$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f390534b-b1f1-4656-bdda-514a60516161.roa File: f390534b-b1f1-4656-bdda-514a60516161.roa (raw, json) Hash identifier: G5dz+cbTxknOj2rqOm4JnVcY/L8l6uTmAsvmtJgllf0= Subject key identifier: 9A:84:6F:F5:94:7E:9E:EF:CC:61:01:4E:A7:5A:67:36:F0:AA:4D:84 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 576A0C94B25F84E4E0B7E4C213BF2B703DE749E5 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f390534b-b1f1-4656-bdda-514a60516161.roa Signing time: Mon 31 Mar 2025 17:51:45 +0000 ROA not before: Mon 31 Mar 2025 17:51:45 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.95.100.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:6a:0c:94:b2:5f:84:e4:e0:b7:e4:c2:13:bf:2b:70:3d:e7:49:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Mar 31 17:51:45 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d0:34:eb:89:16:2e:d8:e9:db:97:23:64:7b: c8:4f:3a:3a:41:15:c9:c2:eb:65:0b:23:7f:42:d3: ac:cc:1a:fc:5d:db:f9:b9:f9:5f:7e:3b:0e:0c:aa: 9b:da:1c:87:99:85:31:e3:e1:7c:0d:5c:15:da:fd: 3f:4c:43:94:0c:15:b9:2c:6a:95:19:c3:b9:c3:e3: 72:a0:c7:ba:48:6d:2b:54:44:5f:7a:9c:54:ad:43: 83:26:ff:3e:af:4e:31:d8:4d:f5:3e:d5:c6:f7:09: bc:29:d1:c9:92:e7:6b:60:d8:91:61:ea:c4:81:82: c3:f7:5c:b2:0f:74:dd:5b:4c:00:76:37:0b:8c:fa: 92:2d:3f:a8:66:cf:2d:26:dc:0f:f1:d1:a2:f7:ac: 50:48:40:2e:74:5f:5d:e2:5d:7c:77:54:db:c8:0a: ea:3b:83:72:fd:f0:16:c1:22:2f:e7:61:05:fe:a9: f0:78:95:59:aa:40:ab:b7:2c:bd:7b:04:7f:ea:4d: 24:42:1c:fb:a1:08:33:6b:5d:e1:23:d1:5b:24:06: 35:e1:ca:e7:90:86:28:f3:c3:51:d8:58:c1:ff:71: 2c:66:10:a9:4a:62:47:ff:81:f3:88:31:6f:ba:f8: e0:ca:c3:9b:f4:f9:92:11:9a:5a:34:05:3c:80:14: 96:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:84:6F:F5:94:7E:9E:EF:CC:61:01:4E:A7:5A:67:36:F0:AA:4D:84 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f390534b-b1f1-4656-bdda-514a60516161.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.95.100.0/22 Signature Algorithm: sha256WithRSAEncryption 1d:49:7f:a9:d8:e0:d1:46:9b:b6:29:38:ee:f1:43:ad:b5:dd: 76:54:77:b7:1c:3e:b8:92:df:e1:d0:74:a0:f3:76:b9:e3:d8: bd:5e:ee:90:a7:75:c6:bf:f7:88:7a:c1:1a:52:bf:66:bd:87: 2e:77:16:6c:04:74:1b:58:69:62:ae:31:c4:cd:b0:4c:ac:2e: 43:42:4f:4f:b9:89:6e:8a:05:ca:3e:aa:5c:fa:d0:de:78:77: 20:e0:03:72:4c:c8:b2:ef:a1:92:ac:bb:8d:4d:b1:2c:fc:cc: 2d:88:71:df:06:46:45:e6:4d:ca:69:93:d8:76:fe:97:c4:8f: b2:b0:b9:79:5d:8f:56:14:d7:08:ed:1e:14:c8:2c:ef:ed:aa: ec:56:56:00:85:66:d0:1c:42:30:f5:a1:fe:43:0a:24:76:10: 6e:91:5f:48:72:2a:03:d9:d9:ef:93:e0:ab:85:b1:71:a9:d3: 03:8f:43:58:bf:dd:e9:3b:63:b4:10:51:dd:1d:9e:f2:cc:32: 09:40:6e:8d:d2:47:28:5b:f8:9a:4f:81:6d:0e:42:0a:0f:90: b4:95:89:85:c7:0a:f6:02:c3:c2:10:b2:ed:22:c8:3b:58:11: 33:00:e9:cc:8b:ca:1e:95:6a:2a:f1:54:4f:51:65:a4:8f:d5: 70:f3:be:b5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUV2oMlLJfhOTgt+TCE78rcD3nSeUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMzMxMTc1MTQ1WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYjdjNjJkMmM4Y2M3YWYzM2UyNzIwMDUyZTVjYzMyM2Jm MzBlZTMxOWY4ZDE3OGYzYTIwYWYzYjBhZjhjNDc0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCq0DTriRYu2OnblyNke8hPOjpBFcnC62ULI39C06zMGvxd 2/m5+V9+Ow4MqpvaHIeZhTHj4XwNXBXa/T9MQ5QMFbksapUZw7nD43Kgx7pIbStU RF96nFStQ4Mm/z6vTjHYTfU+1cb3Cbwp0cmS52tg2JFh6sSBgsP3XLIPdN1bTAB2 NwuM+pItP6hmzy0m3A/x0aL3rFBIQC50X13iXXx3VNvICuo7g3L98BbBIi/nYQX+ qfB4lVmqQKu3LL17BH/qTSRCHPuhCDNrXeEj0VskBjXhyueQhijzw1HYWMH/cSxm EKlKYkf/gfOIMW+6+ODKw5v0+ZIRmlo0BTyAFJadAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmoRv9ZR+nu/MYQFOp1pnNvCqTYQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2YzOTA1MzRiLWIxZjEtNDY1Ni1iZGRhLTUxNGE2MDUxNjE2MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI0X2QwDQYJKoZIhvcNAQELBQADggEBAB1Jf6nY4NFGm7YpOO7xQ6213XZU d7ccPriS3+HQdKDzdrnj2L1e7pCndca/94h6wRpSv2a9hy53FmwEdBtYaWKuMcTN sEysLkNCT0+5iW6KBco+qlz60N54dyDgA3JMyLLvoZKsu41NsSz8zC2Icd8GRkXm Tcppk9h2/pfEj7KwuXldj1YU1wjtHhTILO/tquxWVgCFZtAcQjD1of5DCiR2EG6R X0hyKgPZ2e+T4KuFsXGp0wOPQ1i/3ek7Y7QQUd0dnvLMMglAbo3SRyhb+JpPgW0O QgoPkLSViYXHCvYCw8IQsu0iyDtYETMA6cyLyh6VairxVE9RZaSP1XDzvrU= -----END CERTIFICATE-----Generated at Sat Apr 5 10:57:49 2025 by rpki-client