$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/29b01bc5-78ea-4f2b-b197-f976e0a8391d.roa File: 29b01bc5-78ea-4f2b-b197-f976e0a8391d.roa (raw, json) Hash identifier: BH735o5pdxJe2RJsGgfOzCFoYAw7mIh2JsO6StRVuvk= Subject key identifier: 8D:76:E6:2E:E5:4E:00:FF:02:C0:B9:88:23:61:05:89:F3:02:18:83 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 03A6DE185B35B58D22DF361B8F8B4FA2FFC62505 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/29b01bc5-78ea-4f2b-b197-f976e0a8391d.roa Signing time: Tue 20 May 2025 16:21:39 +0000 ROA not before: Tue 20 May 2025 16:21:39 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 129.160.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:a6:de:18:5b:35:b5:8d:22:df:36:1b:8f:8b:4f:a2:ff:c6:25:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 20 16:21:39 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=59b6088cd80c6e55ee2faf9a40d8ee7b4094a5644b5dfba17cc74a3282e76f31, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:96:90:e7:93:59:3e:71:b9:15:f6:93:18:28: 1a:28:c9:55:1d:ce:9d:78:fa:c6:c4:1c:5f:8a:9a: 85:d5:63:1b:c2:2e:f8:3c:48:dd:a4:5a:0e:05:be: b3:bc:79:93:fb:3b:aa:3c:6d:6b:00:3c:ce:37:8f: 69:0e:9d:9d:97:2f:fb:ca:f3:a7:61:1b:27:ee:56: 9a:62:c0:30:98:65:10:9c:1a:7d:6c:1d:54:a2:a9: 6f:18:0c:e8:b8:ed:10:b6:5c:e8:8e:8a:80:4e:32: 06:ea:96:3c:3e:4e:2a:d7:4c:24:09:78:cc:cd:38: bb:27:e8:16:d5:ce:17:ad:7e:c6:7f:44:00:db:3c: 7b:46:81:b3:fa:ca:9f:ba:25:b0:16:c1:4c:aa:4f: 1b:88:a0:a9:06:63:a3:ca:e2:60:ca:e1:0c:67:73: 57:5b:16:5c:0f:51:8e:ae:2b:37:46:68:ad:97:ef: b6:be:a1:01:5c:18:8e:c4:72:2a:50:cc:73:70:0e: 31:68:ca:16:7f:1a:56:2b:df:e5:1f:e9:58:44:1b: b5:9e:f1:76:08:50:28:57:32:23:26:fa:c4:e2:c8: 72:b4:6a:c5:37:f2:10:b0:b5:d2:80:f6:19:ee:fc: 4b:92:01:44:08:10:65:fe:ae:56:74:a1:d9:ab:d1: 66:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:76:E6:2E:E5:4E:00:FF:02:C0:B9:88:23:61:05:89:F3:02:18:83 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/29b01bc5-78ea-4f2b-b197-f976e0a8391d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 129.160.0.0/16 Signature Algorithm: sha256WithRSAEncryption 34:81:8e:13:9d:5c:3d:0f:2d:36:98:b1:f0:bb:a3:0a:af:ec: af:15:5d:d6:9f:d9:ca:33:20:f4:55:a5:98:79:84:ea:f4:c3: 6c:07:de:80:de:30:52:cc:12:cb:4d:bd:5f:e7:19:88:b2:09: a6:3a:cb:8b:20:3b:a5:7c:76:41:9e:66:e4:d1:1f:2c:d2:68: d9:2a:33:3d:2c:19:b9:ee:9c:bd:1f:f5:73:01:aa:2b:9b:eb: 85:cc:ac:41:b8:db:96:c3:ff:68:f9:9a:30:79:f9:3a:ab:2d: 59:c5:c9:56:25:97:8c:65:30:ca:10:a6:1a:1e:74:41:24:bf: 1e:6c:c7:a1:42:64:d0:b1:75:5d:75:c8:c1:68:00:83:b5:cf: 82:54:d1:cd:ee:f9:21:c8:e4:23:a2:e5:af:e4:48:f1:b6:11: 31:6d:db:c0:31:cc:57:c9:60:60:f4:be:c4:84:d6:c2:e6:94: 38:95:f9:8f:ff:c9:b6:c6:4a:ff:9d:df:63:54:73:6d:11:35: 6e:81:75:44:cd:cc:09:48:ef:28:09:47:e8:9f:62:78:c9:34: 07:57:31:ae:6e:e5:97:cf:06:35:49:94:e6:9d:55:df:1c:ff: bd:7a:a3:5b:2f:ad:9e:6b:f8:42:60:e0:03:e0:96:64:45:84: f1:14:61:a9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUA6beGFs1tY0i3zYbj4tPov/GJQUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTIwMTYyMTM5WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1OWI2MDg4Y2Q4MGM2ZTU1ZWUyZmFmOWE0MGQ4ZWU3YjQw OTRhNTY0NGI1ZGZiYTE3Y2M3NGEzMjgyZTc2ZjMxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMlpDnk1k+cbkV9pMYKBooyVUdzp14+sbEHF+KmoXVYxvC Lvg8SN2kWg4FvrO8eZP7O6o8bWsAPM43j2kOnZ2XL/vK86dhGyfuVppiwDCYZRCc Gn1sHVSiqW8YDOi47RC2XOiOioBOMgbqljw+TirXTCQJeMzNOLsn6BbVzhetfsZ/ RADbPHtGgbP6yp+6JbAWwUyqTxuIoKkGY6PK4mDK4Qxnc1dbFlwPUY6uKzdGaK2X 77a+oQFcGI7EcipQzHNwDjFoyhZ/GlYr3+Uf6VhEG7We8XYIUChXMiMm+sTiyHK0 asU38hCwtdKA9hnu/EuSAUQIEGX+rlZ0odmr0WYRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUjXbmLuVOAP8CwLmII2EFifMCGIMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzI5YjAxYmM1LTc4ZWEtNGYyYi1iMTk3LWY5NzZlMGE4MzkxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCBoDANBgkqhkiG9w0BAQsFAAOCAQEANIGOE51cPQ8tNpix8LujCq/srxVd 1p/ZyjMg9FWlmHmE6vTDbAfegN4wUswSy029X+cZiLIJpjrLiyA7pXx2QZ5m5NEf LNJo2SozPSwZue6cvR/1cwGqK5vrhcysQbjblsP/aPmaMHn5OqstWcXJViWXjGUw yhCmGh50QSS/HmzHoUJk0LF1XXXIwWgAg7XPglTRze75IcjkI6Llr+RI8bYRMW3b wDHMV8lgYPS+xITWwuaUOJX5j//JtsZK/53fY1RzbRE1boF1RM3MCUjvKAlH6J9i eMk0B1cxrm7ll88GNUmU5p1V3xz/vXqjWy+tnmv4QmDgA+CWZEWE8RRhqQ== -----END CERTIFICATE-----Generated at Fri Jun 6 03:28:30 2025 by rpki-client