$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fd57296f-c533-4b03-bef5-199a752c4a3e.roa File: fd57296f-c533-4b03-bef5-199a752c4a3e.roa (raw, json) Hash identifier: imDwxEQP5pNss7FMwuLG3iKns+mrIkx1ODzBO9dvX0M= Subject key identifier: 5E:F5:B3:3A:53:88:9B:C3:84:B9:86:59:EA:CE:A2:BA:78:57:33:05 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3B3B0B41EC227562AEDD85C4A3D394DB2929E6EB Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fd57296f-c533-4b03-bef5-199a752c4a3e.roa Signing time: Fri 18 Apr 2025 15:20:28 +0000 ROA not before: Fri 18 Apr 2025 15:20:28 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.147.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:3b:0b:41:ec:22:75:62:ae:dd:85:c4:a3:d3:94:db:29:29:e6:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 18 15:20:28 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=44c4ff09a7bcef9496e8bb1e1b5ef746ff1e225e99da9345a4ed21a26109d7dd, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ab:17:58:ff:0c:ba:e1:b1:b2:71:c3:1e:93: f7:f8:cc:53:db:d5:3a:12:e5:8e:bc:7a:b4:95:9a: 46:76:fb:73:e8:de:cd:40:0a:3e:85:b7:25:c4:c1: d1:40:33:ca:f1:55:cb:c8:9f:a7:4c:f8:1e:83:0b: e5:74:92:78:35:26:06:23:e4:26:90:30:c4:de:79: 27:a1:e4:56:26:44:59:51:49:8f:32:6f:e5:71:38: 60:ef:f9:e9:7c:6b:3f:a0:65:1d:83:c9:e2:f3:bb: d5:99:7b:6a:d1:81:8c:d1:03:4c:62:06:fa:1d:aa: 48:37:f1:69:05:35:c4:31:ac:b6:0a:5d:14:3d:ec: 8d:03:73:ee:49:2f:e5:70:56:5e:71:15:0d:54:60: a3:a4:d6:05:ee:98:b0:12:e1:00:fd:51:88:aa:0e: 00:3f:aa:df:36:82:e9:75:53:2a:44:a0:7f:b8:90: 72:f3:fa:18:49:b1:e4:ec:f9:70:7c:8e:9f:96:db: f1:8d:37:05:67:ba:8c:af:60:13:9d:b1:1f:59:07: ad:51:ec:9f:59:c9:5a:9c:b1:87:af:80:8a:54:27: ad:07:2d:3b:85:52:9b:7d:53:e3:82:87:7d:5f:2f: 32:22:07:c8:f3:78:cb:f8:32:3b:81:4a:f3:57:e6: f5:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:F5:B3:3A:53:88:9B:C3:84:B9:86:59:EA:CE:A2:BA:78:57:33:05 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fd57296f-c533-4b03-bef5-199a752c4a3e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.147.64.0/18 Signature Algorithm: sha256WithRSAEncryption 73:88:f2:c7:93:94:51:57:8f:21:1a:63:82:a7:ef:b7:e1:b9: ab:61:ef:96:59:5e:b4:0d:b3:8f:99:aa:0b:a9:41:fa:8e:50: 11:a0:90:8c:27:c7:25:5f:26:a1:99:ad:eb:af:cf:50:fa:3c: 23:6a:33:b6:93:6f:67:07:6f:a1:27:de:c4:57:1c:49:89:43: 6b:08:79:52:b9:3d:63:20:91:ad:66:1b:e4:4f:78:58:07:48: 6e:ba:67:22:82:36:b5:2c:fd:52:11:bd:e4:cb:ec:dd:c6:c8: e1:d9:db:de:6b:95:de:84:bd:13:52:1f:d3:2b:7a:21:c5:6a: 84:6b:02:2c:32:2e:f2:22:19:91:a5:0d:52:b1:51:a3:bd:34: 82:d4:10:82:05:61:39:b3:36:05:6e:ff:38:14:62:08:98:fb: ec:de:7e:24:13:ab:37:83:71:28:46:70:31:f8:79:f5:5f:a5: 11:36:c6:55:1c:78:1e:32:1b:2e:91:d7:ef:a8:9b:72:58:cc: 3a:e8:e4:5d:e2:74:00:e9:47:38:15:0e:ad:d4:0d:2c:2e:c2: da:b7:32:ed:0b:50:f4:60:e4:6b:a7:a6:61:1b:c4:2f:d3:86: 0d:f9:a9:ea:f6:ea:88:00:82:9e:e6:10:92:26:bc:9c:c1:70: 85:e1:db:34 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOzsLQewidWKu3YXEo9OU2ykp5uswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE4MTUyMDI4WhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NGM0ZmYwOWE3YmNlZjk0OTZlOGJiMWUxYjVlZjc0NmZm MWUyMjVlOTlkYTkzNDVhNGVkMjFhMjYxMDlkN2RkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCeqxdY/wy64bGyccMek/f4zFPb1ToS5Y68erSVmkZ2+3Po 3s1ACj6FtyXEwdFAM8rxVcvIn6dM+B6DC+V0kng1JgYj5CaQMMTeeSeh5FYmRFlR SY8yb+VxOGDv+el8az+gZR2DyeLzu9WZe2rRgYzRA0xiBvodqkg38WkFNcQxrLYK XRQ97I0Dc+5JL+VwVl5xFQ1UYKOk1gXumLAS4QD9UYiqDgA/qt82gul1UypEoH+4 kHLz+hhJseTs+XB8jp+W2/GNNwVnuoyvYBOdsR9ZB61R7J9ZyVqcsYevgIpUJ60H LTuFUpt9U+OCh31fLzIiB8jzeMv4MjuBSvNX5vV/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXvWzOlOIm8OEuYZZ6s6iunhXMwUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2ZkNTcyOTZmLWM1MzMtNGIwMy1iZWY1LTE5OWE3NTJjNGEzZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY2k0AwDQYJKoZIhvcNAQELBQADggEBAHOI8seTlFFXjyEaY4Kn77fhuath 75ZZXrQNs4+ZqgupQfqOUBGgkIwnxyVfJqGZreuvz1D6PCNqM7aTb2cHb6En3sRX HEmJQ2sIeVK5PWMgka1mG+RPeFgHSG66ZyKCNrUs/VIRveTL7N3GyOHZ295rld6E vRNSH9MreiHFaoRrAiwyLvIiGZGlDVKxUaO9NILUEIIFYTmzNgVu/zgUYgiY++ze fiQTqzeDcShGcDH4efVfpRE2xlUceB4yGy6R1++om3JYzDro5F3idADpRzgVDq3U DSwuwtq3Mu0LUPRg5GunpmEbxC/Thg35qer26ogAgp7mEJImvJzBcIXh2zQ= -----END CERTIFICATE-----Generated at Sat Apr 26 12:49:05 2025 by rpki-client