$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3e479fc7-10ec-4bb1-ab9b-aa66f182d779.roa File: 3e479fc7-10ec-4bb1-ab9b-aa66f182d779.roa (raw, json) Hash identifier: Sfw5Xy+iFUfmW51Ua37gLUQNWl4xKQpcfXTQ75F+boo= Subject key identifier: 37:BD:3C:26:D4:0E:FC:54:E9:0C:DA:39:DB:FC:5C:92:F5:1E:78:28 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3B5F500FD2E6199BCF749366E57E5629872AFAE9 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3e479fc7-10ec-4bb1-ab9b-aa66f182d779.roa Signing time: Fri 25 Apr 2025 15:30:16 +0000 ROA not before: Fri 25 Apr 2025 15:30:16 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 148.55.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:5f:50:0f:d2:e6:19:9b:cf:74:93:66:e5:7e:56:29:87:2a:fa:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 25 15:30:16 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=bed0e9049e7b7028683df02c952b891c68ea737f9d57943384fda85a3785d4e1, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a6:df:c5:66:53:47:e8:07:0b:be:8c:84:d5: 7e:3f:48:f3:0d:73:02:df:6d:04:be:e8:a9:c4:e5: 08:4f:19:02:55:ba:d0:22:e3:65:93:90:f1:a3:a8: 9e:ba:f5:62:6f:96:06:3b:d7:d2:47:3e:2c:4f:39: 2e:db:9d:7b:f9:d9:c7:08:1f:b9:a7:40:26:22:22: 4a:7f:57:56:9c:05:11:3e:c3:e4:30:26:50:2f:b9: 1b:50:ae:e7:6f:9f:be:90:c9:6f:61:db:5b:e2:3c: 56:70:82:ab:f6:db:62:c9:8c:02:41:90:ad:b4:8a: 13:4c:bc:36:a9:f0:ba:83:0d:13:54:c0:d7:e1:6c: 5c:35:9e:e9:27:c9:8f:f2:6b:f1:11:e9:d9:41:a1: 29:8f:f9:be:8f:14:cc:f3:5c:a3:36:dc:b6:ee:9b: ff:15:ec:6a:3c:93:e4:c8:4a:96:ed:76:ee:d0:81: 3c:14:14:85:90:10:6e:fb:7f:72:a2:9f:33:ca:1c: eb:83:e7:33:eb:c3:92:c3:37:bc:6f:6c:0a:66:a3: 7b:4a:8d:85:ec:1e:e0:7f:a8:c0:7c:f9:12:21:bd: e4:c1:a6:fa:d3:92:71:3d:12:56:57:0d:51:07:93: 4c:45:17:b3:87:71:3e:30:47:11:cd:bd:51:ca:2f: 6b:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:BD:3C:26:D4:0E:FC:54:E9:0C:DA:39:DB:FC:5C:92:F5:1E:78:28 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3e479fc7-10ec-4bb1-ab9b-aa66f182d779.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 148.55.0.0/16 Signature Algorithm: sha256WithRSAEncryption 05:37:da:8a:31:d2:ac:15:32:e4:57:0f:b7:77:ce:7b:1e:6f: 31:67:19:b1:80:7f:33:59:ff:e8:ee:c3:64:a8:59:75:16:17: 44:85:40:78:8c:76:43:65:79:4e:3e:f6:ea:fc:06:e8:fc:ea: 54:2f:f6:ed:73:a2:85:63:59:85:0b:a8:f4:37:e0:6d:0b:3a: 40:df:e1:67:06:03:8b:43:dd:d6:d9:12:72:fd:6e:e2:81:38: d3:f5:6b:d0:78:a4:2b:c3:8f:31:d4:fb:0f:94:0e:af:ea:30: c8:31:1b:78:5e:b9:b1:39:79:43:10:89:94:8c:46:23:0e:6b: 5c:a5:ca:8c:37:e3:6f:84:8c:f6:45:74:7a:c3:10:38:39:df: 4a:12:fc:ac:f9:37:ef:a8:3f:95:fe:1d:ca:43:41:3d:39:11: f7:98:03:b1:1f:fd:ab:c7:09:04:27:2d:35:15:cd:89:46:35: 40:27:52:fd:44:bc:1f:43:65:db:1c:18:72:65:d5:60:5a:59: b6:df:b8:f0:ab:ca:91:d2:80:5f:cd:d3:01:2c:8c:3b:61:3d: 31:9a:d3:c0:29:56:43:89:2b:09:22:9a:7e:4a:43:c8:fe:cd: 17:89:b3:f0:0e:45:c7:cc:b9:dc:a1:c8:3f:0e:19:fb:6a:4d: 9a:d1:63:f5 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUO19QD9LmGZvPdJNm5X5WKYcq+ukwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDI1MTUzMDE2WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZWQwZTkwNDllN2I3MDI4NjgzZGYwMmM5NTJiODkxYzY4 ZWE3MzdmOWQ1Nzk0MzM4NGZkYTg1YTM3ODVkNGUxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPpt/FZlNH6AcLvoyE1X4/SPMNcwLfbQS+6KnE5QhPGQJV utAi42WTkPGjqJ669WJvlgY719JHPixPOS7bnXv52ccIH7mnQCYiIkp/V1acBRE+ w+QwJlAvuRtQrudvn76QyW9h21viPFZwgqv222LJjAJBkK20ihNMvDap8LqDDRNU wNfhbFw1nuknyY/ya/ER6dlBoSmP+b6PFMzzXKM23Lbum/8V7Go8k+TISpbtdu7Q gTwUFIWQEG77f3KinzPKHOuD5zPrw5LDN7xvbApmo3tKjYXsHuB/qMB8+RIhveTB pvrTknE9ElZXDVEHk0xFF7OHcT4wRxHNvVHKL2v1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUN708JtQO/FTpDNo52/xckvUeeCgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzNlNDc5ZmM3LTEwZWMtNGJiMS1hYjliLWFhNjZmMTgyZDc3OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCUNzANBgkqhkiG9w0BAQsFAAOCAQEABTfaijHSrBUy5FcPt3fOex5vMWcZ sYB/M1n/6O7DZKhZdRYXRIVAeIx2Q2V5Tj726vwG6PzqVC/27XOihWNZhQuo9Dfg bQs6QN/hZwYDi0Pd1tkScv1u4oE40/Vr0HikK8OPMdT7D5QOr+owyDEbeF65sTl5 QxCJlIxGIw5rXKXKjDfjb4SM9kV0esMQODnfShL8rPk376g/lf4dykNBPTkR95gD sR/9q8cJBCctNRXNiUY1QCdS/US8H0Nl2xwYcmXVYFpZtt+48KvKkdKAX83TASyM O2E9MZrTwClWQ4krCSKafkpDyP7NF4mz8A5Fx8y53KHIPw4Z+2pNmtFj9Q== -----END CERTIFICATE-----Generated at Mon May 5 03:45:44 2025 by rpki-client