$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a2caf31b-a8dd-44f6-b7ad-40d80a0a2f50.roa File: a2caf31b-a8dd-44f6-b7ad-40d80a0a2f50.roa (raw, json) Hash identifier: kCqWVAWHCSYAqqFN44Aw6eb66D+xuONCQdLsVvyEMIo= Subject key identifier: 18:74:B9:A7:59:20:A8:99:F8:BC:A2:57:45:19:D9:78:9F:8D:53:82 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 74889FCFCBF81B29C167BDC92DB05A6ED27D69 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a2caf31b-a8dd-44f6-b7ad-40d80a0a2f50.roa Signing time: Wed 16 Apr 2025 00:41:07 +0000 ROA not before: Wed 16 Apr 2025 00:41:07 +0000 ROA not after: Wed 21 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.33.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:88:9f:cf:cb:f8:1b:29:c1:67:bd:c9:2d:b0:5a:6e:d2:7d:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 16 00:41:07 2025 GMT Not After : May 21 23:59:59 2025 GMT Subject: serialNumber=7ef827581bb76b3a6e180cbdd60412f1c2257d434a050751ee07381124cc0641, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e0:2f:c2:16:8c:27:50:47:bb:3d:8d:b8:f3: 4e:61:4a:f1:2e:eb:73:e3:93:db:8a:31:98:e2:23: b3:d9:a8:6d:14:ed:26:8a:05:1f:98:2f:76:bc:fc: 65:f4:91:7f:7f:38:17:bf:6f:f6:ac:4b:18:16:94: 15:d3:7e:39:ae:5c:46:9e:71:fa:9a:24:5a:eb:e0: d4:34:5b:b0:69:b8:40:de:31:06:e5:be:ae:b3:38: 83:ed:2f:a9:1b:ad:b9:e2:b9:e4:5e:b1:55:12:42: f2:4d:1d:e3:4d:90:c7:ac:b2:c9:de:76:ff:1b:24: 78:29:a2:90:97:64:c0:0e:85:5b:dc:3a:dd:c5:89: 02:93:13:b6:44:7b:44:46:c7:20:4d:c4:04:93:cd: a3:b9:1c:59:eb:60:ab:e5:83:79:75:80:e4:c7:c8: ad:c9:b1:05:cd:9c:7f:bc:53:0e:7a:a6:c7:0c:57: ca:ca:a3:0e:2c:2b:de:91:9d:e6:0c:8b:2e:89:c7: d0:7f:f3:9d:2a:97:90:35:47:c3:c6:36:b1:09:6a: 29:5a:51:a8:15:08:7d:50:57:1d:15:30:8b:e6:a1: cd:cd:a7:c8:6b:36:c7:2b:3d:19:5c:5a:d3:5b:5d: 8d:ec:ac:92:c8:79:07:89:19:24:3e:eb:4f:7a:e7: 41:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:74:B9:A7:59:20:A8:99:F8:BC:A2:57:45:19:D9:78:9F:8D:53:82 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a2caf31b-a8dd-44f6-b7ad-40d80a0a2f50.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.33.44.0/22 Signature Algorithm: sha256WithRSAEncryption a9:b5:82:3a:cb:ab:18:29:48:45:0e:49:90:0e:4a:a9:55:d7: 9b:05:03:ad:2d:ad:a5:71:bb:04:d8:73:92:76:98:35:ef:17: 6f:61:ed:43:5b:e6:26:d6:38:76:5a:0d:bc:61:34:49:83:fb: 23:61:9e:09:82:4e:28:b7:e8:67:8a:f0:7d:9a:a1:d2:ed:71: d2:c4:e0:a7:f4:2d:a7:36:da:78:dc:79:db:17:a5:94:88:45: b3:df:d0:88:4d:44:9d:67:df:57:e6:ed:bc:8c:1a:4e:fa:b5: 36:11:fb:1c:c5:8a:77:48:8d:7a:c4:d4:14:d8:68:1b:db:6d: a4:de:98:d9:ee:0c:f1:3d:3d:37:3a:28:a1:a5:e9:47:00:38: a4:07:f9:85:81:82:42:2a:0f:9e:bb:a1:72:41:99:08:93:47: fc:bd:44:18:65:c7:ba:4e:da:b1:3c:90:85:5f:b2:d5:38:24: 80:d0:35:8d:0c:8c:39:fd:7b:33:a6:2a:4f:27:ca:0e:12:ba: a3:78:f8:f5:be:77:13:fa:c5:9d:05:d1:07:1d:fb:a8:f0:0b: 69:cf:a5:0c:5f:bf:04:28:03:75:88:d6:bf:78:ea:83:c3:ba: a2:d0:91:a8:4c:c3:97:6d:91:6a:93:0d:22:0b:3f:78:a0:91: 53:3e:1d:06 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITdIifz8v4GynBZ73JLbBabtJ9aTANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNTA0MTYwMDQxMDdaFw0yNTA1MjEyMzU5NTla MHoxSTBHBgNVBAUTQDdlZjgyNzU4MWJiNzZiM2E2ZTE4MGNiZGQ2MDQxMmYxYzIy NTdkNDM0YTA1MDc1MWVlMDczODExMjRjYzA2NDExLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMHgL8IWjCdQR7s9jbjzTmFK8S7rc+OT24oxmOIjs9mobRTt JooFH5gvdrz8ZfSRf384F79v9qxLGBaUFdN+Oa5cRp5x+pokWuvg1DRbsGm4QN4x BuW+rrM4g+0vqRutueK55F6xVRJC8k0d402Qx6yyyd52/xskeCmikJdkwA6FW9w6 3cWJApMTtkR7REbHIE3EBJPNo7kcWetgq+WDeXWA5MfIrcmxBc2cf7xTDnqmxwxX ysqjDiwr3pGd5gyLLonH0H/znSqXkDVHw8Y2sQlqKVpRqBUIfVBXHRUwi+ahzc2n yGs2xys9GVxa01tdjeysksh5B4kZJD7rT3rnQcECAwEAAaOCArEwggKtMB0GA1Ud DgQWBBQYdLmnWSComfi8oldFGdl4n41TgjAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvYTJjYWYzMWItYThkZC00NGY2LWI3YWQtNDBkODBhMGEyZjUwLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAgMhLDANBgkqhkiG9w0BAQsFAAOCAQEAqbWCOsurGClIRQ5JkA5KqVXXmwUD rS2tpXG7BNhzknaYNe8Xb2HtQ1vmJtY4dloNvGE0SYP7I2GeCYJOKLfoZ4rwfZqh 0u1x0sTgp/QtpzbaeNx52xellIhFs9/QiE1EnWffV+btvIwaTvq1NhH7HMWKd0iN esTUFNhoG9ttpN6Y2e4M8T09NzoooaXpRwA4pAf5hYGCQioPnruhckGZCJNH/L1E GGXHuk7asTyQhV+y1TgkgNA1jQyMOf17M6YqTyfKDhK6o3j49b53E/rFnQXRBx37 qPALac+lDF+/BCgDdYjWv3jqg8O6otCRqEzDl22RapMNIgs/eKCRUz4dBg== -----END CERTIFICATE-----Generated at Sat Apr 26 15:49:18 2025 by rpki-client