$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d05d1ed6-0d98-42b2-8bd6-0ad727ddd58f.roa File: d05d1ed6-0d98-42b2-8bd6-0ad727ddd58f.roa (raw, json) Hash identifier: xDbOPmZMt2lVwQ0uJjjXhH9pKNoa5LD+nd9uQc7eNV4= Subject key identifier: 3D:C0:B7:9C:07:2E:D0:B3:31:46:18:CB:8D:ED:76:67:CE:3C:12:CF Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3707BB10AAC029A7B419C04152C52211546BB9B0 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d05d1ed6-0d98-42b2-8bd6-0ad727ddd58f.roa Signing time: Sat 12 Apr 2025 00:51:08 +0000 ROA not before: Sat 12 Apr 2025 00:51:08 +0000 ROA not after: Sat 17 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.53.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:07:bb:10:aa:c0:29:a7:b4:19:c0:41:52:c5:22:11:54:6b:b9:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 12 00:51:08 2025 GMT Not After : May 17 23:59:59 2025 GMT Subject: serialNumber=f06e8092fb409997f0eededcb5045e5f414ecd3e3664d3d91abb7bdfc4b859a9, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:74:e2:f3:14:b4:e1:73:94:cf:ad:9d:da:c9: 37:29:8e:14:d8:05:a4:4a:da:10:f0:e7:16:8d:e7: e8:5a:4c:1b:e5:d2:b3:b7:fb:84:95:3c:88:64:9e: 86:f4:fb:ce:b0:27:d9:41:a9:9f:b3:6c:82:62:30: c7:8b:60:a7:41:7b:91:9e:80:66:7f:4e:fd:34:28: 38:3a:64:8f:b9:59:86:5f:cf:05:be:f1:ee:ff:b2: 5c:c1:2d:43:7d:e9:2e:56:0d:b2:19:aa:e8:86:7c: 31:a5:20:8a:bd:c6:80:5f:0a:69:6b:76:24:83:ee: f1:f0:eb:ab:c7:bf:6e:71:48:94:19:b5:e4:70:c6: eb:da:d7:e8:10:e3:1c:2a:65:46:4b:b8:a7:5a:af: db:34:61:01:1a:55:dd:ed:1e:0b:67:c2:a6:69:43: 69:8e:d5:87:d8:e2:56:3d:19:fc:f9:f9:ef:aa:8c: 4c:3d:9b:eb:52:09:38:3d:b1:8f:78:56:0a:b2:d6: ed:98:24:b7:b6:4b:8d:cf:ec:da:1c:5a:73:0e:49: bf:4b:96:33:67:ef:e3:2c:4f:c7:f8:cc:79:bc:da: ee:c1:c8:98:4d:06:a5:51:6f:13:7d:2c:e2:f9:91: a8:9b:36:4e:cb:f8:7f:c7:36:56:ee:c3:0c:84:3f: de:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:C0:B7:9C:07:2E:D0:B3:31:46:18:CB:8D:ED:76:67:CE:3C:12:CF X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d05d1ed6-0d98-42b2-8bd6-0ad727ddd58f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.53.128.0/17 Signature Algorithm: sha256WithRSAEncryption 46:99:53:cf:b0:a9:f4:7e:1b:58:09:bf:65:31:27:85:b8:00: 23:7f:28:6c:28:89:cc:92:7f:c2:35:9d:ef:93:b7:c8:d7:21: c6:5f:96:78:bf:68:76:c4:88:98:03:fb:9c:67:66:28:01:31: 1d:fd:f5:8d:89:ad:72:72:db:aa:92:cb:60:11:8f:c6:ea:d6: 8f:0d:47:15:68:76:69:8a:71:3d:c6:d0:d1:73:f7:b4:3a:a9: 3c:0e:11:f1:e8:2f:a2:c2:2f:93:06:eb:31:b2:98:d7:10:59: 15:d9:48:27:d6:d6:36:23:77:b7:c2:56:e2:0e:14:c0:9b:d0: 36:5b:d3:ea:73:76:e6:16:48:14:1a:28:a1:d9:40:d7:07:8f: 19:dc:f4:eb:ef:6b:40:98:8e:11:e4:c5:49:ce:e5:8b:d9:c4: 42:52:16:4e:2a:ef:6a:36:99:15:ad:0d:4b:33:c7:ba:ed:37: 6b:a7:d6:52:e2:3b:c1:0c:01:8c:f7:8a:aa:28:bb:8e:a7:60: b5:26:01:eb:33:da:7c:d0:9d:93:51:c1:74:d0:8e:dc:50:b1: 37:63:a5:39:97:50:44:1c:8c:fc:84:10:e8:21:93:24:db:06: fe:1f:6d:26:1c:07:04:2d:a8:68:07:ac:09:87:0d:29:4e:dc: c8:90:a6:74 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNwe7EKrAKae0GcBBUsUiEVRrubAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDEyMDA1MTA4WhcNMjUwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMDZlODA5MmZiNDA5OTk3ZjBlZWRlZGNiNTA0NWU1ZjQx NGVjZDNlMzY2NGQzZDkxYWJiN2JkZmM0Yjg1OWE5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAdOLzFLThc5TPrZ3ayTcpjhTYBaRK2hDw5xaN5+haTBvl 0rO3+4SVPIhknob0+86wJ9lBqZ+zbIJiMMeLYKdBe5GegGZ/Tv00KDg6ZI+5WYZf zwW+8e7/slzBLUN96S5WDbIZquiGfDGlIIq9xoBfCmlrdiSD7vHw66vHv25xSJQZ teRwxuva1+gQ4xwqZUZLuKdar9s0YQEaVd3tHgtnwqZpQ2mO1YfY4lY9Gfz5+e+q jEw9m+tSCTg9sY94Vgqy1u2YJLe2S43P7NocWnMOSb9LljNn7+MsT8f4zHm82u7B yJhNBqVRbxN9LOL5kaibNk7L+H/HNlbuwwyEP97RAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPcC3nAcu0LMxRhjLje12Z848Es8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2QwNWQxZWQ2LTBkOTgtNDJiMi04YmQ2LTBhZDcyN2RkZDU4Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcNNYAwDQYJKoZIhvcNAQELBQADggEBAEaZU8+wqfR+G1gJv2UxJ4W4ACN/ KGwoicySf8I1ne+Tt8jXIcZflni/aHbEiJgD+5xnZigBMR399Y2JrXJy26qSy2AR j8bq1o8NRxVodmmKcT3G0NFz97Q6qTwOEfHoL6LCL5MG6zGymNcQWRXZSCfW1jYj d7fCVuIOFMCb0DZb0+pzduYWSBQaKKHZQNcHjxnc9Ovva0CYjhHkxUnO5YvZxEJS Fk4q72o2mRWtDUszx7rtN2un1lLiO8EMAYz3iqoou46nYLUmAesz2nzQnZNRwXTQ jtxQsTdjpTmXUEQcjPyEEOghkyTbBv4fbSYcBwQtqGgHrAmHDSlO3MiQpnQ= -----END CERTIFICATE-----Generated at Sat Apr 26 15:55:40 2025 by rpki-client