$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e4a5f946-51e6-4f6c-a511-9fec767b9a94.roa File: e4a5f946-51e6-4f6c-a511-9fec767b9a94.roa (raw, json) Hash identifier: 4oRqHSgz9Sc3zl/paWGSXyQ3+HUNm7EvYnB9gVQ7+as= Subject key identifier: FC:D0:83:A7:2B:E3:CF:C6:BC:2D:7A:2A:82:71:12:78:B3:FC:75:1A Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 554D490F5FCF30F70CE7A3AEFD3908A861B47CA1 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e4a5f946-51e6-4f6c-a511-9fec767b9a94.roa Signing time: Mon 14 Apr 2025 17:10:12 +0000 ROA not before: Mon 14 Apr 2025 17:10:12 +0000 ROA not after: Mon 19 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.188.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:4d:49:0f:5f:cf:30:f7:0c:e7:a3:ae:fd:39:08:a8:61:b4:7c:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 14 17:10:12 2025 GMT Not After : May 19 23:59:59 2025 GMT Subject: serialNumber=d03acc510a996486f010958c5ebff5fa19dcf73727f0a8ce04e749599e3a0f04, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:67:49:57:b3:38:8e:7d:2f:8c:be:25:ae:4e: 55:d4:1d:76:4c:fd:3a:61:12:da:ad:7d:21:27:cc: 53:78:0d:55:4b:83:13:e0:13:4f:4f:7d:dc:ae:57: b1:bb:59:a0:62:fa:b9:24:80:37:23:5c:5a:82:6e: 47:f9:bb:aa:9a:98:9c:56:f3:2f:a7:15:0a:05:7b: 72:25:5c:fb:0b:d5:75:fe:6d:4c:26:8b:ab:e3:2d: 5b:19:45:ff:ef:bd:6f:14:c0:c1:73:71:53:a5:f8: f3:67:4d:53:44:42:4b:7c:ef:b7:92:5c:e2:de:16: 7a:ff:cd:56:77:20:d1:1f:07:69:43:1e:8d:51:c8: 31:ad:52:59:56:9a:9e:b0:05:9d:9a:20:15:30:c6: 8d:0b:b1:ed:6b:78:55:2e:e4:44:8a:e3:28:78:0a: a6:3a:b7:f0:85:4c:ff:e4:86:f1:5b:02:65:e2:84: 75:0d:39:e0:ca:8c:2f:02:f7:5d:eb:a4:19:25:8a: dd:fd:ac:11:5b:5d:5d:3a:74:c5:19:7f:e7:09:97: db:6b:8d:aa:bf:28:0f:ab:1d:b1:70:25:8c:18:e2: ac:90:61:5c:c8:77:85:68:77:27:b3:a2:78:d7:d4: 17:8a:20:73:90:d0:49:b0:3e:a1:e4:4f:62:f8:21: 07:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:D0:83:A7:2B:E3:CF:C6:BC:2D:7A:2A:82:71:12:78:B3:FC:75:1A X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e4a5f946-51e6-4f6c-a511-9fec767b9a94.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.188.0.0/17 Signature Algorithm: sha256WithRSAEncryption 98:42:9b:c3:60:bd:1e:32:02:70:0c:50:1a:ae:51:18:05:da: 12:25:56:0e:55:92:b1:75:a7:0d:98:72:6f:79:31:56:3f:1d: 06:6f:7d:fc:9f:a9:0c:ca:f7:90:ae:1c:ba:fb:9e:40:e5:6a: 9f:c5:ac:3d:0c:7f:38:16:60:eb:3a:a1:9a:d1:b5:99:2c:0c: d8:98:69:32:78:c3:84:45:20:55:95:66:a6:11:be:a1:60:44: ea:22:36:e4:df:81:56:6f:1a:84:ba:c2:3e:c8:f1:f7:8e:a3: b9:c5:5d:d4:8e:2b:2b:2c:dc:d9:db:39:bb:63:e8:ad:6f:46: 0c:c5:ec:b3:54:c0:7b:da:b5:fc:d6:75:b3:67:35:0d:50:51: 82:2e:5b:5f:ba:81:f6:3d:b6:2a:fa:ea:5d:8d:8e:02:68:3c: 9d:6b:b7:88:b6:18:46:fa:fc:b9:79:fd:b1:e4:f0:f6:6e:ce: 8b:43:c8:86:14:4b:56:60:ea:e8:d7:22:1c:0c:df:ac:f0:e0: e4:2b:af:e8:c3:b6:1e:6e:23:54:28:c3:cc:04:0b:ac:1f:ae: 43:26:6d:75:05:d6:45:ae:d6:fa:bf:66:4f:f9:d5:43:b6:00: 65:b5:18:54:d7:95:2d:98:2a:5a:50:11:c3:7b:e7:ba:fd:29: 8e:d8:0e:83 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVU1JD1/PMPcM56Ou/TkIqGG0fKEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE0MTcxMDEyWhcNMjUwNTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMDNhY2M1MTBhOTk2NDg2ZjAxMDk1OGM1ZWJmZjVmYTE5 ZGNmNzM3MjdmMGE4Y2UwNGU3NDk1OTllM2EwZjA0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEZ0lXsziOfS+MviWuTlXUHXZM/TphEtqtfSEnzFN4DVVL gxPgE09PfdyuV7G7WaBi+rkkgDcjXFqCbkf5u6qamJxW8y+nFQoFe3IlXPsL1XX+ bUwmi6vjLVsZRf/vvW8UwMFzcVOl+PNnTVNEQkt877eSXOLeFnr/zVZ3INEfB2lD Ho1RyDGtUllWmp6wBZ2aIBUwxo0Lse1reFUu5ESK4yh4CqY6t/CFTP/khvFbAmXi hHUNOeDKjC8C913rpBklit39rBFbXV06dMUZf+cJl9trjaq/KA+rHbFwJYwY4qyQ YVzId4VodyezonjX1BeKIHOQ0EmwPqHkT2L4IQeDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/NCDpyvjz8a8LXoqgnESeLP8dRowHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2U0YTVmOTQ2LTUxZTYtNGY2Yy1hNTExLTlmZWM3NjdiOWE5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc2vAAwDQYJKoZIhvcNAQELBQADggEBAJhCm8NgvR4yAnAMUBquURgF2hIl Vg5VkrF1pw2Ycm95MVY/HQZvffyfqQzK95CuHLr7nkDlap/FrD0MfzgWYOs6oZrR tZksDNiYaTJ4w4RFIFWVZqYRvqFgROoiNuTfgVZvGoS6wj7I8feOo7nFXdSOKyss 3NnbObtj6K1vRgzF7LNUwHvatfzWdbNnNQ1QUYIuW1+6gfY9tir66l2NjgJoPJ1r t4i2GEb6/Ll5/bHk8PZuzotDyIYUS1Zg6ujXIhwM36zw4OQrr+jDth5uI1Qow8wE C6wfrkMmbXUF1kWu1vq/Zk/51UO2AGW1GFTXlS2YKlpQEcN757r9KY7YDoM= -----END CERTIFICATE-----Generated at Sat Apr 26 19:48:53 2025 by rpki-client