$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e2f91278-8951-4ed9-bea5-7300ead84196.roa File: e2f91278-8951-4ed9-bea5-7300ead84196.roa (raw, json) Hash identifier: yUP2p/RNaIl+8y8FD96AfQQJvnV4fOPmHTzNGIDYVHY= Subject key identifier: 49:87:79:83:F5:0C:DE:94:F2:6D:69:D1:0D:37:AB:6E:0A:0F:B6:7D Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7F0FDE10B65ADE166E30CCF633AE77105878A9F7 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e2f91278-8951-4ed9-bea5-7300ead84196.roa Signing time: Fri 18 Apr 2025 15:50:17 +0000 ROA not before: Fri 18 Apr 2025 15:50:17 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.204.52.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:0f:de:10:b6:5a:de:16:6e:30:cc:f6:33:ae:77:10:58:78:a9:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 18 15:50:17 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=d946af39f99886e5f6286112d48479c8f346377ff0822347131f747da2f88bb4, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:28:fd:96:64:0f:76:e7:23:d4:b4:35:4c:2b: 21:85:b6:bd:8f:e3:cc:a7:48:e4:3b:58:ac:20:20: 91:2b:8e:5f:f6:29:ff:cd:23:8e:b4:1e:8f:8e:24: e4:45:cb:96:33:16:5d:f4:c1:5e:12:5f:c7:bc:2a: 80:b1:e2:09:f9:3c:3e:f1:9d:09:61:3e:18:5c:2e: e1:f3:3f:50:4a:61:1d:8f:60:bc:0b:4b:6f:00:ac: 67:57:f0:c5:4d:45:00:fa:c3:9f:e3:0d:f7:71:30: 44:ce:84:7c:96:d6:2c:90:66:06:61:61:0d:26:59: 95:de:78:0b:f9:41:f9:1e:bc:90:3c:0f:f4:d8:fa: e0:ed:04:86:1d:a3:48:25:b9:66:df:af:76:f9:ae: de:81:3f:51:00:bd:34:01:99:06:cf:22:1c:2a:b1: b4:7d:b0:bf:de:8d:98:69:48:a2:7e:57:2a:52:af: 35:ac:86:8e:2a:9f:cd:d8:6f:88:b0:3d:81:11:0c: b2:6d:8a:18:34:1a:16:d5:a8:aa:a9:56:e7:a4:e0: 46:45:77:e1:05:ee:6b:f1:9a:81:ca:98:12:c6:30: bc:ab:80:6b:88:0f:71:4e:7e:fc:93:ab:20:d7:04: cd:c2:18:49:d5:cf:2a:c5:61:de:e4:5f:48:c1:82: 7b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:87:79:83:F5:0C:DE:94:F2:6D:69:D1:0D:37:AB:6E:0A:0F:B6:7D X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e2f91278-8951-4ed9-bea5-7300ead84196.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.204.52.0/22 Signature Algorithm: sha256WithRSAEncryption 94:d1:ee:34:39:27:ad:09:8e:4d:f1:f3:31:3c:af:8e:00:85: 24:45:74:7b:c5:ce:bc:33:cc:a7:bf:0a:43:fa:c9:2a:ed:1f: 94:79:c8:93:a2:97:95:1f:00:9f:01:75:cb:ec:13:cc:3f:10: 59:c8:3a:c8:22:6c:20:e3:2a:c8:58:da:19:ab:21:06:2f:b1: 01:a2:71:8f:d9:f3:30:21:27:cd:d1:8d:43:92:04:24:b6:1e: 48:6b:05:7b:1e:98:58:4c:47:38:e9:cf:fa:2e:3c:9f:2c:fc: ec:69:6c:c6:46:97:dc:42:f2:ff:9f:1c:68:9c:e1:ee:2c:95: 3e:6c:59:a6:57:60:5a:3e:90:ae:82:2c:be:c2:b9:d3:8a:45: 6f:80:a7:c3:e6:b8:3b:25:4c:26:78:df:00:00:b1:39:f8:17: c7:ec:66:e6:62:77:bf:0d:0b:b5:9c:38:af:bf:04:de:70:2e: 63:c0:4d:a5:fc:dd:e7:74:f5:6c:76:e1:08:03:14:63:b4:ce: 95:b2:43:b6:af:bf:e9:d1:4a:8d:44:89:80:93:b6:f4:8d:2a: 29:dc:81:42:46:13:2b:9b:53:a1:26:f2:a9:47:3a:7a:dd:3a: b0:8b:f2:56:0f:e4:52:9d:27:0c:33:99:60:2b:03:44:2b:15: 65:d6:a2:9d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfw/eELZa3hZuMMz2M653EFh4qfcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE4MTU1MDE3WhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkOTQ2YWYzOWY5OTg4NmU1ZjYyODYxMTJkNDg0NzljOGYz NDYzNzdmZjA4MjIzNDcxMzFmNzQ3ZGEyZjg4YmI0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgKP2WZA925yPUtDVMKyGFtr2P48ynSOQ7WKwgIJErjl/2 Kf/NI460Ho+OJORFy5YzFl30wV4SX8e8KoCx4gn5PD7xnQlhPhhcLuHzP1BKYR2P YLwLS28ArGdX8MVNRQD6w5/jDfdxMETOhHyW1iyQZgZhYQ0mWZXeeAv5QfkevJA8 D/TY+uDtBIYdo0gluWbfr3b5rt6BP1EAvTQBmQbPIhwqsbR9sL/ejZhpSKJ+VypS rzWsho4qn83Yb4iwPYERDLJtihg0GhbVqKqpVuek4EZFd+EF7mvxmoHKmBLGMLyr gGuID3FOfvyTqyDXBM3CGEnVzyrFYd7kX0jBgnsJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSYd5g/UM3pTybWnRDTerbgoPtn0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2UyZjkxMjc4LTg5NTEtNGVkOS1iZWE1LTczMDBlYWQ4NDE5Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI2zDQwDQYJKoZIhvcNAQELBQADggEBAJTR7jQ5J60Jjk3x8zE8r44AhSRF dHvFzrwzzKe/CkP6ySrtH5R5yJOil5UfAJ8BdcvsE8w/EFnIOsgibCDjKshY2hmr IQYvsQGicY/Z8zAhJ83RjUOSBCS2HkhrBXsemFhMRzjpz/ouPJ8s/OxpbMZGl9xC 8v+fHGic4e4slT5sWaZXYFo+kK6CLL7CudOKRW+Ap8PmuDslTCZ43wAAsTn4F8fs ZuZid78NC7WcOK+/BN5wLmPATaX83ed09Wx24QgDFGO0zpWyQ7avv+nRSo1EiYCT tvSNKincgUJGEyubU6Em8qlHOnrdOrCL8lYP5FKdJwwzmWArA0QrFWXWop0= -----END CERTIFICATE-----Generated at Sat Apr 26 17:40:02 2025 by rpki-client