$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9b297106-5adb-42a3-be39-8d4eb4ec1873.roa File: 9b297106-5adb-42a3-be39-8d4eb4ec1873.roa (raw, json) Hash identifier: vq6gzRp6D/emioEuEpKef736MW1n9NJF/6FG7VU98kQ= Subject key identifier: 70:EA:71:00:D3:3D:73:4A:BC:49:F1:CF:B9:B6:CB:2D:55:37:7A:EF Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 65ED899498FF177DDBE9277DFEEC7BD02CA89B0E Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9b297106-5adb-42a3-be39-8d4eb4ec1873.roa Signing time: Fri 25 Apr 2025 17:30:30 +0000 ROA not before: Fri 25 Apr 2025 17:30:30 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.88.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:ed:89:94:98:ff:17:7d:db:e9:27:7d:fe:ec:7b:d0:2c:a8:9b:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 25 17:30:30 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=3f1613cf09cd9a8f946276ed9d4a263b11530af3bb503a4b7e21314ad532ef6c, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:00:35:b6:ce:f5:71:e3:2b:be:8c:23:f6:d5: df:c7:f8:f5:65:f1:3f:a4:5d:43:8a:ba:b6:06:b9: fe:e7:cd:43:8e:fd:64:59:62:55:fe:01:67:78:0e: 4c:7c:0f:0e:57:45:45:3c:eb:13:7b:0d:ad:24:b2: fe:6a:5e:f1:1b:2e:b5:9a:27:28:05:0b:d6:e5:cc: 2d:2e:4c:55:c2:a7:d4:01:85:b5:25:93:82:79:22: 46:ac:c8:6d:32:f3:68:f4:44:07:37:a6:31:bc:8c: 59:86:e6:84:9f:bc:d1:d9:66:e0:b0:27:b4:d8:7c: a1:8c:64:10:b0:3b:7e:6f:9a:70:f3:c1:60:49:68: 36:fc:19:3b:4b:95:ee:0c:ce:1f:fa:93:8b:4e:97: 4f:95:bb:21:ff:8f:f4:d4:40:24:ea:68:42:4f:9d: b4:37:c3:bb:8a:34:47:76:c1:15:5c:d2:2a:e9:0b: 84:08:5a:17:c5:a2:e3:b2:c0:23:f8:3b:20:53:ad: 51:5b:3f:78:8d:5b:34:e3:86:2c:d1:95:eb:b7:7a: 63:17:9f:be:e4:41:68:b5:80:ee:4e:f0:48:19:e1: 44:fe:d0:b1:e9:c7:fe:c7:ec:b9:ad:16:89:79:18: 32:70:d7:3c:c4:18:4e:e9:24:f3:e1:c2:cb:49:8c: 82:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:EA:71:00:D3:3D:73:4A:BC:49:F1:CF:B9:B6:CB:2D:55:37:7A:EF X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9b297106-5adb-42a3-be39-8d4eb4ec1873.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.88.0.0/14 Signature Algorithm: sha256WithRSAEncryption 2e:9b:e9:32:1c:28:1a:39:83:79:fa:36:9d:40:f3:0f:32:31: bb:79:7b:9e:98:04:17:de:76:51:53:ed:b2:ff:58:6c:c1:62: fd:e7:9b:94:0f:95:24:28:71:d5:43:02:66:82:ac:b6:d0:08: 68:59:b8:f4:ce:39:84:0b:d4:02:4f:6d:72:d3:71:cb:96:3f: 41:3d:6f:5d:9b:3a:de:70:24:0c:6d:97:16:48:c9:f9:cf:1f: 6f:71:41:5f:c1:71:b5:87:ab:a7:4d:5a:6c:ac:7a:65:2f:d1: b1:4b:fd:a1:b0:c9:c6:98:fb:45:3a:05:88:74:7f:02:39:b4: ba:05:b3:09:e6:c1:54:cf:ff:37:1d:55:62:4e:2b:d2:53:7c: c2:19:cd:1d:1a:c6:12:4d:eb:f8:5e:2a:72:09:aa:16:d4:13: 25:07:69:8c:fc:38:92:d6:8c:a5:60:3e:de:90:0c:38:73:68: 43:ff:f3:f9:2b:5a:ea:51:81:6f:ed:9d:3c:c4:30:db:f7:24: 9a:8b:37:0c:29:31:c4:c8:ad:f9:67:ca:e3:56:ab:92:d9:c8: bc:4c:0e:38:fd:67:ad:41:1f:b8:03:0a:6c:04:09:d8:8e:51: fc:a2:37:57:bd:bc:f3:05:77:1f:4e:59:f5:e9:7f:27:38:22: a6:bc:c5:73 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZe2JlJj/F33b6Sd9/ux70Cyomw4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDI1MTczMDMwWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZjE2MTNjZjA5Y2Q5YThmOTQ2Mjc2ZWQ5ZDRhMjYzYjEx NTMwYWYzYmI1MDNhNGI3ZTIxMzE0YWQ1MzJlZjZjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBADW2zvVx4yu+jCP21d/H+PVl8T+kXUOKurYGuf7nzUOO /WRZYlX+AWd4Dkx8Dw5XRUU86xN7Da0ksv5qXvEbLrWaJygFC9blzC0uTFXCp9QB hbUlk4J5IkasyG0y82j0RAc3pjG8jFmG5oSfvNHZZuCwJ7TYfKGMZBCwO35vmnDz wWBJaDb8GTtLle4Mzh/6k4tOl0+VuyH/j/TUQCTqaEJPnbQ3w7uKNEd2wRVc0irp C4QIWhfFouOywCP4OyBTrVFbP3iNWzTjhizRleu3emMXn77kQWi1gO5O8EgZ4UT+ 0LHpx/7H7LmtFol5GDJw1zzEGE7pJPPhwstJjIL9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUcOpxANM9c0q8SfHPubbLLVU3eu8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzliMjk3MTA2LTVhZGItNDJhMy1iZTM5LThkNGViNGVjMTg3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwI2WDANBgkqhkiG9w0BAQsFAAOCAQEALpvpMhwoGjmDefo2nUDzDzIxu3l7 npgEF952UVPtsv9YbMFi/eeblA+VJChx1UMCZoKsttAIaFm49M45hAvUAk9tctNx y5Y/QT1vXZs63nAkDG2XFkjJ+c8fb3FBX8FxtYerp01abKx6ZS/RsUv9obDJxpj7 RToFiHR/Ajm0ugWzCebBVM//Nx1VYk4r0lN8whnNHRrGEk3r+F4qcgmqFtQTJQdp jPw4ktaMpWA+3pAMOHNoQ//z+Sta6lGBb+2dPMQw2/ckmos3DCkxxMit+WfK41ar ktnIvEwOOP1nrUEfuAMKbAQJ2I5R/KI3V7288wV3H05Z9el/JzgiprzFcw== -----END CERTIFICATE-----Generated at Sat Apr 26 15:59:00 2025 by rpki-client