$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/07a2e991-88e4-44dc-ba0d-f0212a80a111.roa File: 07a2e991-88e4-44dc-ba0d-f0212a80a111.roa (raw, json) Hash identifier: xvIpcYFd21Cu7njmPlWIy6alBesKgmKmDUkchsiwzbg= Subject key identifier: F9:22:29:EE:4B:B5:8A:1C:DF:0A:2F:54:8D:CB:02:BF:C1:56:CB:37 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 20E234DA995D30D3B8572D9A4625D7F6316A315F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/07a2e991-88e4-44dc-ba0d-f0212a80a111.roa Signing time: Tue 04 Feb 2025 00:00:00 +0000 ROA not before: Tue 04 Feb 2025 00:00:00 +0000 ROA not after: Tue 11 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.236.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:e2:34:da:99:5d:30:d3:b8:57:2d:9a:46:25:d7:f6:31:6a:31:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 4 00:00:00 2025 GMT Not After : Mar 11 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4d:b1:d2:d1:ea:67:09:99:43:79:a8:bf:2c: 2f:2b:f7:52:7c:b5:6d:e7:07:13:e4:ed:6c:70:a9: e6:91:32:dc:a0:da:de:98:da:67:4f:9c:a2:7a:64: 9b:94:e0:4f:3d:31:8b:0d:9c:1e:82:b2:42:56:ee: 91:9e:3d:ce:d4:b4:c3:f6:71:b2:47:30:58:36:82: ce:99:84:34:85:a3:12:7c:8c:3b:d6:98:ba:62:9f: 3b:ee:d0:2b:f5:5a:e7:fb:7a:73:5f:0a:23:51:5a: e3:c5:db:50:58:a9:1d:de:c6:1f:fc:94:a0:fd:ad: 58:65:75:bc:c9:0b:60:1c:45:16:5d:a8:f2:1d:4d: fb:8e:e7:fa:d6:61:e7:6c:5f:be:36:fd:45:c4:40: 08:1d:dd:bd:39:ff:a3:bb:bd:bd:80:f6:63:fa:a3: e2:51:6a:fd:82:30:01:73:15:e9:e0:17:12:24:b3: a1:41:18:95:c0:4c:d8:ce:40:d2:bd:a6:5a:34:a6: 79:3d:52:bc:3c:f2:4b:11:c7:e1:5c:52:95:91:2b: f7:b3:1d:6b:91:37:cb:7c:75:e3:63:f5:3c:2d:64: 7f:96:ea:46:af:60:18:d4:87:13:b7:c3:70:86:34: a3:85:1f:ea:2b:97:76:d3:24:68:f5:21:d5:a3:ca: 06:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:22:29:EE:4B:B5:8A:1C:DF:0A:2F:54:8D:CB:02:BF:C1:56:CB:37 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/07a2e991-88e4-44dc-ba0d-f0212a80a111.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.236.0.0/14 Signature Algorithm: sha256WithRSAEncryption 9b:8e:d5:0b:c7:94:2a:cd:62:1f:8b:a0:f2:4f:56:6b:1f:52: b1:25:1c:f8:b2:af:15:90:9c:80:12:9a:a2:79:ce:15:53:84: 8a:1d:b5:b8:64:ad:38:ec:f0:fd:00:74:a8:fc:0b:fa:e2:4c: 5f:48:9c:46:8e:57:dd:43:b9:8e:3b:72:81:66:f6:f5:98:e0: ea:0b:40:d5:95:cb:64:dd:f1:32:93:ca:ea:2a:33:19:f7:7c: 70:09:a8:0b:d2:79:6e:16:bf:e0:e1:65:24:5f:6a:3e:8b:c0: 4d:8a:01:89:c1:96:df:34:38:46:ca:46:02:09:97:20:cd:1f: c7:6a:29:bc:1e:56:d7:bc:eb:ee:31:eb:1c:57:34:57:cf:fe: 9f:a7:f2:06:4d:df:d9:1e:0e:7a:57:12:ab:2f:e6:9f:d1:f6: 5b:a1:54:2b:0f:a6:36:bb:da:10:27:33:3e:7b:c5:35:e9:1a: bd:b7:f9:f6:d0:18:9f:ad:4c:2b:16:16:95:9c:a2:45:b0:3e: 1c:17:5d:49:6d:72:98:1d:c2:97:52:af:29:b6:8a:27:67:a7: 15:5f:5f:5d:ce:3c:b7:b6:c8:8d:80:6a:b4:a0:b7:0a:3f:27: 45:63:3e:0c:f2:50:78:0c:97:75:96:1a:c9:d7:5e:b3:1b:20: 5a:c9:fd:6d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIOI02pldMNO4Vy2aRiXX9jFqMV8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMjA0MDAwMDAwWhcNMjUwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0A0N2U1OTY1MTQ0Y2VkZjgwMWMxMzRiZWMwY2FlYzliMWRh N2JkNzRiZDc1MTc4MjdmNzcyNGVkYTIwODkyNjY2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxTbHS0epnCZlDeai/LC8r91J8tW3nBxPk7WxwqeaRMtyg 2t6Y2mdPnKJ6ZJuU4E89MYsNnB6CskJW7pGePc7UtMP2cbJHMFg2gs6ZhDSFoxJ8 jDvWmLpinzvu0Cv1Wuf7enNfCiNRWuPF21BYqR3exh/8lKD9rVhldbzJC2AcRRZd qPIdTfuO5/rWYedsX742/UXEQAgd3b05/6O7vb2A9mP6o+JRav2CMAFzFengFxIk s6FBGJXATNjOQNK9plo0pnk9Urw88ksRx+FcUpWRK/ezHWuRN8t8deNj9TwtZH+W 6kavYBjUhxO3w3CGNKOFH+orl3bTJGj1IdWjygYPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU+SIp7ku1ihzfCi9UjcsCv8FWyzcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzA3YTJlOTkxLTg4ZTQtNDRkYy1iYTBkLWYwMjEyYTgwYTExMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIN7DANBgkqhkiG9w0BAQsFAAOCAQEAm47VC8eUKs1iH4ug8k9Wax9SsSUc +LKvFZCcgBKaonnOFVOEih21uGStOOzw/QB0qPwL+uJMX0icRo5X3UO5jjtygWb2 9Zjg6gtA1ZXLZN3xMpPK6iozGfd8cAmoC9J5bha/4OFlJF9qPovATYoBicGW3zQ4 RspGAgmXIM0fx2opvB5W17zr7jHrHFc0V8/+n6fyBk3f2R4OelcSqy/mn9H2W6FU Kw+mNrvaECczPnvFNekavbf59tAYn61MKxYWlZyiRbA+HBddSW1ymB3Cl1KvKbaK J2enFV9fXc48t7bIjYBqtKC3Cj8nRWM+DPJQeAyXdZYayddesxsgWsn9bQ== -----END CERTIFICATE-----Generated at Wed Feb 5 10:49:47 2025 by rpki-client