$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5edb979c-9e4e-4ecc-8602-4f07e5e7b0bd.roa File: 5edb979c-9e4e-4ecc-8602-4f07e5e7b0bd.roa (raw, json) Hash identifier: AFrOL11iHij5cdhq151mtzidZHxFiTrRmmJHbwlX9uM= Subject key identifier: 79:FC:5A:24:36:52:A4:53:78:97:0A:F0:4B:2D:5E:4C:0C:5C:1D:9A Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 72CA835E744470DABAA2EBFCB0F8120EAF973629 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5edb979c-9e4e-4ecc-8602-4f07e5e7b0bd.roa Signing time: Mon 24 Mar 2025 17:51:41 +0000 ROA not before: Mon 24 Mar 2025 17:51:41 +0000 ROA not after: Mon 28 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.239.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:ca:83:5e:74:44:70:da:ba:a2:eb:fc:b0:f8:12:0e:af:97:36:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Mar 24 17:51:41 2025 GMT Not After : Apr 28 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:c8:6f:bd:bf:d4:61:8f:28:ce:29:71:37:4c: 16:8d:83:7d:ae:59:e1:d0:a6:89:cb:e3:c0:02:4b: 52:e1:7a:b3:24:06:64:cb:26:b7:58:b1:fd:7e:26: 48:97:a3:1d:57:c5:bd:d9:c6:2a:9d:78:02:b3:1d: c7:58:83:d1:17:ae:a1:f8:a1:05:41:07:a9:90:44: 69:0a:14:87:1e:6e:7e:5b:9c:f5:5b:76:5e:54:e9: ad:5c:0d:87:a5:3b:21:0b:57:9d:03:b1:85:0b:64: 2b:a8:ba:02:0a:05:ac:0a:62:41:79:41:8d:b2:64: 7f:bd:5c:19:2f:4d:ac:3e:bf:c8:43:1a:c2:2a:4d: 04:be:b9:85:85:36:9b:ec:e2:1a:77:98:92:c5:8c: ab:b3:22:78:4a:cc:a7:53:0e:30:f4:fd:d0:55:a5: 99:37:92:ff:3e:9e:96:52:55:4e:d4:3a:6d:f7:50: dd:56:7f:c5:f2:38:20:0c:c2:d0:ae:94:7f:7e:09: b6:3b:e5:ee:10:d5:c4:28:d2:71:be:53:7e:de:f1: 9c:e7:5d:62:1b:85:4a:82:b6:a9:02:2f:25:c5:98: ec:10:9a:5e:3b:7a:89:22:17:2d:3f:cb:06:9b:83: 86:84:e4:7b:4e:e8:5c:e9:60:da:9d:85:93:e4:56: 4d:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:FC:5A:24:36:52:A4:53:78:97:0A:F0:4B:2D:5E:4C:0C:5C:1D:9A X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5edb979c-9e4e-4ecc-8602-4f07e5e7b0bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.239.192.0/19 Signature Algorithm: sha256WithRSAEncryption 29:4e:87:1e:cd:af:15:3f:b8:db:f5:2c:ec:0d:78:71:ee:85: 7c:a2:ec:af:6f:15:12:26:fc:55:82:4e:22:e7:35:92:dd:81: 92:20:4a:8c:01:c4:36:a1:57:2a:91:49:29:71:2f:ea:ab:27: 7a:78:e3:d0:70:ed:4a:f1:7b:06:d5:1e:2a:11:a8:e1:ae:9c: 5e:cb:4c:86:40:4f:ee:c4:50:1b:05:c4:9b:9e:54:25:50:d9: 0c:d0:fe:ca:11:31:ca:1f:96:f7:37:1e:65:30:96:fa:13:d4: db:79:8b:7b:64:40:18:d2:58:c1:9b:76:af:26:9b:cf:23:85: 4c:e2:06:2e:21:2a:36:49:06:71:0b:c4:62:11:7b:24:f7:11: cc:fc:3c:1f:37:b2:c0:a4:37:35:73:15:5e:69:c5:1f:f3:97: 8e:70:e2:af:ea:35:b8:f2:7b:a2:46:08:60:95:b5:9d:7d:22: 96:8c:3f:b5:f6:5a:1f:07:ac:8b:9b:3f:72:35:07:56:9d:23: ac:d7:58:db:9a:29:12:d4:dc:af:a7:08:cc:08:16:d6:7c:b2: 61:96:97:ed:9a:6c:9a:9e:71:bd:eb:ae:50:25:9e:cd:ac:1f: 4b:f9:aa:61:99:f7:ec:0c:43:74:06:88:e6:31:bf:41:2b:92: a8:f9:80:e4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcsqDXnREcNq6ouv8sPgSDq+XNikwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMzI0MTc1MTQxWhcNMjUwNDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNGY4MmY1YzBhZjc4YjE3YTYyZDYyZjBhY2JhZmIzNWIy Mzc1NWQzNDI0MzVjZDAyZmRlYzJhNWIzMTMzOGU2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLyG+9v9RhjyjOKXE3TBaNg32uWeHQponL48ACS1LherMk BmTLJrdYsf1+JkiXox1Xxb3ZxiqdeAKzHcdYg9EXrqH4oQVBB6mQRGkKFIcebn5b nPVbdl5U6a1cDYelOyELV50DsYULZCuougIKBawKYkF5QY2yZH+9XBkvTaw+v8hD GsIqTQS+uYWFNpvs4hp3mJLFjKuzInhKzKdTDjD0/dBVpZk3kv8+npZSVU7UOm33 UN1Wf8XyOCAMwtCulH9+CbY75e4Q1cQo0nG+U37e8ZznXWIbhUqCtqkCLyXFmOwQ ml47eokiFy0/ywabg4aE5HtO6FzpYNqdhZPkVk3RAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUefxaJDZSpFN4lwrwSy1eTAxcHZowHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzVlZGI5NzljLTllNGUtNGVjYy04NjAyLTRmMDdlNWU3YjBiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU278AwDQYJKoZIhvcNAQELBQADggEBAClOhx7NrxU/uNv1LOwNeHHuhXyi 7K9vFRIm/FWCTiLnNZLdgZIgSowBxDahVyqRSSlxL+qrJ3p449Bw7UrxewbVHioR qOGunF7LTIZAT+7EUBsFxJueVCVQ2QzQ/soRMcoflvc3HmUwlvoT1Nt5i3tkQBjS WMGbdq8mm88jhUziBi4hKjZJBnELxGIReyT3Ecz8PB83ssCkNzVzFV5pxR/zl45w 4q/qNbjye6JGCGCVtZ19IpaMP7X2Wh8HrIubP3I1B1adI6zXWNuaKRLU3K+nCMwI FtZ8smGWl+2abJqecb3rrlAlns2sH0v5qmGZ9+wMQ3QGiOYxv0Erkqj5gOQ= -----END CERTIFICATE-----Generated at Sat Apr 5 12:09:04 2025 by rpki-client