$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ac129866-e40c-4b2b-adc8-dad9d3e140ef.roa File: ac129866-e40c-4b2b-adc8-dad9d3e140ef.roa (raw, json) Hash identifier: vcQy2bXt0QB3UKJasCXDFxEJaZLL9dagm1ygxkXQ0+g= Subject key identifier: 6A:52:02:C2:E7:6F:8C:96:70:44:20:22:53:84:E7:99:B7:67:F7:5A Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7B5C7C7E709AD0078E3D1A7EAF43EFEB662221C4 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ac129866-e40c-4b2b-adc8-dad9d3e140ef.roa Signing time: Fri 09 May 2025 00:51:48 +0000 ROA not before: Fri 09 May 2025 00:51:48 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.128.0.0/10 maxlen: 10 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:5c:7c:7e:70:9a:d0:07:8e:3d:1a:7e:af:43:ef:eb:66:22:21:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 9 00:51:48 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=0d43a064f8b2eb576497a3f8cf46145bd421c8b00fcb3e2a2b03f7e682e712e5, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:46:45:72:25:f8:6f:80:ed:8d:e9:60:79:e4: 0d:e0:1d:d7:55:15:e2:91:0b:d8:b4:8c:d9:ba:b9: e4:5b:b4:9b:f4:cb:90:38:9d:86:80:3b:00:71:b5: 54:23:6a:42:ac:43:38:82:34:24:f9:e7:3c:00:d7: e5:fe:87:a7:7d:13:3e:61:8f:97:36:e0:51:8f:c6: 10:65:cb:f3:ca:64:54:a1:e9:3f:3f:90:7b:a9:2d: 3d:9a:60:e5:b3:77:20:fd:8d:ef:d4:b2:c9:34:8d: 94:8b:f9:06:03:0d:1a:44:e9:54:1c:0d:3d:67:26: c0:e4:0d:92:1a:84:2a:50:bc:99:53:23:1d:fd:1f: 17:eb:4b:bb:ac:b8:42:c8:08:38:76:40:32:83:d8: c9:3a:12:40:59:41:fd:7e:3b:cf:02:7d:2e:27:31: ea:77:52:8c:f3:7c:a9:74:ff:f4:69:63:21:60:d0: e1:ca:5c:fc:2e:aa:8b:1d:27:9a:45:d8:32:60:7c: 04:67:25:c3:20:49:ed:63:d8:03:01:f1:dd:b5:68: ac:1e:49:2f:f9:4e:63:61:b7:ae:44:44:fb:88:84: 0d:f1:98:8b:d1:ce:c5:a7:1b:75:c4:7a:46:85:64: 70:04:50:44:78:11:34:3b:3b:d0:3f:d2:6a:e6:05: f0:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:52:02:C2:E7:6F:8C:96:70:44:20:22:53:84:E7:99:B7:67:F7:5A X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ac129866-e40c-4b2b-adc8-dad9d3e140ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.128.0.0/10 Signature Algorithm: sha256WithRSAEncryption 86:a2:b7:bc:1b:63:22:33:8b:7e:5d:74:22:48:9b:7a:a2:97: d8:4f:85:8e:28:49:f2:82:f1:5d:81:a9:d5:94:0a:b3:bb:17: 39:2f:4a:a9:6e:83:8f:ee:11:17:f9:0c:32:c9:0b:4f:56:d9: b2:ad:74:7f:48:ef:4a:8f:db:a0:63:69:9b:d2:d5:a3:e7:3c: ea:d1:e4:51:15:eb:a1:a8:09:56:6d:c2:e7:3d:03:01:49:56: 65:fb:82:6a:db:32:f6:f8:f2:69:73:77:15:2c:14:12:13:db: c4:25:d0:82:81:52:0b:f7:e6:49:f5:ec:8e:23:66:c7:4b:15: 39:42:8e:c7:69:53:9a:22:dd:82:1e:17:35:dd:91:a5:42:42: 11:04:ab:7a:39:44:04:e3:ed:cd:4f:e4:ed:17:bf:b1:36:b7: cc:d0:7e:cf:48:19:56:76:35:0e:54:3b:3c:b9:51:ab:98:c3: 91:dd:25:b0:7e:23:95:8f:0b:ca:39:e6:59:3e:50:eb:3b:e0: e6:2c:55:e7:8e:d6:cf:97:c1:65:7c:85:11:22:64:33:6c:53: e0:21:23:f6:46:3f:5f:22:14:78:af:79:8d:16:51:a3:f1:49: 52:16:e6:90:1d:36:81:9e:06:59:31:4f:d8:51:76:ee:5b:ba: 60:cc:26:ee -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUe1x8fnCa0AeOPRp+r0Pv62YiIcQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTA5MDA1MTQ4WhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZDQzYTA2NGY4YjJlYjU3NjQ5N2EzZjhjZjQ2MTQ1YmQ0 MjFjOGIwMGZjYjNlMmEyYjAzZjdlNjgyZTcxMmU1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8RkVyJfhvgO2N6WB55A3gHddVFeKRC9i0jNm6ueRbtJv0 y5A4nYaAOwBxtVQjakKsQziCNCT55zwA1+X+h6d9Ez5hj5c24FGPxhBly/PKZFSh 6T8/kHupLT2aYOWzdyD9je/Ussk0jZSL+QYDDRpE6VQcDT1nJsDkDZIahCpQvJlT Ix39HxfrS7usuELICDh2QDKD2Mk6EkBZQf1+O88CfS4nMep3UozzfKl0//RpYyFg 0OHKXPwuqosdJ5pF2DJgfARnJcMgSe1j2AMB8d21aKweSS/5TmNht65ERPuIhA3x mIvRzsWnG3XEekaFZHAEUER4ETQ7O9A/0mrmBfCPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUalICwudvjJZwRCAiU4Tnmbdn91owHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2FjMTI5ODY2LWU0MGMtNGIyYi1hZGM4LWRhZDlkM2UxNDBlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwYDgDANBgkqhkiG9w0BAQsFAAOCAQEAhqK3vBtjIjOLfl10IkibeqKX2E+F jihJ8oLxXYGp1ZQKs7sXOS9KqW6Dj+4RF/kMMskLT1bZsq10f0jvSo/boGNpm9LV o+c86tHkURXroagJVm3C5z0DAUlWZfuCatsy9vjyaXN3FSwUEhPbxCXQgoFSC/fm SfXsjiNmx0sVOUKOx2lTmiLdgh4XNd2RpUJCEQSrejlEBOPtzU/k7Re/sTa3zNB+ z0gZVnY1DlQ7PLlRq5jDkd0lsH4jlY8LyjnmWT5Q6zvg5ixV547Wz5fBZXyFESJk M2xT4CEj9kY/XyIUeK95jRZRo/FJUhbmkB02gZ4GWTFP2FF27lu6YMwm7g== -----END CERTIFICATE-----Generated at Fri May 9 15:44:41 2025 by rpki-client