$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8d5989d2-9987-4ecd-b5dd-0c3c12c78aa2.roa File: 8d5989d2-9987-4ecd-b5dd-0c3c12c78aa2.roa (raw, json) Hash identifier: 1Amneq4BlctiRjXj/hyHN2jo0gNRV2yz8bJYlzEfZRc= Subject key identifier: AA:10:38:3E:0B:D5:49:3E:C5:CF:D2:BB:6F:63:F8:15:53:16:F2:96 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1AD438F5D1E4C152A46A8E46E2B3E5AF74A82C27 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8d5989d2-9987-4ecd-b5dd-0c3c12c78aa2.roa Signing time: Fri 18 Apr 2025 15:22:16 +0000 ROA not before: Fri 18 Apr 2025 15:22:16 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.153.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:d4:38:f5:d1:e4:c1:52:a4:6a:8e:46:e2:b3:e5:af:74:a8:2c:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 18 15:22:16 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=3ee1eb167f532d2549ceb39fda99a6f3229e1536b5c6d5de0651af9d9d3c9572, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:7b:35:cf:4d:f7:5a:37:54:77:79:a0:93:ce: 4b:db:e5:fa:87:6d:fc:e6:1a:46:77:19:a9:51:be: f7:b0:20:a7:82:1a:12:7f:a6:6d:a3:06:55:f1:71: ef:e1:cd:d0:bc:cc:bc:d3:8e:20:45:d8:8c:48:b6: 03:3e:d7:45:36:a3:9f:ec:b5:54:72:5f:3e:da:d6: 02:7f:e4:2a:b1:e5:57:ba:67:78:3b:fb:d4:f0:d8: 7e:8b:4e:10:ac:a2:f3:6d:ee:e8:c9:0b:eb:b9:8b: f6:3c:0d:ca:6d:46:f0:56:ba:7c:bc:17:9e:fd:b3: 1f:33:b5:c1:14:14:15:7c:e8:14:40:ee:72:c1:48: 20:b5:28:60:b6:e0:2c:db:b9:0f:10:d8:c6:da:57: 77:d1:bf:56:68:9d:6d:30:0f:f3:c6:22:89:f1:bc: 45:11:5a:6f:c5:c9:29:af:c5:a5:4a:45:cc:87:5b: ba:73:d7:64:da:ed:b5:8e:6a:42:7e:7e:97:c8:08: 03:34:97:8b:90:74:a6:84:be:3d:56:a6:b2:5a:a7: 9b:ee:eb:92:69:22:3b:7e:19:83:8e:b2:fa:01:8e: 75:78:56:83:bf:ce:7f:2f:6f:b9:9e:d3:cf:72:69: c3:9c:2a:66:47:8a:16:bb:cb:8f:c4:e7:c2:3d:2e: df:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:10:38:3E:0B:D5:49:3E:C5:CF:D2:BB:6F:63:F8:15:53:16:F2:96 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8d5989d2-9987-4ecd-b5dd-0c3c12c78aa2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.153.0.0/17 Signature Algorithm: sha256WithRSAEncryption 79:10:4f:f1:d7:21:34:bf:f6:b5:62:68:a3:0e:10:c6:ed:76: 23:44:67:b1:a0:ae:28:13:07:be:a0:4e:a4:8c:bf:38:97:6f: ff:8e:bf:4f:1f:50:f6:42:42:f6:22:60:5c:9d:0e:df:6d:9c: 5a:9d:d3:01:d0:2f:37:9f:0e:94:8b:de:e3:46:d3:52:b4:45: 84:b1:29:b7:d9:fe:67:32:15:30:41:2b:49:30:d7:79:f7:99: fd:6b:ca:82:ae:38:7e:cc:bb:fb:7f:6f:2a:5b:d1:ae:e8:bd: 10:02:f9:18:6d:cc:82:0f:3a:ae:93:a8:4d:27:e0:99:66:29: 11:de:88:3a:5a:7d:bb:f8:3e:8e:37:5c:22:08:16:e8:93:2e: 9b:62:fe:21:d4:8b:67:55:2d:1a:0e:1d:7b:cf:6a:ee:a6:fa: 68:a1:7c:fe:1d:71:1e:43:51:3f:6c:a8:db:f2:9f:f3:81:a6: 5a:6e:7a:cb:0d:be:d7:43:f7:bd:c5:9b:59:aa:97:1e:f3:31: 22:1e:56:15:3a:22:07:29:45:db:e7:54:ec:61:52:10:10:b1: f4:23:2f:c5:1f:2b:ac:2f:f3:e6:6c:88:bf:ad:86:48:17:72: 3c:56:95:53:b2:11:0b:1c:45:54:a1:62:f7:ea:1c:8f:a3:71: 19:2d:c2:14 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGtQ49dHkwVKkao5G4rPlr3SoLCcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE4MTUyMjE2WhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZWUxZWIxNjdmNTMyZDI1NDljZWIzOWZkYTk5YTZmMzIy OWUxNTM2YjVjNmQ1ZGUwNjUxYWY5ZDlkM2M5NTcyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClezXPTfdaN1R3eaCTzkvb5fqHbfzmGkZ3GalRvvewIKeC GhJ/pm2jBlXxce/hzdC8zLzTjiBF2IxItgM+10U2o5/stVRyXz7a1gJ/5Cqx5Ve6 Z3g7+9Tw2H6LThCsovNt7ujJC+u5i/Y8DcptRvBWuny8F579sx8ztcEUFBV86BRA 7nLBSCC1KGC24CzbuQ8Q2MbaV3fRv1ZonW0wD/PGIonxvEURWm/FySmvxaVKRcyH W7pz12Ta7bWOakJ+fpfICAM0l4uQdKaEvj1WprJap5vu65JpIjt+GYOOsvoBjnV4 VoO/zn8vb7me089yacOcKmZHiha7y4/E58I9Lt/5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqhA4PgvVST7Fz9K7b2P4FVMW8pYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzhkNTk4OWQyLTk5ODctNGVjZC1iNWRkLTBjM2MxMmM3OGFhMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc2mQAwDQYJKoZIhvcNAQELBQADggEBAHkQT/HXITS/9rViaKMOEMbtdiNE Z7GgrigTB76gTqSMvziXb/+Ov08fUPZCQvYiYFydDt9tnFqd0wHQLzefDpSL3uNG 01K0RYSxKbfZ/mcyFTBBK0kw13n3mf1ryoKuOH7Mu/t/bypb0a7ovRAC+RhtzIIP Oq6TqE0n4JlmKRHeiDpafbv4Po43XCIIFuiTLpti/iHUi2dVLRoOHXvPau6m+mih fP4dcR5DUT9sqNvyn/OBplpuessNvtdD973Fm1mqlx7zMSIeVhU6IgcpRdvnVOxh UhAQsfQjL8UfK6wv8+ZsiL+thkgXcjxWlVOyEQscRVShYvfqHI+jcRktwhQ= -----END CERTIFICATE-----Generated at Sat Apr 26 14:45:16 2025 by rpki-client