$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00476d6f-40ff-4135-9a46-906f4f8898c0.roa File: 00476d6f-40ff-4135-9a46-906f4f8898c0.roa (raw, json) Hash identifier: TlasW2iJXpLydR9vp5L/qPLgbcBp9KXdBeHyDdLi2ZU= Subject key identifier: 3B:2A:4A:52:34:AC:C3:7B:A3:62:FF:DC:AC:9A:A3:25:FE:41:D0:66 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7B5AA6465048BC201728523A332410C9FAEE7DB4 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00476d6f-40ff-4135-9a46-906f4f8898c0.roa Signing time: Mon 27 Jan 2025 00:00:00 +0000 ROA not before: Mon 27 Jan 2025 00:00:00 +0000 ROA not after: Mon 03 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 3.236.32.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:5a:a6:46:50:48:bc:20:17:28:52:3a:33:24:10:c9:fa:ee:7d:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 27 00:00:00 2025 GMT Not After : Mar 3 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:74:77:8d:ec:18:cb:8b:43:f6:c0:9e:94:26: d8:78:b9:71:9c:3e:ce:5f:35:e9:8a:cf:c2:fd:d0: 7a:cb:dc:1c:47:63:3d:6e:37:26:d1:25:4e:1f:5c: 46:3d:4a:e7:6e:6c:54:bd:80:4a:eb:21:3b:8a:23: 6b:c9:4d:bc:1f:f6:c4:ef:e9:4b:45:82:29:c5:5c: cd:d0:b5:7d:2d:ce:01:7d:04:73:f6:8d:a0:63:58: dd:9b:14:d2:31:1e:f7:93:69:6e:86:c2:20:85:88: 7b:0e:99:32:a2:7c:a1:34:93:7a:19:ac:52:fc:b1: 39:64:3a:22:95:6b:4d:69:12:04:35:d6:d2:55:27: ce:95:f7:2c:68:05:bb:55:58:2a:54:87:cd:fe:7d: ba:6f:f6:17:d8:b7:00:c5:21:da:2e:47:e7:32:e2: 3b:0e:42:36:65:38:4b:f6:55:74:1b:9d:4b:9b:7c: 38:74:7a:42:84:6e:4a:35:98:a6:a9:10:29:2d:cb: c0:b6:e7:b7:8e:2b:dc:44:d2:a8:4d:cf:45:da:b7: bf:03:58:fe:a3:86:0a:52:d4:75:f8:94:96:53:17: 5b:1d:c2:12:38:ab:78:ba:2e:32:cb:9e:ec:a7:b3: d8:96:f5:58:4f:99:50:4f:c4:98:c3:e2:8e:38:8a: ca:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:2A:4A:52:34:AC:C3:7B:A3:62:FF:DC:AC:9A:A3:25:FE:41:D0:66 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00476d6f-40ff-4135-9a46-906f4f8898c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.236.32.0/22 Signature Algorithm: sha256WithRSAEncryption 85:df:85:3e:5d:7a:83:68:8f:8d:68:6f:56:9c:c9:fc:96:6e: b8:af:11:1f:66:b6:95:1a:68:0d:f3:8d:0b:c0:11:05:56:0a: aa:5d:d8:a9:1c:1e:27:a3:96:bb:3f:bd:84:be:20:0c:b5:5b: cb:7a:8d:6a:d3:4c:92:a7:13:9d:c8:eb:39:7d:64:22:86:32: 96:f4:f8:6a:6c:59:83:d2:f3:74:d5:c4:8b:2f:b0:30:19:72: 61:ab:fa:d6:d7:0c:3c:b4:76:0e:a3:dc:f3:69:de:9d:9c:54: 2c:08:00:a6:38:1a:3f:fc:e1:68:0a:d6:c6:53:bd:f4:f4:36: 54:70:45:0e:7e:54:fc:5c:fa:23:86:76:b6:8f:bd:2c:5b:c9: d5:39:64:24:fb:98:74:f4:0b:ab:ec:65:e5:b1:8f:31:5d:09: 60:c6:2b:a0:46:28:c0:61:c0:b8:de:2b:aa:1c:37:09:dd:4f: 7e:e5:23:c6:9d:37:cc:1c:38:74:27:2d:3f:93:11:05:6a:be: 09:5d:c6:71:7c:d9:ff:19:f2:12:fb:14:84:75:d4:d5:65:b8: 34:9c:a8:0d:7b:37:8b:eb:3d:2a:72:78:0b:e5:06:81:ab:be: 8c:69:e8:98:2b:37:dc:a2:78:11:37:29:76:c3:17:53:ea:f4: 7e:0a:83:28 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUe1qmRlBIvCAXKFI6MyQQyfrufbQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTI3MDAwMDAwWhcNMjUwMzAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYzc5NjJmMGZhZDE2NWIyMWRiYWRjNTIyNWQwZmYyNzZk ZGQ4OGZmZTQzMmRiNGQ3Mzg5ZmIwMzM1MmRjNDNhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFdHeN7BjLi0P2wJ6UJth4uXGcPs5fNemKz8L90HrL3BxH Yz1uNybRJU4fXEY9SudubFS9gErrITuKI2vJTbwf9sTv6UtFginFXM3QtX0tzgF9 BHP2jaBjWN2bFNIxHveTaW6GwiCFiHsOmTKifKE0k3oZrFL8sTlkOiKVa01pEgQ1 1tJVJ86V9yxoBbtVWCpUh83+fbpv9hfYtwDFIdouR+cy4jsOQjZlOEv2VXQbnUub fDh0ekKEbko1mKapECkty8C257eOK9xE0qhNz0Xat78DWP6jhgpS1HX4lJZTF1sd whI4q3i6LjLLnuyns9iW9VhPmVBPxJjD4o44iso/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOypKUjSsw3ujYv/crJqjJf5B0GYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzAwNDc2ZDZmLTQwZmYtNDEzNS05YTQ2LTkwNmY0Zjg4OThjMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAID7CAwDQYJKoZIhvcNAQELBQADggEBAIXfhT5deoNoj41ob1acyfyWbriv ER9mtpUaaA3zjQvAEQVWCqpd2KkcHiejlrs/vYS+IAy1W8t6jWrTTJKnE53I6zl9 ZCKGMpb0+GpsWYPS83TVxIsvsDAZcmGr+tbXDDy0dg6j3PNp3p2cVCwIAKY4Gj/8 4WgK1sZTvfT0NlRwRQ5+VPxc+iOGdraPvSxbydU5ZCT7mHT0C6vsZeWxjzFdCWDG K6BGKMBhwLjeK6ocNwndT37lI8adN8wcOHQnLT+TEQVqvgldxnF82f8Z8hL7FIR1 1NVluDScqA17N4vrPSpyeAvlBoGrvoxp6JgrN9yieBE3KXbDF1Pq9H4Kgyg= -----END CERTIFICATE-----Generated at Wed Feb 5 09:37:24 2025 by rpki-client