$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/06ada3e1-d9c4-414b-9112-eef1f0cb6707.roa File: 06ada3e1-d9c4-414b-9112-eef1f0cb6707.roa (raw, json) Hash identifier: +X/AdasCrJI72/cZ/8//14TOFaTuVdn2ZfBf7RrdQVQ= Subject key identifier: 25:16:B0:FD:7D:71:D0:E4:25:D9:73:39:D1:6A:21:F1:A2:31:F1:97 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5E3C1FEC449252A047BE8A4505AC6BEC5F6EB693 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/06ada3e1-d9c4-414b-9112-eef1f0cb6707.roa Signing time: Fri 31 Jan 2025 00:00:00 +0000 ROA not before: Fri 31 Jan 2025 00:00:00 +0000 ROA not after: Fri 07 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.47.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:3c:1f:ec:44:92:52:a0:47:be:8a:45:05:ac:6b:ec:5f:6e:b6:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 31 00:00:00 2025 GMT Not After : Mar 7 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:57:39:e3:87:c9:24:f9:57:65:d4:a0:38:b3: d5:d9:d0:17:14:f7:67:30:ff:d9:c9:62:35:51:48: ef:b6:2b:0f:5f:b7:87:66:56:da:54:49:39:8e:60: c4:c1:4c:67:47:18:da:ac:0d:4f:33:3c:fa:01:c7: 73:cf:15:a9:bc:e8:ba:35:e0:ed:c6:8b:18:7b:0a: d3:08:0f:db:fa:ba:94:ea:93:c5:fd:00:7a:63:09: 37:cd:d0:d3:46:12:a4:bb:d8:1a:24:43:14:14:28: 8b:be:1d:90:85:65:a1:b8:17:a6:74:78:42:9d:8b: f8:25:e2:5d:49:27:4e:e0:71:50:81:22:38:3c:ea: e3:b5:91:7a:9f:9a:16:8c:12:46:20:9f:82:a6:5b: e7:95:6a:14:87:28:dd:18:25:4a:10:46:2e:2a:09: 61:10:95:50:bf:5f:6a:0f:f5:f6:c8:1f:12:ba:6c: bf:fc:43:04:00:85:02:53:78:40:33:02:bb:d0:99: 1d:46:46:ba:97:41:58:8f:aa:af:e3:81:2a:2c:54: db:5a:3b:05:2e:22:65:5d:72:e7:fc:77:3d:5b:cd: 65:ee:8f:01:8a:cc:aa:60:0f:2e:d5:f0:5d:ae:28: 73:06:4d:24:31:70:5e:9d:48:5e:2c:c0:41:9b:25: f5:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:16:B0:FD:7D:71:D0:E4:25:D9:73:39:D1:6A:21:F1:A2:31:F1:97 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/06ada3e1-d9c4-414b-9112-eef1f0cb6707.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.47.128.0/17 Signature Algorithm: sha256WithRSAEncryption b0:fa:ba:93:c6:bb:29:aa:11:7e:67:3c:ee:be:8e:13:af:d3: e2:80:f7:4d:86:e2:5e:08:50:30:db:78:e8:55:5f:5a:a1:03: 3c:3e:37:97:52:6a:6e:db:80:41:21:26:a0:56:87:33:89:71: bf:d8:24:9d:16:48:1d:dc:05:9b:74:17:c0:8d:90:e1:4e:1f: d6:be:34:41:df:7f:2e:e2:8d:62:14:02:ae:c0:07:ff:0a:00: c8:de:1b:75:d9:0a:03:82:c8:46:c9:0c:3a:e9:e0:8b:d1:6a: 41:71:7d:0f:7c:1b:61:55:65:c5:fc:9b:7e:14:3e:61:9c:fb: 70:54:ee:cd:22:0b:f8:48:d0:9a:89:f1:82:3a:bd:ab:8a:ad: 08:7b:15:7b:ca:4b:7c:c3:0c:41:88:56:a4:ec:0e:dd:a1:73: 3c:6b:1f:fc:f2:24:05:bd:0e:8b:2e:b8:6b:a8:52:6e:ad:ed: b0:cc:18:98:67:b9:95:3e:7f:84:23:5c:5a:6e:87:5c:d9:66: d4:7a:22:49:e4:bc:d1:2d:d8:23:7f:02:56:b7:ef:2c:39:00: 15:22:b1:12:db:04:ad:f8:b3:44:26:02:3d:02:f7:dc:c1:ba: 97:6a:2f:a1:87:66:22:05:ac:bc:b9:d2:81:a6:05:6f:ac:7d: d2:e6:f4:d6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXjwf7ESSUqBHvopFBaxr7F9utpMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTMxMDAwMDAwWhcNMjUwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzN2VhOTQ3ZjdjZDM2NTI3YTcwZjcwMDcxNjEwNWQwYzcy ZmY5NjcyMDVmNDNhNzRhN2EyM2FjMTJkMjM1YTFiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdVznjh8kk+Vdl1KA4s9XZ0BcU92cw/9nJYjVRSO+2Kw9f t4dmVtpUSTmOYMTBTGdHGNqsDU8zPPoBx3PPFam86Lo14O3Gixh7CtMID9v6upTq k8X9AHpjCTfN0NNGEqS72BokQxQUKIu+HZCFZaG4F6Z0eEKdi/gl4l1JJ07gcVCB Ijg86uO1kXqfmhaMEkYgn4KmW+eVahSHKN0YJUoQRi4qCWEQlVC/X2oP9fbIHxK6 bL/8QwQAhQJTeEAzArvQmR1GRrqXQViPqq/jgSosVNtaOwUuImVdcuf8dz1bzWXu jwGKzKpgDy7V8F2uKHMGTSQxcF6dSF4swEGbJfXrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJRaw/X1x0OQl2XM50Woh8aIx8ZcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzA2YWRhM2UxLWQ5YzQtNDE0Yi05MTEyLWVlZjFmMGNiNjcwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc0L4AwDQYJKoZIhvcNAQELBQADggEBALD6upPGuymqEX5nPO6+jhOv0+KA 902G4l4IUDDbeOhVX1qhAzw+N5dSam7bgEEhJqBWhzOJcb/YJJ0WSB3cBZt0F8CN kOFOH9a+NEHffy7ijWIUAq7AB/8KAMjeG3XZCgOCyEbJDDrp4IvRakFxfQ98G2FV ZcX8m34UPmGc+3BU7s0iC/hI0JqJ8YI6vauKrQh7FXvKS3zDDEGIVqTsDt2hczxr H/zyJAW9DosuuGuoUm6t7bDMGJhnuZU+f4QjXFpuh1zZZtR6IknkvNEt2CN/Ala3 7yw5ABUisRLbBK34s0QmAj0C99zBupdqL6GHZiIFrLy50oGmBW+sfdLm9NY= -----END CERTIFICATE-----Generated at Wed Feb 5 10:50:51 2025 by rpki-client