$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bed5c1f0-a446-4c7a-ace9-206cba43d6b5.roa File: bed5c1f0-a446-4c7a-ace9-206cba43d6b5.roa (raw, json) Hash identifier: KgWVebT1M/Mbrmi6DhPFExppMDXEqCxU9dTo4qLtWgQ= Subject key identifier: 71:36:C6:21:05:6D:8F:F1:9C:98:03:08:0F:B3:DF:94:41:06:15:0D Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 576122D8C5FEE3CCBC934E28FE1AD964421F2439 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bed5c1f0-a446-4c7a-ace9-206cba43d6b5.roa Signing time: Mon 14 Apr 2025 17:01:04 +0000 ROA not before: Mon 14 Apr 2025 17:01:04 +0000 ROA not after: Mon 19 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.184.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:61:22:d8:c5:fe:e3:cc:bc:93:4e:28:fe:1a:d9:64:42:1f:24:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 14 17:01:04 2025 GMT Not After : May 19 23:59:59 2025 GMT Subject: serialNumber=a0ca78ae40541d2d0ffbcc96e24474e206214cd2b5edd9bb13897e137321a023, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:11:fa:96:9e:f1:93:5a:d6:b6:ae:7f:a2:4a: 25:f3:a4:76:1c:45:03:e3:a7:3b:e9:32:97:61:ff: f0:0a:aa:ee:b1:ac:4e:a5:f5:be:fb:42:3c:27:aa: 84:6f:96:c5:56:31:45:39:16:c3:dd:38:85:11:80: 30:a8:ca:b3:3f:75:d9:d2:e1:63:fa:cd:bb:4d:b3: 32:d7:80:02:68:a9:d2:c1:f2:e8:e9:4a:ea:48:93: 7a:40:42:5f:e5:61:55:09:78:1c:63:42:c2:9c:50: 66:f4:08:c6:67:fd:67:1f:db:ee:a2:4d:53:d0:28: eb:27:24:1d:a6:b5:41:03:a6:ea:00:c3:2f:81:14: ff:cf:a7:8a:c1:f1:47:6b:f1:35:d2:fa:fb:74:7b: 5c:33:9e:fa:e7:84:fd:dd:1c:a4:36:60:df:a7:f2: e8:84:80:1a:90:4b:28:70:f9:ef:ab:0a:db:83:15: a7:38:ce:6a:f7:de:9d:0f:a6:e0:02:4a:2c:d0:8e: dc:cd:3d:e8:89:e3:52:c2:ff:ce:b4:f9:fa:0b:fd: e5:31:25:2f:84:85:cb:74:b3:d5:e3:84:19:62:57: 10:ea:59:49:de:79:fe:ff:56:40:e2:63:40:03:66: 90:5c:fb:21:4f:f3:2c:32:e3:7b:93:99:8d:75:14: b4:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:36:C6:21:05:6D:8F:F1:9C:98:03:08:0F:B3:DF:94:41:06:15:0D X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bed5c1f0-a446-4c7a-ace9-206cba43d6b5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.184.0.0/18 Signature Algorithm: sha256WithRSAEncryption a3:a4:a3:50:71:24:e1:4e:96:e0:3e:e5:eb:e7:90:80:e1:49: 55:ff:c2:80:05:92:d2:e2:9e:58:53:9c:57:1c:8e:65:14:bf: b2:df:73:31:6e:bf:f1:f4:2f:d9:44:18:00:2b:ce:ec:e1:da: 81:aa:15:a9:05:39:1b:49:6c:f2:d4:1d:68:33:90:1b:7b:81: 2b:ac:df:2c:ca:ab:dc:e2:57:30:65:05:75:c6:c3:67:6e:b9: b0:ae:59:63:a2:b7:6f:77:18:2c:ad:76:bf:48:7f:e9:28:ec: 03:e6:59:f7:39:25:2d:81:14:47:bd:bf:dc:c1:1c:1c:e9:42: bd:37:01:0c:e3:ea:ac:7e:41:1c:f7:46:e4:ab:4d:27:89:ae: f6:59:e4:29:be:a7:dc:05:51:61:35:00:b0:ca:f7:27:59:d9: f5:e8:b3:39:e0:65:6e:73:92:cb:29:0d:5e:9c:0c:78:3a:56: 0c:81:49:54:86:fa:e0:98:c8:82:3a:5d:9c:3b:b1:8e:44:70: 7f:b8:36:13:5e:e9:02:a6:78:c7:63:0a:6c:7c:c4:67:f1:06: 63:c5:ac:62:18:b7:35:1d:69:a9:c7:6c:97:73:d1:0b:ca:08: 89:ff:a7:0d:d6:de:c0:9a:10:23:14:35:28:e4:88:41:6f:46: a0:49:2b:0e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUV2Ei2MX+48y8k04o/hrZZEIfJDkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE0MTcwMTA0WhcNMjUwNTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMGNhNzhhZTQwNTQxZDJkMGZmYmNjOTZlMjQ0NzRlMjA2 MjE0Y2QyYjVlZGQ5YmIxMzg5N2UxMzczMjFhMDIzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFEfqWnvGTWta2rn+iSiXzpHYcRQPjpzvpMpdh//AKqu6x rE6l9b77QjwnqoRvlsVWMUU5FsPdOIURgDCoyrM/ddnS4WP6zbtNszLXgAJoqdLB 8ujpSupIk3pAQl/lYVUJeBxjQsKcUGb0CMZn/Wcf2+6iTVPQKOsnJB2mtUEDpuoA wy+BFP/Pp4rB8Udr8TXS+vt0e1wznvrnhP3dHKQ2YN+n8uiEgBqQSyhw+e+rCtuD Fac4zmr33p0PpuACSizQjtzNPeiJ41LC/860+foL/eUxJS+Ehct0s9XjhBliVxDq WUneef7/VkDiY0ADZpBc+yFP8ywy43uTmY11FLSjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcTbGIQVtj/GcmAMID7PflEEGFQ0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2JlZDVjMWYwLWE0NDYtNGM3YS1hY2U5LTIwNmNiYTQzZDZiNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY2uAAwDQYJKoZIhvcNAQELBQADggEBAKOko1BxJOFOluA+5evnkIDhSVX/ woAFktLinlhTnFccjmUUv7LfczFuv/H0L9lEGAArzuzh2oGqFakFORtJbPLUHWgz kBt7gSus3yzKq9ziVzBlBXXGw2duubCuWWOit293GCytdr9If+ko7APmWfc5JS2B FEe9v9zBHBzpQr03AQzj6qx+QRz3RuSrTSeJrvZZ5Cm+p9wFUWE1ALDK9ydZ2fXo szngZW5zksspDV6cDHg6VgyBSVSG+uCYyII6XZw7sY5EcH+4NhNe6QKmeMdjCmx8 xGfxBmPFrGIYtzUdaanHbJdz0QvKCIn/pw3W3sCaECMUNSjkiEFvRqBJKw4= -----END CERTIFICATE-----Generated at Sat Apr 26 18:28:46 2025 by rpki-client