$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1b663720-077c-41a7-8fe2-c73d5f8c253d.roa File: 1b663720-077c-41a7-8fe2-c73d5f8c253d.roa (raw, json) Hash identifier: dfoKshpVZC79ViVle94H7/9Z1EuEty1Fu5ODlcGvwTk= Subject key identifier: 08:FA:76:ED:7D:73:E7:73:07:D7:0B:13:D3:AB:84:A1:5F:94:92:CE Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0DE72E1773065573284D27705966C690FF9D4909 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1b663720-077c-41a7-8fe2-c73d5f8c253d.roa Signing time: Tue 22 Apr 2025 18:11:22 +0000 ROA not before: Tue 22 Apr 2025 18:11:22 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.94.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:e7:2e:17:73:06:55:73:28:4d:27:70:59:66:c6:90:ff:9d:49:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 22 18:11:22 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=920e1b8649adcc978e6c45730377e7cc09267a1f5268327501bf3fa034443bdd, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:91:30:f5:97:0a:cf:e3:99:da:b2:17:11:99: 28:95:68:79:26:4d:67:3f:02:d6:84:ae:ad:31:a9: 51:6f:74:d7:42:5c:5d:29:fa:c9:5f:07:d3:36:85: 2d:11:93:24:00:cb:5c:f4:88:a0:89:42:7f:61:db: 12:22:35:20:65:03:3d:4a:58:6f:21:ab:5d:33:dc: dd:5c:fd:de:f0:82:2d:0d:24:97:46:50:12:fa:46: 61:b7:ae:69:7f:56:7a:07:98:25:c0:8a:0b:7a:55: 16:39:d5:06:bf:4e:78:6a:0e:ef:13:29:e3:30:7c: 7e:59:b5:47:fb:2b:ac:30:6c:aa:42:89:b6:9b:dc: 80:82:d2:e7:39:d2:d1:1f:d2:6d:fd:cc:76:02:7e: f4:48:c4:80:aa:6d:93:85:55:95:1c:42:e8:8d:1b: 4b:82:25:1f:e4:70:57:1d:2b:8b:f2:85:ef:71:8f: 0c:1a:25:7f:16:d4:7e:9e:a1:87:50:09:7d:91:9f: 8c:21:23:e5:4f:de:a6:fa:91:d9:32:c3:56:4f:a8: 48:29:ab:b6:c7:be:6c:a2:dc:9c:98:1b:0b:d1:c8: 71:69:db:a6:44:f7:93:b8:80:af:73:fc:bf:68:b9: 08:e7:d7:21:3b:6a:54:18:fe:a2:7f:8f:db:84:92: 34:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:FA:76:ED:7D:73:E7:73:07:D7:0B:13:D3:AB:84:A1:5F:94:92:CE X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1b663720-077c-41a7-8fe2-c73d5f8c253d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.94.9.0/24 Signature Algorithm: sha256WithRSAEncryption af:05:91:23:1f:fc:a7:da:af:e4:b5:7b:2b:7f:9d:87:6a:b8: 54:60:0a:72:ac:37:3c:41:c8:2e:ce:42:76:85:e8:50:34:cb: 26:2f:6e:11:48:08:c0:9f:8e:4f:8b:e4:48:8a:99:e8:f8:a1: 5d:2c:52:42:f5:6a:8d:39:48:aa:f5:f7:29:c1:16:62:87:ef: 23:b6:da:a9:fd:4b:28:6c:b0:34:0f:fe:04:e3:0a:39:52:2a: 15:0d:95:bd:f9:1c:c6:60:15:23:f5:9c:5b:72:dc:52:8d:22: 31:62:0a:48:bb:b9:ce:35:17:ba:f6:de:0b:8a:1e:74:f4:b8: 7c:94:ef:9e:3b:fb:cd:cc:79:da:4b:91:ef:01:00:48:70:fc: af:14:af:f0:14:2c:15:a5:38:6a:48:a9:16:bb:ee:25:71:d2: bd:1a:5c:df:aa:e3:15:32:d0:14:e2:fc:c3:e2:84:c4:55:93: a5:4b:95:96:eb:54:73:62:02:11:55:13:fa:0a:39:6a:e2:e2: 50:d0:32:8f:7f:a6:04:52:f3:08:a7:59:dc:b0:dc:78:81:00: ac:d2:a4:ba:5a:1e:1d:88:19:78:3c:19:fa:9c:9a:5a:d2:35: 3c:60:ab:06:c6:a7:80:0e:81:37:45:15:33:94:78:b9:90:12: 44:45:10:1c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDecuF3MGVXMoTSdwWWbGkP+dSQkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDIyMTgxMTIyWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MjBlMWI4NjQ5YWRjYzk3OGU2YzQ1NzMwMzc3ZTdjYzA5 MjY3YTFmNTI2ODMyNzUwMWJmM2ZhMDM0NDQzYmRkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTkTD1lwrP45nashcRmSiVaHkmTWc/AtaErq0xqVFvdNdC XF0p+slfB9M2hS0RkyQAy1z0iKCJQn9h2xIiNSBlAz1KWG8hq10z3N1c/d7wgi0N JJdGUBL6RmG3rml/VnoHmCXAigt6VRY51Qa/TnhqDu8TKeMwfH5ZtUf7K6wwbKpC ibab3ICC0uc50tEf0m39zHYCfvRIxICqbZOFVZUcQuiNG0uCJR/kcFcdK4vyhe9x jwwaJX8W1H6eoYdQCX2Rn4whI+VP3qb6kdkyw1ZPqEgpq7bHvmyi3JyYGwvRyHFp 26ZE95O4gK9z/L9ouQjn1yE7alQY/qJ/j9uEkjRbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCPp27X1z53MH1wsT06uEoV+Uks4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzFiNjYzNzIwLTA3N2MtNDFhNy04ZmUyLWM3M2Q1ZjhjMjUzZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0XgkwDQYJKoZIhvcNAQELBQADggEBAK8FkSMf/Kfar+S1eyt/nYdquFRg CnKsNzxByC7OQnaF6FA0yyYvbhFICMCfjk+L5EiKmej4oV0sUkL1ao05SKr19ynB FmKH7yO22qn9SyhssDQP/gTjCjlSKhUNlb35HMZgFSP1nFty3FKNIjFiCki7uc41 F7r23guKHnT0uHyU7547+83MedpLke8BAEhw/K8Ur/AULBWlOGpIqRa77iVx0r0a XN+q4xUy0BTi/MPihMRVk6VLlZbrVHNiAhFVE/oKOWri4lDQMo9/pgRS8winWdyw 3HiBAKzSpLpaHh2IGXg8GfqcmlrSNTxgqwbGp4AOgTdFFTOUeLmQEkRFEBw= -----END CERTIFICATE-----Generated at Mon May 5 05:57:32 2025 by rpki-client