$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a74bdd9e-0e86-4280-9653-839c7cab021b.roa File: a74bdd9e-0e86-4280-9653-839c7cab021b.roa (raw, json) Hash identifier: 5OLSuyQRAMOrn8IBAP1B1Ic+z9n7NNzMc0K9CSXfe14= Subject key identifier: 8A:47:5C:F9:9C:E3:21:AB:05:42:BE:FC:30:C9:BA:97:EB:C5:29:D4 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0EC6FBC0BDFBD311D8C9472F0C0817C60F14EB97 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a74bdd9e-0e86-4280-9653-839c7cab021b.roa Signing time: Fri 25 Apr 2025 15:30:21 +0000 ROA not before: Fri 25 Apr 2025 15:30:21 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.140.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:c6:fb:c0:bd:fb:d3:11:d8:c9:47:2f:0c:08:17:c6:0f:14:eb:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 25 15:30:21 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=51491d0c49f3fc8c46c970204f7eb015268b283cad040010308e0ce9b0609ad8, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:37:3e:77:0c:58:84:1d:d0:af:a6:5d:78:f1: 08:bb:52:80:e7:5a:d0:e6:1f:be:9a:06:bf:7b:1d: b2:e2:97:ca:a4:ee:ae:91:b5:b5:81:a1:17:aa:bd: fb:90:85:22:1f:93:16:93:ed:50:0a:5e:63:a3:68: 3a:c5:71:3a:cf:53:3c:a9:84:ac:fc:be:23:8c:9d: 7d:63:a4:f4:c1:61:84:5a:f5:ec:80:90:a8:e6:8b: 3c:33:57:be:75:83:9f:9a:6d:77:5d:cf:c9:9e:a2: 39:03:88:3e:1b:80:e3:9a:28:c3:34:6f:38:33:e9: e9:20:d4:bd:d7:c9:e3:89:50:bd:12:90:4e:5f:af: 85:ce:8f:90:4e:bf:94:9f:4c:fe:35:f5:88:15:89: b7:fb:c5:23:0e:5c:a8:26:af:b8:b1:7a:35:a1:2b: 0a:9a:01:c7:16:01:27:da:30:b5:1c:2e:12:65:be: 44:f4:71:e9:b9:94:fb:7f:7c:e3:1a:47:53:f4:b5: 25:81:bd:fb:21:64:00:a0:88:c0:df:e5:7e:0e:68: 52:97:93:a6:f2:6b:9b:cb:66:51:6c:a9:28:16:7f: 6c:85:e9:74:76:a7:33:ed:36:5b:c4:2f:c0:18:2e: a0:d3:43:2a:4d:ce:06:6b:d7:29:56:25:64:1a:cf: 66:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:47:5C:F9:9C:E3:21:AB:05:42:BE:FC:30:C9:BA:97:EB:C5:29:D4 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a74bdd9e-0e86-4280-9653-839c7cab021b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.140.0.0/16 Signature Algorithm: sha256WithRSAEncryption 48:34:4e:10:7d:6d:5d:19:12:d6:eb:7f:7b:29:20:15:c1:21: 03:a6:5a:aa:88:0d:0a:7f:0f:9a:c2:f7:31:ec:0b:84:d3:bd: 87:07:0e:4d:30:d5:f6:08:68:e4:4f:a4:63:4b:fb:0e:fb:0a: 64:fb:0d:b0:3e:cc:12:22:47:5c:5f:71:fc:32:93:18:c8:6e: 84:dc:51:3b:02:ea:94:3d:2c:46:32:63:58:9f:5e:d5:8c:33: 9f:95:47:0c:07:4c:a7:83:e9:b6:22:a0:73:96:35:e4:6a:e7: 1a:85:75:03:ad:59:b1:01:27:4c:89:3e:74:65:7b:35:0a:97: 05:82:5b:b1:71:3c:fb:47:a2:d3:92:3c:61:c3:6c:e3:55:eb: 39:2e:9b:47:15:e5:f4:71:a7:67:30:37:51:c1:99:cf:13:d2: ff:dd:91:25:83:ff:fa:31:8f:d8:e2:0b:28:93:3e:1a:e8:65: 89:d7:92:7a:26:db:e5:c0:30:2b:87:2d:ba:d1:e0:f3:a1:c5: 01:19:4e:d6:ec:ef:66:18:24:7c:16:8c:6a:50:93:d1:a3:0c: 99:19:cd:b0:3e:9a:77:e3:14:62:73:8c:f3:b0:18:52:43:99: 4f:84:6a:05:bb:11:71:3d:b3:97:04:02:06:1a:52:3f:7b:9f: 7f:dc:24:6a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDsb7wL370xHYyUcvDAgXxg8U65cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDI1MTUzMDIxWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MTQ5MWQwYzQ5ZjNmYzhjNDZjOTcwMjA0ZjdlYjAxNTI2 OGIyODNjYWQwNDAwMTAzMDhlMGNlOWIwNjA5YWQ4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKNz53DFiEHdCvpl148Qi7UoDnWtDmH76aBr97HbLil8qk 7q6RtbWBoReqvfuQhSIfkxaT7VAKXmOjaDrFcTrPUzyphKz8viOMnX1jpPTBYYRa 9eyAkKjmizwzV751g5+abXddz8meojkDiD4bgOOaKMM0bzgz6ekg1L3XyeOJUL0S kE5fr4XOj5BOv5SfTP419YgVibf7xSMOXKgmr7ixejWhKwqaAccWASfaMLUcLhJl vkT0cem5lPt/fOMaR1P0tSWBvfshZACgiMDf5X4OaFKXk6bya5vLZlFsqSgWf2yF 6XR2pzPtNlvEL8AYLqDTQypNzgZr1ylWJWQaz2YpAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUikdc+ZzjIasFQr78MMm6l+vFKdQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2E3NGJkZDllLTBlODYtNDI4MC05NjUzLTgzOWM3Y2FiMDIxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAPjDANBgkqhkiG9w0BAQsFAAOCAQEASDROEH1tXRkS1ut/eykgFcEhA6Za qogNCn8PmsL3MewLhNO9hwcOTTDV9gho5E+kY0v7DvsKZPsNsD7MEiJHXF9x/DKT GMhuhNxROwLqlD0sRjJjWJ9e1Ywzn5VHDAdMp4PptiKgc5Y15GrnGoV1A61ZsQEn TIk+dGV7NQqXBYJbsXE8+0ei05I8YcNs41XrOS6bRxXl9HGnZzA3UcGZzxPS/92R JYP/+jGP2OILKJM+GuhlideSeibb5cAwK4ctutHg86HFARlO1uzvZhgkfBaMalCT 0aMMmRnNsD6ad+MUYnOM87AYUkOZT4RqBbsRcT2zlwQCBhpSP3uff9wkag== -----END CERTIFICATE-----Generated at Sat Apr 26 18:28:54 2025 by rpki-client