$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f250c72a-5bf6-4da2-9ad8-ff850d5aa21d.roa File: f250c72a-5bf6-4da2-9ad8-ff850d5aa21d.roa (raw, json) Hash identifier: hnVZz++6UwthPVeCigQCO+Zf1JHQCPSqo3VqH0ot4ms= Subject key identifier: 2F:D7:8E:A6:80:4E:02:36:D3:44:B5:3D:99:32:B8:07:BB:23:DF:DE Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6D1109D47444B5B3D845DC2378693DE232EC5A34 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f250c72a-5bf6-4da2-9ad8-ff850d5aa21d.roa Signing time: Wed 02 Apr 2025 00:20:21 +0000 ROA not before: Wed 02 Apr 2025 00:20:21 +0000 ROA not after: Wed 07 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.4.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:11:09:d4:74:44:b5:b3:d8:45:dc:23:78:69:3d:e2:32:ec:5a:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 2 00:20:21 2025 GMT Not After : May 7 23:59:59 2025 GMT Subject: serialNumber=52ca9d0886eff92cd3363f61a85a03c8f890c1f042bdeb8ad00e7f3aed3ddb22, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9f:ad:31:d4:9c:7a:bf:78:05:33:28:c2:a5: ac:cb:76:6f:43:a3:37:07:18:85:1f:8c:d5:89:54: 8c:08:a5:7b:dd:f8:70:4f:1a:e6:69:ac:5e:7f:43: 31:65:9f:84:9c:dc:9e:91:a1:ee:fe:c9:4b:30:d7: 00:49:59:0c:5a:4c:7a:b9:12:a6:59:ad:43:54:ba: 31:3d:68:9e:35:97:8c:a2:6b:a5:d8:62:32:f2:89: 4a:e0:6b:24:a9:49:2c:12:25:25:85:fa:f4:4c:c5: b5:e7:a1:26:7d:57:ed:cf:0a:86:6b:a0:d4:d0:0e: 2a:d7:11:3e:bc:23:7a:7e:00:b5:32:0d:29:38:bc: 55:54:d4:c0:b9:d4:dc:79:62:54:d2:16:64:9d:4a: 7f:da:28:39:6c:c5:c2:20:f6:af:4a:9e:be:a2:d2: d3:89:8d:e8:64:b6:56:1b:5f:56:4c:da:20:38:d8: 64:ad:76:cb:dd:71:c7:86:2d:79:76:86:01:ac:32: fa:84:84:3e:9f:90:db:45:7d:3a:95:f4:27:89:2a: 73:33:29:6b:c7:1c:02:02:f0:24:92:20:29:31:d8: f0:5b:8a:8a:c5:18:62:ed:d1:e0:fd:aa:08:ce:5b: 36:0f:c7:66:fd:34:18:26:1d:a5:53:82:01:ed:20: d8:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:D7:8E:A6:80:4E:02:36:D3:44:B5:3D:99:32:B8:07:BB:23:DF:DE X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f250c72a-5bf6-4da2-9ad8-ff850d5aa21d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.4.10.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:d2:3a:93:01:52:2c:d2:d7:2b:26:39:72:5b:04:06:cd:35: 23:67:0e:ed:be:14:fa:46:29:7e:9d:46:35:54:73:b9:6f:b2: b2:4a:be:25:b8:6d:36:ab:ef:00:48:9d:ef:a0:e7:49:81:2b: ea:05:ba:d6:ab:58:12:46:3c:d6:63:a4:fa:30:b2:7c:ba:86: 02:20:ea:76:55:4a:d6:cc:ad:0f:14:0c:5e:4c:1a:61:30:10: 49:9e:83:13:3b:5f:ea:cb:f0:a7:65:0d:52:99:7a:45:0b:f8: 28:e1:96:7e:c7:df:65:ae:d2:6f:7d:d8:04:77:08:de:cd:98: 71:2f:6a:f9:56:28:44:7a:9f:01:22:74:a7:9f:82:7c:40:db: b2:98:3a:3d:fc:44:a1:8b:a9:8b:d3:55:64:76:31:fd:84:85: 18:6c:b2:c1:59:c2:d7:e3:72:3b:ef:eb:56:3b:8c:ed:29:e5: 49:ef:58:a5:e7:cd:9b:21:73:50:77:54:7d:fa:b5:21:0c:7e: ba:34:b8:80:ce:f6:4f:08:7c:8d:6b:7e:a7:22:2b:b2:08:cc: 22:ae:c2:15:1f:07:79:a6:e0:95:23:db:e2:11:60:bd:03:a6: f1:8d:45:e6:91:a5:60:60:7f:e3:67:b7:65:60:e0:67:49:b0: 78:bc:6d:72 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbREJ1HREtbPYRdwjeGk94jLsWjQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDAyMDAyMDIxWhcNMjUwNTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MmNhOWQwODg2ZWZmOTJjZDMzNjNmNjFhODVhMDNjOGY4 OTBjMWYwNDJiZGViOGFkMDBlN2YzYWVkM2RkYjIyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6n60x1Jx6v3gFMyjCpazLdm9DozcHGIUfjNWJVIwIpXvd +HBPGuZprF5/QzFln4Sc3J6Roe7+yUsw1wBJWQxaTHq5EqZZrUNUujE9aJ41l4yi a6XYYjLyiUrgaySpSSwSJSWF+vRMxbXnoSZ9V+3PCoZroNTQDirXET68I3p+ALUy DSk4vFVU1MC51Nx5YlTSFmSdSn/aKDlsxcIg9q9Knr6i0tOJjehktlYbX1ZM2iA4 2GStdsvdcceGLXl2hgGsMvqEhD6fkNtFfTqV9CeJKnMzKWvHHAIC8CSSICkx2PBb iorFGGLt0eD9qgjOWzYPx2b9NBgmHaVTggHtINhnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUL9eOpoBOAjbTRLU9mTK4B7sj394wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2YyNTBjNzJhLTViZjYtNGRhMi05YWQ4LWZmODUwZDVhYTIxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADBAowDQYJKoZIhvcNAQELBQADggEBAI/SOpMBUizS1ysmOXJbBAbNNSNn Du2+FPpGKX6dRjVUc7lvsrJKviW4bTar7wBIne+g50mBK+oFutarWBJGPNZjpPow sny6hgIg6nZVStbMrQ8UDF5MGmEwEEmegxM7X+rL8KdlDVKZekUL+Cjhln7H32Wu 0m992AR3CN7NmHEvavlWKER6nwEidKefgnxA27KYOj38RKGLqYvTVWR2Mf2EhRhs ssFZwtfjcjvv61Y7jO0p5UnvWKXnzZshc1B3VH36tSEMfro0uIDO9k8IfI1rfqci K7IIzCKuwhUfB3mm4JUj2+IRYL0DpvGNReaRpWBgf+Nnt2Vg4GdJsHi8bXI= -----END CERTIFICATE-----Generated at Sat Apr 26 14:45:23 2025 by rpki-client