$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e28d298f-e48a-4aaf-bf51-472ca8677cc8.roa File: e28d298f-e48a-4aaf-bf51-472ca8677cc8.roa (raw, json) Hash identifier: oVdVb9DJwpFoFiA/CGu5AD7JJ60Vxvigu4fcvWDM/mw= Subject key identifier: 3E:DA:9E:49:AC:6A:CA:B0:9F:1A:82:8B:53:61:B4:F9:DF:3D:F4:70 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 71B3FFBE361D0C593B5B51EEFE4F2623D1E3C98D Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e28d298f-e48a-4aaf-bf51-472ca8677cc8.roa Signing time: Mon 14 Apr 2025 16:50:19 +0000 ROA not before: Mon 14 Apr 2025 16:50:19 +0000 ROA not after: Mon 19 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.161.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:b3:ff:be:36:1d:0c:59:3b:5b:51:ee:fe:4f:26:23:d1:e3:c9:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 14 16:50:19 2025 GMT Not After : May 19 23:59:59 2025 GMT Subject: serialNumber=660de40e8e4fa0605d1c2a019436164861f7d867eb531789ad64172dbf023581, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:bd:41:9f:73:14:de:d6:91:fc:92:43:2d:80: 45:90:43:2e:5d:54:4b:f0:c5:a5:fa:27:33:67:38: f2:be:31:3c:bd:ac:97:1e:72:56:44:a6:99:9d:2b: 6b:63:e0:e6:25:98:ef:8e:c7:08:49:2c:cc:98:64: e9:15:2f:a1:0d:9b:05:14:41:6e:37:31:40:9d:f8: dc:bf:e0:16:00:39:c4:6a:46:33:80:fe:01:ef:37: 6c:4a:c9:77:d6:a9:7b:dc:5c:68:d9:84:37:ad:fb: 8c:63:b7:8f:cb:a8:0c:66:b7:a6:06:6c:0e:2d:fc: 19:03:44:db:e1:05:31:6f:2c:df:d9:0a:35:48:60: 11:85:0f:31:47:f2:18:7a:0f:4e:bb:3f:80:01:6b: a2:61:7c:57:20:14:c2:1f:b5:da:10:df:04:3a:a4: 35:f1:49:69:af:9e:e2:eb:8c:34:8f:98:01:93:17: 04:29:26:24:f6:cd:9e:cb:4b:2e:ff:1e:a9:f7:e6: 82:73:28:48:56:a7:5d:4a:e3:f5:22:0e:f5:de:86: 3b:5b:2b:c0:fb:00:ec:c2:3b:be:16:fc:33:46:b5: b4:eb:21:59:0c:b2:e2:80:b8:4b:54:bb:ab:d3:39: bf:a0:6a:d9:b2:63:a0:19:30:22:e2:a8:c3:b0:d9: 03:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:DA:9E:49:AC:6A:CA:B0:9F:1A:82:8B:53:61:B4:F9:DF:3D:F4:70 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e28d298f-e48a-4aaf-bf51-472ca8677cc8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.161.128.0/17 Signature Algorithm: sha256WithRSAEncryption 2a:7d:95:0c:a3:41:8e:67:0b:0b:e9:c9:f4:95:4e:5c:b0:ea: 97:59:98:0a:ff:ea:58:f2:cf:d1:6d:68:b5:88:4e:d0:18:e6: 83:92:19:62:bb:b0:fd:05:74:f9:9a:f5:0a:a0:db:44:b0:e2: af:ce:7f:f2:86:53:98:30:d8:ab:c3:76:18:8c:24:2a:63:98: f3:db:73:64:b6:c5:cd:b7:37:e0:b8:b3:39:11:59:32:99:12: 93:d5:98:b9:0c:31:9e:bb:f9:83:d6:09:96:22:5e:98:f0:37: cc:29:c5:71:c5:bc:c0:23:2f:26:d0:c2:41:2b:3a:db:9a:bd: 2e:82:39:71:48:82:69:d8:be:31:02:e8:d6:9c:23:7c:fc:d7: 28:05:97:7f:11:ea:a6:a5:31:18:8a:ff:d5:62:5a:68:4b:1e: de:3d:e4:4a:a2:67:ec:01:a7:d3:f9:23:47:0c:51:2d:a1:6d: 6a:52:dd:fb:8d:1f:e1:73:9a:bf:2a:db:4e:44:c9:fc:80:57: c7:dd:aa:79:03:75:7b:75:a1:4a:de:1b:72:99:9b:f2:ff:e3: 9d:96:ed:38:03:1b:60:34:6d:1d:d9:cb:98:2a:2e:97:58:58: 69:29:17:0f:c7:d6:a0:de:2e:72:cd:b7:34:ed:75:4c:83:f8: da:25:3e:dc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcbP/vjYdDFk7W1Hu/k8mI9HjyY0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE0MTY1MDE5WhcNMjUwNTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NjBkZTQwZThlNGZhMDYwNWQxYzJhMDE5NDM2MTY0ODYx ZjdkODY3ZWI1MzE3ODlhZDY0MTcyZGJmMDIzNTgxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtvUGfcxTe1pH8kkMtgEWQQy5dVEvwxaX6JzNnOPK+MTy9 rJceclZEppmdK2tj4OYlmO+OxwhJLMyYZOkVL6ENmwUUQW43MUCd+Ny/4BYAOcRq RjOA/gHvN2xKyXfWqXvcXGjZhDet+4xjt4/LqAxmt6YGbA4t/BkDRNvhBTFvLN/Z CjVIYBGFDzFH8hh6D067P4ABa6JhfFcgFMIftdoQ3wQ6pDXxSWmvnuLrjDSPmAGT FwQpJiT2zZ7LSy7/Hqn35oJzKEhWp11K4/UiDvXehjtbK8D7AOzCO74W/DNGtbTr IVkMsuKAuEtUu6vTOb+gatmyY6AZMCLiqMOw2QMnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPtqeSaxqyrCfGoKLU2G0+d899HAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2UyOGQyOThmLWU0OGEtNGFhZi1iZjUxLTQ3MmNhODY3N2NjOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc2oYAwDQYJKoZIhvcNAQELBQADggEBACp9lQyjQY5nCwvpyfSVTlyw6pdZ mAr/6ljyz9FtaLWITtAY5oOSGWK7sP0FdPma9Qqg20Sw4q/Of/KGU5gw2KvDdhiM JCpjmPPbc2S2xc23N+C4szkRWTKZEpPVmLkMMZ67+YPWCZYiXpjwN8wpxXHFvMAj LybQwkErOtuavS6COXFIgmnYvjEC6NacI3z81ygFl38R6qalMRiK/9ViWmhLHt49 5EqiZ+wBp9P5I0cMUS2hbWpS3fuNH+Fzmr8q205EyfyAV8fdqnkDdXt1oUreG3KZ m/L/452W7TgDG2A0bR3Zy5gqLpdYWGkpFw/H1qDeLnLNtzTtdUyD+NolPtw= -----END CERTIFICATE-----Generated at Sat Apr 26 17:37:51 2025 by rpki-client