$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/753bfb8d-19c1-468a-9fe9-da4787da9f96.roa File: 753bfb8d-19c1-468a-9fe9-da4787da9f96.roa (raw, json) Hash identifier: tHBlu4g7cjvA1bFgFtwyuIlSMWrbqnKI0lIrh/e/jYA= Subject key identifier: FD:C6:5D:BC:2D:F1:70:C9:0F:AD:92:80:7D:79:BF:4C:C6:3E:05:21 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2D391D7E7AEA97914B0F675073425E7A7724E976 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/753bfb8d-19c1-468a-9fe9-da4787da9f96.roa Signing time: Fri 07 Mar 2025 00:10:25 +0000 ROA not before: Fri 07 Mar 2025 00:10:25 +0000 ROA not after: Fri 11 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 150.222.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:39:1d:7e:7a:ea:97:91:4b:0f:67:50:73:42:5e:7a:77:24:e9:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Mar 7 00:10:25 2025 GMT Not After : Apr 11 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:fd:12:9b:2a:17:7a:45:ba:9e:5a:0d:b7:0d: ba:5a:3f:0f:a5:ff:c1:db:d6:fe:e4:40:ff:87:58: 33:20:d8:30:b7:30:89:37:f1:50:1f:34:9a:d5:19: f1:4d:c0:41:f7:bd:71:b4:31:94:ec:c1:f1:44:86: fd:10:4e:3e:c2:51:e2:8d:6a:c1:ca:2b:cf:b9:2c: 17:a2:42:42:c2:eb:40:6a:ce:08:ec:78:7f:e9:5d: 13:a8:c3:33:84:25:83:aa:a6:a2:ab:82:29:38:80: 12:e7:80:a8:38:41:36:72:1f:86:e3:a4:26:76:bd: 9b:6c:a3:71:6d:09:5d:fe:c8:2f:19:0b:da:60:b2: 7a:60:d4:1e:88:1b:fb:d6:f7:9b:57:0d:38:d8:28: fc:65:bb:ee:94:b8:eb:5a:53:dd:c3:d1:2f:40:dc: bb:0b:cc:cc:23:6f:9a:56:66:a3:66:22:2d:29:0e: 5e:cb:98:17:ae:82:d6:bc:a9:de:f3:b3:da:e3:1c: f4:38:32:ef:d3:97:95:ff:7f:8a:82:4c:96:20:f6: 9c:7c:a1:1c:99:2a:3f:e7:cd:63:1b:28:eb:b6:e9: 8b:76:dc:81:91:0a:c0:ce:b6:67:f3:38:c6:87:f6: 21:94:d9:a5:ba:c1:0e:66:08:96:e6:15:ba:d0:65: 81:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:C6:5D:BC:2D:F1:70:C9:0F:AD:92:80:7D:79:BF:4C:C6:3E:05:21 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/753bfb8d-19c1-468a-9fe9-da4787da9f96.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.222.224.0/24 Signature Algorithm: sha256WithRSAEncryption 67:09:85:e9:33:26:3a:c9:2a:47:1b:46:96:db:19:d5:7a:a6: 80:e8:2d:61:19:a8:a8:4c:c7:00:0f:57:13:2e:53:46:d7:f6: ae:51:c0:84:cf:aa:ad:7a:fb:d2:19:4d:1b:8e:3a:51:80:cb: 18:b4:30:d1:49:a2:4b:d5:53:42:ce:5f:d4:76:b1:e5:39:bd: 48:67:ef:26:2f:a5:9c:61:d0:57:64:8e:fa:4a:44:f8:d3:f9: f4:03:fb:db:8e:b2:c6:71:60:57:96:b0:64:3c:df:0c:ac:e4: b5:06:0a:e5:32:7b:ce:44:d0:6a:3e:cb:77:71:a2:ef:49:6f: b0:2a:db:1d:8d:0c:15:cc:10:b2:a9:61:9c:d4:09:30:2e:61: 37:c5:39:5e:b5:71:f5:81:41:dc:bd:30:56:55:eb:9b:3f:aa: aa:3a:91:a3:00:44:e0:ba:34:ad:b5:01:69:ea:6f:03:8f:56: c8:9c:13:44:fd:55:20:6b:cd:0d:9c:b4:1f:1a:05:a0:c9:e6: 6e:cf:f0:b9:9e:bc:b1:ee:f1:7b:0a:e0:6e:41:c3:c5:c2:34: a0:21:b0:d5:3d:68:59:88:56:b8:89:7f:83:50:3d:2b:58:fa: 75:93:3d:88:41:12:38:fe:e5:43:86:ae:d7:98:09:28:87:3c: 94:4d:10:17 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULTkdfnrql5FLD2dQc0Jeenck6XYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMzA3MDAxMDI1WhcNMjUwNDExMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMzViY2Q4NjMwOWU3MjI1NmQ4NTIwNTM3N2M2MzBlNWJl NTVmM2ZlYmY1NDc0MDlmNGExMDNkNzU4MWYzMjZlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZ/RKbKhd6RbqeWg23DbpaPw+l/8Hb1v7kQP+HWDMg2DC3 MIk38VAfNJrVGfFNwEH3vXG0MZTswfFEhv0QTj7CUeKNasHKK8+5LBeiQkLC60Bq zgjseH/pXROowzOEJYOqpqKrgik4gBLngKg4QTZyH4bjpCZ2vZtso3FtCV3+yC8Z C9pgsnpg1B6IG/vW95tXDTjYKPxlu+6UuOtaU93D0S9A3LsLzMwjb5pWZqNmIi0p Dl7LmBeugta8qd7zs9rjHPQ4Mu/Tl5X/f4qCTJYg9px8oRyZKj/nzWMbKOu26Yt2 3IGRCsDOtmfzOMaH9iGU2aW6wQ5mCJbmFbrQZYEhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/cZdvC3xcMkPrZKAfXm/TMY+BSEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzc1M2JmYjhkLTE5YzEtNDY4YS05ZmU5LWRhNDc4N2RhOWY5Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACW3uAwDQYJKoZIhvcNAQELBQADggEBAGcJhekzJjrJKkcbRpbbGdV6poDo LWEZqKhMxwAPVxMuU0bX9q5RwITPqq16+9IZTRuOOlGAyxi0MNFJokvVU0LOX9R2 seU5vUhn7yYvpZxh0FdkjvpKRPjT+fQD+9uOssZxYFeWsGQ83wys5LUGCuUye85E 0Go+y3dxou9Jb7Aq2x2NDBXMELKpYZzUCTAuYTfFOV61cfWBQdy9MFZV65s/qqo6 kaMAROC6NK21AWnqbwOPVsicE0T9VSBrzQ2ctB8aBaDJ5m7P8LmevLHu8XsK4G5B w8XCNKAhsNU9aFmIVriJf4NQPStY+nWTPYhBEjj+5UOGrteYCSiHPJRNEBc= -----END CERTIFICATE-----Generated at Thu Mar 13 23:39:22 2025 by rpki-client