$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f8f3c1ea-ed7d-40e9-9e28-dac36da3ad6d.roa File: f8f3c1ea-ed7d-40e9-9e28-dac36da3ad6d.roa (raw, json) Hash identifier: P8JjmJI8CDdaBZd6nQ9DJTVXZVTa0fJKvsIIKaLgOG4= Subject key identifier: 9E:62:FE:B0:99:F5:0B:8E:E4:0E:F0:36:1B:C9:56:5C:73:CA:D9:46 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 759FE2912BB98C4D410BA5D3C5CF66965A725814 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f8f3c1ea-ed7d-40e9-9e28-dac36da3ad6d.roa Signing time: Sat 15 Mar 2025 00:50:12 +0000 ROA not before: Sat 15 Mar 2025 00:50:12 +0000 ROA not after: Sat 19 Apr 2025 23:59:59 +0000 asID: 14618 IP address blocks: 72.21.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 05 Apr 2025 23:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:9f:e2:91:2b:b9:8c:4d:41:0b:a5:d3:c5:cf:66:96:5a:72:58:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Mar 15 00:50:12 2025 GMT Not After : Apr 19 23:59:59 2025 GMT Subject: CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5e:04:db:be:4a:da:08:4c:6b:8d:b7:cd:f0: 6f:b5:5e:c1:9e:a1:ef:41:de:ce:12:50:67:79:83: 5e:38:e4:78:32:ef:d8:68:03:c0:4e:c9:e7:62:fb: d8:e5:26:f4:22:cf:b3:01:75:ed:bf:96:2c:c0:0b: 25:34:fb:ee:c1:f8:3a:c2:01:48:ba:3c:4f:14:08: 8c:d3:15:45:ea:1e:b6:87:55:08:64:15:25:a8:12: cc:af:17:c9:88:d8:c6:48:c7:fc:b3:0d:32:22:29: 83:ea:60:1d:7a:3f:c3:e9:fe:84:0b:e2:bd:fe:12: e0:d3:aa:23:08:f3:15:98:9e:db:fc:f9:db:eb:fe: f7:30:1f:4a:43:ae:87:e6:0e:6a:98:a8:b1:54:47: 83:f5:1e:b3:16:77:7d:e1:f4:70:52:80:90:1f:3c: 79:5e:f4:be:82:e0:b9:fc:ff:9b:00:8e:54:0c:30: f3:3b:37:65:b6:89:9f:cf:81:a4:25:33:95:b3:da: 27:f6:5f:03:0c:ff:c5:32:3e:ca:ff:2f:7c:bd:d5: 23:93:01:f6:b4:5e:48:03:60:b9:ac:3a:ea:93:b7: df:cf:62:3f:8f:c9:79:a8:3c:67:61:dc:b2:d9:ce: e5:c9:ef:80:35:d4:3b:2e:f1:37:72:45:17:56:6e: 1d:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:62:FE:B0:99:F5:0B:8E:E4:0E:F0:36:1B:C9:56:5C:73:CA:D9:46 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f8f3c1ea-ed7d-40e9-9e28-dac36da3ad6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.21.192.0/19 Signature Algorithm: sha256WithRSAEncryption b3:95:9e:92:d0:d1:07:aa:ea:5b:6d:0d:39:66:4f:fb:88:28: 45:a0:c0:9b:89:bb:8c:07:d5:16:0e:27:a8:43:3c:c7:60:4b: 5b:65:84:03:a4:b9:0e:08:c6:2e:84:56:1e:60:75:19:2a:5a: 6e:a3:bd:88:ee:35:10:0a:52:ed:e6:2d:03:bb:c7:21:c4:22: a3:f3:8b:43:92:79:eb:46:c5:57:59:03:25:f0:27:a9:4d:77: 9d:ea:8a:61:5c:9c:de:a6:c9:4c:4b:3f:a1:86:81:11:c9:11: a3:08:ab:0a:d6:b2:cf:4c:0d:ce:88:33:fe:15:b9:d7:7a:4f: 35:cc:be:7e:3a:dd:74:0a:43:3a:db:01:22:91:8d:c4:5f:a1: 74:94:6c:d1:a6:e9:99:08:31:ab:d7:03:a6:f1:cc:27:b8:57: fc:43:6d:e2:99:81:e6:f7:30:e3:fb:92:47:50:b4:f7:6c:ef: aa:00:31:11:c1:cf:42:39:4d:1c:5f:41:bc:6d:1c:7b:90:41: 11:e2:9b:67:60:fb:94:52:ed:8c:77:78:2b:10:29:11:95:38: f6:3b:89:f9:2e:cf:07:4e:75:d2:7e:62:b3:ba:77:3e:38:77: 91:25:2d:ee:a7:ea:51:2e:6b:d0:f1:4e:bc:67:a8:43:e0:c4: 2c:e6:df:51 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdZ/ikSu5jE1BC6XTxc9mllpyWBQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwMzE1MDA1MDEyWhcNMjUwNDE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZmI5MGQwZTViOWM0MDM5NjFkOTZiZTA4MmIxNTdiZDNj MTZkOTJmYjc2ZmYxYWE1NmU4ZjM0NDc4ZDY2ZmZmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVXgTbvkraCExrjbfN8G+1XsGeoe9B3s4SUGd5g1445Hgy 79hoA8BOyedi+9jlJvQiz7MBde2/lizACyU0++7B+DrCAUi6PE8UCIzTFUXqHraH VQhkFSWoEsyvF8mI2MZIx/yzDTIiKYPqYB16P8Pp/oQL4r3+EuDTqiMI8xWYntv8 +dvr/vcwH0pDrofmDmqYqLFUR4P1HrMWd33h9HBSgJAfPHle9L6C4Ln8/5sAjlQM MPM7N2W2iZ/PgaQlM5Wz2if2XwMM/8UyPsr/L3y91SOTAfa0XkgDYLmsOuqTt9/P Yj+PyXmoPGdh3LLZzuXJ74A11Dsu8TdyRRdWbh0xAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnmL+sJn1C47kDvA2G8lWXHPK2UYwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2Y4ZjNjMWVhLWVkN2QtNDBlOS05ZTI4LWRhYzM2ZGEzYWQ2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVIFcAwDQYJKoZIhvcNAQELBQADggEBALOVnpLQ0Qeq6lttDTlmT/uIKEWg wJuJu4wH1RYOJ6hDPMdgS1tlhAOkuQ4Ixi6EVh5gdRkqWm6jvYjuNRAKUu3mLQO7 xyHEIqPzi0OSeetGxVdZAyXwJ6lNd53qimFcnN6myUxLP6GGgRHJEaMIqwrWss9M Dc6IM/4Vudd6TzXMvn463XQKQzrbASKRjcRfoXSUbNGm6ZkIMavXA6bxzCe4V/xD beKZgeb3MOP7kkdQtPds76oAMRHBz0I5TRxfQbxtHHuQQRHim2dg+5RS7Yx3eCsQ KRGVOPY7ifkuzwdOddJ+YrO6dz44d5ElLe6n6lEua9DxTrxnqEPgxCzm31E= -----END CERTIFICATE-----Generated at Fri Apr 4 23:26:53 2025 by rpki-client