$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/74efe89a-3988-4164-98dd-bb1f690379cf.roa File: 74efe89a-3988-4164-98dd-bb1f690379cf.roa (raw, json) Hash identifier: ZzUjb1T9LEGJWmnl0i3jXfRxCg0ExMmWWDs366fEYQc= Subject key identifier: D0:20:20:03:47:C6:7B:36:87:94:73:D4:10:FF:5E:A0:E7:96:06:0F Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 03B47125CDA87F80EA6646F72F1A449946E86B10 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/74efe89a-3988-4164-98dd-bb1f690379cf.roa Signing time: Fri 18 Apr 2025 18:30:59 +0000 ROA not before: Fri 18 Apr 2025 18:30:59 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.94.104.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:b4:71:25:cd:a8:7f:80:ea:66:46:f7:2f:1a:44:99:46:e8:6b:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 18 18:30:59 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=7027c50780731865181c2b02b2d1f22ebd8e82c7d115f69cf70e94899d0a4b62, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:67:7d:8a:ff:11:76:bf:ee:cf:4f:98:fb:d8: d7:53:39:4a:44:f6:c4:79:44:e2:66:db:39:0a:80: f1:a3:74:d6:97:f1:62:b8:6e:2a:61:a5:b8:25:6f: bd:fb:db:09:b4:1b:c6:90:38:ea:c1:39:c3:2a:d1: a2:77:cd:fc:dd:16:41:86:54:b6:ba:de:f5:8e:a7: 7b:2a:ef:77:99:6c:ba:68:84:05:a8:38:7a:e7:3e: 95:e0:de:a3:23:82:7a:58:4d:21:21:eb:03:d5:fb: d6:fd:8a:ae:93:52:c4:f4:a3:b8:1d:db:89:62:2f: de:6e:4d:54:9c:0c:2c:e5:c6:e9:1f:a2:74:3b:81: c6:c5:03:75:17:8c:61:13:4b:b6:07:dd:64:95:cd: a2:bd:92:d2:8b:bc:dd:4f:d4:f1:3a:77:9d:90:81: e0:a8:c8:45:6d:03:9b:c1:4e:72:16:1f:bb:5c:da: de:6d:d6:d4:14:d7:52:33:12:be:5e:b3:4d:3a:84: 73:64:be:ca:16:bc:95:ee:46:89:9f:4a:0c:a2:60: bf:dc:e5:a7:57:9f:b2:1e:b9:74:73:0f:e1:e3:2b: 9c:0e:b3:d6:52:c6:8d:87:30:b1:e6:1e:ec:e3:e3: c8:f6:0a:a0:5b:4c:78:2e:bc:9d:66:31:c7:1c:b2: 60:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:20:20:03:47:C6:7B:36:87:94:73:D4:10:FF:5E:A0:E7:96:06:0F X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/74efe89a-3988-4164-98dd-bb1f690379cf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.94.104.0/22 Signature Algorithm: sha256WithRSAEncryption 6e:0d:77:b8:a9:b3:70:28:b7:f6:24:8f:6f:2b:45:5a:20:f3: 91:e9:82:cc:a1:57:aa:40:6e:b2:b9:26:32:57:f6:e7:74:da: 44:83:1a:2c:05:93:10:48:c0:94:ed:74:af:0d:b7:56:6f:39: a2:c6:9c:c3:d1:30:23:95:07:b5:81:ac:68:ad:52:d4:4f:7b: 00:de:07:bc:61:b2:0b:bb:be:24:ea:d8:78:3d:1f:9a:ad:9e: 11:e6:ef:bf:8f:b9:ba:ad:0e:5c:ce:4b:6b:b3:e7:0b:96:74: 75:2a:b2:f8:01:fc:36:e2:dc:ad:91:ef:53:3c:51:8e:9b:33: 06:3f:8f:a6:a0:66:dc:a3:9a:40:4b:da:79:91:d4:0c:01:7b: 97:0b:d5:a0:32:48:7a:43:77:9e:57:54:27:65:ff:ed:e3:fb: 68:13:0d:82:40:8d:5a:6b:ae:3d:1a:d5:05:2c:b6:0c:9b:60: 4e:be:ad:cf:c3:65:08:da:a9:0e:d9:9c:7a:75:fd:c3:64:e7: 94:8a:d6:32:19:0e:df:95:9c:67:6c:3b:73:45:c3:89:58:91: 55:7f:7f:2b:62:b9:2f:a8:5c:0e:f0:26:22:f6:ec:02:df:33: c1:e9:7c:08:ea:1c:e0:50:e9:0e:00:f8:d1:c6:15:8d:48:7f: b8:f2:6a:96 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUA7RxJc2of4DqZkb3LxpEmUboaxAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE4MTgzMDU5WhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MDI3YzUwNzgwNzMxODY1MTgxYzJiMDJiMmQxZjIyZWJk OGU4MmM3ZDExNWY2OWNmNzBlOTQ4OTlkMGE0YjYyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtZ32K/xF2v+7PT5j72NdTOUpE9sR5ROJm2zkKgPGjdNaX 8WK4biphpbglb7372wm0G8aQOOrBOcMq0aJ3zfzdFkGGVLa63vWOp3sq73eZbLpo hAWoOHrnPpXg3qMjgnpYTSEh6wPV+9b9iq6TUsT0o7gd24liL95uTVScDCzlxukf onQ7gcbFA3UXjGETS7YH3WSVzaK9ktKLvN1P1PE6d52QgeCoyEVtA5vBTnIWH7tc 2t5t1tQU11IzEr5es006hHNkvsoWvJXuRomfSgyiYL/c5adXn7IeuXRzD+HjK5wO s9ZSxo2HMLHmHuzj48j2CqBbTHguvJ1mMcccsmBvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0CAgA0fGezaHlHPUEP9eoOeWBg8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzc0ZWZlODlhLTM5ODgtNDE2NC05OGRkLWJiMWY2OTAzNzljZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI2XmgwDQYJKoZIhvcNAQELBQADggEBAG4Nd7ips3Aot/Ykj28rRVog85Hp gsyhV6pAbrK5JjJX9ud02kSDGiwFkxBIwJTtdK8Nt1ZvOaLGnMPRMCOVB7WBrGit UtRPewDeB7xhsgu7viTq2Hg9H5qtnhHm77+PubqtDlzOS2uz5wuWdHUqsvgB/Dbi 3K2R71M8UY6bMwY/j6agZtyjmkBL2nmR1AwBe5cL1aAySHpDd55XVCdl/+3j+2gT DYJAjVprrj0a1QUstgybYE6+rc/DZQjaqQ7ZnHp1/cNk55SK1jIZDt+VnGdsO3NF w4lYkVV/fytiuS+oXA7wJiL27ALfM8HpfAjqHOBQ6Q4A+NHGFY1If7jyapY= -----END CERTIFICATE-----Generated at Fri May 9 20:32:41 2025 by rpki-client