$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/caf9f241-1f2b-4a2e-92c3-717ec41ecfcd.roa File: caf9f241-1f2b-4a2e-92c3-717ec41ecfcd.roa (raw, json) Hash identifier: x8Rh7RVopLeVYV1N+pqvkawhVh0+fFhDx1Zh6KbLpPI= Subject key identifier: 35:3C:EE:E8:C0:61:FE:55:16:87:77:69:3A:A4:E8:0A:AF:61:D9:E9 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 09D915B35BCCAABC4680C3CDC435704E21580D37 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/caf9f241-1f2b-4a2e-92c3-717ec41ecfcd.roa Signing time: Sat 26 Apr 2025 00:31:08 +0000 ROA not before: Sat 26 Apr 2025 00:31:08 +0000 ROA not after: Sat 31 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.71.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:d9:15:b3:5b:cc:aa:bc:46:80:c3:cd:c4:35:70:4e:21:58:0d:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 26 00:31:08 2025 GMT Not After : May 31 23:59:59 2025 GMT Subject: serialNumber=ef165a227d2f9fbd1f4ac50d0e96a2107ea1bcee6e5f9043274810cd801bbe0b, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bf:3b:b3:67:56:ca:9a:67:09:eb:af:9c:d6: 72:ca:c8:69:66:58:3c:81:4e:63:92:ba:12:aa:6e: 26:af:5e:a7:65:df:73:cd:0e:85:91:5f:4b:be:a9: 03:60:38:cd:91:47:2b:43:5c:84:a3:a2:43:ca:58: 38:93:31:ba:c0:77:9e:fe:f3:f3:1c:86:4f:5a:8e: 6b:bb:5d:5e:8f:64:54:4d:40:46:45:64:32:18:02: ef:91:f2:e9:8c:67:35:c4:35:30:54:19:ab:d1:96: 54:fd:3b:1b:69:ac:3f:09:3f:1d:16:72:c2:09:46: 98:6a:71:a3:7b:b0:6f:25:51:c8:78:0d:b2:5b:b9: 81:b7:74:38:2e:73:4f:e9:b2:db:be:62:28:4b:55: 01:ca:a8:d4:64:0a:03:f2:14:0a:9a:f4:9f:63:71: d9:c0:fb:4c:1f:2a:46:ea:76:e6:1e:54:08:96:5b: 65:50:79:d8:0b:82:f7:50:2e:51:2a:73:00:af:7c: 12:a5:09:b2:61:c7:5e:eb:b5:e9:cc:44:14:06:37: 52:c2:9b:43:e6:4e:b1:d1:00:47:b5:ca:2b:13:8c: 14:a1:1f:15:43:69:a7:06:e2:a9:5c:54:e2:aa:48: 67:dd:d6:9e:3c:19:c1:a7:94:59:f1:85:c6:ba:76: d6:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:3C:EE:E8:C0:61:FE:55:16:87:77:69:3A:A4:E8:0A:AF:61:D9:E9 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/caf9f241-1f2b-4a2e-92c3-717ec41ecfcd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.71.128.0/17 Signature Algorithm: sha256WithRSAEncryption 02:48:77:a5:76:40:ed:85:b4:6f:8a:39:7e:3a:cd:4b:56:13: 8f:68:e7:cd:50:4a:f0:d7:d3:7d:5c:89:db:41:56:76:64:e8: 43:40:cc:19:5a:53:38:7d:8a:c5:08:59:66:13:15:4b:1e:af: 51:7a:19:b4:e8:e2:07:eb:cf:2a:9f:64:53:29:2f:ba:b7:a1: 0a:47:f3:4a:0f:a9:14:49:12:0c:01:57:a8:78:ed:33:42:54: ac:89:b9:48:f9:95:c9:42:fc:19:0e:5d:8b:9b:9a:97:39:55: 7a:3e:39:ff:52:ce:f1:e5:d1:35:6b:69:fc:c4:88:93:05:55: c4:f6:8d:5d:83:e5:ff:7c:b3:7a:ca:39:49:63:3f:66:1b:57: e9:1a:0e:ce:84:d2:e1:ab:8a:25:67:80:cf:87:5a:c4:39:f4: 62:bb:67:70:69:44:48:6a:f4:18:08:40:93:67:3b:74:24:35: a2:19:61:4f:f4:19:3a:91:ad:87:39:9d:9e:34:ef:33:eb:0e: 45:25:74:d0:9c:6b:a6:21:4b:45:a1:34:8c:c8:a9:ed:18:97: a2:fb:dc:8d:07:89:4b:e8:9e:0b:d2:68:7f:4c:93:ac:40:b9: ba:b8:04:c6:ae:82:2c:73:c6:d4:11:ea:90:c0:85:b8:4b:3b: 16:71:ce:d7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCdkVs1vMqrxGgMPNxDVwTiFYDTcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDI2MDAzMTA4WhcNMjUwNTMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZjE2NWEyMjdkMmY5ZmJkMWY0YWM1MGQwZTk2YTIxMDdl YTFiY2VlNmU1ZjkwNDMyNzQ4MTBjZDgwMWJiZTBiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5vzuzZ1bKmmcJ66+c1nLKyGlmWDyBTmOSuhKqbiavXqdl 33PNDoWRX0u+qQNgOM2RRytDXISjokPKWDiTMbrAd57+8/Mchk9ajmu7XV6PZFRN QEZFZDIYAu+R8umMZzXENTBUGavRllT9OxtprD8JPx0WcsIJRphqcaN7sG8lUch4 DbJbuYG3dDguc0/pstu+YihLVQHKqNRkCgPyFAqa9J9jcdnA+0wfKkbqduYeVAiW W2VQedgLgvdQLlEqcwCvfBKlCbJhx17rtenMRBQGN1LCm0PmTrHRAEe1yisTjBSh HxVDaacG4qlcVOKqSGfd1p48GcGnlFnxhca6dtYtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNTzu6MBh/lUWh3dpOqToCq9h2ekwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2NhZjlmMjQxLTFmMmItNGEyZS05MmMzLTcxN2VjNDFlY2ZjZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcjR4AwDQYJKoZIhvcNAQELBQADggEBAAJId6V2QO2FtG+KOX46zUtWE49o 581QSvDX031cidtBVnZk6ENAzBlaUzh9isUIWWYTFUser1F6GbTo4gfrzyqfZFMp L7q3oQpH80oPqRRJEgwBV6h47TNCVKyJuUj5lclC/BkOXYubmpc5VXo+Of9SzvHl 0TVrafzEiJMFVcT2jV2D5f98s3rKOUljP2YbV+kaDs6E0uGriiVngM+HWsQ59GK7 Z3BpREhq9BgIQJNnO3QkNaIZYU/0GTqRrYc5nZ407zPrDkUldNCca6YhS0WhNIzI qe0Yl6L73I0HiUvongvSaH9Mk6xAubq4BMaugixzxtQR6pDAhbhLOxZxztc= -----END CERTIFICATE-----Generated at Sat Apr 26 14:45:18 2025 by rpki-client