$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00476d6f-40ff-4135-9a46-906f4f8898c0.roa File: 00476d6f-40ff-4135-9a46-906f4f8898c0.roa (raw, json) Hash identifier: k8en8BwLhHFoRj0YAfhpLmXMSQVwbu9uJv8Uk0r31/w= Subject key identifier: B2:BE:D3:29:84:FE:A1:0B:BC:3E:56:90:33:7D:C6:EF:F7:C8:3A:C1 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 434C43FFBC040DA537124FC38F40584F892D799D Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00476d6f-40ff-4135-9a46-906f4f8898c0.roa Signing time: Fri 09 May 2025 00:50:13 +0000 ROA not before: Fri 09 May 2025 00:50:13 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 3.236.32.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:4c:43:ff:bc:04:0d:a5:37:12:4f:c3:8f:40:58:4f:89:2d:79:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 9 00:50:13 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=9457347275d1177c6402a7f6c7645ec67b423c6e129f08686bfa9985a3cecf52, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:2e:78:9a:9b:f9:3b:ab:59:fb:db:c5:79:73: ee:78:75:60:f1:99:77:b0:0e:a4:6c:2b:d0:1a:36: 41:29:4c:f9:4f:2f:6c:44:18:62:49:27:55:59:b9: 75:79:56:f4:cd:e9:8d:a2:de:5a:3b:54:68:ab:8a: bb:84:3a:90:03:d4:56:5a:2b:2c:9e:f4:1f:cd:ba: 72:a9:dd:f3:8e:cb:37:9a:f8:9b:50:a3:34:39:23: 39:2f:8e:13:d1:b9:10:cd:1b:5a:8c:4a:80:27:4d: 71:ae:24:e3:60:d8:ed:64:74:31:ab:20:d7:7e:df: b8:5a:e5:18:bc:68:eb:3c:4f:39:5b:36:82:7d:4b: 3a:c4:05:88:74:b1:c3:ab:56:da:bd:95:80:4b:b3: 74:62:29:5f:a8:79:df:4e:07:af:16:01:4c:19:15: ef:28:bf:66:5e:97:b0:31:bf:32:c5:73:a3:ea:b3: ff:43:e9:8a:0f:12:64:a1:b0:50:7a:b1:83:c6:52: 0b:28:e3:7f:b6:37:c0:62:39:41:06:51:bb:28:b3: 9f:8a:12:be:f2:2b:2d:92:f9:7f:b9:19:36:fb:d3: 26:c8:16:71:e9:33:5e:9a:a2:f6:60:89:13:b4:01: 29:57:32:66:c0:02:23:48:2e:94:12:d0:06:bb:5b: 76:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:BE:D3:29:84:FE:A1:0B:BC:3E:56:90:33:7D:C6:EF:F7:C8:3A:C1 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00476d6f-40ff-4135-9a46-906f4f8898c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.236.32.0/22 Signature Algorithm: sha256WithRSAEncryption 33:e4:a0:2f:63:99:6b:90:20:7f:cb:ae:d1:02:95:27:01:b1: 74:26:b3:8c:13:9b:7f:05:c9:fa:d7:8e:05:a0:85:cc:51:e8: 54:9a:90:7b:20:66:86:42:a5:2a:57:44:3f:2c:ba:73:18:23: f0:14:f1:02:38:ff:6c:36:87:da:05:09:25:8f:58:b0:68:95: 37:fd:06:a3:d6:65:81:a7:7c:5d:60:80:36:c0:2c:a7:24:78: 81:1a:2a:d1:88:1f:b3:f2:53:ff:bb:bc:28:2d:73:3d:90:33: 15:62:49:d0:8b:01:de:6e:41:5f:eb:28:61:d7:7a:d8:75:a1: d0:3b:16:69:fe:74:d6:f6:ac:d0:c4:56:6c:f7:4e:88:00:5e: e9:9b:5f:be:fb:4f:16:ea:3a:ee:02:8b:41:6e:93:08:09:4c: cc:f4:83:a9:74:81:40:cb:03:3a:8c:4e:1c:eb:79:44:69:6f: 52:4e:07:31:32:cd:30:2b:c1:b3:0b:40:c8:47:b8:cb:5e:02: 70:f9:cd:4f:7b:07:67:ae:b2:d7:43:36:16:66:ac:52:19:24: a2:63:5d:70:b5:d9:ee:e6:e7:bf:cc:61:80:70:83:02:17:ed: 27:49:a3:a4:b6:cc:32:c6:05:9e:23:19:45:14:1b:7c:ae:d2: c2:78:4b:07 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQ0xD/7wEDaU3Ek/Dj0BYT4kteZ0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTA5MDA1MDEzWhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NDU3MzQ3Mjc1ZDExNzdjNjQwMmE3ZjZjNzY0NWVjNjdi NDIzYzZlMTI5ZjA4Njg2YmZhOTk4NWEzY2VjZjUyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdLniam/k7q1n728V5c+54dWDxmXewDqRsK9AaNkEpTPlP L2xEGGJJJ1VZuXV5VvTN6Y2i3lo7VGiriruEOpAD1FZaKyye9B/NunKp3fOOyzea +JtQozQ5IzkvjhPRuRDNG1qMSoAnTXGuJONg2O1kdDGrINd+37ha5Ri8aOs8Tzlb NoJ9SzrEBYh0scOrVtq9lYBLs3RiKV+oed9OB68WAUwZFe8ov2Zel7AxvzLFc6Pq s/9D6YoPEmShsFB6sYPGUgso43+2N8BiOUEGUbsos5+KEr7yKy2S+X+5GTb70ybI FnHpM16aovZgiRO0ASlXMmbAAiNILpQS0Aa7W3anAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsr7TKYT+oQu8PlaQM33G7/fIOsEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzAwNDc2ZDZmLTQwZmYtNDEzNS05YTQ2LTkwNmY0Zjg4OThjMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAID7CAwDQYJKoZIhvcNAQELBQADggEBADPkoC9jmWuQIH/LrtEClScBsXQm s4wTm38FyfrXjgWghcxR6FSakHsgZoZCpSpXRD8sunMYI/AU8QI4/2w2h9oFCSWP WLBolTf9BqPWZYGnfF1ggDbALKckeIEaKtGIH7PyU/+7vCgtcz2QMxViSdCLAd5u QV/rKGHXeth1odA7Fmn+dNb2rNDEVmz3TogAXumbX777TxbqOu4Ci0FukwgJTMz0 g6l0gUDLAzqMThzreURpb1JOBzEyzTArwbMLQMhHuMteAnD5zU97B2eustdDNhZm rFIZJKJjXXC12e7m57/MYYBwgwIX7SdJo6S2zDLGBZ4jGUUUG3yu0sJ4Swc= -----END CERTIFICATE-----Generated at Fri May 9 15:57:22 2025 by rpki-client