$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1fc79b27-b011-4257-9fc4-f1610de29aab.roa File: 1fc79b27-b011-4257-9fc4-f1610de29aab.roa (raw, json) Hash identifier: IZPR6qqBfM2SyMsFrdSgUNqtrv9brjYS5saxERayIaE= Subject key identifier: A8:37:03:75:1E:98:49:C2:CA:96:9F:69:E2:E1:07:DF:57:E9:00:23 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 07160E656432984D9BB159CD8C2E77A84735AC5C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1fc79b27-b011-4257-9fc4-f1610de29aab.roa Signing time: Mon 27 Jan 2025 00:00:00 +0000 ROA not before: Mon 27 Jan 2025 00:00:00 +0000 ROA not after: Mon 03 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.76.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:16:0e:65:64:32:98:4d:9b:b1:59:cd:8c:2e:77:a8:47:35:ac:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 27 00:00:00 2025 GMT Not After : Mar 3 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:cf:11:cb:96:1e:b1:75:77:04:b1:da:67:0f: 1e:24:a4:3d:67:34:3e:76:91:a7:aa:1f:84:b3:a6: a9:b6:64:e7:02:0f:2a:f0:45:fc:20:4a:96:cf:b3: 25:65:20:93:02:30:ee:09:e9:0b:f6:db:27:87:0c: 01:41:f5:b7:f8:d2:97:7e:22:cd:60:a1:55:f1:3f: bb:86:fc:da:71:39:35:f4:0e:d3:0a:b7:aa:bc:26: e4:81:07:af:f1:19:a5:c2:4e:d2:cf:f7:fd:00:69: 1b:ab:e1:e8:80:39:0c:b2:e6:bf:98:d8:91:b7:31: 47:df:33:47:fa:8c:ae:b8:47:30:4d:07:cf:25:f4: a5:00:96:29:47:74:ff:ee:24:05:03:a0:81:0f:59: 9b:a5:5d:cc:4c:48:6d:f7:de:17:dc:d2:6e:2d:f6: 4d:26:02:23:e6:2a:46:ab:ec:e8:7e:f9:b0:db:63: 22:d3:a3:cf:e1:36:07:01:31:df:67:83:15:44:0c: 43:30:c6:98:f6:ec:0a:e4:c1:14:fd:ca:43:10:f0: 4a:25:bd:b3:3c:8e:89:62:9b:c5:b7:60:2e:f0:44: b4:f5:7b:46:c9:31:64:e0:69:90:92:df:eb:51:68: eb:dd:a2:aa:f0:ef:e3:18:67:f3:5f:99:04:19:2e: c4:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:37:03:75:1E:98:49:C2:CA:96:9F:69:E2:E1:07:DF:57:E9:00:23 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1fc79b27-b011-4257-9fc4-f1610de29aab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.76.128.0/17 Signature Algorithm: sha256WithRSAEncryption 13:1f:86:ff:9b:62:6c:b2:a2:e2:78:ba:66:b9:a9:1c:73:8f: 05:81:99:df:57:51:32:e8:7e:96:52:20:f8:d4:97:87:11:12: 9b:60:bf:9a:7d:5d:c4:d7:9a:e4:00:72:8b:a8:ae:a2:45:bc: aa:b1:a9:08:1f:a8:2f:f5:56:7a:c5:af:12:3b:29:a5:7f:37: fc:ce:80:b1:f8:1e:f6:36:c7:9e:d7:d0:df:4f:24:bd:d9:83: 83:a6:02:3b:93:64:b7:6c:a4:6f:5e:5b:10:03:49:cb:ce:a9: a6:45:60:c5:ce:f0:fc:b3:ca:5b:50:41:aa:57:2c:64:86:f2: 97:d3:fd:5f:94:5d:3d:b7:06:e5:d1:c0:34:fb:45:9e:9b:32: e1:a5:2d:f9:0b:52:7e:ae:08:47:d9:90:e0:74:b4:0d:5f:bb: f4:27:f3:5f:b7:34:0b:9e:b0:2a:f0:44:51:f4:69:69:a2:f8: e2:f1:e3:93:75:b6:55:c7:04:95:52:ea:2c:11:f4:b1:6e:2c: ee:91:3f:29:5a:c0:c5:88:68:a3:8a:cc:c9:26:60:f2:a5:cc: 8b:fe:ba:e8:61:02:30:dd:1f:f6:bc:28:80:3f:58:3e:40:c6: 2d:64:42:75:45:65:d3:ad:00:75:03:6d:3f:94:9e:30:2c:67: 0c:d0:52:7f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBxYOZWQymE2bsVnNjC53qEc1rFwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTI3MDAwMDAwWhcNMjUwMzAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMWFmZWEzMDUzN2Y0MzgyNDVlNjkxNzY1MjBlNzQxNWVl MmQzYzFmM2U3ZDRlMmI1NGM3NDBhNjU2OTliYWMwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWzxHLlh6xdXcEsdpnDx4kpD1nND52kaeqH4Szpqm2ZOcC DyrwRfwgSpbPsyVlIJMCMO4J6Qv22yeHDAFB9bf40pd+Is1goVXxP7uG/NpxOTX0 DtMKt6q8JuSBB6/xGaXCTtLP9/0AaRur4eiAOQyy5r+Y2JG3MUffM0f6jK64RzBN B88l9KUAlilHdP/uJAUDoIEPWZulXcxMSG333hfc0m4t9k0mAiPmKkar7Oh++bDb YyLTo8/hNgcBMd9ngxVEDEMwxpj27ArkwRT9ykMQ8EolvbM8jolim8W3YC7wRLT1 e0bJMWTgaZCS3+tRaOvdoqrw7+MYZ/NfmQQZLsSpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqDcDdR6YScLKlp9p4uEH31fpACMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzFmYzc5YjI3LWIwMTEtNDI1Ny05ZmM0LWYxNjEwZGUyOWFhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc0TIAwDQYJKoZIhvcNAQELBQADggEBABMfhv+bYmyyouJ4uma5qRxzjwWB md9XUTLofpZSIPjUl4cREptgv5p9XcTXmuQAcouorqJFvKqxqQgfqC/1VnrFrxI7 KaV/N/zOgLH4HvY2x57X0N9PJL3Zg4OmAjuTZLdspG9eWxADScvOqaZFYMXO8Pyz yltQQapXLGSG8pfT/V+UXT23BuXRwDT7RZ6bMuGlLfkLUn6uCEfZkOB0tA1fu/Qn 81+3NAuesCrwRFH0aWmi+OLx45N1tlXHBJVS6iwR9LFuLO6RPylawMWIaKOKzMkm YPKlzIv+uuhhAjDdH/a8KIA/WD5Axi1kQnVFZdOtAHUDbT+UnjAsZwzQUn8= -----END CERTIFICATE-----Generated at Wed Feb 5 10:46:42 2025 by rpki-client