$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/dd9a682c-6d0a-41ad-ab6d-2320df8122ef.roa File: dd9a682c-6d0a-41ad-ab6d-2320df8122ef.roa (raw, json) Hash identifier: 4LVEEk7WF4YF/AGUlWIOmgV3Y8sekpf9xaz4E755+x8= Subject key identifier: DA:62:A2:2A:68:01:BD:55:91:A7:FE:D1:5F:DE:63:0B:B6:AF:F7:EF Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 45292FD1A962B6C79F3F648839B6C83ADFB20F54 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/dd9a682c-6d0a-41ad-ab6d-2320df8122ef.roa Signing time: Mon 03 Mar 2025 22:40:40 +0000 ROA not before: Mon 03 Mar 2025 22:40:40 +0000 ROA not after: Mon 07 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.192.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:29:2f:d1:a9:62:b6:c7:9f:3f:64:88:39:b6:c8:3a:df:b2:0f:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Mar 3 22:40:40 2025 GMT Not After : Apr 7 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:92:d2:31:e9:95:7a:0d:82:98:fd:4c:fb:7e: 5e:c1:79:94:56:c0:8d:4c:6e:68:91:d8:92:41:aa: 31:8d:86:56:0c:6f:06:0b:6c:7e:c9:1a:7d:ec:74: 72:ba:29:59:19:08:31:51:2d:e9:a2:1c:0b:7c:af: a5:0b:70:d9:91:ed:41:50:07:5d:2e:51:06:9c:3e: 23:4f:4b:8e:20:e8:9a:41:b3:4d:17:6c:06:25:97: 4d:3e:e4:9e:79:77:3d:b3:8f:fc:3e:04:a7:a5:7c: b9:01:30:40:b8:48:a1:e3:5f:3b:f4:e5:18:b5:b7: cf:ab:fb:54:54:17:6c:44:4a:d0:9f:27:61:88:f8: e5:81:f2:98:fa:69:b1:db:9b:99:4d:13:e8:c9:3a: 0a:d4:59:5f:23:19:23:35:8f:2b:98:14:f7:91:8d: 69:a3:87:9a:7a:fa:e5:b5:cd:61:8e:d4:ab:79:39: d7:aa:87:4f:63:19:63:d4:7e:07:28:6c:cc:f8:da: a5:cf:3e:7e:ab:5c:80:96:74:0e:8b:a8:52:3e:f1: 6b:7a:26:43:bc:d7:3c:1d:d8:01:0b:8a:37:a8:aa: 14:97:7c:ad:11:6f:81:4c:7e:f9:9b:bb:8f:9e:ef: 84:ca:ca:f9:07:c0:a6:1b:d4:ab:03:48:1c:fa:cc: 6f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:62:A2:2A:68:01:BD:55:91:A7:FE:D1:5F:DE:63:0B:B6:AF:F7:EF X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/dd9a682c-6d0a-41ad-ab6d-2320df8122ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.192.0.0/16 Signature Algorithm: sha256WithRSAEncryption 43:55:d0:81:7a:fc:ca:4e:32:34:1f:77:2b:78:1d:8b:0b:fa: b9:35:a8:3d:73:f3:fa:7d:2a:54:26:22:dc:e0:41:8a:31:df: 01:e4:d2:e7:20:4c:d6:41:d4:62:8e:c6:83:1c:06:4d:2c:66: fc:87:c9:7c:86:3e:1f:ee:fe:a9:34:c4:42:9c:03:68:74:9f: 1d:17:cd:b6:c8:a3:78:a8:a3:8e:cf:ea:a1:fd:12:45:d9:a5: e6:cf:0a:75:c9:78:48:53:d7:97:65:7e:3e:9c:45:ff:39:60: 55:32:ef:3d:ef:2e:8f:d4:d9:4f:4d:bb:14:fa:24:51:c2:6c: b7:c9:56:ec:e9:72:97:c9:ae:1f:3c:a4:6a:19:f5:b0:ca:7f: 3f:7d:dd:9e:e1:2c:a9:57:d5:48:82:48:87:c7:40:68:8a:c2: a4:96:d5:b7:28:fe:a6:06:1c:aa:2c:9f:9e:a9:28:aa:7f:0e: 35:5c:e4:ce:25:9e:41:c4:bd:1b:b7:96:7c:36:82:d8:34:1c: 87:05:b5:db:d9:f0:2a:90:f9:15:99:2c:d7:62:16:f3:ce:94: 29:b5:1c:77:d6:74:1a:f0:fc:d6:cd:de:36:18:55:04:e0:b8: 3c:fd:b0:0a:60:bb:f2:b9:d6:1a:0b:52:26:38:0f:1e:b0:38: bc:e6:d9:71 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURSkv0alitsefP2SIObbIOt+yD1QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMzAzMjI0MDQwWhcNMjUwNDA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3OTY1MzNmODQyMTFlZWZiY2VlYWZjMzUyZWYzYWMzY2My NDdlODI2ZDU4MDUxMmQzMjA2YTIzNmFlY2MyNTI2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTktIx6ZV6DYKY/Uz7fl7BeZRWwI1MbmiR2JJBqjGNhlYM bwYLbH7JGn3sdHK6KVkZCDFRLemiHAt8r6ULcNmR7UFQB10uUQacPiNPS44g6JpB s00XbAYll00+5J55dz2zj/w+BKelfLkBMEC4SKHjXzv05Ri1t8+r+1RUF2xEStCf J2GI+OWB8pj6abHbm5lNE+jJOgrUWV8jGSM1jyuYFPeRjWmjh5p6+uW1zWGO1Kt5 Odeqh09jGWPUfgcobMz42qXPPn6rXICWdA6LqFI+8Wt6JkO81zwd2AELijeoqhSX fK0Rb4FMfvmbu4+e74TKyvkHwKYb1KsDSBz6zG8tAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU2mKiKmgBvVWRp/7RX95jC7av9+8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2RkOWE2ODJjLTZkMGEtNDFhZC1hYjZkLTIzMjBkZjgxMjJlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAPwDANBgkqhkiG9w0BAQsFAAOCAQEAQ1XQgXr8yk4yNB93K3gdiwv6uTWo PXPz+n0qVCYi3OBBijHfAeTS5yBM1kHUYo7GgxwGTSxm/IfJfIY+H+7+qTTEQpwD aHSfHRfNtsijeKijjs/qof0SRdml5s8Kdcl4SFPXl2V+PpxF/zlgVTLvPe8uj9TZ T027FPokUcJst8lW7Olyl8muHzykahn1sMp/P33dnuEsqVfVSIJIh8dAaIrCpJbV tyj+pgYcqiyfnqkoqn8ONVzkziWeQcS9G7eWfDaC2DQchwW129nwKpD5FZks12IW 886UKbUcd9Z0GvD81s3eNhhVBOC4PP2wCmC78rnWGgtSJjgPHrA4vObZcQ== -----END CERTIFICATE-----Generated at Thu Mar 13 23:54:23 2025 by rpki-client