$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2892e1a2-d494-4f4a-b9eb-bdb0ff811770.roa File: 2892e1a2-d494-4f4a-b9eb-bdb0ff811770.roa (raw, json) Hash identifier: gZBmW4rMLCwE4YFJqlw5rN4FqdagqxSe9fz3Mwc+1gA= Subject key identifier: 78:2B:6B:14:15:E7:2E:AA:C8:29:4D:D8:41:83:3F:98:A0:8A:81:BD Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 35AE4DA0E08E99DB3EDE362D341687757B2D7DB3 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2892e1a2-d494-4f4a-b9eb-bdb0ff811770.roa Signing time: Tue 04 Mar 2025 19:50:11 +0000 ROA not before: Tue 04 Mar 2025 19:50:11 +0000 ROA not after: Tue 08 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 161.188.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:ae:4d:a0:e0:8e:99:db:3e:de:36:2d:34:16:87:75:7b:2d:7d:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Mar 4 19:50:11 2025 GMT Not After : Apr 8 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:b2:8b:5e:f3:53:27:7f:c4:96:6f:37:aa:90: 8a:a3:d9:18:7d:ae:a0:3c:1b:f7:70:96:93:d2:0d: 48:0d:8f:ec:b1:e6:ca:72:6d:af:dc:60:2e:f0:61: bd:cd:ee:18:82:65:8f:de:fe:75:52:38:79:92:95: c5:1a:2c:3b:62:ea:0b:db:ea:9d:75:d4:c9:71:a7: 8b:bb:bc:c9:80:8b:39:0a:14:5c:1e:2f:40:9e:ac: aa:0d:9f:5d:c8:d0:99:1b:07:a6:c9:3a:72:d8:d4: 7d:b2:aa:c3:12:82:21:c2:af:7c:62:7e:09:a9:bb: cd:bc:a5:19:19:47:7f:f0:72:f0:2f:4d:92:70:35: fd:25:5a:ad:a7:7f:26:dd:42:df:1f:8c:f3:02:5b: 42:ed:b4:a6:f1:68:07:a8:10:2d:10:19:ad:b1:39: 43:6f:34:17:8e:3f:d9:dc:14:a8:6f:2e:4c:29:12: 71:35:59:2a:b6:06:38:24:df:7d:30:cb:19:cf:73: 7c:73:01:1a:35:a7:08:b3:75:7b:df:77:eb:a2:8e: 2a:cd:d4:79:ed:ac:de:fa:a0:39:93:36:59:86:87: 62:72:1a:8d:00:2c:99:e0:f0:91:6b:88:2d:ab:9a: 92:29:f8:7e:c0:c1:5e:bf:53:bd:34:d4:1a:56:ce: ed:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:2B:6B:14:15:E7:2E:AA:C8:29:4D:D8:41:83:3F:98:A0:8A:81:BD X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2892e1a2-d494-4f4a-b9eb-bdb0ff811770.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.188.186.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:a3:2e:d1:2f:53:af:5b:f6:98:29:c2:e7:6b:9c:d2:41:79: eb:2e:7c:3d:e6:ce:31:b9:9e:98:8e:05:f4:d5:81:14:2e:7d: b0:46:3e:50:e1:47:db:2e:a7:c1:2e:de:00:58:10:0d:7a:73: ed:9b:e2:5a:bc:74:87:ed:55:9c:af:16:db:32:02:85:09:6c: 0f:b9:e6:ea:4e:93:19:a5:83:7d:11:a9:e7:15:c7:90:7b:aa: e2:9b:93:69:9a:9f:3b:3e:ac:c9:44:c2:2b:0f:27:45:d2:f0: 17:07:f6:8b:7e:9b:96:f4:88:02:00:d8:6e:94:04:b8:62:84: 4d:63:cd:2f:8c:0f:99:79:39:77:f6:53:8c:7d:5a:ca:57:90: 69:1e:6b:e8:34:b4:08:73:e9:4b:d7:b4:f8:48:5d:d0:0e:c8: 27:a4:02:fc:b8:db:02:8f:37:cb:e9:96:43:b2:77:94:91:b5: ee:1f:23:23:5b:d3:38:91:e6:a9:b5:4b:29:01:f8:05:76:82: 4e:79:0b:59:43:8d:c1:b9:12:a5:ee:3e:90:0d:4b:a4:0d:cc: 32:c4:1e:57:7e:a2:f9:f1:37:87:a6:cf:f9:b3:da:b3:3c:72: 0a:d3:61:8e:9f:42:fc:60:cb:79:9a:4e:96:3e:bc:3a:ce:e4: c1:33:d5:b6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNa5NoOCOmds+3jYtNBaHdXstfbMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMzA0MTk1MDExWhcNMjUwNDA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYTlmOTM4ZTg2MjNhZjU4OGUxNzUwNTA3YWZhOGMyMDdj MWQzMzRjMjhjNGQ4N2I2MWU5YWM2NjViZGQ5YTk3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDusote81Mnf8SWbzeqkIqj2Rh9rqA8G/dwlpPSDUgNj+yx 5spyba/cYC7wYb3N7hiCZY/e/nVSOHmSlcUaLDti6gvb6p111Mlxp4u7vMmAizkK FFweL0CerKoNn13I0JkbB6bJOnLY1H2yqsMSgiHCr3xifgmpu828pRkZR3/wcvAv TZJwNf0lWq2nfybdQt8fjPMCW0LttKbxaAeoEC0QGa2xOUNvNBeOP9ncFKhvLkwp EnE1WSq2Bjgk330wyxnPc3xzARo1pwizdXvfd+uijirN1HntrN76oDmTNlmGh2Jy Go0ALJng8JFriC2rmpIp+H7AwV6/U7001BpWzu2dAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeCtrFBXnLqrIKU3YQYM/mKCKgb0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzI4OTJlMWEyLWQ0OTQtNGY0YS1iOWViLWJkYjBmZjgxMTc3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGhvLowDQYJKoZIhvcNAQELBQADggEBAFqjLtEvU69b9pgpwudrnNJBeesu fD3mzjG5npiOBfTVgRQufbBGPlDhR9sup8Eu3gBYEA16c+2b4lq8dIftVZyvFtsy AoUJbA+55upOkxmlg30RqecVx5B7quKbk2manzs+rMlEwisPJ0XS8BcH9ot+m5b0 iAIA2G6UBLhihE1jzS+MD5l5OXf2U4x9WspXkGkea+g0tAhz6UvXtPhIXdAOyCek Avy42wKPN8vplkOyd5SRte4fIyNb0ziR5qm1SykB+AV2gk55C1lDjcG5EqXuPpAN S6QNzDLEHld+ovnxN4emz/mz2rM8cgrTYY6fQvxgy3maTpY+vDrO5MEz1bY= -----END CERTIFICATE-----Generated at Thu Mar 13 23:49:06 2025 by rpki-client