$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d1f33e49-9e48-44be-a680-4c1b2218329d.roa File: d1f33e49-9e48-44be-a680-4c1b2218329d.roa (raw, json) Hash identifier: gbqWRybZkxGpKNNhevl7DtZ/yF1RH5ojtWzUDNlb1FA= Subject key identifier: 34:61:0C:65:57:20:0F:83:D8:3E:1A:BD:28:FF:FE:13:46:58:E8:F8 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 33FD01E9073C90E763EACD747454A582475C0B3A Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d1f33e49-9e48-44be-a680-4c1b2218329d.roa Signing time: Fri 18 Apr 2025 16:50:20 +0000 ROA not before: Fri 18 Apr 2025 16:50:20 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.230.200.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:fd:01:e9:07:3c:90:e7:63:ea:cd:74:74:54:a5:82:47:5c:0b:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 18 16:50:20 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=d315d1fe2ef67125f106cb6caec3c2f729b0c9f540ab66837c161cba39edffb1, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:26:3d:2c:64:56:2d:89:ec:68:ac:40:2e:1c: 96:d7:77:5f:90:e2:d4:02:9e:68:3e:cf:d6:37:3f: dd:93:eb:9c:9b:42:32:1e:56:d1:19:bd:f3:dd:5e: f9:ec:7c:df:1a:db:b6:99:e0:1d:35:d6:71:c1:01: 88:4b:b1:7d:df:ff:22:02:7b:16:e7:ae:0e:8a:8f: 15:8c:92:ec:98:2f:1e:52:de:0b:6b:c1:fd:38:14: 4d:49:14:df:54:01:97:0c:42:f2:84:a1:53:f3:bd: f0:de:62:bb:20:81:c8:a2:b1:68:96:32:e0:4a:b7: e2:a0:20:6c:3d:88:d9:95:30:8d:0a:d1:14:de:c5: ff:74:ec:af:04:2c:36:91:f6:c7:ab:be:9a:07:cf: 63:89:f5:bf:5f:67:ab:81:69:4b:f1:87:d1:3a:d9: 13:cc:53:57:3d:e3:f6:12:b2:2c:4f:b9:eb:f7:fc: c2:0d:20:0e:d2:ce:04:99:e4:eb:7b:dd:50:99:5d: ce:da:9d:bf:bc:66:75:91:83:ab:74:a9:37:44:33: 21:4a:8f:dd:32:44:b2:50:9e:f6:0f:bc:bb:75:e9: 59:ad:1c:c7:cc:6b:9b:27:44:b0:c3:7d:63:78:4c: 35:45:61:11:cb:b5:e0:33:9b:b5:66:49:78:0d:22: 5f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:61:0C:65:57:20:0F:83:D8:3E:1A:BD:28:FF:FE:13:46:58:E8:F8 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d1f33e49-9e48-44be-a680-4c1b2218329d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.230.200.0/21 Signature Algorithm: sha256WithRSAEncryption 99:82:79:2d:ee:11:1f:ce:fe:7b:c8:75:59:2a:2e:09:9c:d3: fe:c6:03:8b:34:44:56:25:58:6a:ef:3d:d9:0b:58:22:8a:ed: df:50:f0:b4:37:71:0b:a9:3b:10:86:08:b7:ec:82:e4:2b:9b: 4c:27:64:d0:75:01:a6:85:21:90:58:42:7f:c9:35:6e:bc:60: c8:8c:8e:6a:c3:83:0b:bf:39:ed:be:65:06:d7:01:11:5e:99: ec:93:39:04:eb:63:fe:a7:ed:c8:be:4e:ce:06:05:09:1d:9b: ad:98:e5:38:e6:41:bd:8c:9d:2b:ed:c7:bd:d9:38:6b:06:dd: bb:5b:7d:24:56:89:c6:70:02:09:27:cc:7e:a3:5c:11:59:05: 9d:92:40:f8:63:44:58:83:44:3e:e4:9c:f1:b6:7f:68:7b:2f: b7:ad:b1:dc:59:0b:24:84:87:3e:e5:0b:6c:63:00:5e:99:12: e7:41:e1:d0:1e:0a:d4:56:a3:dc:ca:ce:f4:60:f5:de:d7:ca: 1e:77:5d:17:48:19:25:c0:f4:e4:4a:1e:99:45:c7:19:0c:75: 65:61:8d:ad:6b:2c:23:53:06:22:1c:96:84:7d:f8:4e:da:1f: b9:42:e4:bb:cd:70:3e:11:af:a7:35:23:d2:f9:db:3e:58:e7: db:36:45:0a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUM/0B6Qc8kOdj6s10dFSlgkdcCzowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE4MTY1MDIwWhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMzE1ZDFmZTJlZjY3MTI1ZjEwNmNiNmNhZWMzYzJmNzI5 YjBjOWY1NDBhYjY2ODM3YzE2MWNiYTM5ZWRmZmIxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChJj0sZFYtiexorEAuHJbXd1+Q4tQCnmg+z9Y3P92T65yb QjIeVtEZvfPdXvnsfN8a27aZ4B011nHBAYhLsX3f/yICexbnrg6KjxWMkuyYLx5S 3gtrwf04FE1JFN9UAZcMQvKEoVPzvfDeYrsggciisWiWMuBKt+KgIGw9iNmVMI0K 0RTexf907K8ELDaR9servpoHz2OJ9b9fZ6uBaUvxh9E62RPMU1c94/YSsixPuev3 /MINIA7SzgSZ5Ot73VCZXc7anb+8ZnWRg6t0qTdEMyFKj90yRLJQnvYPvLt16Vmt HMfMa5snRLDDfWN4TDVFYRHLteAzm7VmSXgNIl9/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNGEMZVcgD4PYPhq9KP/+E0ZY6PgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2QxZjMzZTQ5LTllNDgtNDRiZS1hNjgwLTRjMWIyMjE4MzI5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM25sgwDQYJKoZIhvcNAQELBQADggEBAJmCeS3uER/O/nvIdVkqLgmc0/7G A4s0RFYlWGrvPdkLWCKK7d9Q8LQ3cQupOxCGCLfsguQrm0wnZNB1AaaFIZBYQn/J NW68YMiMjmrDgwu/Oe2+ZQbXARFemeyTOQTrY/6n7ci+Ts4GBQkdm62Y5TjmQb2M nSvtx73ZOGsG3btbfSRWicZwAgknzH6jXBFZBZ2SQPhjRFiDRD7knPG2f2h7L7et sdxZCySEhz7lC2xjAF6ZEudB4dAeCtRWo9zKzvRg9d7Xyh53XRdIGSXA9ORKHplF xxkMdWVhja1rLCNTBiIcloR9+E7aH7lC5LvNcD4Rr6c1I9L52z5Y59s2RQo= -----END CERTIFICATE-----Generated at Sat Apr 26 19:48:54 2025 by rpki-client