$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d97115ae-ddd1-48cb-a67e-c95f94b29d25.roa File: d97115ae-ddd1-48cb-a67e-c95f94b29d25.roa (raw, json) Hash identifier: mxQhlcke/3zPVdiYd65wK6cNQjDvXiW1qZoibw700ps= Subject key identifier: 8B:75:06:09:DD:42:47:C4:7E:41:AB:7D:97:87:0B:75:60:29:01:D5 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5F8520416CB34E2634E906AB4215615BFFC0526B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d97115ae-ddd1-48cb-a67e-c95f94b29d25.roa Signing time: Mon 14 Apr 2025 17:00:19 +0000 ROA not before: Mon 14 Apr 2025 17:00:19 +0000 ROA not after: Mon 19 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.180.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:85:20:41:6c:b3:4e:26:34:e9:06:ab:42:15:61:5b:ff:c0:52:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 14 17:00:19 2025 GMT Not After : May 19 23:59:59 2025 GMT Subject: serialNumber=af006cf04f51c55108a96c5fd0edc9f93b57438074a66d9004097d5d22ed940b, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:26:14:0b:9b:da:99:ed:17:7e:1c:3b:ce:22: 9b:f7:63:92:6f:f9:34:dd:f6:eb:eb:30:9a:d0:71: 64:c2:e0:9c:25:1e:9f:ba:17:b8:29:de:a9:a4:14: 20:10:9b:df:c8:ca:55:be:50:d7:7b:9f:0f:17:b9: be:14:0e:bf:ee:d5:49:7a:2a:10:8a:43:33:6d:1c: f7:54:d5:f3:70:a5:0c:dc:66:ae:a4:b1:2d:08:8d: dc:19:9a:1e:b4:20:03:91:ba:9e:94:9a:36:c4:28: 67:0f:37:b1:7f:c7:63:c1:20:61:2b:c3:77:e3:40: 50:eb:4d:3c:ae:c4:3f:fb:72:39:62:c3:8c:5c:e6: 63:b9:3c:cf:09:f4:c2:14:da:ad:eb:0e:67:8f:4b: 83:09:dd:6f:09:8c:ee:ff:f7:79:fc:82:8e:82:9d: ec:b9:ce:b8:c2:a8:3c:3a:1e:91:70:ff:37:81:14: c2:11:75:27:94:79:67:94:d8:66:55:d6:ef:c1:e6: e9:4a:4c:96:25:8b:ca:a6:e8:e2:28:d3:42:d3:7e: f8:d4:83:03:ef:ef:44:6e:2c:01:e6:bd:a2:24:83: 6f:3f:a9:93:f8:21:da:eb:de:54:08:d1:f0:3a:58: 83:b4:9b:b1:0c:55:7d:7e:6b:e4:6a:09:f7:a8:ec: 5b:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:75:06:09:DD:42:47:C4:7E:41:AB:7D:97:87:0B:75:60:29:01:D5 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d97115ae-ddd1-48cb-a67e-c95f94b29d25.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.180.0.0/15 Signature Algorithm: sha256WithRSAEncryption 7f:27:ed:9e:75:5a:82:3d:c7:98:28:ed:bf:ef:52:cb:e3:c8: 92:22:8d:90:25:c4:2f:90:fd:df:51:33:cc:c9:a6:af:d5:bc: 58:5b:e3:49:07:d3:09:02:01:b9:af:70:b5:17:7e:94:62:dd: c3:20:85:1e:c2:0e:cf:54:ca:72:50:21:79:97:3f:42:22:d4: e6:0e:c4:b2:73:f9:a7:fa:57:34:79:ca:f0:5e:9b:7e:0a:e0: 3c:41:c0:18:d4:ba:c1:1f:8e:60:fc:c8:25:71:02:55:fe:f7: 16:69:76:d5:03:2a:87:01:82:03:c3:76:44:ff:d2:71:c9:54: 7d:89:8b:85:03:f6:ec:66:5a:fb:77:e3:fa:7e:57:f0:cf:42: 7f:cc:ba:5f:f5:24:85:1a:1b:7f:4b:ee:05:bb:05:53:e5:91: 0b:0c:22:d2:ca:a5:ee:b4:cf:84:69:bb:86:d1:93:a3:6a:9a: 77:41:65:87:a4:77:d9:76:b1:52:f8:75:6a:20:c9:4c:ba:8c: 9b:92:ce:98:8a:36:38:f3:2d:43:ba:bc:4a:fd:de:3f:bf:2a: 21:72:39:9a:7a:be:f8:72:9e:42:01:55:ef:3b:8d:a6:0e:d7: 92:c0:da:3c:aa:54:98:0d:41:79:7a:70:ae:6f:e5:e8:65:ca: bd:8a:98:b7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUX4UgQWyzTiY06QarQhVhW//AUmswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDE0MTcwMDE5WhcNMjUwNTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZjAwNmNmMDRmNTFjNTUxMDhhOTZjNWZkMGVkYzlmOTNi NTc0MzgwNzRhNjZkOTAwNDA5N2Q1ZDIyZWQ5NDBiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD8JhQLm9qZ7Rd+HDvOIpv3Y5Jv+TTd9uvrMJrQcWTC4Jwl Hp+6F7gp3qmkFCAQm9/IylW+UNd7nw8Xub4UDr/u1Ul6KhCKQzNtHPdU1fNwpQzc Zq6ksS0IjdwZmh60IAORup6UmjbEKGcPN7F/x2PBIGErw3fjQFDrTTyuxD/7cjli w4xc5mO5PM8J9MIU2q3rDmePS4MJ3W8JjO7/93n8go6Cney5zrjCqDw6HpFw/zeB FMIRdSeUeWeU2GZV1u/B5ulKTJYli8qm6OIo00LTfvjUgwPv70RuLAHmvaIkg28/ qZP4Idrr3lQI0fA6WIO0m7EMVX1+a+RqCfeo7Fu1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUi3UGCd1CR8R+Qat9l4cLdWApAdUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2Q5NzExNWFlLWRkZDEtNDhjYi1hNjdlLWM5NWY5NGIyOWQyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwE2tDANBgkqhkiG9w0BAQsFAAOCAQEAfyftnnVagj3HmCjtv+9Sy+PIkiKN kCXEL5D931EzzMmmr9W8WFvjSQfTCQIBua9wtRd+lGLdwyCFHsIOz1TKclAheZc/ QiLU5g7EsnP5p/pXNHnK8F6bfgrgPEHAGNS6wR+OYPzIJXECVf73Fml21QMqhwGC A8N2RP/ScclUfYmLhQP27GZa+3fj+n5X8M9Cf8y6X/UkhRobf0vuBbsFU+WRCwwi 0sql7rTPhGm7htGTo2qad0Flh6R32XaxUvh1aiDJTLqMm5LOmIo2OPMtQ7q8Sv3e P78qIXI5mnq++HKeQgFV7zuNpg7XksDaPKpUmA1BeXpwrm/l6GXKvYqYtw== -----END CERTIFICATE-----Generated at Fri May 9 15:15:53 2025 by rpki-client