$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/60e45316-4d04-4f1f-a8a1-256093763032.roa File: 60e45316-4d04-4f1f-a8a1-256093763032.roa (raw, json) Hash identifier: 9GwZem48rCvhYHz/b0mEVKEh1oNPhJ9A0QbNQPaU9eU= Subject key identifier: D4:9D:D6:8A:08:7E:11:A2:20:13:28:68:54:F0:19:F5:9B:71:F7:07 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7688985C9129A617C1C1591E51A00787590956B4 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/60e45316-4d04-4f1f-a8a1-256093763032.roa Signing time: Mon 03 Mar 2025 23:40:39 +0000 ROA not before: Mon 03 Mar 2025 23:40:39 +0000 ROA not after: Mon 07 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.94.148.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:88:98:5c:91:29:a6:17:c1:c1:59:1e:51:a0:07:87:59:09:56:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Mar 3 23:40:39 2025 GMT Not After : Apr 7 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:82:43:c2:cd:40:3a:f3:c3:46:5d:e2:08:e2: 57:09:40:a0:9d:b3:40:46:fd:eb:28:fd:fe:f4:6c: dc:0d:00:d2:83:9a:a5:b8:ce:11:2a:b1:3e:b2:a8: 5c:0b:18:59:33:14:98:5c:63:d3:94:f6:e0:21:97: 47:ec:ff:07:34:33:b8:07:48:30:d0:56:ba:ac:cd: 03:1c:ff:7b:b6:ec:99:ae:80:ab:9e:f1:93:4b:ef: 8d:f6:cb:4c:46:0b:35:65:63:1e:69:3d:ec:78:99: 36:e0:a8:09:bd:a7:db:e3:94:09:7c:28:dc:48:c7: da:ed:35:f4:71:98:ed:24:ab:43:e4:91:40:b2:0b: 2f:46:18:94:01:fa:4a:49:0d:18:19:69:79:fa:f9: 86:6b:99:b8:78:f3:8d:2b:41:5b:d9:21:74:a4:68: c4:f5:3b:29:0a:1a:98:ad:dc:db:5f:b6:b7:0a:ce: bf:0d:f5:89:1a:a3:d1:cb:fb:87:41:81:d0:b0:1d: 03:e2:f1:a0:84:41:5f:97:95:28:1e:ba:09:28:7b: 63:65:e2:c3:e4:67:50:ef:a2:cd:63:43:ff:5e:dc: 75:43:56:a2:eb:56:5a:33:1a:97:1e:43:37:09:e6: ef:ee:c3:31:15:ed:c8:45:68:50:c3:70:70:45:dc: 2b:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:9D:D6:8A:08:7E:11:A2:20:13:28:68:54:F0:19:F5:9B:71:F7:07 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/60e45316-4d04-4f1f-a8a1-256093763032.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.94.148.0/22 Signature Algorithm: sha256WithRSAEncryption 14:93:0e:73:c2:0f:86:f2:94:68:ce:f7:d8:05:b5:ce:cb:2b: fc:6d:bb:9f:d9:6d:15:a5:57:79:53:d1:d3:9b:ac:78:e3:36: 93:d6:de:e0:1f:66:7d:3d:00:4a:5e:38:54:03:a4:06:aa:1e: a0:42:9a:fc:e3:7b:5c:a2:7b:1a:9b:3d:7b:f7:cb:d2:e8:20: f2:97:72:e9:7b:97:2d:60:27:47:50:6d:80:db:8e:dd:3e:24: 05:de:3f:0b:1d:60:9d:b5:d7:ac:83:33:4e:ce:ef:b6:d1:0c: 24:53:25:91:20:29:90:29:3f:36:19:17:4d:a4:56:be:8d:a9: 53:23:d1:73:bb:0d:fc:f8:8a:5a:3f:3e:90:b2:83:35:00:e6: db:6b:a7:59:29:82:93:ff:2b:ba:f9:64:ae:e1:58:96:ba:9a: c3:c5:2c:35:53:ac:e3:57:24:bc:6f:75:23:81:b3:b0:76:09: d9:01:04:e4:6b:7d:2d:b4:ef:c1:1f:8a:8c:c0:65:09:0e:6d: 97:c3:c2:d9:cc:75:3e:d7:af:71:9b:63:cc:f8:6b:16:21:32: 1a:92:52:67:82:c2:86:b1:e6:f8:8c:bc:3b:ce:a0:f1:a3:8f: bb:f6:4c:e3:7c:a5:0d:b0:0b:6d:26:ac:8a:9c:2c:a0:69:ff: 24:8a:47:bd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdoiYXJEpphfBwVkeUaAHh1kJVrQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMzAzMjM0MDM5WhcNMjUwNDA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMDQzZDdlMGU4ZTNhODUwOTM1ODNmY2JhMWM4NTUwYjQ1 ODZhZDEyNDU2OWYwNzc4MzUyZTczYmQyYmE5MWNiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAgkPCzUA688NGXeII4lcJQKCds0BG/eso/f70bNwNANKD mqW4zhEqsT6yqFwLGFkzFJhcY9OU9uAhl0fs/wc0M7gHSDDQVrqszQMc/3u27Jmu gKue8ZNL7432y0xGCzVlYx5pPex4mTbgqAm9p9vjlAl8KNxIx9rtNfRxmO0kq0Pk kUCyCy9GGJQB+kpJDRgZaXn6+YZrmbh4840rQVvZIXSkaMT1OykKGpit3NtftrcK zr8N9Ykao9HL+4dBgdCwHQPi8aCEQV+XlSgeugkoe2Nl4sPkZ1Dvos1jQ/9e3HVD VqLrVlozGpceQzcJ5u/uwzEV7chFaFDDcHBF3CsVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1J3Wigh+EaIgEyhoVPAZ9Ztx9wcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzYwZTQ1MzE2LTRkMDQtNGYxZi1hOGExLTI1NjA5Mzc2MzAzMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI0XpQwDQYJKoZIhvcNAQELBQADggEBABSTDnPCD4bylGjO99gFtc7LK/xt u5/ZbRWlV3lT0dObrHjjNpPW3uAfZn09AEpeOFQDpAaqHqBCmvzje1yiexqbPXv3 y9LoIPKXcul7ly1gJ0dQbYDbjt0+JAXePwsdYJ2116yDM07O77bRDCRTJZEgKZAp PzYZF02kVr6NqVMj0XO7Dfz4ilo/PpCygzUA5ttrp1kpgpP/K7r5ZK7hWJa6msPF LDVTrONXJLxvdSOBs7B2CdkBBORrfS2078EfiozAZQkObZfDwtnMdT7Xr3GbY8z4 axYhMhqSUmeCwoax5viMvDvOoPGjj7v2TON8pQ2wC20mrIqcLKBp/ySKR70= -----END CERTIFICATE-----Generated at Thu Mar 13 23:52:50 2025 by rpki-client