$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e41be3ce-ed0e-4c7e-a9fd-4114901fa40b.roa File: e41be3ce-ed0e-4c7e-a9fd-4114901fa40b.roa (raw, json) Hash identifier: gDQ4iaUqp9zB6X7Y1r7O+k737rs9QaGJ8K+nJNvCbq8= Subject key identifier: 23:34:4C:17:A5:15:61:54:FF:09:A8:D3:A7:2A:F7:43:78:17:4C:F9 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 66A7C3766C43A3843672E0396D06CB00F2A72A6C Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e41be3ce-ed0e-4c7e-a9fd-4114901fa40b.roa Signing time: Wed 12 Feb 2025 00:00:00 +0000 ROA not before: Wed 12 Feb 2025 00:00:00 +0000 ROA not after: Wed 19 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:a7:c3:76:6c:43:a3:84:36:72:e0:39:6d:06:cb:00:f2:a7:2a:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Feb 12 00:00:00 2025 GMT Not After : Mar 19 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:fc:52:f9:14:20:c9:65:cb:eb:78:8b:22:91: 4f:7f:d8:af:6e:8a:a7:a4:1e:ca:77:cd:dc:60:7a: 5a:07:11:88:b3:e1:dd:30:92:d7:69:f3:30:f3:ef: 3d:1b:d7:07:d9:19:0c:5a:93:22:65:8a:e0:a4:12: ac:9b:58:94:37:e8:2b:2c:0c:ce:e5:d5:56:a9:44: b3:70:bd:de:e1:e9:34:37:20:e2:19:17:4f:ea:12: 6d:c1:1d:5a:46:3a:71:dd:21:e2:43:59:2b:08:5a: e6:41:4c:11:0e:d7:c9:c3:dc:d1:af:de:41:08:76: 02:c5:0c:08:7e:54:df:2f:b7:fa:dc:8a:f7:c1:21: df:f9:23:34:26:bc:86:31:8e:15:71:ac:14:42:25: 96:de:67:a1:ef:97:89:82:8a:55:aa:5d:53:79:71: f4:37:65:79:02:16:fe:d3:c7:43:b0:df:ef:58:10: 07:30:ab:60:22:35:38:5e:af:17:44:5c:de:9e:12: a2:fc:d8:e7:03:de:50:86:15:a7:8f:1b:d8:04:9f: 39:37:df:89:60:27:77:93:40:97:fa:75:ab:97:3e: 46:89:37:10:09:29:e3:fb:01:6b:5e:f8:08:f1:28: 9f:48:37:57:3e:ab:64:d0:d8:ef:05:a3:6d:a5:30: 60:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:34:4C:17:A5:15:61:54:FF:09:A8:D3:A7:2A:F7:43:78:17:4C:F9 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e41be3ce-ed0e-4c7e-a9fd-4114901fa40b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.0.0/16 Signature Algorithm: sha256WithRSAEncryption 21:ef:2f:eb:22:bc:66:a2:8a:a5:9a:c2:4e:96:2c:bb:ac:1b: 13:1d:67:03:ca:c8:22:1a:19:d5:90:18:d4:b5:c7:c1:f4:38: 58:d3:ba:9b:a0:4f:5f:f6:06:60:f7:8d:7c:05:43:99:a0:b7: 37:e7:2a:ea:f9:ba:a3:f0:63:10:14:6c:29:a6:98:67:f4:f1: ec:91:0c:c8:a8:41:c7:cd:52:4c:8a:b1:e5:f7:15:f1:a8:61: e5:c6:60:ca:2f:89:17:f0:07:61:4f:b7:dd:43:b0:b7:97:e0: 71:87:73:46:67:07:53:6e:62:bc:69:d4:86:78:f8:ac:16:df: c9:9a:70:25:cc:78:27:4e:4e:2f:7a:82:92:7d:89:5d:a9:ce: 0e:89:26:57:98:a8:f0:48:c9:65:fe:bf:50:ec:25:e6:2e:c1: be:f4:00:f0:e7:21:b5:f7:4a:9d:43:1f:80:5f:5c:34:04:86: b0:8b:6f:1a:ef:c5:f4:d9:56:3c:40:ed:bc:2a:ac:29:39:c8: 09:57:5b:fb:de:ff:ec:04:60:ab:46:b6:d0:7e:f1:8a:9a:a7: 19:33:f6:a9:46:74:b6:cd:82:fa:9b:9b:d2:34:d5:ee:fd:30: 61:3b:d0:1c:c1:c7:b9:77:1d:29:e0:2c:ec:54:3a:b9:ae:5c: d4:af:2c:c3 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZqfDdmxDo4Q2cuA5bQbLAPKnKmwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMjEyMDAwMDAwWhcNMjUwMzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwY2YxYmUxYjBiZGQzNjFhOWJhNTdjZWE3YTU1NmY1NWRj ZjkzMzNkMWQyNGE2MjFhODMzNjI3OWJmMmM2OTgzMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCe/FL5FCDJZcvreIsikU9/2K9uiqekHsp3zdxgeloHEYiz 4d0wktdp8zDz7z0b1wfZGQxakyJliuCkEqybWJQ36CssDM7l1VapRLNwvd7h6TQ3 IOIZF0/qEm3BHVpGOnHdIeJDWSsIWuZBTBEO18nD3NGv3kEIdgLFDAh+VN8vt/rc ivfBId/5IzQmvIYxjhVxrBRCJZbeZ6Hvl4mCilWqXVN5cfQ3ZXkCFv7Tx0Ow3+9Y EAcwq2AiNTherxdEXN6eEqL82OcD3lCGFaePG9gEnzk334lgJ3eTQJf6dauXPkaJ NxAJKeP7AWte+AjxKJ9IN1c+q2TQ2O8Fo22lMGA3AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUIzRMF6UVYVT/CajTpyr3Q3gXTPkwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2U0MWJlM2NlLWVkMGUtNGM3ZS1hOWZkLTQxMTQ5MDFmYTQwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCtUjANBgkqhkiG9w0BAQsFAAOCAQEAIe8v6yK8ZqKKpZrCTpYsu6wbEx1n A8rIIhoZ1ZAY1LXHwfQ4WNO6m6BPX/YGYPeNfAVDmaC3N+cq6vm6o/BjEBRsKaaY Z/Tx7JEMyKhBx81STIqx5fcV8ahh5cZgyi+JF/AHYU+33UOwt5fgcYdzRmcHU25i vGnUhnj4rBbfyZpwJcx4J05OL3qCkn2JXanODokmV5io8EjJZf6/UOwl5i7BvvQA 8OchtfdKnUMfgF9cNASGsItvGu/F9NlWPEDtvCqsKTnICVdb+97/7ARgq0a20H7x ipqnGTP2qUZ0ts2C+pub0jTV7v0wYTvQHMHHuXcdKeAs7FQ6ua5c1K8sww== -----END CERTIFICATE-----Generated at Sun Feb 16 15:18:13 2025 by rpki-client