$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/05d77566-f204-42b4-b2e2-f7a8e8157582.roa File: 05d77566-f204-42b4-b2e2-f7a8e8157582.roa (raw, json) Hash identifier: jsdFCeeHbHFxQ6xfNGIdXlDDLfEiTjRXxY7uHHpDpug= Subject key identifier: 85:E5:CA:70:89:56:49:87:27:0B:9D:A3:15:38:FC:62:B4:54:CF:17 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7E9FB38DF00109C8A5951CEAF91FB0DE4F1DF8F6 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/05d77566-f204-42b4-b2e2-f7a8e8157582.roa Signing time: Fri 09 May 2025 00:51:52 +0000 ROA not before: Fri 09 May 2025 00:51:52 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.132.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:9f:b3:8d:f0:01:09:c8:a5:95:1c:ea:f9:1f:b0:de:4f:1d:f8:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 9 00:51:52 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=d9dd53b0353b80660749c53f4148ec47440f0b8ec4a8077c372b35f90ac8c6a3, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:80:e2:46:2f:7f:6b:62:4e:77:07:17:17:e1: 16:4e:04:02:80:d9:1e:46:ed:59:79:8d:9c:af:5c: c4:06:84:77:c2:90:04:c5:e4:f4:90:92:55:95:05: ff:f8:90:73:7f:bb:cc:83:96:26:64:cd:96:1e:69: de:9e:8c:8d:af:73:39:c4:0e:5c:46:69:2b:cf:f1: a1:4c:68:60:04:e3:b4:5f:bf:c8:5e:a3:cf:3e:74: 57:94:b0:7f:28:f0:db:61:b6:1f:d6:7e:59:24:0f: 94:4e:5f:3d:66:24:e7:8b:e8:68:7d:da:ae:e9:6b: 01:df:c8:a3:c3:5e:d6:cf:c3:7a:6d:18:ad:b5:0e: bc:39:95:da:ba:49:e7:c1:ca:d1:51:00:9d:14:44: b7:bd:e5:1a:bc:81:a7:33:b2:43:a7:ca:ed:54:1b: a2:37:14:27:20:9e:97:98:2b:4a:f2:d4:fe:7a:36: e8:ed:9f:28:76:f4:e9:30:e7:9e:41:5d:21:bc:54: 50:9b:7b:74:c7:d5:99:fb:88:1c:34:6b:ec:6e:3c: c5:59:03:44:4d:8a:bc:01:25:bd:92:0c:df:a5:75: cf:cb:f0:20:ce:97:f2:dc:3f:84:70:09:6f:96:bd: 5f:d2:77:58:75:ef:86:3b:48:15:b1:fb:10:8f:fc: c0:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:E5:CA:70:89:56:49:87:27:0B:9D:A3:15:38:FC:62:B4:54:CF:17 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/05d77566-f204-42b4-b2e2-f7a8e8157582.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.132.0.0/14 Signature Algorithm: sha256WithRSAEncryption 0a:2e:41:05:b6:ab:66:d5:cf:7c:14:21:d9:bd:de:c9:36:2f: 89:56:76:45:e9:7e:85:6a:ff:a7:f3:61:43:9c:06:a1:7b:51: ca:f1:64:d6:f2:ff:0d:5f:57:3d:c1:89:79:99:a5:d3:ce:18: 6b:3e:e0:a1:20:d2:5f:82:f7:8a:71:49:66:12:98:b7:01:49: e9:92:2e:c9:08:62:33:7b:30:66:ee:2d:b8:a1:c9:98:cf:5e: 42:be:d0:8a:30:87:f9:ef:92:23:c7:ee:ad:3e:fa:8b:b3:0b: db:6e:94:e0:cc:94:26:08:2d:df:0c:f5:40:75:ef:3f:30:a8: 7f:2b:db:c2:22:51:c8:97:e1:58:09:81:5c:e3:f5:24:df:6b: 6e:83:5e:f3:1b:df:b6:25:7e:2c:e3:75:34:4f:4e:82:f0:65: 0f:1f:bf:a2:ab:c3:19:66:5b:39:46:5e:7b:95:21:ee:40:c7: 05:b9:ce:9e:28:7a:d7:c3:71:d1:c6:8f:a1:b9:1d:b7:28:44: 5d:9e:db:a7:e3:32:d6:de:df:84:00:d6:f5:2e:d6:da:25:3e: 32:b1:c8:d3:68:45:93:10:18:f2:75:38:ea:21:10:2b:fe:5c: 42:0a:95:d4:7c:99:3d:c0:ca:9e:6f:b9:30:6e:22:89:4b:92: cf:f2:c4:b9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUfp+zjfABCcillRzq+R+w3k8d+PYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTA5MDA1MTUyWhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkOWRkNTNiMDM1M2I4MDY2MDc0OWM1M2Y0MTQ4ZWM0NzQ0 MGYwYjhlYzRhODA3N2MzNzJiMzVmOTBhYzhjNmEzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8gOJGL39rYk53BxcX4RZOBAKA2R5G7Vl5jZyvXMQGhHfC kATF5PSQklWVBf/4kHN/u8yDliZkzZYead6ejI2vcznEDlxGaSvP8aFMaGAE47Rf v8heo88+dFeUsH8o8Nthth/WflkkD5ROXz1mJOeL6Gh92q7pawHfyKPDXtbPw3pt GK21Drw5ldq6SefBytFRAJ0URLe95Rq8gaczskOnyu1UG6I3FCcgnpeYK0ry1P56 Nujtnyh29Okw555BXSG8VFCbe3TH1Zn7iBw0a+xuPMVZA0RNirwBJb2SDN+ldc/L 8CDOl/LcP4RwCW+WvV/Sd1h174Y7SBWx+xCP/MBtAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUheXKcIlWSYcnC52jFTj8YrRUzxcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzA1ZDc3NTY2LWYyMDQtNDJiNC1iMmUyLWY3YThlODE1NzU4Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIDhDANBgkqhkiG9w0BAQsFAAOCAQEACi5BBbarZtXPfBQh2b3eyTYviVZ2 Rel+hWr/p/NhQ5wGoXtRyvFk1vL/DV9XPcGJeZml084Yaz7goSDSX4L3inFJZhKY twFJ6ZIuyQhiM3swZu4tuKHJmM9eQr7QijCH+e+SI8furT76i7ML226U4MyUJggt 3wz1QHXvPzCofyvbwiJRyJfhWAmBXOP1JN9rboNe8xvftiV+LON1NE9OgvBlDx+/ oqvDGWZbOUZee5Uh7kDHBbnOnih618Nx0caPobkdtyhEXZ7bp+My1t7fhADW9S7W 2iU+MrHI02hFkxAY8nU46iEQK/5cQgqV1HyZPcDKnm+5MG4iiUuSz/LEuQ== -----END CERTIFICATE-----Generated at Fri May 9 16:24:47 2025 by rpki-client