$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ab15eef1-5a34-4d98-8fbd-32c71769c677.roa File: ab15eef1-5a34-4d98-8fbd-32c71769c677.roa (raw, json) Hash identifier: mGg5EplOLpeyb91ctP4OGGh8aa9ri/EDghheoi5alew= Subject key identifier: AB:4D:0C:9A:0F:5A:71:C4:85:CA:91:76:AF:C0:22:04:72:92:65:66 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2E089933BC794E4AED6933E9C4065AB463D5570E Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ab15eef1-5a34-4d98-8fbd-32c71769c677.roa Signing time: Tue 29 Apr 2025 00:20:22 +0000 ROA not before: Tue 29 Apr 2025 00:20:22 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 398378 IP address blocks: 161.188.150.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 08 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:08:99:33:bc:79:4e:4a:ed:69:33:e9:c4:06:5a:b4:63:d5:57:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 29 00:20:22 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=cf79a8715bed5662056858cd29c204a92ee3327013cff08b98443a373c683099, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:6e:04:1d:52:b3:f1:22:4e:78:c7:e1:6a:16: fb:0c:e9:47:6d:4e:76:c1:9d:d4:42:99:fc:bf:fb: a3:b8:9d:4b:ab:c8:33:25:ab:14:52:33:12:64:43: 6e:0f:80:e3:da:d8:0e:db:b0:69:28:e8:1a:2d:25: f9:5b:c6:fd:ce:44:ca:78:2b:07:4c:da:e2:16:df: 96:be:a1:27:65:d0:13:f6:bc:e1:40:5b:5d:3e:ca: 42:69:77:99:8e:3b:aa:b1:97:df:61:c0:87:35:5d: 89:c2:30:7f:5d:78:64:45:9d:99:41:3e:66:33:3b: 42:cd:3e:94:55:84:4d:7a:eb:be:7f:48:e8:a7:34: fc:04:ec:b4:96:73:b3:54:49:a9:a8:dd:f9:77:89: be:fe:28:b2:72:9b:ec:bc:9b:85:16:de:c9:42:de: aa:47:db:48:0b:07:39:ac:59:31:c0:98:a1:9c:f1: b7:24:f4:a1:04:9a:b2:61:2a:79:07:6e:36:80:b3: 92:49:a2:0f:52:63:f5:cc:32:6a:a0:3e:43:ae:42: 75:59:29:d9:b1:f7:b2:60:95:2c:a9:d8:a3:75:7c: 6e:a3:ab:7a:a4:23:e4:90:11:f4:db:2d:a3:01:3b: 57:00:db:d5:cb:1f:11:6b:13:da:0e:52:f1:81:25: 12:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:4D:0C:9A:0F:5A:71:C4:85:CA:91:76:AF:C0:22:04:72:92:65:66 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ab15eef1-5a34-4d98-8fbd-32c71769c677.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.188.150.0/23 Signature Algorithm: sha256WithRSAEncryption 77:48:4f:84:24:64:43:53:49:bd:ee:39:32:b3:a5:66:76:9a: b6:fb:84:11:fe:ee:83:5c:ed:c9:37:b4:f6:c0:70:3c:27:bc: af:db:83:0e:6d:32:fd:9d:be:3c:91:f6:b6:44:a2:dc:42:73: 4b:75:0a:41:0c:5d:08:46:be:f8:b3:cb:bc:a9:b7:4c:8c:22: 09:5e:33:cd:c2:bc:8d:d8:ee:ac:a0:f8:5b:61:95:8d:1a:25: 37:24:c7:58:30:c5:50:77:d2:ca:96:fb:58:cf:75:75:e0:5d: 61:ff:de:1b:5a:fd:5b:dd:b3:62:f3:a3:49:87:ae:c6:61:1d: e3:7b:44:7e:7e:06:c2:da:dc:e0:b7:f7:f8:37:42:8c:dc:ea: 35:aa:64:76:8b:83:b3:a3:de:b0:0e:ec:36:56:76:ed:78:83: b9:d2:90:56:02:34:38:16:a9:0c:1a:5e:b3:2f:c5:67:c7:e2: 5e:fd:ad:c0:7a:13:dd:5a:bf:95:42:d1:1f:08:f6:0d:ed:12: 7d:20:ab:b1:f4:a2:f4:92:37:da:cd:0a:38:fa:bf:af:59:65: dc:6a:e5:63:c4:d3:3e:f3:28:e6:a7:3f:22:13:1a:ac:9f:c9: ab:3e:ad:a0:f0:3e:d5:29:dc:17:1c:6e:db:03:09:ca:95:98: 07:88:02:47 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULgiZM7x5TkrtaTPpxAZatGPVVw4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNDI5MDAyMDIyWhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjZjc5YTg3MTViZWQ1NjYyMDU2ODU4Y2QyOWMyMDRhOTJl ZTMzMjcwMTNjZmYwOGI5ODQ0M2EzNzNjNjgzMDk5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDhbgQdUrPxIk54x+FqFvsM6UdtTnbBndRCmfy/+6O4nUur yDMlqxRSMxJkQ24PgOPa2A7bsGko6BotJflbxv3ORMp4KwdM2uIW35a+oSdl0BP2 vOFAW10+ykJpd5mOO6qxl99hwIc1XYnCMH9deGRFnZlBPmYzO0LNPpRVhE16675/ SOinNPwE7LSWc7NUSamo3fl3ib7+KLJym+y8m4UW3slC3qpH20gLBzmsWTHAmKGc 8bck9KEEmrJhKnkHbjaAs5JJog9SY/XMMmqgPkOuQnVZKdmx97JglSyp2KN1fG6j q3qkI+SQEfTbLaMBO1cA29XLHxFrE9oOUvGBJRKfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUq00Mmg9accSFypF2r8AiBHKSZWYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2FiMTVlZWYxLTVhMzQtNGQ5OC04ZmJkLTMyYzcxNzY5YzY3Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGhvJYwDQYJKoZIhvcNAQELBQADggEBAHdIT4QkZENTSb3uOTKzpWZ2mrb7 hBH+7oNc7ck3tPbAcDwnvK/bgw5tMv2dvjyR9rZEotxCc0t1CkEMXQhGvvizy7yp t0yMIgleM83CvI3Y7qyg+FthlY0aJTckx1gwxVB30sqW+1jPdXXgXWH/3hta/Vvd s2Lzo0mHrsZhHeN7RH5+BsLa3OC39/g3Qozc6jWqZHaLg7Oj3rAO7DZWdu14g7nS kFYCNDgWqQwaXrMvxWfH4l79rcB6E91av5VC0R8I9g3tEn0gq7H0ovSSN9rNCjj6 v69ZZdxq5WPE0z7zKOanPyITGqyfyas+raDwPtUp3BccbtsDCcqVmAeIAkc= -----END CERTIFICATE-----Generated at Tue May 6 15:13:16 2025 by rpki-client