$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bafbe347-7d54-4adc-9f60-0bb4eee46341.roa File: bafbe347-7d54-4adc-9f60-0bb4eee46341.roa (raw, json) Hash identifier: bcuZgEHWI/JtNcDK9FTzRDSJOcqmlKRwZ/Q9wnE4wfA= Subject key identifier: D8:C2:58:4A:84:3D:16:3C:B5:BB:4E:7A:A6:96:B2:41:04:D1:67:10 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 63A0D29CFDB67D90D6D793ED4600FEAA7B20551F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bafbe347-7d54-4adc-9f60-0bb4eee46341.roa Signing time: Fri 04 Apr 2025 00:20:52 +0000 ROA not before: Fri 04 Apr 2025 00:20:52 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 13.217.78.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:a0:d2:9c:fd:b6:7d:90:d6:d7:93:ed:46:00:fe:aa:7b:20:55:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 4 00:20:52 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: serialNumber=0b7f1fd10ca2a2f11ce6449a1863b6300d632a6e0d59bfa1258d2592f56a3869, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:d1:5a:08:88:0e:69:60:f0:6d:a2:21:a9:67: 8d:49:24:6d:0a:74:e8:5b:8a:83:b6:b6:2f:27:42: 9d:4a:56:3d:9b:a9:0b:58:15:c4:40:37:dc:74:52: 05:07:68:cb:75:17:b3:c1:88:20:58:03:34:83:7e: 0e:ab:3a:7b:4b:6e:df:68:6b:86:2d:bc:f5:e7:1d: 8c:61:e7:37:3d:7f:5e:4c:d3:2b:fd:94:67:fe:6d: 3b:09:9a:79:35:30:79:d2:05:60:5f:59:c6:84:53: fb:19:37:3a:e5:13:90:c6:12:8c:ee:83:ed:45:26: df:7a:de:4c:e0:f4:d6:77:b0:1c:f9:79:18:3c:7a: 2c:28:7d:79:83:3b:45:58:74:8a:b9:ed:74:3f:60: 34:b5:4a:71:02:81:96:34:4b:74:7d:46:b5:1f:89: 52:a0:4e:af:b3:3c:c3:8d:9b:fc:c3:e1:da:e1:f8: 4f:2b:b9:5d:a1:3e:b9:ee:b1:39:77:a0:9c:b7:f6: d4:c3:77:bf:fc:6e:09:66:39:b2:2d:c8:7f:af:81: bf:d7:e9:20:1a:08:a4:53:37:03:0f:05:ff:1a:84: 22:49:12:58:16:ec:5b:09:5d:8b:f3:a2:ac:47:9d: d8:68:0a:bf:bf:b7:b4:b3:7e:27:58:1e:91:ba:ea: 05:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:C2:58:4A:84:3D:16:3C:B5:BB:4E:7A:A6:96:B2:41:04:D1:67:10 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bafbe347-7d54-4adc-9f60-0bb4eee46341.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.217.78.0/23 Signature Algorithm: sha256WithRSAEncryption 73:ec:81:b7:d1:b5:79:26:58:64:6d:01:ee:c2:b9:43:2d:bc: bb:a1:09:1e:db:51:9e:9f:56:0e:37:3b:d7:61:61:ad:cc:1b: 05:16:71:ef:be:c6:a5:78:63:9f:dc:78:aa:6e:a3:c7:86:89: ae:2b:0d:ef:38:40:9c:50:b8:9d:1c:e9:1e:69:98:f6:a0:09: e2:1e:04:ea:86:67:4f:9e:e9:b2:56:0f:0f:d7:30:a6:b9:32: c0:cc:6f:b4:b6:e8:5c:33:ae:be:f4:25:8c:75:79:b3:e8:85: bb:b8:55:43:c3:b5:dd:fe:cd:66:8c:0d:2d:d1:41:7b:46:1b: 67:5b:ad:47:56:f6:44:0a:53:05:e3:fb:b9:53:b6:dd:4a:48: 32:b6:a8:73:1d:46:0b:8c:40:64:24:43:c7:0d:3c:af:e4:d4: f1:b5:9a:a2:f6:f6:eb:c2:f5:12:59:a5:14:48:5b:84:61:35: 2f:6f:11:a3:10:ee:aa:f4:41:09:1a:5f:9b:9e:db:b3:76:70: a5:56:d1:ef:5c:83:47:ee:76:ef:80:73:f3:49:aa:6e:c7:78: 0f:85:e4:9c:ad:20:54:52:bc:f0:5b:ef:43:23:1b:d7:92:0b: bf:e1:98:f9:55:24:d6:d8:ea:74:e0:3f:5e:2f:82:8b:38:78: 10:da:5b:60 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUY6DSnP22fZDW15PtRgD+qnsgVR8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDA0MDAyMDUyWhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYjdmMWZkMTBjYTJhMmYxMWNlNjQ0OWExODYzYjYzMDBk NjMyYTZlMGQ1OWJmYTEyNThkMjU5MmY1NmEzODY5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCP0VoIiA5pYPBtoiGpZ41JJG0KdOhbioO2ti8nQp1KVj2b qQtYFcRAN9x0UgUHaMt1F7PBiCBYAzSDfg6rOntLbt9oa4YtvPXnHYxh5zc9f15M 0yv9lGf+bTsJmnk1MHnSBWBfWcaEU/sZNzrlE5DGEozug+1FJt963kzg9NZ3sBz5 eRg8eiwofXmDO0VYdIq57XQ/YDS1SnECgZY0S3R9RrUfiVKgTq+zPMONm/zD4drh +E8ruV2hPrnusTl3oJy39tTDd7/8bglmObItyH+vgb/X6SAaCKRTNwMPBf8ahCJJ ElgW7FsJXYvzoqxHndhoCr+/t7SzfidYHpG66gWNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2MJYSoQ9Fjy1u056ppayQQTRZxAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2JhZmJlMzQ3LTdkNTQtNGFkYy05ZjYwLTBiYjRlZWU0NjM0MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEN2U4wDQYJKoZIhvcNAQELBQADggEBAHPsgbfRtXkmWGRtAe7CuUMtvLuh CR7bUZ6fVg43O9dhYa3MGwUWce++xqV4Y5/ceKpuo8eGia4rDe84QJxQuJ0c6R5p mPagCeIeBOqGZ0+e6bJWDw/XMKa5MsDMb7S26Fwzrr70JYx1ebPohbu4VUPDtd3+ zWaMDS3RQXtGG2dbrUdW9kQKUwXj+7lTtt1KSDK2qHMdRguMQGQkQ8cNPK/k1PG1 mqL29uvC9RJZpRRIW4RhNS9vEaMQ7qr0QQkaX5ue27N2cKVW0e9cg0fudu+Ac/NJ qm7HeA+F5JytIFRSvPBb70MjG9eSC7/hmPlVJNbY6nTgP14vgos4eBDaW2A= -----END CERTIFICATE-----Generated at Sat Apr 26 12:49:02 2025 by rpki-client