$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a36124a6-4a9e-47e2-812b-28affc704995.roa File: a36124a6-4a9e-47e2-812b-28affc704995.roa (raw, json) Hash identifier: 5M7p3k8aE6y41SGGn++utMNu7Hq73erg1mCskyt8lsU= Subject key identifier: FD:9E:15:5F:F7:01:95:91:FC:52:AD:D4:C8:70:01:F1:16:04:17:2A Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5BD68AD423C3C89F3684AFE653E4BE34D41A9DE9 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a36124a6-4a9e-47e2-812b-28affc704995.roa Signing time: Mon 14 Apr 2025 17:11:22 +0000 ROA not before: Mon 14 Apr 2025 17:11:22 +0000 ROA not after: Mon 19 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.212.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:d6:8a:d4:23:c3:c8:9f:36:84:af:e6:53:e4:be:34:d4:1a:9d:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 14 17:11:22 2025 GMT Not After : May 19 23:59:59 2025 GMT Subject: serialNumber=22908475c4dac54316e007ad7171bc3042fff558d544bcf0ab4eeb7748f05b8e, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:3d:1d:aa:d8:c9:49:d0:dc:f5:67:9d:f2:45: 09:b6:28:73:7c:7d:80:d7:19:1d:2c:f0:44:df:1d: 8d:ff:19:67:ef:c7:7a:62:f4:4a:b0:9d:04:91:b7: c2:3c:73:44:d9:e7:95:67:d0:7a:23:86:ba:81:ac: d9:f5:29:db:99:37:c2:72:43:3c:6b:06:f3:c6:fd: d1:3e:6c:8d:b7:46:1a:f2:aa:58:07:f0:cb:df:a3: 96:a3:3f:7d:80:ec:c8:b8:2d:7c:ce:92:5e:3c:c2: 4e:68:05:6e:12:4a:2b:48:69:ce:9f:87:f9:d6:c3: 68:fd:4d:0e:f1:ca:1b:53:a5:3a:fe:14:2b:23:1f: 91:27:8c:2a:c6:4a:1c:a3:47:d4:c2:20:cc:5a:8c: a1:0c:dc:ac:4f:24:6a:ae:3d:53:ac:ac:8f:87:9c: 62:09:76:c5:cb:5f:76:2a:4c:72:f0:91:40:07:f6: 89:8d:b2:92:e1:cd:66:98:66:05:fd:fe:95:09:18: e6:80:7f:dd:25:52:85:69:07:dc:d8:b8:dc:db:90: a3:0f:6c:27:f3:1f:d1:64:ba:c5:eb:11:ed:c7:ae: 1d:79:b1:5b:d7:f1:88:0e:69:2e:62:60:98:00:a6: e7:b8:3e:69:57:a5:e6:d8:1c:7b:9f:36:29:bb:b0: 6f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:9E:15:5F:F7:01:95:91:FC:52:AD:D4:C8:70:01:F1:16:04:17:2A X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a36124a6-4a9e-47e2-812b-28affc704995.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.212.0.0/18 Signature Algorithm: sha256WithRSAEncryption 9a:84:90:be:55:9e:c8:01:c0:58:a3:af:c3:d3:30:dc:ee:d5: d2:fe:1b:8f:ca:15:06:8c:0a:9b:23:22:af:9f:20:f5:f5:78: e7:1f:ab:aa:41:e5:05:c5:04:58:fc:ae:22:4f:4c:c6:21:48: b9:d3:07:57:a0:3e:cd:68:9a:3f:2f:b9:e7:0c:ef:4e:4c:f8: 8b:40:95:43:ac:52:9e:fe:37:f7:40:fd:a8:5e:e4:6a:a2:a3: 3f:8c:0e:bc:b7:d9:ea:e3:d8:24:8e:23:cf:59:2c:d6:f4:fc: ee:97:2d:b6:70:09:d6:df:4a:47:d7:7b:30:fe:cf:11:d5:06: 03:8f:4d:f8:00:62:88:de:26:66:ac:62:31:92:7f:39:a9:14: 3f:58:84:4b:6e:c0:f5:80:d1:dd:3d:ff:88:66:39:d2:bc:b7: 90:7d:6d:1a:e5:6a:54:df:fd:dd:75:96:15:7e:38:72:39:7a: f8:87:d1:dd:32:a5:53:2a:3a:92:b1:bc:0c:fa:85:44:28:67: 2f:0b:4e:c3:20:ed:0d:2d:fd:21:2d:40:93:ac:93:93:0e:9c: 41:08:ab:70:39:e4:ff:21:be:2e:aa:fb:d9:ea:39:92:83:25: 66:16:d8:71:9a:d3:43:50:7e:12:6b:31:60:58:31:9b:1c:d2: 9e:42:f0:3d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW9aK1CPDyJ82hK/mU+S+NNQanekwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE0MTcxMTIyWhcNMjUwNTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMjkwODQ3NWM0ZGFjNTQzMTZlMDA3YWQ3MTcxYmMzMDQy ZmZmNTU4ZDU0NGJjZjBhYjRlZWI3NzQ4ZjA1YjhlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUPR2q2MlJ0Nz1Z53yRQm2KHN8fYDXGR0s8ETfHY3/GWfv x3pi9EqwnQSRt8I8c0TZ55Vn0HojhrqBrNn1KduZN8JyQzxrBvPG/dE+bI23Rhry qlgH8Mvfo5ajP32A7Mi4LXzOkl48wk5oBW4SSitIac6fh/nWw2j9TQ7xyhtTpTr+ FCsjH5EnjCrGShyjR9TCIMxajKEM3KxPJGquPVOsrI+HnGIJdsXLX3YqTHLwkUAH 9omNspLhzWaYZgX9/pUJGOaAf90lUoVpB9zYuNzbkKMPbCfzH9FkusXrEe3Hrh15 sVvX8YgOaS5iYJgApue4PmlXpebYHHufNim7sG+tAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/Z4VX/cBlZH8Uq3UyHAB8RYEFyowHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2EzNjEyNGE2LTRhOWUtNDdlMi04MTJiLTI4YWZmYzcwNDk5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY21AAwDQYJKoZIhvcNAQELBQADggEBAJqEkL5VnsgBwFijr8PTMNzu1dL+ G4/KFQaMCpsjIq+fIPX1eOcfq6pB5QXFBFj8riJPTMYhSLnTB1egPs1omj8vuecM 705M+ItAlUOsUp7+N/dA/ahe5Gqioz+MDry32erj2CSOI89ZLNb0/O6XLbZwCdbf SkfXezD+zxHVBgOPTfgAYojeJmasYjGSfzmpFD9YhEtuwPWA0d09/4hmOdK8t5B9 bRrlalTf/d11lhV+OHI5eviH0d0ypVMqOpKxvAz6hUQoZy8LTsMg7Q0t/SEtQJOs k5MOnEEIq3A55P8hvi6q+9nqOZKDJWYW2HGa00NQfhJrMWBYMZsc0p5C8D0= -----END CERTIFICATE-----Generated at Sat Apr 26 18:31:43 2025 by rpki-client