$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/db28a28a-67ee-4d85-bb3d-cad7e12c11b1.roa File: db28a28a-67ee-4d85-bb3d-cad7e12c11b1.roa (raw, json) Hash identifier: muesOOMEYdLCk7MCs/QeB/JTq1da+JAXIWKMe5Fs67k= Subject key identifier: 3C:7E:15:5D:C3:5F:3E:7E:F5:E7:47:F9:9B:69:5C:C3:8B:FA:91:18 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1F1658041C1763412CA93C278E9E2F64DB72FF3B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/db28a28a-67ee-4d85-bb3d-cad7e12c11b1.roa Signing time: Fri 18 Apr 2025 15:11:05 +0000 ROA not before: Fri 18 Apr 2025 15:11:05 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.158.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:16:58:04:1c:17:63:41:2c:a9:3c:27:8e:9e:2f:64:db:72:ff:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 18 15:11:05 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=0a4580eb755eafc07ac6427efef586df883fee042eaf7654599369164184a1b0, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:04:5a:60:c0:81:50:50:0a:cd:c9:9d:4c:06: 44:7c:46:08:66:60:22:41:24:08:3a:cf:a4:60:cb: 38:e1:15:4f:11:43:d4:dd:b7:93:a9:9f:9f:bb:43: 92:ca:d2:86:e0:ee:37:e0:0d:8f:ac:cb:ef:78:d0: f3:ba:db:1f:ba:0b:c1:e5:5b:f0:35:7f:24:69:7d: 6f:28:79:20:d1:f1:6d:fc:22:c5:47:47:02:70:b7: c8:3e:05:98:a2:22:0c:d5:c8:e8:34:d4:26:56:0b: 8d:9b:09:2b:c7:ad:9b:a7:a5:6d:66:f1:f5:a7:2e: df:b9:ac:47:7b:e1:e1:b3:62:93:9d:49:e5:fe:c5: e7:b4:d7:41:bd:84:15:87:0c:cf:6b:49:b5:4f:f6: bb:7c:dc:29:e1:8c:96:4c:f8:58:89:b7:4d:ba:58: bf:ce:fa:72:97:0a:cc:6b:90:10:d1:33:95:6b:4d: e9:f6:3a:9d:eb:32:25:ff:b1:7f:50:a5:a8:3d:b4: 68:0b:b1:cd:5a:6b:39:ce:77:fa:a5:13:ef:3f:4e: 34:d3:5e:10:0d:0a:12:d2:b4:d5:dc:54:8e:8c:74: 46:92:85:67:a0:ae:31:2a:a3:32:e7:ba:42:ad:c1: ed:10:10:de:f4:c1:61:91:b6:bc:87:3f:b2:6a:b6: 08:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:7E:15:5D:C3:5F:3E:7E:F5:E7:47:F9:9B:69:5C:C3:8B:FA:91:18 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/db28a28a-67ee-4d85-bb3d-cad7e12c11b1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.158.192.0/18 Signature Algorithm: sha256WithRSAEncryption 2e:05:c2:d8:a7:6c:ef:2d:9c:1b:01:e0:5d:b3:dc:e9:20:2e: 3d:a9:4a:ff:71:68:ee:a8:df:ac:0c:83:a1:bc:c1:a3:09:1a: 99:1a:fe:ce:e1:34:48:12:82:d0:cf:9a:5c:86:1b:d1:0d:63: b4:49:4b:a4:e0:da:4c:10:45:85:a8:11:af:a5:2c:f5:81:0d: dd:7a:e8:ee:d5:5b:d5:d5:98:80:ba:e0:90:83:47:c3:77:ce: b8:6f:96:b9:fa:93:12:e4:47:67:42:de:cb:08:13:08:ac:2d: 5d:a1:2e:f2:c3:5e:4f:ba:57:60:cc:a2:04:35:5d:6a:86:4c: c4:96:7b:8b:84:5d:2c:16:14:66:b4:0c:dd:fe:c3:0b:5f:e7: d6:cf:78:7c:93:3a:bd:6a:cf:ee:80:4e:07:96:9d:63:e0:77: 58:e7:20:12:0f:0b:a7:fd:0d:a7:27:45:31:22:f9:29:e0:87: 95:b3:d8:22:81:65:c4:2d:3c:5b:a1:be:18:37:2e:24:b3:f2: bf:77:0c:a4:fd:d2:df:f6:34:bf:4b:bc:78:1c:b5:20:81:12: 71:e4:8c:2c:0c:c7:95:be:40:6c:9f:64:01:e5:1d:12:ff:5e: 8a:76:47:73:9a:40:e4:b4:22:05:15:0e:d6:cb:a0:e1:dd:9f: fd:2b:3a:58 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHxZYBBwXY0EsqTwnjp4vZNty/zswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE4MTUxMTA1WhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYTQ1ODBlYjc1NWVhZmMwN2FjNjQyN2VmZWY1ODZkZjg4 M2ZlZTA0MmVhZjc2NTQ1OTkzNjkxNjQxODRhMWIwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6BFpgwIFQUArNyZ1MBkR8RghmYCJBJAg6z6RgyzjhFU8R Q9Tdt5Opn5+7Q5LK0obg7jfgDY+sy+940PO62x+6C8HlW/A1fyRpfW8oeSDR8W38 IsVHRwJwt8g+BZiiIgzVyOg01CZWC42bCSvHrZunpW1m8fWnLt+5rEd74eGzYpOd SeX+xee010G9hBWHDM9rSbVP9rt83CnhjJZM+FiJt026WL/O+nKXCsxrkBDRM5Vr Ten2Op3rMiX/sX9Qpag9tGgLsc1aaznOd/qlE+8/TjTTXhANChLStNXcVI6MdEaS hWegrjEqozLnukKtwe0QEN70wWGRtryHP7JqtgjZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPH4VXcNfPn7150f5m2lcw4v6kRgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2RiMjhhMjhhLTY3ZWUtNGQ4NS1iYjNkLWNhZDdlMTJjMTFiMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY2nsAwDQYJKoZIhvcNAQELBQADggEBAC4FwtinbO8tnBsB4F2z3OkgLj2p Sv9xaO6o36wMg6G8waMJGpka/s7hNEgSgtDPmlyGG9ENY7RJS6Tg2kwQRYWoEa+l LPWBDd166O7VW9XVmIC64JCDR8N3zrhvlrn6kxLkR2dC3ssIEwisLV2hLvLDXk+6 V2DMogQ1XWqGTMSWe4uEXSwWFGa0DN3+wwtf59bPeHyTOr1qz+6ATgeWnWPgd1jn IBIPC6f9DacnRTEi+Sngh5Wz2CKBZcQtPFuhvhg3LiSz8r93DKT90t/2NL9LvHgc tSCBEnHkjCwMx5W+QGyfZAHlHRL/Xop2R3OaQOS0IgUVDtbLoOHdn/0rOlg= -----END CERTIFICATE-----Generated at Sat Apr 26 19:48:35 2025 by rpki-client