$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d1cf42bf-bd99-41b4-b88a-41c3a09813c3.roa File: d1cf42bf-bd99-41b4-b88a-41c3a09813c3.roa (raw, json) Hash identifier: vC365OtylVakkDOexKUImjldeIkF3qFikWN+9Abgeos= Subject key identifier: A1:C5:74:B2:50:A0:FB:9D:94:32:C4:18:DC:8A:7D:EB:31:0E:51:1E Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5B02B35693939496DFD8B02AB2424A289446672C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d1cf42bf-bd99-41b4-b88a-41c3a09813c3.roa Signing time: Fri 28 Mar 2025 17:50:56 +0000 ROA not before: Fri 28 Mar 2025 17:50:56 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.240.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:02:b3:56:93:93:94:96:df:d8:b0:2a:b2:42:4a:28:94:46:67:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Mar 28 17:50:56 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:0e:b1:91:47:c0:67:bd:7b:e2:32:74:73:42: 84:5c:1d:d0:a5:15:2f:31:d7:9a:a7:1e:e1:66:cb: 7b:08:6e:57:62:75:28:6b:7a:e8:50:c2:13:15:05: 5a:72:52:08:0a:16:50:16:1f:f5:04:29:6a:ad:0e: 93:2e:38:a5:ae:9d:4e:78:34:b3:4c:61:56:12:7d: 2d:d0:24:a9:56:62:c2:8a:32:87:49:9c:58:c7:8a: 1f:3b:8c:e3:e2:74:bf:8d:a0:5b:ea:54:b6:7e:0e: 11:d9:7f:24:04:ba:b6:90:81:7c:04:54:53:03:a0: 6e:6a:be:00:74:46:6b:11:90:0e:74:87:74:ea:77: 10:ad:56:3b:fa:b3:e9:33:59:1b:66:20:8a:b4:d8: 14:58:7c:8f:4d:85:50:c8:5c:b2:52:39:29:e9:f5: cd:1c:af:36:15:12:cf:45:03:cf:b0:99:b3:85:a8: b4:13:8e:4d:a5:e1:0a:98:eb:39:88:0b:32:9c:9b: 46:9b:d7:fe:fb:76:68:37:d2:f9:48:b6:82:78:2d: b7:c0:ac:77:c1:4c:a3:a7:59:58:dd:57:05:ef:8f: 29:e8:b2:1c:ea:bf:30:26:7a:bb:a0:cb:9a:41:7e: b7:14:f6:26:e0:aa:52:5c:ca:5f:d0:43:af:e1:de: 39:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:C5:74:B2:50:A0:FB:9D:94:32:C4:18:DC:8A:7D:EB:31:0E:51:1E X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d1cf42bf-bd99-41b4-b88a-41c3a09813c3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.240.0.0/14 Signature Algorithm: sha256WithRSAEncryption 95:51:54:46:66:2b:3f:16:79:23:f8:e8:1d:6e:32:3d:a8:2b: 2c:d0:67:94:71:8d:36:b8:3c:ad:de:08:61:ca:a8:34:4f:e2: fd:e7:2c:30:ed:40:8d:90:37:f7:4a:ae:d5:7c:d2:3b:e6:cf: b8:58:ec:e7:8e:fe:89:30:b8:96:cc:97:0c:af:67:f3:fe:e0: 7e:ab:8f:36:eb:c2:5e:3e:8b:2e:8c:1c:9d:2f:ae:60:a8:4a: e0:c2:79:67:05:f6:4b:4d:f9:f8:5c:b6:da:0a:bf:2c:e7:c3: 89:fd:8e:2f:cc:d5:01:e9:5e:86:85:48:4c:2f:c8:21:2e:86: 43:79:97:38:38:7c:df:31:87:aa:6e:97:39:58:26:32:a6:19: 40:53:e0:50:ea:52:d3:21:55:19:e7:3e:22:7d:29:0d:fe:73: 43:3e:e6:81:7d:b6:4e:10:13:41:7e:8d:70:ba:60:8a:5c:fa: 58:fd:05:9a:a4:7b:49:d6:0a:78:a6:af:8c:ca:a0:f3:e5:32: 21:7f:c7:57:6e:66:eb:a8:46:8d:1f:80:ec:6a:88:c3:9d:5a: ef:fa:73:ab:a9:2d:8f:54:46:7e:ce:3b:f1:d7:db:ed:98:8a: ff:18:51:99:e2:4b:d4:07:56:27:28:d9:9a:6b:83:7d:a5:f1: 83:98:2e:0b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWwKzVpOTlJbf2LAqskJKKJRGZywwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMzI4MTc1MDU2WhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMTRlYmNhOTBiOWFmMGZmMDNjOTg5OWZjNDgyNTE0ODE5 ZTEyNjZhZDMwY2RlZjJjOTU0Mzc2ODgyZTE0MTJiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChDrGRR8BnvXviMnRzQoRcHdClFS8x15qnHuFmy3sIbldi dShreuhQwhMVBVpyUggKFlAWH/UEKWqtDpMuOKWunU54NLNMYVYSfS3QJKlWYsKK ModJnFjHih87jOPidL+NoFvqVLZ+DhHZfyQEuraQgXwEVFMDoG5qvgB0RmsRkA50 h3TqdxCtVjv6s+kzWRtmIIq02BRYfI9NhVDIXLJSOSnp9c0crzYVEs9FA8+wmbOF qLQTjk2l4QqY6zmICzKcm0ab1/77dmg30vlItoJ4LbfArHfBTKOnWVjdVwXvjyno shzqvzAmerugy5pBfrcU9ibgqlJcyl/QQ6/h3jmpAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUocV0slCg+52UMsQY3Ip96zEOUR4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2QxY2Y0MmJmLWJkOTktNDFiNC1iODhhLTQxYzNhMDk4MTNjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIS8DANBgkqhkiG9w0BAQsFAAOCAQEAlVFURmYrPxZ5I/joHW4yPagrLNBn lHGNNrg8rd4IYcqoNE/i/ecsMO1AjZA390qu1XzSO+bPuFjs547+iTC4lsyXDK9n 8/7gfquPNuvCXj6LLowcnS+uYKhK4MJ5ZwX2S035+Fy22gq/LOfDif2OL8zVAele hoVITC/IIS6GQ3mXODh83zGHqm6XOVgmMqYZQFPgUOpS0yFVGec+In0pDf5zQz7m gX22ThATQX6NcLpgilz6WP0FmqR7SdYKeKavjMqg8+UyIX/HV25m66hGjR+A7GqI w51a7/pzq6ktj1RGfs478dfb7ZiK/xhRmeJL1AdWJyjZmmuDfaXxg5guCw== -----END CERTIFICATE-----Generated at Sat Apr 5 12:08:48 2025 by rpki-client