$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9f177b1d-6221-4516-93a4-18a823b63bd1.roa File: 9f177b1d-6221-4516-93a4-18a823b63bd1.roa (raw, json) Hash identifier: zw1kggfMAPE7MxYF+j45hbuCK9qVitZ14we2Tl7jngs= Subject key identifier: 4F:1C:A4:AC:F7:22:03:57:2C:00:BA:6F:89:66:7D:14:32:74:47:E6 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4E95A428A2FCFC1BEDD661CA9A1AACA4065C2462 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9f177b1d-6221-4516-93a4-18a823b63bd1.roa Signing time: Fri 18 Apr 2025 18:11:12 +0000 ROA not before: Fri 18 Apr 2025 18:11:12 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.255.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:95:a4:28:a2:fc:fc:1b:ed:d6:61:ca:9a:1a:ac:a4:06:5c:24:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 18 18:11:12 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=e6e9c92f377a2927e2f1974c9fed0b0fde21a063a17dd567b4ad130208a2341a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:78:13:11:af:ef:78:41:f8:5a:33:d4:a3:6a: c1:a8:64:38:f2:5e:10:e0:fc:46:d8:6c:d5:59:a6: 52:fa:52:1c:cc:9f:7e:00:ec:62:ae:12:a5:2d:64: d2:f2:3a:78:a7:fb:a9:49:4a:82:01:cb:f0:75:c3: ec:c8:3a:64:41:44:df:19:07:f9:65:67:af:ab:1b: 43:7e:0f:1f:25:33:3d:29:b8:e7:d1:ec:65:3d:c0: 8e:ab:e3:fd:20:7e:cf:5c:0f:70:92:81:c5:2d:e0: 2e:25:12:99:c0:c3:38:38:25:1e:f1:b7:45:67:e8: d4:10:d0:5f:e5:7e:8d:09:6c:a8:99:37:f9:6e:f1: 7a:70:63:dd:5b:cf:88:02:3e:c4:8a:cf:04:46:20: 34:44:0a:77:1b:ee:d5:d2:9f:46:75:b7:3a:b1:e8: d0:49:3d:dc:bb:e5:91:08:fe:7f:43:37:76:e2:a8: 8a:dd:ef:39:db:a7:8d:b5:f9:d7:05:42:7e:0b:57: 83:f1:2d:ed:b5:a4:11:5d:f6:9f:ef:a7:bc:76:cd: 6d:92:04:8c:5d:e1:82:d0:1a:e4:88:09:0a:9a:80: 9d:8b:59:55:20:31:d4:af:51:26:8d:1d:b9:0d:08: 22:93:30:dd:78:a4:5b:dd:87:73:82:78:63:09:55: d9:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:1C:A4:AC:F7:22:03:57:2C:00:BA:6F:89:66:7D:14:32:74:47:E6 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9f177b1d-6221-4516-93a4-18a823b63bd1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.255.64.0/19 Signature Algorithm: sha256WithRSAEncryption 99:18:94:f1:c3:ef:8b:5f:ad:dd:e5:96:31:d2:75:a2:c2:0c: 3f:ad:ac:c0:a1:9e:71:76:4a:30:53:fe:db:9b:a9:9e:10:45: 53:9d:0c:33:e4:eb:71:14:5c:24:2c:97:1a:bb:92:ab:77:e9: be:2c:f9:a9:b0:c1:e8:fb:44:73:5b:c3:3a:c9:2d:32:4b:ca: 1c:25:a6:dc:de:ba:02:23:f6:dc:5e:08:58:94:50:a4:8d:3f: 14:ad:6a:45:8f:01:2a:e7:50:e9:03:32:62:56:47:7a:e8:0c: bd:81:59:c2:f7:d6:e8:d1:96:d4:08:8b:92:20:6d:a0:7b:41: 2a:c2:ac:6e:c3:cc:19:73:36:10:fd:85:c4:75:65:29:3a:b6: bd:56:e5:47:70:23:8e:f4:5b:68:b9:d5:1a:1c:c8:b5:2a:d6: 61:63:12:b4:63:79:96:55:af:70:f9:5a:b5:a9:fe:52:f6:3a: 93:cc:8c:d9:8a:79:04:1b:50:7d:09:91:27:6d:50:5b:0d:64: a4:02:af:c7:d9:22:ac:96:47:a2:49:bb:44:9e:cd:d5:a1:5c: 80:7e:f3:cd:bd:6f:f6:af:e3:5d:32:d7:54:98:5c:56:78:bc: f3:96:e7:8d:f3:90:c3:e9:1e:24:1f:52:0f:9f:8f:59:5a:08: 88:14:7a:9e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTpWkKKL8/Bvt1mHKmhqspAZcJGIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE4MTgxMTEyWhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNmU5YzkyZjM3N2EyOTI3ZTJmMTk3NGM5ZmVkMGIwZmRl MjFhMDYzYTE3ZGQ1NjdiNGFkMTMwMjA4YTIzNDFhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCneBMRr+94QfhaM9SjasGoZDjyXhDg/EbYbNVZplL6UhzM n34A7GKuEqUtZNLyOnin+6lJSoIBy/B1w+zIOmRBRN8ZB/llZ6+rG0N+Dx8lMz0p uOfR7GU9wI6r4/0gfs9cD3CSgcUt4C4lEpnAwzg4JR7xt0Vn6NQQ0F/lfo0JbKiZ N/lu8XpwY91bz4gCPsSKzwRGIDRECncb7tXSn0Z1tzqx6NBJPdy75ZEI/n9DN3bi qIrd7znbp421+dcFQn4LV4PxLe21pBFd9p/vp7x2zW2SBIxd4YLQGuSICQqagJ2L WVUgMdSvUSaNHbkNCCKTMN14pFvdh3OCeGMJVdmPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTxykrPciA1csALpviWZ9FDJ0R+YwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzlmMTc3YjFkLTYyMjEtNDUxNi05M2E0LTE4YTgyM2I2M2JkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU2/0AwDQYJKoZIhvcNAQELBQADggEBAJkYlPHD74tfrd3lljHSdaLCDD+t rMChnnF2SjBT/tubqZ4QRVOdDDPk63EUXCQslxq7kqt36b4s+amwwej7RHNbwzrJ LTJLyhwlptzeugIj9txeCFiUUKSNPxStakWPASrnUOkDMmJWR3roDL2BWcL31ujR ltQIi5IgbaB7QSrCrG7DzBlzNhD9hcR1ZSk6tr1W5UdwI470W2i51RocyLUq1mFj ErRjeZZVr3D5WrWp/lL2OpPMjNmKeQQbUH0JkSdtUFsNZKQCr8fZIqyWR6JJu0Se zdWhXIB+8829b/av410y11SYXFZ4vPOW543zkMPpHiQfUg+fj1laCIgUep4= -----END CERTIFICATE-----Generated at Sat Apr 26 12:53:52 2025 by rpki-client