$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/84f30d23-d17d-4e24-b362-d52f938711f7.roa File: 84f30d23-d17d-4e24-b362-d52f938711f7.roa (raw, json) Hash identifier: 8Tt+e7BwfNWrWUMyVjDBtU+rGldwLbDDcfJ73aAZ+n4= Subject key identifier: C8:23:1A:11:F2:57:D1:B8:42:70:84:15:64:2F:70:75:F4:79:07:D0 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6911AAEF5CBF219AC3C9E277928FAAC08BE61293 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/84f30d23-d17d-4e24-b362-d52f938711f7.roa Signing time: Fri 28 Mar 2025 18:01:07 +0000 ROA not before: Fri 28 Mar 2025 18:01:07 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.2.8.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:11:aa:ef:5c:bf:21:9a:c3:c9:e2:77:92:8f:aa:c0:8b:e6:12:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Mar 28 18:01:07 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:55:3d:a2:f4:8f:73:e5:96:98:11:9f:13:0a: 80:bb:9b:66:a3:95:0c:d1:64:5e:80:d0:93:24:e6: 12:44:22:56:6c:76:0c:a1:ab:8f:ed:45:51:44:13: 90:07:0e:3d:68:2a:04:9d:96:76:8e:1f:7b:73:cb: 87:1a:14:d2:08:73:2c:ca:ff:7a:0c:73:48:32:89: 11:55:44:0c:f8:38:7b:1c:4a:bd:3e:4a:eb:91:01: 11:77:25:7d:c9:7f:9f:b1:be:ea:c2:2b:f7:f4:97: fd:f4:10:f8:b0:98:ef:0d:87:8c:c2:54:b9:45:7f: ed:bd:e0:b3:33:b5:5b:e8:9d:70:6d:66:cf:1f:d1: 6b:92:7a:50:8d:87:e5:d9:99:5c:23:a4:58:80:48: fe:ad:9c:c8:83:e1:ce:5f:f6:e7:77:a6:5e:f3:a8: 76:16:a2:ac:61:d1:16:e9:0c:76:3a:97:31:da:72: 05:f1:5a:34:97:7e:48:21:5c:e7:35:6c:14:e5:71: 64:17:af:18:d3:47:b4:4e:91:c5:1e:4d:80:76:19: a0:e9:27:66:60:89:38:13:58:db:52:a9:07:b3:43: 75:30:fd:18:0d:26:75:01:32:ae:66:a7:99:6b:86: 00:ad:ec:1b:22:ad:57:14:19:47:7d:8b:e1:5e:a2: 26:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:23:1A:11:F2:57:D1:B8:42:70:84:15:64:2F:70:75:F4:79:07:D0 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/84f30d23-d17d-4e24-b362-d52f938711f7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.2.8.0/21 Signature Algorithm: sha256WithRSAEncryption 8d:93:fc:43:bc:f3:1f:23:a4:4e:17:27:a9:be:7f:f2:22:6a: 53:25:bc:8a:7b:5c:47:75:b6:cd:b2:fc:e4:90:53:ed:f3:96: af:ab:0b:69:8b:42:5a:c3:60:16:95:79:6d:6a:15:43:da:b1: 82:a7:64:e0:55:4a:38:95:c4:1e:09:64:34:6a:f3:4c:c3:12: 5a:1c:9b:46:1d:3a:bd:17:8b:d4:2c:ca:02:4f:47:14:08:16: 6c:28:05:11:9a:e6:04:c9:97:e2:ee:95:cc:4e:33:29:fa:27: 61:f7:93:41:e5:28:97:09:6f:cd:70:a6:c2:24:60:1b:4b:ee: 81:8f:f0:26:2a:a9:7d:40:93:d7:ba:96:c4:40:8b:ac:9b:a1: fb:eb:53:3a:1e:3e:bb:3a:b7:60:c1:7e:d5:74:3f:d3:98:30: 11:e3:d6:e2:60:b0:e9:f7:f1:87:42:dd:a6:77:5c:44:a8:7d: 65:5b:19:e7:6b:55:79:9a:02:63:6e:c8:ef:31:ec:b7:7a:c8: 6d:9d:1e:a0:69:33:09:66:3b:2e:e5:cc:f2:3d:95:80:50:c9: ed:ef:38:69:70:5a:c6:60:d9:6d:2f:65:65:e5:cd:9b:0c:74: f4:96:e6:ef:5d:ab:44:35:e5:a9:ec:31:a3:ec:ab:ba:c8:dd: 10:1c:30:eb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaRGq71y/IZrDyeJ3ko+qwIvmEpMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMzI4MTgwMTA3WhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MzhmYzYwMWJmM2NhMWFkMGMxZmNkMDkwNjk5NTVmZjJm NTM5YzNiOTNlOGQ5OTAzZDUzMTU0MzZjNGE4NTkyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrVT2i9I9z5ZaYEZ8TCoC7m2ajlQzRZF6A0JMk5hJEIlZs dgyhq4/tRVFEE5AHDj1oKgSdlnaOH3tzy4caFNIIcyzK/3oMc0gyiRFVRAz4OHsc Sr0+SuuRARF3JX3Jf5+xvurCK/f0l/30EPiwmO8Nh4zCVLlFf+294LMztVvonXBt Zs8f0WuSelCNh+XZmVwjpFiASP6tnMiD4c5f9ud3pl7zqHYWoqxh0RbpDHY6lzHa cgXxWjSXfkghXOc1bBTlcWQXrxjTR7ROkcUeTYB2GaDpJ2ZgiTgTWNtSqQezQ3Uw /RgNJnUBMq5mp5lrhgCt7BsirVcUGUd9i+Feoia9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyCMaEfJX0bhCcIQVZC9wdfR5B9AwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzg0ZjMwZDIzLWQxN2QtNGUyNC1iMzYyLWQ1MmY5Mzg3MTFmNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMDAggwDQYJKoZIhvcNAQELBQADggEBAI2T/EO88x8jpE4XJ6m+f/IialMl vIp7XEd1ts2y/OSQU+3zlq+rC2mLQlrDYBaVeW1qFUPasYKnZOBVSjiVxB4JZDRq 80zDElocm0YdOr0Xi9QsygJPRxQIFmwoBRGa5gTJl+LulcxOMyn6J2H3k0HlKJcJ b81wpsIkYBtL7oGP8CYqqX1Ak9e6lsRAi6ybofvrUzoePrs6t2DBftV0P9OYMBHj 1uJgsOn38YdC3aZ3XESofWVbGedrVXmaAmNuyO8x7Ld6yG2dHqBpMwlmOy7lzPI9 lYBQye3vOGlwWsZg2W0vZWXlzZsMdPSW5u9dq0Q15ansMaPsq7rI3RAcMOs= -----END CERTIFICATE-----Generated at Sat Apr 5 12:09:06 2025 by rpki-client