$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2b8ccb4f-0647-4860-bb15-14042040a7f2.roa File: 2b8ccb4f-0647-4860-bb15-14042040a7f2.roa (raw, json) Hash identifier: KWcHdKYO6h/gjRe7chPpXUcUNj7T9ovsFFGbkwFfJ8M= Subject key identifier: 63:DE:BC:49:E8:39:EB:6D:AF:29:A6:CA:91:ED:60:2C:5E:3B:70:14 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0E87DB8D42EE02001AF42743A471DB7B00A2C951 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2b8ccb4f-0647-4860-bb15-14042040a7f2.roa Signing time: Fri 09 May 2025 15:01:50 +0000 ROA not before: Fri 09 May 2025 15:01:50 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 3.83.168.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:87:db:8d:42:ee:02:00:1a:f4:27:43:a4:71:db:7b:00:a2:c9:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 9 15:01:50 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=c0b19a706d8433f0a5f978c5cf1288cbf7c43dd44d8f2a4734ae31de8cd6bf6a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:d7:6f:0c:7b:18:7f:2e:ca:d1:14:02:18:fe: f6:c4:6f:59:f3:7e:6c:8a:47:8c:3e:5e:be:45:af: 09:b8:e6:0f:98:42:5d:1d:6e:59:82:30:8e:1c:47: 88:eb:38:5c:35:7a:2f:36:4c:00:f6:92:9d:1d:bc: 31:fb:a0:fc:0d:f5:35:56:7d:7e:ef:fa:8b:d7:cf: 99:d9:a3:28:b0:a4:ab:ed:74:1b:d0:d7:28:98:ac: 89:f3:1d:cb:8c:59:49:e3:98:3c:ec:20:ba:fc:ac: d0:89:07:0a:9a:d9:b5:18:b0:83:d5:38:21:fb:5b: f6:5d:27:94:0c:05:a9:56:71:32:ea:2b:90:51:87: 51:45:15:8d:3e:9a:12:14:30:91:71:57:28:b9:a8: f7:8f:13:da:c3:8f:7a:60:c7:c1:21:1d:32:f1:e0: 01:29:a1:7c:c9:b7:ea:d8:52:65:00:d9:02:30:e3: 7a:46:82:2a:3c:5f:8d:47:04:3b:7c:2b:67:33:a6: fe:8e:82:a9:13:be:54:9c:32:5f:71:38:36:63:98: ed:85:ce:fb:84:0d:8b:07:79:fa:bc:dd:8e:e4:b9: e3:ad:ae:20:a9:24:88:d5:e7:66:25:39:e3:82:34: 9d:8b:e2:a9:7a:df:00:7a:c3:5c:b9:3b:d2:04:1d: c9:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:DE:BC:49:E8:39:EB:6D:AF:29:A6:CA:91:ED:60:2C:5E:3B:70:14 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2b8ccb4f-0647-4860-bb15-14042040a7f2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.83.168.0/22 Signature Algorithm: sha256WithRSAEncryption 86:99:56:99:df:d2:fe:95:22:bf:bf:19:e0:59:24:35:d3:ad: bc:e6:2c:f2:ac:80:ae:81:32:25:7e:74:a4:d5:f4:ab:97:f1: 0d:d1:b1:df:b5:81:a1:cd:8b:d6:39:08:97:91:62:c7:47:c9: 49:f5:7e:43:ff:14:86:07:c5:d4:08:db:72:de:e3:fc:2b:a9: 3f:7b:41:01:ce:2a:1a:5b:cd:18:ef:59:b0:de:8a:6f:0e:53: 6d:5d:0d:1d:db:10:7c:16:c4:20:1d:2b:06:6e:69:a9:7c:f9: 4e:38:29:1f:ee:0a:0a:25:a1:01:3b:b7:40:58:40:c0:8b:d1: a6:85:d5:d9:eb:b5:ca:56:1f:d3:d5:07:f5:fb:b1:45:77:fb: cc:5f:bd:5b:d4:88:c7:f7:7b:c2:42:b8:df:cb:88:d6:4f:e6: 70:7c:b3:6a:4d:50:81:52:a3:70:1e:80:f5:f4:3b:1e:6d:50: ec:14:9e:99:24:f1:7e:8f:e5:a7:a6:8c:b7:16:42:73:7b:9d: 7d:20:78:25:1e:ed:70:1d:af:46:10:6f:35:4c:1d:71:16:18: b6:e2:21:a7:12:9a:7a:79:f9:5c:0e:d7:44:93:2a:72:78:dc: b9:f8:35:58:60:b4:ea:0e:b8:7d:23:d3:76:0e:cb:d5:91:80: 1d:c7:80:8a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDofbjULuAgAa9CdDpHHbewCiyVEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTA5MTUwMTUwWhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMGIxOWE3MDZkODQzM2YwYTVmOTc4YzVjZjEyODhjYmY3 YzQzZGQ0NGQ4ZjJhNDczNGFlMzFkZThjZDZiZjZhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCS128Mexh/LsrRFAIY/vbEb1nzfmyKR4w+Xr5Frwm45g+Y Ql0dblmCMI4cR4jrOFw1ei82TAD2kp0dvDH7oPwN9TVWfX7v+ovXz5nZoyiwpKvt dBvQ1yiYrInzHcuMWUnjmDzsILr8rNCJBwqa2bUYsIPVOCH7W/ZdJ5QMBalWcTLq K5BRh1FFFY0+mhIUMJFxVyi5qPePE9rDj3pgx8EhHTLx4AEpoXzJt+rYUmUA2QIw 43pGgio8X41HBDt8K2czpv6OgqkTvlScMl9xODZjmO2FzvuEDYsHefq83Y7kueOt riCpJIjV52YlOeOCNJ2L4ql63wB6w1y5O9IEHclzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUY968Seg5622vKabKke1gLF47cBQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzJiOGNjYjRmLTA2NDctNDg2MC1iYjE1LTE0MDQyMDQwYTdmMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIDU6gwDQYJKoZIhvcNAQELBQADggEBAIaZVpnf0v6VIr+/GeBZJDXTrbzm LPKsgK6BMiV+dKTV9KuX8Q3Rsd+1gaHNi9Y5CJeRYsdHyUn1fkP/FIYHxdQI23Le 4/wrqT97QQHOKhpbzRjvWbDeim8OU21dDR3bEHwWxCAdKwZuaal8+U44KR/uCgol oQE7t0BYQMCL0aaF1dnrtcpWH9PVB/X7sUV3+8xfvVvUiMf3e8JCuN/LiNZP5nB8 s2pNUIFSo3AegPX0Ox5tUOwUnpkk8X6P5aemjLcWQnN7nX0geCUe7XAdr0YQbzVM HXEWGLbiIacSmnp5+VwO10STKnJ43Ln4NVhgtOoOuH0j03YOy9WRgB3HgIo= -----END CERTIFICATE-----Generated at Fri May 9 18:25:16 2025 by rpki-client