$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fddc965c-ee70-48d4-a6d9-cd980d11b34c.roa File: fddc965c-ee70-48d4-a6d9-cd980d11b34c.roa (raw, json) Hash identifier: HHwSZookPJQpJtcDEDAwGPc23dT8IJXdW8gTW/L1Nm0= Subject key identifier: 2D:3A:F9:CA:62:94:64:8C:77:86:23:4E:88:8E:75:4E:A7:0C:1B:F2 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 38BC7A1D24AA398C92E21E6C618AF6E5C2E6F64E Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fddc965c-ee70-48d4-a6d9-cd980d11b34c.roa Signing time: Fri 18 Apr 2025 15:11:06 +0000 ROA not before: Fri 18 Apr 2025 15:11:06 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.144.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:bc:7a:1d:24:aa:39:8c:92:e2:1e:6c:61:8a:f6:e5:c2:e6:f6:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 18 15:11:06 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=fb729a985e20c038cc007ff4bb283591afb8983312d8b8cf205fb64ea390c33e, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:21:9a:34:92:de:a2:7b:da:5e:8e:89:e6:64: 0b:1c:24:80:ed:db:41:9e:d6:10:f3:41:7e:54:4c: 84:a6:1e:c6:4c:84:5a:96:75:61:ca:dd:f5:06:cc: 35:87:6b:45:4d:87:f0:b2:07:a1:5b:ee:67:3a:d9: 0f:6d:c2:9d:5c:2c:3b:5d:2d:b6:f9:f2:1e:0d:5c: 26:72:01:9a:a5:48:0f:e6:e2:a7:2c:d7:a7:70:3e: c0:c3:3c:65:58:eb:d8:a2:a0:7e:5b:25:fc:bd:63: 49:99:70:5e:67:3c:47:3f:74:a1:03:6e:af:49:03: fe:68:76:a1:4c:5c:b4:d6:04:0d:42:cf:c6:48:3c: 1b:c9:26:34:a3:b5:20:6d:73:10:43:6b:46:f3:6e: 97:32:e3:02:b8:31:62:60:45:f6:17:46:ff:1e:27: 78:c2:31:4d:d0:dd:43:98:b3:e8:5b:81:05:8f:e8: 6a:75:df:53:dc:d9:27:8c:32:6f:5d:af:a5:dc:98: e9:6e:11:16:e1:aa:dc:a3:e7:b0:7a:46:66:5d:2f: 4a:08:5a:20:69:bf:4b:a0:f7:3d:28:29:08:73:b3: 04:f1:4a:db:8f:8c:9a:a7:e4:72:91:92:03:26:5f: 63:8f:d4:10:6a:be:de:56:ff:bd:01:15:48:ba:b7: a5:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:3A:F9:CA:62:94:64:8C:77:86:23:4E:88:8E:75:4E:A7:0C:1B:F2 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fddc965c-ee70-48d4-a6d9-cd980d11b34c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.144.64.0/18 Signature Algorithm: sha256WithRSAEncryption 4d:b4:15:6a:a9:5f:3e:52:44:14:ea:9f:2b:71:67:69:cd:35: cb:0f:92:fc:b9:8b:a2:0c:1c:ce:93:53:84:55:40:6e:a7:48: b8:ec:a6:7d:3b:6a:7a:11:79:89:df:89:42:88:7c:24:c0:0a: a3:1c:95:cc:2d:40:df:31:59:3c:27:9a:db:e2:d4:1c:de:45: 85:62:67:6b:3d:d1:09:28:df:c8:2a:90:36:bd:0d:01:f1:ec: ca:48:bf:7c:4f:2c:91:ce:d6:f9:2c:b0:12:e6:b7:3c:0d:a3: 29:6b:bc:6d:f5:5d:88:a3:e9:dd:e6:14:e6:a7:bc:1c:a7:02: a0:64:ec:03:7e:a9:ec:6f:4f:f1:b1:f8:4c:71:21:1a:04:d9: 7c:30:43:78:08:fb:18:2a:e1:cc:d2:a7:b8:b7:13:db:34:cf: 75:af:6d:05:14:04:3a:3c:bc:63:57:9c:db:41:dc:c2:b7:6a: 41:f6:99:b3:d3:2f:4c:87:ee:ce:ba:40:d4:4e:14:c7:a2:90: 4f:d7:6a:b8:c0:99:fe:00:d5:0b:e5:be:8f:39:33:0b:a5:b4: e9:24:02:45:d9:5c:34:ec:c2:77:30:13:65:db:c4:7b:db:e4: 2d:11:13:5b:a4:67:4c:35:4c:3e:ee:7c:36:5c:85:1b:e4:52: 66:9f:f7:d2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOLx6HSSqOYyS4h5sYYr25cLm9k4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE4MTUxMTA2WhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmYjcyOWE5ODVlMjBjMDM4Y2MwMDdmZjRiYjI4MzU5MWFm Yjg5ODMzMTJkOGI4Y2YyMDVmYjY0ZWEzOTBjMzNlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRIZo0kt6ie9pejonmZAscJIDt20Ge1hDzQX5UTISmHsZM hFqWdWHK3fUGzDWHa0VNh/CyB6Fb7mc62Q9twp1cLDtdLbb58h4NXCZyAZqlSA/m 4qcs16dwPsDDPGVY69iioH5bJfy9Y0mZcF5nPEc/dKEDbq9JA/5odqFMXLTWBA1C z8ZIPBvJJjSjtSBtcxBDa0bzbpcy4wK4MWJgRfYXRv8eJ3jCMU3Q3UOYs+hbgQWP 6Gp131Pc2SeMMm9dr6XcmOluERbhqtyj57B6RmZdL0oIWiBpv0ug9z0oKQhzswTx StuPjJqn5HKRkgMmX2OP1BBqvt5W/70BFUi6t6W/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULTr5ymKUZIx3hiNOiI51TqcMG/IwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2ZkZGM5NjVjLWVlNzAtNDhkNC1hNmQ5LWNkOTgwZDExYjM0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY2kEAwDQYJKoZIhvcNAQELBQADggEBAE20FWqpXz5SRBTqnytxZ2nNNcsP kvy5i6IMHM6TU4RVQG6nSLjspn07anoReYnfiUKIfCTACqMclcwtQN8xWTwnmtvi 1BzeRYViZ2s90Qko38gqkDa9DQHx7MpIv3xPLJHO1vkssBLmtzwNoylrvG31XYij 6d3mFOanvBynAqBk7AN+qexvT/Gx+ExxIRoE2XwwQ3gI+xgq4czSp7i3E9s0z3Wv bQUUBDo8vGNXnNtB3MK3akH2mbPTL0yH7s66QNROFMeikE/XarjAmf4A1Qvlvo85 MwultOkkAkXZXDTswncwE2XbxHvb5C0RE1ukZ0w1TD7ufDZchRvkUmaf99I= -----END CERTIFICATE-----Generated at Sat Apr 26 18:26:05 2025 by rpki-client