$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/25bba307-7d0c-4072-9571-fcfab0c857b9.roa File: 25bba307-7d0c-4072-9571-fcfab0c857b9.roa (raw, json) Hash identifier: g4DiX956l8C/Z+yTeFOn4oC1Lx+eXZ8T35ncUhg2tOY= Subject key identifier: 63:16:C2:1D:39:57:C6:47:94:58:4F:24:51:33:E8:08:A2:6C:47:D1 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 023F8142CE76BFC9FDDCC65BC9C9054678B812F9 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/25bba307-7d0c-4072-9571-fcfab0c857b9.roa Signing time: Fri 18 Apr 2025 15:21:26 +0000 ROA not before: Fri 18 Apr 2025 15:21:26 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.56.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:3f:81:42:ce:76:bf:c9:fd:dc:c6:5b:c9:c9:05:46:78:b8:12:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 18 15:21:26 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=cbeed1df816be38fd51b54f5b81951bac6e3ee6f899cb72568ba2155ca18727f, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:76:64:30:8c:e8:46:2e:7c:26:71:9e:e4:a3: cb:27:91:3e:3b:70:91:f2:3b:bd:d5:a3:54:8e:f7: 6e:5f:45:c7:58:76:91:0d:ca:f3:aa:3f:ea:77:c2: 8e:bf:5a:7e:2c:35:b3:e2:68:bc:03:f3:26:54:48: 8c:56:cd:dd:4b:10:de:f2:ee:e3:91:4b:bd:c5:52: 5a:77:e2:2d:fe:2f:5a:da:f8:6d:0f:fe:a8:ca:1f: 29:96:2b:a7:38:31:e0:0b:47:b2:f4:9e:71:bf:46: 35:8b:85:33:f6:dd:d8:1e:96:a9:47:06:1e:9f:fa: e6:ca:46:5a:53:78:67:32:70:0d:49:27:23:11:f8: 45:47:34:8e:f6:b8:5d:ba:9c:22:74:47:0c:e2:a1: c5:55:c4:57:46:0a:82:da:b9:59:74:07:a6:45:db: 4c:78:33:b4:45:57:e1:cf:84:92:7b:0f:eb:0b:18: 93:13:2e:b9:86:8b:4d:d6:25:1c:e8:a2:62:98:6a: f1:9a:9b:7e:65:92:df:0c:ca:92:7e:50:64:9f:64: 10:4d:6b:52:0e:8e:2a:28:6b:6b:99:8b:dd:b8:dc: af:24:55:cc:8b:aa:ef:9f:6d:96:74:40:1a:c4:08: 39:ad:f4:82:fc:14:e2:e1:2a:66:82:c1:1b:b5:e6: cf:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:16:C2:1D:39:57:C6:47:94:58:4F:24:51:33:E8:08:A2:6C:47:D1 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/25bba307-7d0c-4072-9571-fcfab0c857b9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.56.0.0/19 Signature Algorithm: sha256WithRSAEncryption 3f:57:d2:b6:70:b0:d5:3a:6d:e5:b6:53:37:eb:de:4f:14:1e: 86:00:80:3a:9f:fe:22:f8:ca:ce:8f:bf:3a:30:69:06:e8:7d: 0b:3d:93:b8:5c:76:90:34:ae:e3:fd:c2:6a:6d:b5:d5:11:b8: fc:7c:56:35:41:ee:2b:b8:5c:b9:47:99:ef:eb:ec:b4:14:9c: 08:64:b5:80:cd:26:52:50:0e:01:0f:72:74:ad:fd:ca:88:ff: 28:e0:ad:5a:39:36:e4:ee:65:83:4a:5d:20:45:71:42:f2:92: e1:66:6d:8a:a1:be:47:c5:66:81:7e:06:82:57:01:3a:af:30: a9:2c:09:21:5e:c7:7c:63:cd:b1:dc:15:45:ef:43:01:58:04: 6b:f5:da:95:4b:fc:2f:1b:71:b5:1c:4e:2d:2d:c1:5c:88:4c: 94:25:f4:7d:9a:a2:b9:7c:43:89:43:d1:d9:e8:75:f3:b7:92: 44:fc:b1:0d:2b:99:bd:9c:0b:bf:45:2e:39:98:2a:f5:99:c6: 7c:e6:33:e8:9a:a3:ed:fa:a8:c5:63:be:90:84:7b:d7:89:0f: a5:81:21:2e:af:da:2e:5d:73:15:3e:6b:fe:a0:0a:97:ed:84: ff:ad:ff:3c:37:76:2a:5c:af:d5:f8:0c:1c:53:a7:76:41:3d: fc:74:18:9d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAj+BQs52v8n93MZbyckFRni4EvkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE4MTUyMTI2WhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYmVlZDFkZjgxNmJlMzhmZDUxYjU0ZjViODE5NTFiYWM2 ZTNlZTZmODk5Y2I3MjU2OGJhMjE1NWNhMTg3MjdmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDwdmQwjOhGLnwmcZ7ko8snkT47cJHyO73Vo1SO925fRcdY dpENyvOqP+p3wo6/Wn4sNbPiaLwD8yZUSIxWzd1LEN7y7uORS73FUlp34i3+L1ra +G0P/qjKHymWK6c4MeALR7L0nnG/RjWLhTP23dgelqlHBh6f+ubKRlpTeGcycA1J JyMR+EVHNI72uF26nCJ0RwziocVVxFdGCoLauVl0B6ZF20x4M7RFV+HPhJJ7D+sL GJMTLrmGi03WJRzoomKYavGam35lkt8MypJ+UGSfZBBNa1IOjiooa2uZi9243K8k VcyLqu+fbZZ0QBrECDmt9IL8FOLhKmaCwRu15s9rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYxbCHTlXxkeUWE8kUTPoCKJsR9EwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzI1YmJhMzA3LTdkMGMtNDA3Mi05NTcxLWZjZmFiMGM4NTdiOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU0OAAwDQYJKoZIhvcNAQELBQADggEBAD9X0rZwsNU6beW2Uzfr3k8UHoYA gDqf/iL4ys6PvzowaQbofQs9k7hcdpA0ruP9wmpttdURuPx8VjVB7iu4XLlHme/r 7LQUnAhktYDNJlJQDgEPcnSt/cqI/yjgrVo5NuTuZYNKXSBFcULykuFmbYqhvkfF ZoF+BoJXATqvMKksCSFex3xjzbHcFUXvQwFYBGv12pVL/C8bcbUcTi0twVyITJQl 9H2aorl8Q4lD0dnodfO3kkT8sQ0rmb2cC79FLjmYKvWZxnzmM+iao+36qMVjvpCE e9eJD6WBIS6v2i5dcxU+a/6gCpfthP+t/zw3dipcr9X4DBxTp3ZBPfx0GJ0= -----END CERTIFICATE-----Generated at Fri May 9 16:11:54 2025 by rpki-client