$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5d3c2c57-431d-4beb-a017-c45ae96853be.roa File: 5d3c2c57-431d-4beb-a017-c45ae96853be.roa (raw, json) Hash identifier: 8WVG+/2U7Rscd0II96DnWqZDt9JJfTMu1DlrCaycTsw= Subject key identifier: 63:C4:ED:89:A6:9D:F2:6C:37:28:81:CC:14:ED:D0:5B:94:52:CD:63 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3289B630A50241119D744D3D55D228E5FF870097 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5d3c2c57-431d-4beb-a017-c45ae96853be.roa Signing time: Fri 07 Mar 2025 00:41:25 +0000 ROA not before: Fri 07 Mar 2025 00:41:25 +0000 ROA not after: Fri 11 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.182.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:89:b6:30:a5:02:41:11:9d:74:4d:3d:55:d2:28:e5:ff:87:00:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Mar 7 00:41:25 2025 GMT Not After : Apr 11 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:14:a6:fc:da:46:2f:ee:20:61:e3:bb:11:64: 12:e7:cc:12:86:1f:85:16:07:78:32:d8:1d:53:bd: b3:3f:a2:27:ec:e7:9f:16:56:57:bd:86:bb:c0:51: 89:20:c1:46:0a:bd:a3:21:67:90:06:e6:48:55:1b: 1c:21:80:95:a6:e2:64:31:94:2d:18:7d:31:f0:83: 0a:95:4b:d2:c6:c2:8d:b4:15:86:a0:b9:85:47:31: 5b:7e:f8:75:a9:39:93:2c:3f:a1:84:a3:58:0f:d6: 73:6c:04:3e:3c:89:76:d1:49:82:45:16:ec:d2:94: fd:1d:16:ec:a3:a8:f4:2a:2d:3a:6e:84:7b:0e:6a: 00:a2:da:df:cc:7a:67:c7:e3:9a:c8:6f:82:de:bb: 9a:7b:f1:2e:57:30:7e:34:92:6e:7b:f4:fe:f8:53: c6:a0:8c:1e:26:7f:e9:2f:e4:e7:25:f3:1d:ae:f9: a7:61:79:22:8a:31:40:0d:b6:f6:31:ce:49:4b:db: fd:6e:da:04:4d:96:f8:82:2f:0c:c8:20:12:c6:2d: e9:d8:cf:b2:61:e7:29:b7:63:28:22:a8:b9:0b:30: 1d:46:be:a1:e1:e4:4d:d5:94:a2:57:0f:5c:24:59: 70:62:2d:0c:38:3c:2a:60:93:be:a6:14:6d:2a:5c: ae:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:C4:ED:89:A6:9D:F2:6C:37:28:81:CC:14:ED:D0:5B:94:52:CD:63 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5d3c2c57-431d-4beb-a017-c45ae96853be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.182.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8b:1d:9d:75:0c:0c:d8:56:12:56:43:5f:66:0c:fb:7e:93:56: 4e:ad:bd:1e:49:a8:18:70:99:c0:7f:41:67:d9:63:35:b1:c7: a9:f5:33:38:de:0a:40:19:f0:e7:6b:65:61:60:19:70:7e:f6: 8a:95:44:e8:b2:0f:32:fe:e6:38:59:3c:c0:b1:8a:0e:e2:4d: 7f:61:84:58:49:8d:8f:aa:f4:d2:13:ca:93:94:e2:ca:b4:1a: dc:1d:0c:36:06:03:9a:de:c5:e1:1f:98:ab:13:35:75:2c:36: b2:e2:14:0e:58:65:0b:2c:ea:87:0d:6c:8d:29:b0:f3:d8:05: 08:89:c7:55:b1:18:86:09:87:ea:ac:3a:a2:d5:9e:60:b7:54: 15:4d:63:41:18:e1:a6:ef:2d:9d:3e:94:85:9d:d5:4e:56:af: 3d:f7:23:4b:f1:ec:05:18:92:a1:89:b4:f4:6f:ab:16:0e:62: 81:c2:a0:e1:b3:a2:16:d6:bf:fd:39:60:c5:f7:87:cc:18:e4: 34:ae:d1:a9:c8:5d:72:31:09:5f:f3:11:a7:cf:75:34:85:06: 92:93:7e:80:6f:6d:d2:0e:09:6a:78:d6:35:6f:71:f8:f8:ba: 6d:08:9e:f4:73:03:1d:2a:81:56:5c:c8:b8:23:b9:fb:49:8d: 20:40:ec:4e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMom2MKUCQRGddE09VdIo5f+HAJcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMzA3MDA0MTI1WhcNMjUwNDExMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NzNiNzczOTQ2YjM2ZDExNGY3ZGYwNmRhZmM5ZjQ5MjY4 ODlkZmIwYWI4MzgwOGMxNGVkODVkZDg0MjJmNWJlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3FKb82kYv7iBh47sRZBLnzBKGH4UWB3gy2B1TvbM/oifs 558WVle9hrvAUYkgwUYKvaMhZ5AG5khVGxwhgJWm4mQxlC0YfTHwgwqVS9LGwo20 FYaguYVHMVt++HWpOZMsP6GEo1gP1nNsBD48iXbRSYJFFuzSlP0dFuyjqPQqLTpu hHsOagCi2t/MemfH45rIb4Leu5p78S5XMH40km579P74U8agjB4mf+kv5Ocl8x2u +adheSKKMUANtvYxzklL2/1u2gRNlviCLwzIIBLGLenYz7Jh5ym3YygiqLkLMB1G vqHh5E3VlKJXD1wkWXBiLQw4PCpgk76mFG0qXK7TAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUY8Ttiaad8mw3KIHMFO3QW5RSzWMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzVkM2MyYzU3LTQzMWQtNGJlYi1hMDE3LWM0NWFlOTY4NTNiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2tjANBgkqhkiG9w0BAQsFAAOCAQEAix2ddQwM2FYSVkNfZgz7fpNWTq29 HkmoGHCZwH9BZ9ljNbHHqfUzON4KQBnw52tlYWAZcH72ipVE6LIPMv7mOFk8wLGK DuJNf2GEWEmNj6r00hPKk5TiyrQa3B0MNgYDmt7F4R+YqxM1dSw2suIUDlhlCyzq hw1sjSmw89gFCInHVbEYhgmH6qw6otWeYLdUFU1jQRjhpu8tnT6UhZ3VTlavPfcj S/HsBRiSoYm09G+rFg5igcKg4bOiFta//TlgxfeHzBjkNK7RqchdcjEJX/MRp891 NIUGkpN+gG9t0g4JanjWNW9x+Pi6bQie9HMDHSqBVlzIuCO5+0mNIEDsTg== -----END CERTIFICATE-----Generated at Thu Mar 13 23:31:53 2025 by rpki-client