$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bcf80c54-6e30-4c17-851c-6a3c0676f77d.roa File: bcf80c54-6e30-4c17-851c-6a3c0676f77d.roa (raw, json) Hash identifier: P0RalaB6p6NwzZmAXVOdiS35MR6sobrv1UCXQDF/hb4= Subject key identifier: 70:6C:C3:1C:1D:13:C6:54:42:D1:43:00:BA:F5:EA:8E:38:D1:43:AB Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7FF432D84D846DB618F9E77FF5A30787703F7AA0 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bcf80c54-6e30-4c17-851c-6a3c0676f77d.roa Signing time: Fri 25 Apr 2025 15:30:10 +0000 ROA not before: Fri 25 Apr 2025 15:30:10 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 140.145.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:f4:32:d8:4d:84:6d:b6:18:f9:e7:7f:f5:a3:07:87:70:3f:7a:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 25 15:30:10 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=7f36f272abebf06c133d52071719ac78ac86e19a4673e5edbfd694d8cc9a7f8c, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:7c:1a:2a:ae:95:11:c1:db:c6:96:c7:5f:08: 5c:62:6f:61:cc:06:c4:93:3a:2b:de:a1:b8:aa:54: ae:57:09:b9:c4:7f:e0:65:bf:7f:32:f9:a8:22:76: de:e7:e7:53:06:e1:33:7f:b8:00:9c:76:33:a3:c3: d3:bb:5c:60:ee:5d:e7:bf:b2:a7:7f:56:41:b2:d2: 07:d3:92:db:01:39:26:94:31:e0:6b:38:20:bf:b2: a2:8d:6a:6d:bf:9c:b5:4a:0c:0c:9d:e8:bc:18:27: c3:28:a5:63:47:02:31:3d:25:c9:1d:88:4e:4c:09: 93:8a:64:02:0c:51:9f:51:af:83:b5:71:38:41:f9: eb:c9:fd:d0:05:bd:71:49:65:09:0b:4c:f4:53:a3: fe:00:38:9f:76:0d:7a:d4:1d:b9:eb:d9:df:d0:df: ad:7c:48:be:f3:14:42:58:18:a0:f0:52:e9:45:75: 5f:66:1f:95:8b:bf:27:18:3e:cd:0f:ff:e9:d3:69: 91:4b:df:a4:82:5a:c6:1e:b7:0e:be:b7:77:0a:8c: d5:65:13:b6:f1:d7:0c:c6:ed:4c:c9:9e:29:ff:16: ea:c4:41:1c:fa:46:4f:dd:85:61:f1:3b:c6:b0:75: 81:52:3d:f2:70:71:24:18:b0:b1:19:bf:e2:0b:23: 39:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:6C:C3:1C:1D:13:C6:54:42:D1:43:00:BA:F5:EA:8E:38:D1:43:AB X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bcf80c54-6e30-4c17-851c-6a3c0676f77d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.145.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6e:38:0a:ed:dc:6a:93:ca:b9:27:ab:c2:40:e5:b3:0e:a4:c5: 33:44:e1:f0:4f:39:70:f6:33:0a:38:86:fb:f2:d5:c9:63:45: a6:81:90:85:37:11:de:0e:00:ce:10:ff:cb:25:3d:f4:54:c8: 32:a3:c9:7f:68:a0:8f:3f:3c:23:e9:32:35:c6:a4:23:e9:d9: c6:55:a7:8e:a5:36:e5:9c:a3:61:c5:4d:60:df:0f:ab:d9:9c: 87:4c:ab:74:fa:0a:10:57:15:16:ed:9d:9a:69:d6:7a:d3:62: 15:dd:05:a5:51:5c:59:9b:3d:68:e9:a1:a7:f8:22:bc:3c:9d: a4:59:78:39:0c:2b:91:04:a5:21:ca:2a:82:56:49:24:34:0d: 25:8c:c5:da:78:e8:20:15:ee:a9:3c:5e:80:53:fc:7e:ed:52: 9c:f6:65:72:30:d9:7b:fa:f1:63:66:0f:0d:a6:00:e7:5e:a9: eb:6d:26:09:ba:d3:dc:15:78:d1:70:4e:97:79:13:95:9e:f5: f5:0c:34:48:a4:ba:f9:c3:da:c5:ea:dd:6d:d7:ae:4f:14:2d: e0:0a:23:d3:54:80:a8:5c:34:22:30:82:b6:33:1e:9a:63:ba: 4f:8b:40:5c:50:96:bd:7a:8a:ee:21:f4:bc:50:da:7a:49:84: 19:0d:54:1e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUf/Qy2E2EbbYY+ed/9aMHh3A/eqAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDI1MTUzMDEwWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZjM2ZjI3MmFiZWJmMDZjMTMzZDUyMDcxNzE5YWM3OGFj ODZlMTlhNDY3M2U1ZWRiZmQ2OTRkOGNjOWE3ZjhjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD0fBoqrpURwdvGlsdfCFxib2HMBsSTOiveobiqVK5XCbnE f+Blv38y+agidt7n51MG4TN/uACcdjOjw9O7XGDuXee/sqd/VkGy0gfTktsBOSaU MeBrOCC/sqKNam2/nLVKDAyd6LwYJ8MopWNHAjE9JckdiE5MCZOKZAIMUZ9Rr4O1 cThB+evJ/dAFvXFJZQkLTPRTo/4AOJ92DXrUHbnr2d/Q3618SL7zFEJYGKDwUulF dV9mH5WLvycYPs0P/+nTaZFL36SCWsYetw6+t3cKjNVlE7bx1wzG7UzJnin/FurE QRz6Rk/dhWHxO8awdYFSPfJwcSQYsLEZv+ILIznnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUcGzDHB0TxlRC0UMAuvXqjjjRQ6swHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2JjZjgwYzU0LTZlMzAtNGMxNy04NTFjLTZhM2MwNjc2Zjc3ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCMkTANBgkqhkiG9w0BAQsFAAOCAQEAbjgK7dxqk8q5J6vCQOWzDqTFM0Th 8E85cPYzCjiG+/LVyWNFpoGQhTcR3g4AzhD/yyU99FTIMqPJf2igjz88I+kyNcak I+nZxlWnjqU25ZyjYcVNYN8Pq9mch0yrdPoKEFcVFu2dmmnWetNiFd0FpVFcWZs9 aOmhp/givDydpFl4OQwrkQSlIcoqglZJJDQNJYzF2njoIBXuqTxegFP8fu1SnPZl cjDZe/rxY2YPDaYA516p620mCbrT3BV40XBOl3kTlZ719Qw0SKS6+cPaxerdbdeu TxQt4Aoj01SAqFw0IjCCtjMemmO6T4tAXFCWvXqK7iH0vFDaekmEGQ1UHg== -----END CERTIFICATE-----Generated at Sat Apr 26 12:47:01 2025 by rpki-client