$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f185f8bb-54a6-4a09-8db9-eecdc9cec451.roa File: f185f8bb-54a6-4a09-8db9-eecdc9cec451.roa (raw, json) Hash identifier: q5WJVqnYgfIe4jloGLKPjTqDooRsQ5GfOVtpo+87TVQ= Subject key identifier: FA:9C:48:DD:97:D3:6A:62:77:06:1E:3C:01:5D:7C:1E:7A:13:1A:77 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 27066991C259925C2245B3FAC387ABC164584DA7 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f185f8bb-54a6-4a09-8db9-eecdc9cec451.roa Signing time: Fri 25 Apr 2025 17:00:17 +0000 ROA not before: Fri 25 Apr 2025 17:00:17 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.95.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:06:69:91:c2:59:92:5c:22:45:b3:fa:c3:87:ab:c1:64:58:4d:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 25 17:00:17 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=807a9ff9e0abdb27ab72d89112d87d7ca0bb9db5d6f731270a03c55b834dc660, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:bd:58:3c:1a:87:8c:d5:13:8b:d7:0a:55:f3: 7d:00:cb:45:2c:22:86:51:ae:22:f7:ac:98:f6:1d: 84:23:b4:35:d6:ca:ea:98:df:8f:41:56:6b:32:94: f7:2e:f9:53:e3:b0:2f:23:f1:d6:2c:c7:d3:cb:6c: 72:10:63:d4:e4:e9:d9:73:44:42:80:f0:c5:75:e3: aa:72:94:5b:6e:cd:81:95:1d:c2:aa:21:4c:2f:af: bd:07:02:1d:9e:19:c9:8f:6d:31:80:76:a6:6e:11: 52:1b:ac:99:60:48:15:34:9d:f8:06:62:6e:95:11: 40:04:4d:32:30:65:87:fa:83:b6:c9:f3:3e:8d:0c: 9f:83:3f:82:4e:8f:33:e6:cb:8c:ea:29:0f:b4:e7: ef:08:47:8a:b6:5a:db:29:dc:82:50:3d:f3:47:89: 02:ce:8d:90:88:76:37:3c:f0:90:96:fe:97:c1:0c: b2:9a:cd:77:a9:b6:3c:ca:8d:8a:5d:16:fd:51:16: 45:a8:c1:fa:6a:ed:92:70:30:4f:09:6c:7a:17:a0: 21:c9:20:bb:de:70:29:f0:84:f1:31:9d:37:65:4a: 48:89:5a:72:7b:46:8f:cc:77:2b:34:22:d6:3d:20: d1:1d:63:98:c9:74:33:39:55:58:7c:25:da:be:4e: 75:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:9C:48:DD:97:D3:6A:62:77:06:1E:3C:01:5D:7C:1E:7A:13:1A:77 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f185f8bb-54a6-4a09-8db9-eecdc9cec451.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.95.112.0/20 Signature Algorithm: sha256WithRSAEncryption 19:6d:cf:6b:ab:bf:60:e0:70:bb:c6:db:2b:de:e1:e4:31:20: 0d:56:a7:e5:78:d6:1e:31:01:e5:31:b7:f9:ec:ac:45:1d:bd: 65:e9:a2:65:45:cc:56:e2:47:54:2f:00:ae:e9:1c:59:0c:7c: 5a:46:bd:49:5e:9a:59:ab:0d:05:bc:eb:12:0b:3a:b6:f7:35: 40:cc:60:cf:6d:d3:78:fa:28:38:a6:17:29:5f:3f:cd:be:ba: 82:81:74:b2:b2:4f:bc:19:d5:95:b6:8c:99:79:37:0f:51:a5: 03:d3:75:6f:4c:ee:7b:55:2e:58:73:f5:17:8e:d0:28:5d:ba: 87:d7:6e:7b:30:ae:07:52:3d:9c:55:5c:42:d4:2d:ff:f9:99: 4f:cd:8d:0d:94:5d:32:c2:97:07:3e:83:56:58:da:82:bd:65: 73:7d:c8:0a:ad:4a:09:81:98:11:4a:32:d2:1e:e8:dd:97:90: ae:fa:4e:20:21:a9:11:5e:fa:aa:9c:ed:f1:ec:3c:29:bc:99: 2a:1d:eb:a5:5a:0c:c4:30:2c:98:a7:af:14:35:2c:e4:7b:a2: ca:ae:53:4f:14:b2:50:b2:fc:88:f5:63:b0:35:9c:89:ec:5f: 26:b0:6b:ba:bf:ac:eb:57:e3:3b:0b:c0:cc:87:62:13:3f:08: f4:28:8d:48 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJwZpkcJZklwiRbP6w4erwWRYTacwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDI1MTcwMDE3WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MDdhOWZmOWUwYWJkYjI3YWI3MmQ4OTExMmQ4N2Q3Y2Ew YmI5ZGI1ZDZmNzMxMjcwYTAzYzU1YjgzNGRjNjYwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+vVg8GoeM1ROL1wpV830Ay0UsIoZRriL3rJj2HYQjtDXW yuqY349BVmsylPcu+VPjsC8j8dYsx9PLbHIQY9Tk6dlzREKA8MV146pylFtuzYGV HcKqIUwvr70HAh2eGcmPbTGAdqZuEVIbrJlgSBU0nfgGYm6VEUAETTIwZYf6g7bJ 8z6NDJ+DP4JOjzPmy4zqKQ+05+8IR4q2Wtsp3IJQPfNHiQLOjZCIdjc88JCW/pfB DLKazXeptjzKjYpdFv1RFkWowfpq7ZJwME8JbHoXoCHJILvecCnwhPExnTdlSkiJ WnJ7Ro/Mdys0ItY9INEdY5jJdDM5VVh8Jdq+TnVJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+pxI3ZfTamJ3Bh48AV18HnoTGncwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2YxODVmOGJiLTU0YTYtNGEwOS04ZGI5LWVlY2RjOWNlYzQ1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQ0X3AwDQYJKoZIhvcNAQELBQADggEBABltz2urv2DgcLvG2yve4eQxIA1W p+V41h4xAeUxt/nsrEUdvWXpomVFzFbiR1QvAK7pHFkMfFpGvUlemlmrDQW86xIL Orb3NUDMYM9t03j6KDimFylfP82+uoKBdLKyT7wZ1ZW2jJl5Nw9RpQPTdW9M7ntV Llhz9ReO0ChduofXbnswrgdSPZxVXELULf/5mU/NjQ2UXTLClwc+g1ZY2oK9ZXN9 yAqtSgmBmBFKMtIe6N2XkK76TiAhqRFe+qqc7fHsPCm8mSod66VaDMQwLJinrxQ1 LOR7osquU08UslCy/Ij1Y7A1nInsXyawa7q/rOtX4zsLwMyHYhM/CPQojUg= -----END CERTIFICATE-----Generated at Sat Apr 26 12:52:56 2025 by rpki-client