$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d3e9f4ef-521d-44ce-8ce6-9861c07bae55.roa File: d3e9f4ef-521d-44ce-8ce6-9861c07bae55.roa (raw, json) Hash identifier: l3RXkT9pxU70Dgq9tYMRT7ZeuE7kH/astaK5MicwZwc= Subject key identifier: 3E:E8:51:30:27:D8:8D:AD:03:BC:6E:23:C9:43:06:E6:D8:DE:6C:DB Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2DB6DE98CC4F65F1FDCD0C6CE966333FA73E9DA3 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d3e9f4ef-521d-44ce-8ce6-9861c07bae55.roa Signing time: Tue 22 Apr 2025 17:51:10 +0000 ROA not before: Tue 22 Apr 2025 17:51:10 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 165.208.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:b6:de:98:cc:4f:65:f1:fd:cd:0c:6c:e9:66:33:3f:a7:3e:9d:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 22 17:51:10 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=ce8fccf59108ed8a11c60ef1882549f2a79ed0ded1d1c3aed087f33ebd05e46d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:48:6a:f3:ee:66:f4:dd:dd:1e:f0:5b:6f:21: 1d:3d:d5:ae:85:1b:e7:19:00:39:4a:09:0f:6f:84: 2e:0d:bf:ba:3c:c0:0b:27:c9:9e:df:e3:73:75:a9: 23:85:65:2e:0f:3a:0e:49:bb:a5:d0:04:5f:4c:a3: 06:27:d1:e4:3f:b1:1e:02:a9:48:98:c8:cc:12:19: 7f:12:21:e2:a4:f8:a3:9a:a1:4d:be:0d:73:9d:34: 31:db:4b:83:c8:a9:ee:40:35:e1:50:8f:d9:21:dc: c8:7b:ea:2a:24:77:36:cf:7c:d7:ab:58:e1:53:45: 86:b6:d5:c7:75:a1:17:76:c2:38:67:a4:15:37:12: 11:60:81:e9:2c:f7:ad:e2:50:93:17:a9:31:f4:9c: 36:01:5f:99:2c:d3:5f:40:f5:1f:ab:e0:c8:41:26: 07:cf:6d:e7:0b:1a:09:09:8e:d5:e9:0e:e6:e1:0c: 4a:54:a1:9c:d3:4f:a6:57:73:59:93:cc:91:86:35: 6e:b8:f7:d2:0e:d9:72:79:e9:a5:17:5b:fa:49:62: bf:b3:10:b9:45:5f:b2:e3:b4:d5:e6:fa:b3:c8:d7: 16:34:7e:ad:a1:a8:32:e0:2e:fc:44:70:c8:48:43: 89:f1:6f:80:37:95:5c:d5:62:d3:f9:9b:bc:44:a6: 77:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:E8:51:30:27:D8:8D:AD:03:BC:6E:23:C9:43:06:E6:D8:DE:6C:DB X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d3e9f4ef-521d-44ce-8ce6-9861c07bae55.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.208.0.0/16 Signature Algorithm: sha256WithRSAEncryption 84:c6:29:f2:58:d2:57:92:56:68:c6:47:81:c5:fc:05:a8:c5: 0c:4b:0c:a6:10:ae:db:cc:2e:61:3d:d3:5f:19:91:53:39:05: ab:4a:94:87:32:24:c3:c8:85:8b:fd:e2:cc:bf:69:11:de:4f: 84:bd:7b:d0:0e:4e:66:db:47:b2:c9:62:e1:c4:96:3f:a7:69: c0:bc:30:95:5a:f0:ec:6b:d7:a4:cc:36:09:f6:1f:14:6b:85: bd:62:bd:c4:51:a3:d7:0c:b8:2a:19:4f:27:ea:cd:ea:fd:82: c2:c2:f5:e8:62:9a:07:92:e2:1d:62:80:0b:3d:66:0b:19:28: ac:49:73:34:c8:f5:6f:1d:df:e8:ed:08:ee:a6:89:f2:13:42: 69:47:9e:09:40:d5:ce:e3:fa:ae:9a:f8:64:be:a6:e7:37:23: 65:0c:2d:c5:6e:59:7e:ce:7e:a2:10:0d:0a:88:ad:c9:39:50: 5c:f3:b3:f1:c8:18:c0:ca:6c:fb:ff:21:23:34:86:0d:d8:e1: 9b:ba:49:83:ac:35:6e:eb:a3:d5:04:8d:ad:15:c1:15:71:94: e8:c4:38:b9:4b:48:b7:3c:1f:fe:8d:bb:eb:d3:19:59:f6:09: 27:9c:98:7a:ce:41:14:4d:67:f3:5a:a4:e5:6f:9f:14:c0:4c: 0c:71:40:3e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULbbemMxPZfH9zQxs6WYzP6c+naMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDIyMTc1MTEwWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZThmY2NmNTkxMDhlZDhhMTFjNjBlZjE4ODI1NDlmMmE3 OWVkMGRlZDFkMWMzYWVkMDg3ZjMzZWJkMDVlNDZkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgSGrz7mb03d0e8FtvIR091a6FG+cZADlKCQ9vhC4Nv7o8 wAsnyZ7f43N1qSOFZS4POg5Ju6XQBF9MowYn0eQ/sR4CqUiYyMwSGX8SIeKk+KOa oU2+DXOdNDHbS4PIqe5ANeFQj9kh3Mh76iokdzbPfNerWOFTRYa21cd1oRd2wjhn pBU3EhFggeks963iUJMXqTH0nDYBX5ks019A9R+r4MhBJgfPbecLGgkJjtXpDubh DEpUoZzTT6ZXc1mTzJGGNW6499IO2XJ56aUXW/pJYr+zELlFX7LjtNXm+rPI1xY0 fq2hqDLgLvxEcMhIQ4nxb4A3lVzVYtP5m7xEpnc9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUPuhRMCfYja0DvG4jyUMG5tjebNswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2QzZTlmNGVmLTUyMWQtNDRjZS04Y2U2LTk4NjFjMDdiYWU1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCl0DANBgkqhkiG9w0BAQsFAAOCAQEAhMYp8ljSV5JWaMZHgcX8BajFDEsM phCu28wuYT3TXxmRUzkFq0qUhzIkw8iFi/3izL9pEd5PhL170A5OZttHssli4cSW P6dpwLwwlVrw7GvXpMw2CfYfFGuFvWK9xFGj1wy4KhlPJ+rN6v2CwsL16GKaB5Li HWKACz1mCxkorElzNMj1bx3f6O0I7qaJ8hNCaUeeCUDVzuP6rpr4ZL6m5zcjZQwt xW5Zfs5+ohANCoityTlQXPOz8cgYwMps+/8hIzSGDdjhm7pJg6w1buuj1QSNrRXB FXGU6MQ4uUtItzwf/o2769MZWfYJJ5yYes5BFE1n81qk5W+fFMBMDHFAPg== -----END CERTIFICATE-----Generated at Sat Apr 26 19:48:30 2025 by rpki-client