$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00096550-9146-49e8-a27a-307c65c0661e.roa File: 00096550-9146-49e8-a27a-307c65c0661e.roa (raw, json) Hash identifier: 7fvHUnI/AhQVkDvdd81LXY/oKnmX4SkV8VeiPAom5/s= Subject key identifier: FE:C0:42:E7:16:33:5C:40:97:01:49:59:D0:F2:13:3B:C7:E8:DE:5B Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0270ADCC170FC2FE40F14CA1CDB0D579F5B61E09 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00096550-9146-49e8-a27a-307c65c0661e.roa Signing time: Fri 09 May 2025 15:41:12 +0000 ROA not before: Fri 09 May 2025 15:41:12 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.68.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:70:ad:cc:17:0f:c2:fe:40:f1:4c:a1:cd:b0:d5:79:f5:b6:1e:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 9 15:41:12 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=771f04897a9005348833515fa896a2f9aed9da94bd3fc4dbd3f4c414397e16cf, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:1d:52:72:f3:8a:fe:5a:a6:55:3a:77:fd:b0: 18:a2:0c:fc:65:16:d6:90:34:8c:67:59:7c:ee:65: 0b:ea:83:45:36:1f:db:18:67:61:f9:d3:c5:9a:1b: ed:7b:d7:2e:f0:8e:7d:c3:77:4f:59:07:45:97:05: 02:6a:1c:ce:4f:7b:3b:f3:60:a9:ea:57:5e:d5:d8: 2d:b8:3e:42:ba:91:94:2a:b0:bc:f3:89:5c:3b:b7: bb:fb:1d:07:63:7f:39:0c:86:9e:5c:07:28:27:a0: e4:4a:7e:fc:45:08:e9:17:2c:6c:b0:b3:3e:61:84: 96:38:d0:fe:13:10:84:db:35:ff:6d:3e:20:0b:f3: 2b:a1:01:06:71:69:40:46:15:50:0e:7c:99:c5:42: 4c:26:8a:81:23:f5:92:a2:2f:71:a0:e1:5c:c7:01: 4d:38:da:2a:22:91:cb:16:b4:05:7d:66:a7:c4:3c: be:4a:c6:17:48:bd:11:ce:de:43:b4:0f:f6:94:cb: 69:c1:df:c1:31:15:42:c9:f5:23:3b:cc:32:e4:61: d7:62:be:7e:46:6e:54:d8:49:82:a7:3c:92:e3:4d: 4f:69:bd:70:2c:f1:42:e5:86:39:de:ae:42:e1:07: 10:2a:29:dc:3d:4e:7d:d7:71:c1:5b:ee:dd:bf:cc: 63:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:C0:42:E7:16:33:5C:40:97:01:49:59:D0:F2:13:3B:C7:E8:DE:5B X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00096550-9146-49e8-a27a-307c65c0661e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.68.0.0/15 Signature Algorithm: sha256WithRSAEncryption 88:7a:19:17:a3:82:f9:5c:87:b0:2c:6f:65:eb:82:e7:8d:63: 02:4d:79:8a:24:54:11:a8:04:bd:4a:d8:27:16:08:58:9f:e7: 0b:01:9f:2f:8b:d6:70:a0:53:f3:12:36:29:a7:0d:bd:73:7c: c1:af:b6:00:a9:01:0b:b1:f3:52:0a:fc:51:39:8e:1f:be:0f: 31:2f:55:b2:fe:97:c0:a5:fc:15:de:32:b0:e0:78:42:b9:ff: 12:15:e2:99:8b:bb:d9:c6:68:a5:c0:ab:96:ed:90:09:27:9f: c7:22:b5:e0:d9:7d:f0:f5:d9:0c:91:70:3e:36:e8:64:44:1f: 7b:6b:a5:25:4b:c3:df:c9:ac:d1:b6:17:00:69:e3:30:53:d1: 62:44:1a:98:d1:83:99:6c:9c:6d:a9:23:b8:79:f3:3f:1d:d9: de:57:85:45:85:b4:ad:e5:23:c3:95:65:d7:c4:31:1f:25:25: a3:cd:54:5a:75:74:bc:79:8e:f6:8d:cf:e4:53:2c:a1:67:d2: 96:5b:01:54:42:af:72:c4:b8:51:fa:61:59:c7:fc:d0:b4:45: 76:10:33:73:a1:b8:f6:be:d0:e9:cc:c3:64:f7:2e:85:c1:69: 27:2a:dd:39:07:66:97:4f:68:5a:75:0b:7f:e2:22:e3:8f:3a: 70:b0:e0:d8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAnCtzBcPwv5A8UyhzbDVefW2HgkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTA5MTU0MTEyWhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NzFmMDQ4OTdhOTAwNTM0ODgzMzUxNWZhODk2YTJmOWFl ZDlkYTk0YmQzZmM0ZGJkM2Y0YzQxNDM5N2UxNmNmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUHVJy84r+WqZVOnf9sBiiDPxlFtaQNIxnWXzuZQvqg0U2 H9sYZ2H508WaG+171y7wjn3Dd09ZB0WXBQJqHM5PezvzYKnqV17V2C24PkK6kZQq sLzziVw7t7v7HQdjfzkMhp5cBygnoORKfvxFCOkXLGywsz5hhJY40P4TEITbNf9t PiAL8yuhAQZxaUBGFVAOfJnFQkwmioEj9ZKiL3Gg4VzHAU042ioikcsWtAV9ZqfE PL5KxhdIvRHO3kO0D/aUy2nB38ExFULJ9SM7zDLkYddivn5GblTYSYKnPJLjTU9p vXAs8ULlhjnerkLhBxAqKdw9Tn3XccFb7t2/zGMLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/sBC5xYzXECXAUlZ0PITO8fo3lswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzAwMDk2NTUwLTkxNDYtNDllOC1hMjdhLTMwN2M2NWMwNjYxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwE0RDANBgkqhkiG9w0BAQsFAAOCAQEAiHoZF6OC+VyHsCxvZeuC541jAk15 iiRUEagEvUrYJxYIWJ/nCwGfL4vWcKBT8xI2KacNvXN8wa+2AKkBC7HzUgr8UTmO H74PMS9Vsv6XwKX8Fd4ysOB4Qrn/EhXimYu72cZopcCrlu2QCSefxyK14Nl98PXZ DJFwPjboZEQfe2ulJUvD38ms0bYXAGnjMFPRYkQamNGDmWycbakjuHnzPx3Z3leF RYW0reUjw5Vl18QxHyUlo81UWnV0vHmO9o3P5FMsoWfSllsBVEKvcsS4UfphWcf8 0LRFdhAzc6G49r7Q6czDZPcuhcFpJyrdOQdml09oWnULf+Ii4486cLDg2A== -----END CERTIFICATE-----Generated at Fri May 9 17:52:57 2025 by rpki-client