$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f164c8b2-2e18-4e4d-85c8-ac0a6fcf9f6a.roa File: f164c8b2-2e18-4e4d-85c8-ac0a6fcf9f6a.roa (raw, json) Hash identifier: MrjWNYea2OxZOR1Zzo9Tci9R7Ta30HylYCblDOQ23Zk= Subject key identifier: 02:C0:FC:AD:70:8E:3E:68:13:00:58:EA:A5:4A:3A:28:0B:31:DA:4C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 56E33FCCEEB3139794DAC9C3C3A98C1A23E16F9F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f164c8b2-2e18-4e4d-85c8-ac0a6fcf9f6a.roa Signing time: Sat 26 Apr 2025 00:31:07 +0000 ROA not before: Sat 26 Apr 2025 00:31:07 +0000 ROA not after: Sat 31 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.112.0.0/12 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:e3:3f:cc:ee:b3:13:97:94:da:c9:c3:c3:a9:8c:1a:23:e1:6f:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 26 00:31:07 2025 GMT Not After : May 31 23:59:59 2025 GMT Subject: serialNumber=7a69788d9cda434d430392c5c3f53375154f74aa70717bc9f1d57a5113e66824, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ca:cd:4a:92:d5:7b:4d:0b:bd:06:3f:f8:a8: d0:9c:90:9b:1e:d3:19:1d:02:b8:61:fb:64:35:47: d4:79:fd:c0:d7:3b:69:f5:6f:a6:aa:a8:a2:b8:ed: 2e:2e:1a:fd:61:ab:8d:ab:52:36:41:1c:04:cb:36: 98:dc:18:49:d6:33:cc:fd:ca:1b:97:36:7a:9c:e9: 51:2b:91:64:16:55:63:1f:bb:f4:9d:44:d8:92:91: b2:05:26:27:6c:27:c2:fc:05:9b:28:58:b5:42:71: 77:0c:5f:b8:7d:74:b3:c7:c7:f0:c0:30:25:60:26: 1f:dc:95:1c:87:51:01:1b:52:f7:eb:e2:5f:12:99: 3b:a4:54:a9:47:f6:61:81:09:fe:83:c6:63:73:36: 77:a1:b0:bc:77:91:0f:2b:e2:6f:20:8b:41:21:6a: 06:4a:00:e9:e4:5a:49:33:29:3c:bd:d4:b6:4a:de: 03:82:fd:25:39:a7:bf:a3:05:d8:02:6f:5d:17:59: 0c:f0:07:39:ea:dd:6f:d7:d2:92:eb:91:cc:1e:a2: ee:99:bd:12:d0:fc:52:c4:56:c3:ea:0b:da:5a:02: 60:0c:22:69:d3:fa:8d:bb:08:a8:81:72:cc:c1:fe: 07:bf:dd:b4:bd:52:54:ca:52:da:a0:06:20:32:23: 66:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:C0:FC:AD:70:8E:3E:68:13:00:58:EA:A5:4A:3A:28:0B:31:DA:4C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f164c8b2-2e18-4e4d-85c8-ac0a6fcf9f6a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.112.0.0/12 Signature Algorithm: sha256WithRSAEncryption 75:df:d8:63:d3:a0:b3:78:ae:74:2d:b3:8d:a4:ea:9c:22:89: 94:70:ff:16:b1:62:eb:61:01:a5:25:2f:f6:d2:e3:11:bc:18: 9a:99:a0:df:bf:43:8f:e5:a0:38:05:9b:34:ac:76:49:2c:35: e9:f7:f3:d9:d8:87:ea:19:59:66:4e:d7:a0:1b:5d:5d:d7:88: bb:2c:b6:79:0e:88:5f:f9:11:03:f2:2a:b6:95:c0:82:26:84: d7:b9:50:9f:fc:b2:02:cf:fa:f8:75:0d:09:ea:28:b8:15:3f: 74:8c:e4:bc:31:92:31:b7:4f:94:3c:58:a1:df:56:6d:7b:71: a7:9b:10:82:98:85:08:98:d7:68:a4:4e:58:ef:1f:a9:5b:5e: 5f:2f:61:f6:e1:d5:6e:1f:e3:88:cb:ce:b4:75:29:6c:a3:2a: cb:38:dd:d0:9f:9c:32:50:36:c6:93:2c:32:75:7d:52:07:7d: 93:67:89:3a:91:af:af:25:e4:28:aa:2e:d3:88:16:19:ed:00: cf:f3:29:2d:e1:77:dc:3a:47:0a:99:89:03:28:89:b0:34:33: 68:bc:30:bb:95:73:8f:b3:72:10:e6:8f:58:11:62:85:5f:33: 74:28:9c:68:e2:62:91:73:29:33:ee:88:bd:b2:48:b9:6b:08: c4:38:83:83 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUVuM/zO6zE5eU2snDw6mMGiPhb58wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDI2MDAzMTA3WhcNMjUwNTMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3YTY5Nzg4ZDljZGE0MzRkNDMwMzkyYzVjM2Y1MzM3NTE1 NGY3NGFhNzA3MTdiYzlmMWQ1N2E1MTEzZTY2ODI0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpys1KktV7TQu9Bj/4qNCckJse0xkdArhh+2Q1R9R5/cDX O2n1b6aqqKK47S4uGv1hq42rUjZBHATLNpjcGEnWM8z9yhuXNnqc6VErkWQWVWMf u/SdRNiSkbIFJidsJ8L8BZsoWLVCcXcMX7h9dLPHx/DAMCVgJh/clRyHUQEbUvfr 4l8SmTukVKlH9mGBCf6DxmNzNnehsLx3kQ8r4m8gi0EhagZKAOnkWkkzKTy91LZK 3gOC/SU5p7+jBdgCb10XWQzwBznq3W/X0pLrkcweou6ZvRLQ/FLEVsPqC9paAmAM ImnT+o27CKiBcszB/ge/3bS9UlTKUtqgBiAyI2bRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUAsD8rXCOPmgTAFjqpUo6KAsx2kwwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2YxNjRjOGIyLTJlMTgtNGU0ZC04NWM4LWFjMGE2ZmNmOWY2YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwQjcDANBgkqhkiG9w0BAQsFAAOCAQEAdd/YY9Ogs3iudC2zjaTqnCKJlHD/ FrFi62EBpSUv9tLjEbwYmpmg379Dj+WgOAWbNKx2SSw16ffz2diH6hlZZk7XoBtd XdeIuyy2eQ6IX/kRA/IqtpXAgiaE17lQn/yyAs/6+HUNCeoouBU/dIzkvDGSMbdP lDxYod9WbXtxp5sQgpiFCJjXaKROWO8fqVteXy9h9uHVbh/jiMvOtHUpbKMqyzjd 0J+cMlA2xpMsMnV9Ugd9k2eJOpGvryXkKKou04gWGe0Az/MpLeF33DpHCpmJAyiJ sDQzaLwwu5Vzj7NyEOaPWBFihV8zdCicaOJikXMpM+6IvbJIuWsIxDiDgw== -----END CERTIFICATE-----Generated at Sat Apr 26 12:47:19 2025 by rpki-client