$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/998d5f0e-e0d0-45cb-96fd-9e8b1ff02524.roa File: 998d5f0e-e0d0-45cb-96fd-9e8b1ff02524.roa (raw, json) Hash identifier: dIPNCBwDI3R9/L9c95W7eK17KDhl1VBR6U4TjmUPyZ8= Subject key identifier: 2F:50:59:55:B1:6F:AF:A8:20:31:92:52:55:F3:39:5F:B9:CF:B7:38 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1E5379AF07D5BFF6906B34B5379696D8FDEB780C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/998d5f0e-e0d0-45cb-96fd-9e8b1ff02524.roa Signing time: Fri 25 Apr 2025 16:40:53 +0000 ROA not before: Fri 25 Apr 2025 16:40:53 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.34.232.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:53:79:af:07:d5:bf:f6:90:6b:34:b5:37:96:96:d8:fd:eb:78:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 25 16:40:53 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=cc7587813f6d54aa8a4ba831036b7f3e778d5b760d31d345505c56a12d490738, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:32:9d:8f:04:69:3d:aa:57:99:61:c9:be:d2: bf:d2:09:5b:0e:e0:42:b4:e1:e9:52:59:89:21:a3: d6:20:68:49:bb:22:fd:c4:65:70:08:b5:c1:d3:d4: b0:50:6f:85:1d:6d:a3:01:e6:ea:2e:39:fa:8e:65: c4:bc:0c:2f:7d:dc:43:81:1b:b4:f3:f7:6e:d0:d2: bb:03:d9:eb:30:3c:bc:f6:5e:b3:71:5b:d9:33:be: 5f:69:1b:6c:2b:0f:5c:d2:d1:9d:09:6f:84:5d:09: e0:5c:7a:07:cc:92:b1:a4:fb:2e:fe:37:de:7f:72: ef:f7:d3:47:82:09:e0:25:15:7f:24:26:bb:1d:1d: 46:6f:d3:b4:26:16:5c:5d:db:da:70:42:36:c1:87: f4:66:74:7b:b0:0d:3a:f2:bf:b9:8d:08:05:49:c6: f4:0a:17:9c:52:c5:2c:9f:b7:67:99:51:f9:d5:33: 7b:09:13:70:5a:c7:23:44:5c:3d:d7:93:aa:99:d7: e2:5f:1f:64:6c:b1:bc:b3:3f:50:76:20:93:6c:4e: 86:41:e7:73:9f:19:8b:d2:48:76:0c:99:62:af:4d: ad:40:08:7f:67:48:f3:dd:43:60:68:3e:82:e7:24: 33:a8:6c:3d:98:4a:78:e6:aa:a5:e3:29:3d:0a:a9: a1:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:50:59:55:B1:6F:AF:A8:20:31:92:52:55:F3:39:5F:B9:CF:B7:38 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/998d5f0e-e0d0-45cb-96fd-9e8b1ff02524.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.34.232.0/21 Signature Algorithm: sha256WithRSAEncryption 4a:87:52:5d:da:35:e4:e3:3b:46:1f:60:8d:66:c0:60:e8:98: cf:04:d3:07:c0:b6:cb:de:5e:74:b0:32:7e:b8:12:9c:79:ca: c6:4a:e2:33:7f:00:2a:0c:05:c2:c3:69:71:40:db:68:35:b3: da:b2:ad:88:d2:cd:42:56:41:ba:8e:27:65:15:c6:9e:41:16: d0:a9:2a:04:0e:a9:aa:08:05:2f:3a:7e:14:e0:94:89:b2:36: 47:1e:4d:f6:1e:c2:8c:4c:37:54:ec:a3:ac:23:ec:ca:83:11: 65:80:4d:74:9a:6e:d6:9e:8d:59:f5:12:b6:f5:64:a7:f1:0c: 83:6d:76:95:a6:60:32:49:3e:9e:56:98:a0:ac:22:64:bb:4c: 4a:d9:e9:2b:d8:25:03:5a:b2:bc:b0:b5:c2:6e:82:a5:69:b2: 9e:f9:f2:09:94:48:d5:0a:a8:b5:1d:1c:27:dd:43:17:0b:b6: e3:bb:ee:97:cf:15:37:97:f3:5a:a4:fd:10:00:79:82:46:8a: 10:f2:5c:49:b8:f8:6a:4f:b6:47:f3:21:bf:e8:f3:85:a7:de: c1:45:91:de:80:bb:85:38:9c:86:e0:1c:72:5c:44:43:a4:13: 3e:e9:81:1a:cf:e2:7a:c4:cd:98:41:bd:49:af:61:80:88:02: 9f:5f:35:a8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHlN5rwfVv/aQazS1N5aW2P3reAwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDI1MTY0MDUzWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYzc1ODc4MTNmNmQ1NGFhOGE0YmE4MzEwMzZiN2YzZTc3 OGQ1Yjc2MGQzMWQzNDU1MDVjNTZhMTJkNDkwNzM4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtMp2PBGk9qleZYcm+0r/SCVsO4EK04elSWYkho9YgaEm7 Iv3EZXAItcHT1LBQb4UdbaMB5uouOfqOZcS8DC993EOBG7Tz927Q0rsD2eswPLz2 XrNxW9kzvl9pG2wrD1zS0Z0Jb4RdCeBcegfMkrGk+y7+N95/cu/300eCCeAlFX8k JrsdHUZv07QmFlxd29pwQjbBh/RmdHuwDTryv7mNCAVJxvQKF5xSxSyft2eZUfnV M3sJE3BaxyNEXD3Xk6qZ1+JfH2RssbyzP1B2IJNsToZB53OfGYvSSHYMmWKvTa1A CH9nSPPdQ2BoPoLnJDOobD2YSnjmqqXjKT0KqaHxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUL1BZVbFvr6ggMZJSVfM5X7nPtzgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzk5OGQ1ZjBlLWUwZDAtNDVjYi05NmZkLTllOGIxZmYwMjUyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMSIugwDQYJKoZIhvcNAQELBQADggEBAEqHUl3aNeTjO0YfYI1mwGDomM8E 0wfAtsveXnSwMn64Epx5ysZK4jN/ACoMBcLDaXFA22g1s9qyrYjSzUJWQbqOJ2UV xp5BFtCpKgQOqaoIBS86fhTglImyNkceTfYewoxMN1Tso6wj7MqDEWWATXSabtae jVn1Erb1ZKfxDINtdpWmYDJJPp5WmKCsImS7TErZ6SvYJQNasrywtcJugqVpsp75 8gmUSNUKqLUdHCfdQxcLtuO77pfPFTeX81qk/RAAeYJGihDyXEm4+GpPtkfzIb/o 84Wn3sFFkd6Au4U4nIbgHHJcREOkEz7pgRrP4nrEzZhBvUmvYYCIAp9fNag= -----END CERTIFICATE-----Generated at Sun Apr 27 09:13:56 2025 by rpki-client