$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ff300c0b-f5a2-4c88-b82d-c60c5bd8c8f3.roa File: ff300c0b-f5a2-4c88-b82d-c60c5bd8c8f3.roa (raw, json) Hash identifier: Xj4bQWNeDoRfQ7KEPcemi/syJcSrMnnhevD1olR7XNo= Subject key identifier: B5:05:7D:6D:B4:A9:20:1A:F0:36:40:75:8F:21:B3:51:B0:A9:57:AA Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 410FA0655FD8277B9EC7DEA6A3C38FB01F5C1692 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ff300c0b-f5a2-4c88-b82d-c60c5bd8c8f3.roa Signing time: Fri 18 Apr 2025 16:40:18 +0000 ROA not before: Fri 18 Apr 2025 16:40:18 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.238.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:0f:a0:65:5f:d8:27:7b:9e:c7:de:a6:a3:c3:8f:b0:1f:5c:16:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 18 16:40:18 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=dac8dfa2396b021a7e311b7cca60f8f59e31868bb5856a126dab8e3c3b2fcfae, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c0:1a:5d:7e:ad:05:a2:4f:6a:55:b3:b6:02: d8:68:a1:8d:d4:37:57:a4:3f:92:a1:20:62:4f:f5: 2b:ae:92:24:f3:2d:1f:d3:81:0d:b9:2a:2c:a2:24: 71:81:79:ec:71:45:1d:fa:bd:1e:93:ca:88:e9:a6: 99:4c:f3:87:d2:d7:42:23:39:90:f3:83:c6:6b:14: 6f:f8:ce:cd:3a:b4:d0:4f:e5:00:9c:94:ca:8c:07: 62:d8:49:2c:66:64:73:00:15:77:19:11:1d:2e:93: 16:54:5e:3c:8b:71:04:53:05:d4:59:34:92:dc:ae: 58:59:24:aa:94:fb:27:f8:9a:a1:03:a0:11:ae:a0: a7:c1:fd:ff:97:e2:e2:ad:94:d8:6d:09:f0:a0:b0: 28:0d:02:15:ad:d8:04:fe:76:0d:6d:93:1c:86:e3: b7:14:b8:a6:3c:55:23:64:31:2d:a0:5a:b7:06:09: f4:c7:90:c3:df:98:7c:5b:91:e2:f8:d8:b3:03:72: 8c:11:e1:ca:92:60:9d:c9:d9:a0:b9:45:2d:4d:23: a3:3e:5b:48:50:91:b7:0d:1c:3e:56:5f:68:d4:38: 85:d2:ec:91:46:f8:f7:87:30:15:ae:7f:1b:15:04: bb:15:b2:ff:65:2b:83:0f:3a:9f:79:fb:df:ac:8e: b3:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:05:7D:6D:B4:A9:20:1A:F0:36:40:75:8F:21:B3:51:B0:A9:57:AA X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ff300c0b-f5a2-4c88-b82d-c60c5bd8c8f3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.238.120.0/22 Signature Algorithm: sha256WithRSAEncryption a3:52:74:43:07:c9:5f:7b:c0:0d:e2:18:76:54:37:3b:9c:a5: 75:c2:e5:d8:ab:f4:89:ae:96:d8:33:a2:be:b9:55:4e:d6:c0: 2d:9b:75:72:1c:78:4c:aa:91:19:03:20:82:f3:c2:94:0f:bd: 04:ab:aa:fb:20:98:63:41:d8:7b:cf:66:87:e4:f1:ca:03:82: d2:3b:6d:24:c5:94:85:d5:d7:a3:58:fd:74:76:1f:d1:18:79: 31:98:f1:b9:c4:52:c6:ea:d8:cf:45:3d:29:26:8a:e5:0b:6b: 9b:62:61:89:ed:7e:a1:73:a1:1b:89:70:3f:72:52:cd:93:6f: 4d:45:94:89:c6:03:60:eb:e8:3c:25:9a:98:19:fc:78:70:5d: 1d:a8:51:5b:e8:bf:1b:87:1c:56:b5:ee:37:aa:4f:1a:ae:c8: 30:ef:f5:ce:73:76:db:05:30:04:c0:bb:33:7d:76:47:0a:80: 53:d8:ae:da:09:da:67:53:5d:4e:f5:f2:08:d3:e6:4d:11:1a: 64:13:48:9d:a3:ec:da:84:1e:51:42:03:16:1c:39:4e:45:23: 92:7d:35:d9:83:a3:6e:f5:fe:f1:98:f1:3a:b4:35:6b:2e:d1: c7:fb:64:7d:44:bf:8b:87:c1:1a:70:24:4c:54:dc:57:ab:dc: 7a:c0:4d:98 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQQ+gZV/YJ3uex96mo8OPsB9cFpIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE4MTY0MDE4WhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYWM4ZGZhMjM5NmIwMjFhN2UzMTFiN2NjYTYwZjhmNTll MzE4NjhiYjU4NTZhMTI2ZGFiOGUzYzNiMmZjZmFlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCywBpdfq0Fok9qVbO2AthooY3UN1ekP5KhIGJP9SuukiTz LR/TgQ25KiyiJHGBeexxRR36vR6TyojppplM84fS10IjOZDzg8ZrFG/4zs06tNBP 5QCclMqMB2LYSSxmZHMAFXcZER0ukxZUXjyLcQRTBdRZNJLcrlhZJKqU+yf4mqED oBGuoKfB/f+X4uKtlNhtCfCgsCgNAhWt2AT+dg1tkxyG47cUuKY8VSNkMS2gWrcG CfTHkMPfmHxbkeL42LMDcowR4cqSYJ3J2aC5RS1NI6M+W0hQkbcNHD5WX2jUOIXS 7JFG+PeHMBWufxsVBLsVsv9lK4MPOp95+9+sjrNhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtQV9bbSpIBrwNkB1jyGzUbCpV6owHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2ZmMzAwYzBiLWY1YTItNGM4OC1iODJkLWM2MGM1YmQ4YzhmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI27ngwDQYJKoZIhvcNAQELBQADggEBAKNSdEMHyV97wA3iGHZUNzucpXXC 5dir9Imultgzor65VU7WwC2bdXIceEyqkRkDIILzwpQPvQSrqvsgmGNB2HvPZofk 8coDgtI7bSTFlIXV16NY/XR2H9EYeTGY8bnEUsbq2M9FPSkmiuULa5tiYYntfqFz oRuJcD9yUs2Tb01FlInGA2Dr6DwlmpgZ/HhwXR2oUVvovxuHHFa17jeqTxquyDDv 9c5zdtsFMATAuzN9dkcKgFPYrtoJ2mdTXU718gjT5k0RGmQTSJ2j7NqEHlFCAxYc OU5FI5J9NdmDo271/vGY8Tq0NWsu0cf7ZH1Ev4uHwRpwJExU3Fer3HrATZg= -----END CERTIFICATE-----Generated at Sat Apr 26 14:45:19 2025 by rpki-client