMT Not After : May 19 23:59:59 2025 GMT Subject: serialNumber=b1e445fd814a4229d6e48feb86ad17a370373320f263ad50f19f58b0ca9854f6, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f1:92:6c:05:86:27:bc:b0:9c:ee:33:62:38: 42:15:b9:69:22:e0:82:45:17:c2:2c:74:20:84:df: 57:c3:3c:08:17:f8:b1:23:ff:80:19:a0:f7:2f:be: 9e:da:d7:66:f5:7b:9c:8a:08:60:4a:0c:5d:ae:11: 3e:2d:69:2a:00:15:3c:4b:80:db:76:09:ff:7b:83: 9e:6e:d4:15:0a:b4:d5:0a:03:b8:1c:57:aa:2f:b2: 53:5b:6c:7a:99:e1:85:0b:9f:e5:cd:c1:85:85:bb: 56:16:2d:23:30:6e:ca:cc:8c:8c:29:4c:86:10:45: 93:a9:eb:ed:4c:9c:ab:ca:5a:f3:05:09:17:d1:1d: b5:13:61:20:ed:a3:7e:96:46:f1:b0:c1:0c:c4:95: 91:57:57:38:67:37:78:1e:b8:53:5f:e9:4a:38:43: 24:e4:3a:76:4e:a6:9e:e2:8e:8a:27:af:c7:bd:ce: a2:5e:75:94:da:38:59:33:54:19:fe:23:2f:26:05: 36:b6:12:69:45:b7:6b:dc:82:b6:55:35:46:19:c7: 2e:e7:de:96:28:9c:22:e0:95:43:8e:83:8a:d0:35: bb:2a:14:be:03:8c:8d:96:88:8b:cd:80:81:ba:ec: 4d:99:5a:4b:c0:e0:ce:1f:15:8f:bd:a9:a4:46:2e: 11:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:7D:BE:CF:47:83:4C:3C:25:66:4C:FD:55:BA:E3:A6:E3:73:CD:7E X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8af8a158-8bde-4268-a5db-85868bfe4ce7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.215.96.0/19 Signature Algorithm: sha256WithRSAEncryption a2:50:72:e2:04:37:e3:3f:0c:5e:bf:0b:48:20:7d:de:26:00: 7d:df:63:eb:46:81:97:e5:b6:14:58:93:81:af:a1:d9:fc:db: 25:74:8e:8f:cb:bc:fe:98:2c:f0:b5:a9:cd:6a:71:84:f3:f7: 9a:f6:67:d9:3b:81:78:54:84:3d:24:94:10:55:85:d6:b7:a9: 7e:cb:4c:aa:a8:0b:ad:13:41:c8:e4:cc:72:e9:09:3f:65:4e: 51:21:8d:83:11:a6:1a:2f:6f:18:62:e2:cb:6a:50:3a:a6:89: df:91:bb:53:d5:2c:3c:02:b6:bb:ad:13:25:9f:df:f5:6f:fa: 44:6d:50:7c:1c:5b:17:69:13:c5:1a:76:72:5a:32:ba:70:91: c8:57:32:e6:6e:53:6d:73:0d:07:0a:98:3f:6f:fe:78:09:77: f9:f0:e2:03:92:03:f9:5b:7c:7e:8b:02:bc:e1:74:e0:8c:22: bb:9b:81:8c:ee:42:e6:52:60:5d:03:ea:63:8d:6d:10:4d:3b: 93:7c:43:22:8d:84:57:30:41:80:cd:ce:3a:1a:ca:09:b9:e5: f0:41:52:bc:8d:28:f7:14:3b:51:37:ce:c0:8c:2b:1e:44:28: f3:02:4e:dd:99:26:85:c6:37:70:f6:52:dc:76:e5:61:7a:d3: 06:26:88:85 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOzt2EubSSpGREMOPccl1uxdWD+UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE0MTcxMTA5WhcNMjUwNTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMWU0NDVmZDgxNGE0MjI5ZDZlNDhmZWI4NmFkMTdhMzcw MzczMzIwZjI2M2FkNTBmMTlmNThiMGNhOTg1NGY2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCy8ZJsBYYnvLCc7jNiOEIVuWki4IJFF8IsdCCE31fDPAgX +LEj/4AZoPcvvp7a12b1e5yKCGBKDF2uET4taSoAFTxLgNt2Cf97g55u1BUKtNUK A7gcV6ovslNbbHqZ4YULn+XNwYWFu1YWLSMwbsrMjIwpTIYQRZOp6+1MnKvKWvMF CRfRHbUTYSDto36WRvGwwQzElZFXVzhnN3geuFNf6Uo4QyTkOnZOpp7ijoonr8e9 zqJedZTaOFkzVBn+Iy8mBTa2EmlFt2vcgrZVNUYZxy7n3pYonCLglUOOg4rQNbsq FL4DjI2WiIvNgIG67E2ZWkvA4M4fFY+9qaRGLhHJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPn2+z0eDTDwlZkz9VbrjpuNzzX4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzhhZjhhMTU4LThiZGUtNDI2OC1hNWRiLTg1ODY4YmZlNGNlNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU212AwDQYJKoZIhvcNAQELBQADggEBAKJQcuIEN+M/DF6/C0ggfd4mAH3f Y+tGgZflthRYk4Gvodn82yV0jo/LvP6YLPC1qc1qcYTz95r2Z9k7gXhUhD0klBBV hda3qX7LTKqoC60TQcjkzHLpCT9lTlEhjYMRphovbxhi4stqUDqmid+Ru1PVLDwC trutEyWf3/Vv+kRtUHwcWxdpE8UadnJaMrpwkchXMuZuU21zDQcKmD9v/ngJd/nw 4gOSA/lbfH6LArzhdOCMIrubgYzuQuZSYF0D6mONbRBNO5N8QyKNhFcwQYDNzjoa ygm55fBBUryNKPcUO1E3zsCMKx5EKPMCTt2ZJoXGN3D2Utx25WF60wYmiIU= -----END CERTIFICATE-----Generated at Sat Apr 26 18:27:04 2025 by rpki-client