$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9dd61ff9-fe4a-41e9-b9cb-c1484aa5ce10.roa File: 9dd61ff9-fe4a-41e9-b9cb-c1484aa5ce10.roa (raw, json) Hash identifier: pJA/K1H0oUkD2Rdt5hu5jtXKhV1f7isK0GmmWU7FuUA= Subject key identifier: 7A:9A:23:A7:67:15:F0:8D:3C:98:3A:AA:DB:B9:09:E7:5E:FB:29:B5 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3E1E238235B6C3E5054220A953EB2997AE167C4B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9dd61ff9-fe4a-41e9-b9cb-c1484aa5ce10.roa Signing time: Mon 14 Apr 2025 16:41:26 +0000 ROA not before: Mon 14 Apr 2025 16:41:26 +0000 ROA not after: Mon 19 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.64.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:1e:23:82:35:b6:c3:e5:05:42:20:a9:53:eb:29:97:ae:16:7c:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 14 16:41:26 2025 GMT Not After : May 19 23:59:59 2025 GMT Subject: serialNumber=78c58389c8f11c87c5683af5e1710aabd35771f8195cb53cad48556e0d612a08, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6a:8d:0e:6d:d0:7c:a4:c4:8f:bd:bb:0c:f9: cf:4f:5b:98:4f:ab:8a:f9:c8:e3:fe:db:c2:e3:77: 6e:09:67:04:a9:a8:91:a6:25:91:de:6a:e5:18:b7: d6:f7:65:58:99:98:97:41:23:6b:c5:4d:b0:c1:18: 9e:15:8d:f8:06:b3:87:42:86:a7:4c:51:8b:c4:da: 22:7d:65:46:7c:93:94:7a:44:ec:9c:5e:7e:eb:2a: 7f:1f:34:c2:cd:f0:44:a0:d6:f9:78:b4:ae:11:cd: 2e:a6:74:82:da:30:bc:a8:e6:23:1f:87:3a:94:b6: b3:41:82:e1:8f:13:8b:47:f1:f2:5c:6a:a5:1f:b5: 3d:27:93:03:4c:d2:07:75:54:85:3b:33:bb:fc:44: 81:83:60:82:ff:16:e1:d4:cd:97:5f:b6:23:3d:8e: 1a:70:23:a7:93:f1:60:8a:c2:9a:38:5f:c5:fd:f3: ec:f2:4b:1b:a6:5d:01:04:cb:b7:44:bd:49:c6:ab: ec:60:5a:9e:23:49:df:e9:99:a7:6f:c2:49:cc:53: ef:6e:96:ab:15:c0:b7:2b:3f:52:7d:8e:9d:48:f6: bc:ba:44:74:16:77:42:16:55:cc:dc:a7:93:12:1d: 20:70:eb:c3:d1:38:30:cf:2d:7f:85:e6:ba:2d:16: 6c:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:9A:23:A7:67:15:F0:8D:3C:98:3A:AA:DB:B9:09:E7:5E:FB:29:B5 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9dd61ff9-fe4a-41e9-b9cb-c1484aa5ce10.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.64.0.0/17 Signature Algorithm: sha256WithRSAEncryption 13:b3:ce:3b:eb:1b:f8:06:31:32:43:35:b3:05:86:5d:fe:70: 14:0f:61:b8:b6:d9:3e:ae:8a:cc:60:bb:5c:80:de:a4:16:b4: c5:e0:61:ff:2d:f6:3e:6f:38:3b:98:82:f3:fe:f9:bd:22:b2: 34:74:f1:8e:3e:74:d5:01:e0:30:87:1c:cf:82:5e:89:ea:dd: f9:29:d2:5c:15:ae:c6:a5:87:23:56:b2:1d:30:18:40:73:d0: 06:e4:4d:56:4c:f8:19:f0:04:c2:b7:10:d0:7f:52:74:e1:e6: ac:55:68:06:93:88:09:1c:cb:73:26:93:9f:02:a6:b1:b8:42: 7b:6c:d7:66:bf:1b:2d:d6:b0:d7:9a:9b:ca:e8:49:59:45:b0: ed:b7:e6:02:b4:85:e3:0b:b7:ba:bc:a8:4b:fc:c5:84:ee:24: 12:d8:ed:5d:11:de:15:0d:79:e4:a6:e8:1d:b2:1a:17:b8:32: 80:18:82:ec:55:13:13:f9:f5:92:30:21:61:ed:b0:21:5a:76: 1e:0f:40:46:fc:2d:04:89:7d:fb:5e:c2:61:2a:02:a4:d1:9c: 60:03:c5:a1:d5:ab:a7:c6:c8:8f:30:e4:bc:e5:e7:3a:b3:c3: 13:c2:d2:49:3d:df:64:f9:28:c0:68:6a:2a:fe:7c:02:b7:81: 8a:b3:0e:38 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPh4jgjW2w+UFQiCpU+spl64WfEswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE0MTY0MTI2WhcNMjUwNTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3OGM1ODM4OWM4ZjExYzg3YzU2ODNhZjVlMTcxMGFhYmQz NTc3MWY4MTk1Y2I1M2NhZDQ4NTU2ZTBkNjEyYTA4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1ao0ObdB8pMSPvbsM+c9PW5hPq4r5yOP+28Ljd24JZwSp qJGmJZHeauUYt9b3ZViZmJdBI2vFTbDBGJ4VjfgGs4dChqdMUYvE2iJ9ZUZ8k5R6 ROycXn7rKn8fNMLN8ESg1vl4tK4RzS6mdILaMLyo5iMfhzqUtrNBguGPE4tH8fJc aqUftT0nkwNM0gd1VIU7M7v8RIGDYIL/FuHUzZdftiM9jhpwI6eT8WCKwpo4X8X9 8+zySxumXQEEy7dEvUnGq+xgWp4jSd/pmadvwknMU+9ulqsVwLcrP1J9jp1I9ry6 RHQWd0IWVczcp5MSHSBw68PRODDPLX+F5rotFmwXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUepojp2cV8I08mDqq27kJ5177KbUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzlkZDYxZmY5LWZlNGEtNDFlOS1iOWNiLWMxNDg0YWE1Y2UxMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc0QAAwDQYJKoZIhvcNAQELBQADggEBABOzzjvrG/gGMTJDNbMFhl3+cBQP Ybi22T6uisxgu1yA3qQWtMXgYf8t9j5vODuYgvP++b0isjR08Y4+dNUB4DCHHM+C Xonq3fkp0lwVrsalhyNWsh0wGEBz0AbkTVZM+BnwBMK3ENB/UnTh5qxVaAaTiAkc y3Mmk58CprG4Qnts12a/Gy3WsNeam8roSVlFsO235gK0heMLt7q8qEv8xYTuJBLY 7V0R3hUNeeSm6B2yGhe4MoAYguxVExP59ZIwIWHtsCFadh4PQEb8LQSJfftewmEq AqTRnGADxaHVq6fGyI8w5Lzl5zqzwxPC0kk932T5KMBoair+fAK3gYqzDjg= -----END CERTIFICATE-----Generated at Sat Apr 26 15:51:26 2025 by rpki-client