$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b4696ceb-f833-43c4-af53-9960894ce08d.roa File: b4696ceb-f833-43c4-af53-9960894ce08d.roa (raw, json) Hash identifier: Ziz8mzJjhHBKz6ziswDaRAWmAmLvcOqAzSofEPWeZnE= Subject key identifier: 10:64:B5:40:3C:BC:58:83:84:9B:C8:8C:8C:3B:29:6C:06:54:16:00 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 17430411C26EEDFE104F6AF8C9FF2CA5E136DD27 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b4696ceb-f833-43c4-af53-9960894ce08d.roa Signing time: Tue 28 Jan 2025 00:00:00 +0000 ROA not before: Tue 28 Jan 2025 00:00:00 +0000 ROA not after: Tue 04 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 205.251.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:43:04:11:c2:6e:ed:fe:10:4f:6a:f8:c9:ff:2c:a5:e1:36:dd:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Jan 28 00:00:00 2025 GMT Not After : Mar 4 23:59:59 2025 GMT Subject: CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:2a:f7:9b:60:61:f9:8e:77:b0:a2:68:10:28: bf:f6:51:ff:6c:b4:c5:96:3a:d3:d0:bb:f1:47:06: a9:76:9f:57:71:b7:e1:28:83:c4:32:ec:d8:75:9e: 91:89:42:3b:03:7f:e5:c5:eb:07:ee:41:fd:e1:62: 8e:3c:d5:79:45:df:e8:69:33:9c:d7:cb:e7:4c:4c: d3:ae:a4:05:2a:4b:74:d7:ed:b3:2e:9a:33:4d:c7: 4f:59:e1:28:71:98:71:e6:6f:ed:3e:6f:18:d8:ea: ec:43:a4:1b:d3:ba:d2:b5:cb:56:ad:e0:0b:7c:99: 3e:86:9e:68:34:f9:ff:a0:c6:60:b9:85:81:3a:6a: 15:e5:d8:7e:dd:47:1b:c7:e4:d8:c2:57:66:de:d7: 96:9d:69:9f:63:2f:45:81:b4:01:46:e3:96:b4:c5: cc:b2:f9:e7:3e:9a:3f:21:dc:df:d2:d1:27:ff:c4: 2a:7b:00:6c:d6:20:6e:4d:40:97:05:78:79:00:1e: ec:6a:0c:8b:62:8c:7a:60:34:d2:5c:6b:22:2b:ba: f8:19:37:2b:4b:fc:27:ac:d9:b5:b4:22:dc:82:80: 63:6f:a5:8f:84:56:96:85:c5:e5:09:5f:da:d1:41: 19:bf:e4:fc:4b:dd:f7:ce:cf:57:1b:98:1c:1a:59: 69:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:64:B5:40:3C:BC:58:83:84:9B:C8:8C:8C:3B:29:6C:06:54:16:00 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b4696ceb-f833-43c4-af53-9960894ce08d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.240.0/22 Signature Algorithm: sha256WithRSAEncryption 9b:c1:47:a3:03:aa:0e:e1:31:a7:f9:81:67:89:f9:41:a4:f5: d9:78:55:25:37:b5:55:8d:96:66:e7:df:e4:6c:3f:53:61:31: 8f:2c:4f:7f:21:67:8c:0a:4a:0a:19:13:8e:d3:e7:22:ff:d7: 47:ec:92:b2:a8:67:d5:46:b4:70:2a:a8:3e:36:45:94:f0:9c: 36:95:06:c5:06:74:2e:86:f1:06:1b:c6:55:3b:a5:6e:64:ff: 25:46:03:0f:a7:50:55:a0:91:58:42:4c:4e:c5:e4:3a:39:ba: 4b:b0:82:03:71:f2:94:6e:a2:9b:a8:3b:55:82:d4:e2:6c:80: 01:99:14:97:58:a6:ed:93:26:8f:8f:63:0e:36:e5:d2:c6:b5: a3:62:87:ee:2d:76:c1:a4:4b:db:f3:b6:31:1f:4b:63:69:43: 35:d2:ab:8d:ca:46:07:37:98:6d:6d:39:a0:b8:a6:da:2b:37: b9:03:90:01:7f:f3:99:93:79:1b:75:90:8b:19:f9:56:aa:3a: b2:e5:85:bb:eb:de:08:f1:18:34:0d:2e:cc:11:d0:28:a4:83: 76:9c:3a:23:8c:46:09:33:0e:69:5c:10:fa:bb:96:1e:a1:9a: 3d:09:73:d7:49:c7:7e:cc:6b:a3:3a:8d:e7:a1:57:33:c6:63: e7:71:b9:6e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUF0MEEcJu7f4QT2r4yf8speE23ScwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwMTI4MDAwMDAwWhcNMjUwMzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MTc2NGIwNGMwYWMyOTE3ZDkyMGQ4MGRiNWFmNzdhNDBl NmZlMGNlZjEzOGMxN2E0MTZiNjc2ZmU5ZDQ0NjNjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgKvebYGH5jnewomgQKL/2Uf9stMWWOtPQu/FHBql2n1dx t+Eog8Qy7Nh1npGJQjsDf+XF6wfuQf3hYo481XlF3+hpM5zXy+dMTNOupAUqS3TX 7bMumjNNx09Z4ShxmHHmb+0+bxjY6uxDpBvTutK1y1at4At8mT6Gnmg0+f+gxmC5 hYE6ahXl2H7dRxvH5NjCV2be15adaZ9jL0WBtAFG45a0xcyy+ec+mj8h3N/S0Sf/ xCp7AGzWIG5NQJcFeHkAHuxqDItijHpgNNJcayIruvgZNytL/Ces2bW0ItyCgGNv pY+EVpaFxeUJX9rRQRm/5PxL3ffOz1cbmBwaWWm/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEGS1QDy8WIOEm8iMjDspbAZUFgAwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2I0Njk2Y2ViLWY4MzMtNDNjNC1hZjUzLTk5NjA4OTRjZTA4ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALN+/AwDQYJKoZIhvcNAQELBQADggEBAJvBR6MDqg7hMaf5gWeJ+UGk9dl4 VSU3tVWNlmbn3+RsP1NhMY8sT38hZ4wKSgoZE47T5yL/10fskrKoZ9VGtHAqqD42 RZTwnDaVBsUGdC6G8QYbxlU7pW5k/yVGAw+nUFWgkVhCTE7F5Do5ukuwggNx8pRu opuoO1WC1OJsgAGZFJdYpu2TJo+PYw425dLGtaNih+4tdsGkS9vztjEfS2NpQzXS q43KRgc3mG1tOaC4ptorN7kDkAF/85mTeRt1kIsZ+VaqOrLlhbvr3gjxGDQNLswR 0Cikg3acOiOMRgkzDmlcEPq7lh6hmj0Jc9dJx37Ma6M6jeehVzPGY+dxuW4= -----END CERTIFICATE-----Generated at Wed Feb 5 09:57:36 2025 by rpki-client