$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f566bb29-f2a4-47a7-a98d-3bd53d752be9.roa File: f566bb29-f2a4-47a7-a98d-3bd53d752be9.roa (raw, json) Hash identifier: +XYJ7kyauCO5wW4JvfrnPPNrQzfKmpMjAdGGK1z3snI= Subject key identifier: E1:0C:E8:6D:4E:DD:86:2E:42:37:BD:09:58:A7:55:77:43:60:66:57 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0995EF92BA60FC6DB5018C909C5B9D7854125205 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f566bb29-f2a4-47a7-a98d-3bd53d752be9.roa Signing time: Wed 16 Apr 2025 00:20:42 +0000 ROA not before: Wed 16 Apr 2025 00:20:42 +0000 ROA not after: Wed 21 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 15.181.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:95:ef:92:ba:60:fc:6d:b5:01:8c:90:9c:5b:9d:78:54:12:52:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 16 00:20:42 2025 GMT Not After : May 21 23:59:59 2025 GMT Subject: serialNumber=44c26bebf16d3cb6409f23beb2f2aa382ba4e37aa3073ef394e530314140de88, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:04:e5:82:d9:7b:4e:db:bd:19:e6:6e:02:d2: 38:bf:a0:22:63:fb:ed:3c:c2:41:16:34:04:77:c3: 34:17:83:f0:d6:35:66:cc:c0:fe:17:7b:23:5f:0d: 93:79:e9:39:4c:2b:f0:c4:61:d7:23:4a:13:95:ba: 4a:63:0e:b2:e8:5c:90:3b:02:dc:7a:03:dc:06:39: 02:fc:8f:76:c5:44:5c:70:33:5c:95:da:6b:a7:d4: bb:36:59:cb:9d:87:f4:2b:13:eb:5f:91:4c:5d:79: 7e:00:69:1a:e0:99:4b:48:51:db:95:7f:7f:d1:b4: 23:0d:1c:0e:03:1b:7f:3f:68:fc:7a:88:99:e6:8d: 79:a3:d9:59:7e:43:bf:33:c0:6b:95:a5:58:e3:72: 53:6a:d8:ec:80:2d:74:61:05:ab:e3:21:a4:39:a5: ec:44:00:d9:a5:0f:31:5c:6f:0e:8f:1d:12:07:da: 65:c1:f1:cf:5c:4b:b4:7f:c9:bc:4d:de:6e:27:a2: 3d:17:0a:d0:29:d7:1a:5f:08:43:54:e3:ca:61:0d: f5:0e:6e:71:dd:21:1e:fe:5e:27:8e:5f:f8:86:b0: 4c:73:da:d3:76:d5:92:66:7a:28:58:19:cb:bc:86: db:f6:93:81:7f:33:98:4c:dc:7f:7e:3b:a2:ba:dc: 14:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:0C:E8:6D:4E:DD:86:2E:42:37:BD:09:58:A7:55:77:43:60:66:57 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f566bb29-f2a4-47a7-a98d-3bd53d752be9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.181.243.0/24 Signature Algorithm: sha256WithRSAEncryption 33:25:37:f8:5c:98:19:ba:1a:e4:ec:17:c5:14:c3:12:99:af: f9:80:0d:7e:97:c9:7f:09:b4:8e:02:1f:1f:08:80:69:c6:c9: 4a:04:8a:c9:af:f9:9c:4c:54:9a:27:45:e7:ac:53:82:dc:5a: 5b:76:3d:ef:05:87:f1:10:95:e9:d2:64:fd:c2:3a:f6:64:99: 31:49:47:55:10:15:33:be:73:fd:b1:4a:aa:61:dd:2c:24:59: 36:09:15:56:b7:b0:f3:70:51:a2:23:3d:5d:dd:ff:36:9d:24: 98:f7:0c:85:7e:c7:c0:a1:1d:3e:dc:3f:4d:06:33:28:d1:65: 9f:3e:5c:f3:e3:d9:1d:5d:e8:15:6b:90:2f:67:5c:eb:21:0d: 61:ee:56:90:53:b5:86:ae:61:f8:e5:7f:4f:89:22:86:56:2e: 7c:96:55:fb:0a:8f:4c:cc:b0:26:81:69:d0:74:07:55:77:65: b5:81:63:a1:0c:14:b4:62:29:a4:e6:05:0a:81:3d:9e:56:76: 6d:a6:6a:4a:88:3b:be:81:c6:e9:33:25:9a:ae:0e:2a:80:9e: c6:f8:45:e0:24:ea:33:99:83:54:e3:a9:4f:4d:9f:70:cf:8a: 64:b7:88:0d:0e:c3:fc:7f:e0:a7:52:ae:d5:3b:73:d1:46:e1: 05:36:09:a5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCZXvkrpg/G21AYyQnFudeFQSUgUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE2MDAyMDQyWhcNMjUwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NGMyNmJlYmYxNmQzY2I2NDA5ZjIzYmViMmYyYWEzODJi YTRlMzdhYTMwNzNlZjM5NGU1MzAzMTQxNDBkZTg4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5BOWC2XtO270Z5m4C0ji/oCJj++08wkEWNAR3wzQXg/DW NWbMwP4XeyNfDZN56TlMK/DEYdcjShOVukpjDrLoXJA7Atx6A9wGOQL8j3bFRFxw M1yV2mun1Ls2Wcudh/QrE+tfkUxdeX4AaRrgmUtIUduVf3/RtCMNHA4DG38/aPx6 iJnmjXmj2Vl+Q78zwGuVpVjjclNq2OyALXRhBavjIaQ5pexEANmlDzFcbw6PHRIH 2mXB8c9cS7R/ybxN3m4noj0XCtAp1xpfCENU48phDfUObnHdIR7+XieOX/iGsExz 2tN21ZJmeihYGcu8htv2k4F/M5hM3H9+O6K63BS1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4QzobU7dhi5CN70JWKdVd0NgZlcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2Y1NjZiYjI5LWYyYTQtNDdhNy1hOThkLTNiZDUzZDc1MmJlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAPtfMwDQYJKoZIhvcNAQELBQADggEBADMlN/hcmBm6GuTsF8UUwxKZr/mA DX6XyX8JtI4CHx8IgGnGyUoEismv+ZxMVJonReesU4LcWlt2Pe8Fh/EQlenSZP3C OvZkmTFJR1UQFTO+c/2xSqph3SwkWTYJFVa3sPNwUaIjPV3d/zadJJj3DIV+x8Ch HT7cP00GMyjRZZ8+XPPj2R1d6BVrkC9nXOshDWHuVpBTtYauYfjlf0+JIoZWLnyW VfsKj0zMsCaBadB0B1V3ZbWBY6EMFLRiKaTmBQqBPZ5Wdm2makqIO76BxukzJZqu DiqAnsb4ReAk6jOZg1TjqU9Nn3DPimS3iA0Ow/x/4KdSrtU7c9FG4QU2CaU= -----END CERTIFICATE-----Generated at Sat Apr 26 18:27:06 2025 by rpki-client