$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/237bd3de-7f19-4b8f-ad74-663c04d89755.roa File: 237bd3de-7f19-4b8f-ad74-663c04d89755.roa (raw, json) Hash identifier: QD65VBO5AhFvIJuCkn7CkLIn2SXs2CwHrx6NXJDMe1I= Subject key identifier: 51:39:B6:8C:C5:62:E2:EA:E6:30:FC:FF:90:63:5B:E6:8F:C6:0D:24 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0F1621F337084F62378BBEF5AC681422513FC90C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/237bd3de-7f19-4b8f-ad74-663c04d89755.roa Signing time: Mon 27 Jan 2025 00:00:00 +0000 ROA not before: Mon 27 Jan 2025 00:00:00 +0000 ROA not after: Mon 03 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.178.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:16:21:f3:37:08:4f:62:37:8b:be:f5:ac:68:14:22:51:3f:c9:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 27 00:00:00 2025 GMT Not After : Mar 3 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:81:69:6d:aa:ff:f4:91:49:96:71:cc:b1:10: fa:57:1a:fb:25:f2:17:54:13:89:b0:c9:a6:8d:eb: 9f:e0:1e:6c:61:54:10:5b:0f:ef:9c:e0:e6:74:b6: 4f:f4:1e:6a:71:b3:cc:df:8f:99:bf:33:a7:ca:d7: 74:67:d6:70:43:6a:cb:e7:cd:48:55:a6:29:88:d9: dd:8c:b8:0b:b4:9d:f9:0f:50:8c:ac:a9:71:df:95: 9b:9a:aa:f8:c6:4f:cc:58:87:51:95:3c:97:e1:4d: ce:a3:e1:4a:e4:a8:6e:67:60:be:89:f5:b5:25:14: 94:15:bd:34:ba:8c:20:9a:69:1f:82:2d:b9:67:98: 14:6e:7e:1f:d3:42:41:47:50:d6:62:d3:54:1f:01: ab:74:6c:5e:49:91:3a:4b:d4:71:df:7d:63:24:d9: d7:ce:b8:5a:d3:44:fb:40:ab:2e:f5:cf:19:c4:68: d2:7e:e5:08:7d:75:85:6a:e5:77:a6:88:df:26:2a: 61:ea:85:8b:2a:27:c2:42:fa:1f:11:51:b1:08:7b: 1c:2f:eb:9b:ab:ff:8d:30:13:a2:f5:f6:1d:a9:2d: 72:bd:cf:52:bc:1f:cc:3c:6c:61:4e:89:0c:07:1e: 68:5f:18:57:5d:15:ef:5f:53:b1:e4:51:f2:51:d5: aa:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:39:B6:8C:C5:62:E2:EA:E6:30:FC:FF:90:63:5B:E6:8F:C6:0D:24 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/237bd3de-7f19-4b8f-ad74-663c04d89755.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.178.0.0/15 Signature Algorithm: sha256WithRSAEncryption 70:c3:4a:2d:46:b5:b7:7a:7b:38:7c:47:61:91:93:ca:64:91: 6b:08:28:ff:7b:4b:11:bd:a9:4e:b9:b6:d8:f4:72:80:f8:3a: fe:1b:f2:c3:67:5a:e3:4e:0f:b8:26:b7:10:03:14:dd:5b:30: b5:c4:a6:82:86:38:84:0f:41:fa:87:29:43:96:90:c5:44:a9: b1:91:1e:7b:3a:46:98:67:5f:06:79:16:cd:fb:2a:1f:03:a9: c7:b9:12:10:85:95:c4:cf:a9:39:dd:30:9b:c5:11:75:6d:f0: a9:7f:eb:df:d2:8b:60:c6:35:0a:51:8e:78:25:f1:a3:56:1a: fd:99:be:d3:6e:1b:0f:4a:d1:d5:e7:1c:f3:c0:a9:2a:dc:b8: dc:28:7b:7f:7f:48:e8:e6:f3:e2:bd:c0:06:72:ca:78:15:a0: e9:89:ad:96:98:b1:39:d1:7e:9f:61:f2:87:5a:ff:6d:04:67: 11:39:49:f5:9b:f7:29:d1:0f:b0:c6:a8:3d:9f:c6:14:84:5e: c1:ac:85:20:f6:f7:10:e5:36:7f:e7:b6:a4:ea:73:9c:3b:50: b1:ab:81:6a:89:73:75:a3:cd:fc:a9:d9:11:8f:9f:cb:48:0b: 99:e3:fd:2a:80:51:7f:99:c7:93:82:cb:5b:69:d6:4a:bc:5e: a1:2a:1c:2f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDxYh8zcIT2I3i771rGgUIlE/yQwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTI3MDAwMDAwWhcNMjUwMzAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZjlkMmYyNWU1Y2E1ZmY5NjYzNjRkZTAzNmJlYzMzYzk2 NGE3NzIxM2FmOGIwNDMwOTVmMGQ0NWY0OTFlMDIzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfgWltqv/0kUmWccyxEPpXGvsl8hdUE4mwyaaN65/gHmxh VBBbD++c4OZ0tk/0Hmpxs8zfj5m/M6fK13Rn1nBDasvnzUhVpimI2d2MuAu0nfkP UIysqXHflZuaqvjGT8xYh1GVPJfhTc6j4UrkqG5nYL6J9bUlFJQVvTS6jCCaaR+C LblnmBRufh/TQkFHUNZi01QfAat0bF5JkTpL1HHffWMk2dfOuFrTRPtAqy71zxnE aNJ+5Qh9dYVq5XemiN8mKmHqhYsqJ8JC+h8RUbEIexwv65ur/40wE6L19h2pLXK9 z1K8H8w8bGFOiQwHHmhfGFddFe9fU7HkUfJR1arVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUUTm2jMVi4urmMPz/kGNb5o/GDSQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzIzN2JkM2RlLTdmMTktNGI4Zi1hZDc0LTY2M2MwNGQ4OTc1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEjsjANBgkqhkiG9w0BAQsFAAOCAQEAcMNKLUa1t3p7OHxHYZGTymSRawgo /3tLEb2pTrm22PRygPg6/hvyw2da404PuCa3EAMU3VswtcSmgoY4hA9B+ocpQ5aQ xUSpsZEeezpGmGdfBnkWzfsqHwOpx7kSEIWVxM+pOd0wm8URdW3wqX/r39KLYMY1 ClGOeCXxo1Ya/Zm+024bD0rR1ecc88CpKty43Ch7f39I6Obz4r3ABnLKeBWg6Ymt lpixOdF+n2Hyh1r/bQRnETlJ9Zv3KdEPsMaoPZ/GFIRewayFIPb3EOU2f+e2pOpz nDtQsauBaolzdaPN/KnZEY+fy0gLmeP9KoBRf5nHk4LLW2nWSrxeoSocLw== -----END CERTIFICATE-----Generated at Wed Feb 5 10:39:21 2025 by rpki-client