$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b98925de-9365-44a3-b92a-7513903b1b53.roa File: b98925de-9365-44a3-b92a-7513903b1b53.roa (raw, json) Hash identifier: qjAReBKj2CbTu/34s9+7lre+z2nZMOGR9x79W/44UwY= Subject key identifier: 27:36:B5:B4:87:67:E1:C5:D9:F6:F6:A8:FF:F8:05:26:D1:E9:3C:82 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 52875BF4DBF5515236AF02774326DDF8A5B2122C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b98925de-9365-44a3-b92a-7513903b1b53.roa Signing time: Mon 14 Apr 2025 16:11:07 +0000 ROA not before: Mon 14 Apr 2025 16:11:07 +0000 ROA not after: Mon 19 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 34.252.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:87:5b:f4:db:f5:51:52:36:af:02:77:43:26:dd:f8:a5:b2:12:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 14 16:11:07 2025 GMT Not After : May 19 23:59:59 2025 GMT Subject: serialNumber=38103779b96c1af125a64a22dfd501cdeef48ab84bc3412db8137742751fd920, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:91:30:93:aa:f8:0d:4a:58:d5:e4:2f:37:5e: bb:cf:bc:ec:40:cc:df:cc:10:3c:09:70:47:b0:a1: 81:74:05:e5:8d:6f:67:ce:6d:75:16:35:91:d8:55: 73:75:20:c6:57:48:f8:23:be:3c:a0:44:8c:58:d7: 81:bb:bd:31:ac:5b:b2:82:c8:c2:e6:4c:b8:9c:77: d1:f0:10:41:42:16:02:33:18:f3:f6:e6:8a:f2:0e: 5b:aa:43:4b:c5:6b:2a:08:e5:d6:0c:66:7d:ac:75: a4:f6:a8:50:95:83:4c:3d:eb:9e:87:f1:02:3d:40: b0:f5:9e:8d:61:71:2d:71:52:37:ca:be:5d:7e:0f: db:c2:64:33:da:c5:ea:7e:6d:e3:e6:da:84:44:1c: 54:d5:fd:4e:af:2e:2c:7b:4b:da:8b:ec:a1:35:2e: 00:e2:7a:0c:fb:ca:0b:98:b9:70:ba:00:e9:35:d8: ca:c4:8d:ec:cc:ec:ae:4d:cb:b4:e7:2c:25:71:0e: 23:3d:00:df:c3:55:95:49:ea:1e:f4:c1:bf:a2:9d: 63:1b:4b:71:8d:55:09:1f:41:fa:a4:a8:a3:6e:1d: df:a6:ce:ea:89:68:8e:c4:12:94:47:e7:4b:09:9e: 5a:3e:97:72:22:b9:96:cd:27:78:17:f7:b7:c0:a5: 31:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:36:B5:B4:87:67:E1:C5:D9:F6:F6:A8:FF:F8:05:26:D1:E9:3C:82 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b98925de-9365-44a3-b92a-7513903b1b53.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 34.252.192.0/18 Signature Algorithm: sha256WithRSAEncryption 98:8e:eb:11:52:ba:40:2f:49:0f:ad:71:cc:aa:85:a2:68:c7: a1:2f:c7:9e:70:77:92:77:f8:56:32:9b:ea:05:ce:7d:db:07: 20:f9:ab:f1:07:bf:87:dd:68:ea:2b:6b:78:59:49:f6:1d:75: 72:63:18:e0:cf:f7:30:41:08:49:8c:ef:2d:53:2d:75:14:88: b3:72:dd:80:b4:b1:2e:dc:32:95:c6:b9:73:81:76:e1:6e:2a: 06:85:bd:11:a4:47:9e:4c:40:f0:04:13:6e:4f:b4:49:f4:d7: a1:e9:bc:ab:44:df:34:50:73:d3:3c:5e:1a:21:f9:7c:50:d0: d8:7d:f3:0d:70:4e:2c:7f:7c:81:cc:17:c7:72:52:2e:d8:32: 3a:7e:fd:14:7b:b6:da:9a:0d:cf:4b:9a:c1:4a:19:f7:81:f9: 2a:ff:fb:57:f9:45:ca:5e:7f:c9:80:90:17:ad:42:54:16:2d: 88:07:58:ed:02:cb:a6:40:c3:9b:3a:f6:40:fd:59:2d:95:00: a8:27:c7:61:a3:7e:2e:aa:4f:6b:9a:05:bc:0a:2e:ce:cc:fe: a8:37:66:90:b4:09:40:c2:f6:d7:9b:95:29:17:96:5b:6f:a3: 40:44:0b:cf:d7:72:a9:61:6a:65:3c:77:e3:09:19:f2:55:b9: 05:24:21:bf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUodb9Nv1UVI2rwJ3Qybd+KWyEiwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE0MTYxMTA3WhcNMjUwNTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzODEwMzc3OWI5NmMxYWYxMjVhNjRhMjJkZmQ1MDFjZGVl ZjQ4YWI4NGJjMzQxMmRiODEzNzc0Mjc1MWZkOTIwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMkTCTqvgNSljV5C83XrvPvOxAzN/MEDwJcEewoYF0BeWN b2fObXUWNZHYVXN1IMZXSPgjvjygRIxY14G7vTGsW7KCyMLmTLicd9HwEEFCFgIz GPP25oryDluqQ0vFayoI5dYMZn2sdaT2qFCVg0w9656H8QI9QLD1no1hcS1xUjfK vl1+D9vCZDPaxep+bePm2oREHFTV/U6vLix7S9qL7KE1LgDiegz7yguYuXC6AOk1 2MrEjezM7K5Ny7TnLCVxDiM9AN/DVZVJ6h70wb+inWMbS3GNVQkfQfqkqKNuHd+m zuqJaI7EEpRH50sJnlo+l3IiuZbNJ3gX97fApTHBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJza1tIdn4cXZ9vao//gFJtHpPIIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2I5ODkyNWRlLTkzNjUtNDRhMy1iOTJhLTc1MTM5MDNiMWI1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYi/MAwDQYJKoZIhvcNAQELBQADggEBAJiO6xFSukAvSQ+tccyqhaJox6Ev x55wd5J3+FYym+oFzn3bByD5q/EHv4fdaOora3hZSfYddXJjGODP9zBBCEmM7y1T LXUUiLNy3YC0sS7cMpXGuXOBduFuKgaFvRGkR55MQPAEE25PtEn016HpvKtE3zRQ c9M8Xhoh+XxQ0Nh98w1wTix/fIHMF8dyUi7YMjp+/RR7ttqaDc9LmsFKGfeB+Sr/ +1f5Rcpef8mAkBetQlQWLYgHWO0Cy6ZAw5s69kD9WS2VAKgnx2Gjfi6qT2uaBbwK Ls7M/qg3ZpC0CUDC9teblSkXlltvo0BEC8/XcqlhamU8d+MJGfJVuQUkIb8= -----END CERTIFICATE-----Generated at Sat Apr 26 19:14:40 2025 by rpki-client