$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2892e1a2-d494-4f4a-b9eb-bdb0ff811770.roa File: 2892e1a2-d494-4f4a-b9eb-bdb0ff811770.roa (raw, json) Hash identifier: pAvLtqDCxOXobUKxzfZ0ss4TNMBoUP5NTzK2k/zaa3g= Subject key identifier: 6F:67:D0:C4:A2:8C:00:DB:01:9A:93:77:BB:00:D1:D4:AA:40:84:CB Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3CDD344FDF17788E8BF45B876D25398DA444423B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2892e1a2-d494-4f4a-b9eb-bdb0ff811770.roa Signing time: Fri 07 Feb 2025 00:00:00 +0000 ROA not before: Fri 07 Feb 2025 00:00:00 +0000 ROA not after: Fri 14 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 161.188.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:dd:34:4f:df:17:78:8e:8b:f4:5b:87:6d:25:39:8d:a4:44:42:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 7 00:00:00 2025 GMT Not After : Mar 14 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:76:dd:76:ff:58:8f:14:93:ab:d7:4c:16:d8: 6b:67:1f:54:86:74:ab:d8:e9:72:37:9f:d3:57:55: 6a:63:82:f1:a2:42:d0:26:5c:1e:fd:23:a7:ff:60: 71:a5:1d:42:0e:69:1f:d8:b7:e8:6f:ef:05:10:3f: 7c:6d:48:bb:c8:d7:56:4a:8e:b5:29:c7:2b:14:db: 1f:53:3a:43:63:66:37:6f:32:57:cf:ab:49:fa:7c: d2:84:65:25:f9:d7:77:05:ce:c0:8c:8c:05:52:9a: 14:43:75:dc:ed:2b:a0:8c:f4:d5:ae:4b:d2:16:52: 23:8e:5c:0a:2e:1e:e8:19:e7:ae:f7:77:c1:7d:33: 2d:94:63:c8:05:c9:a9:26:1d:4a:7d:b2:b9:a6:c3: 4f:fa:90:72:07:d5:ed:b3:cd:6c:b2:60:8e:4e:6a: ad:75:dd:aa:4f:97:74:c1:c0:ba:49:27:62:c3:b9: a0:7e:77:80:a1:60:bd:bc:6b:8d:b3:6c:68:a7:d7: c4:2d:8d:09:69:56:3d:aa:69:cb:3d:fe:61:b7:4e: 84:5f:3d:db:33:c5:72:f1:71:72:5d:3e:61:62:81: 64:7e:8e:dc:50:c6:b0:59:9f:83:a1:80:df:58:a3: 40:3d:7c:0a:e6:66:33:53:94:73:44:ff:04:2c:99: a9:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:67:D0:C4:A2:8C:00:DB:01:9A:93:77:BB:00:D1:D4:AA:40:84:CB X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2892e1a2-d494-4f4a-b9eb-bdb0ff811770.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.188.186.0/23 Signature Algorithm: sha256WithRSAEncryption 2d:c7:83:c9:fe:49:f0:52:60:88:d4:f2:f1:93:a7:95:26:41: 1c:88:a9:fd:0b:a8:d7:3c:a1:38:ed:18:65:e8:4f:1e:59:6c: 7d:39:4d:bc:e5:77:76:5b:09:4c:45:9c:1c:26:cd:bd:f3:26: 9a:96:f0:34:f9:c4:2d:39:36:32:7e:0b:f2:26:c2:d3:97:a6: 08:60:52:67:17:e5:64:1c:0d:f9:6b:1f:ab:34:fa:f5:ef:48: 03:71:49:20:21:6d:7b:27:24:a9:0a:3f:4a:7f:62:8a:cf:d4: e3:4a:99:8e:7c:c5:95:f6:30:c7:24:1d:1d:47:a8:9f:56:07: 59:0a:3a:0f:fa:16:84:d6:3b:32:ac:e4:64:43:c8:2f:41:1d: e6:35:6d:7c:80:48:c3:3d:7f:f0:bb:8a:01:38:39:78:86:97: 8a:d2:02:ed:9f:52:5b:5f:1c:89:e6:fb:e0:bd:16:9f:bc:6d: ca:12:1e:d2:96:04:1b:c4:ff:ef:af:a2:c0:53:22:d6:06:b5: d5:ca:27:0f:bd:0c:a4:ae:5d:2b:6d:9f:1f:7c:7e:28:26:f1: 29:72:3f:58:31:fb:95:6e:49:2d:53:c9:61:4b:a5:23:e7:bf: 85:32:fd:7f:1a:b0:e4:af:04:5a:8e:68:93:34:6b:4b:8a:51: b8:61:90:06 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPN00T98XeI6L9FuHbSU5jaREQjswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMjA3MDAwMDAwWhcNMjUwMzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMmFiZjkyMWFkZjJlMzllZGQ2MTA2YjI5MjFkMTdjYTE4 MTUwMjAyNjFmZTA2MTJiZTVlMzQzNGY3NWFkM2NlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDkdt12/1iPFJOr10wW2GtnH1SGdKvY6XI3n9NXVWpjgvGi QtAmXB79I6f/YHGlHUIOaR/Yt+hv7wUQP3xtSLvI11ZKjrUpxysU2x9TOkNjZjdv MlfPq0n6fNKEZSX513cFzsCMjAVSmhRDddztK6CM9NWuS9IWUiOOXAouHugZ5673 d8F9My2UY8gFyakmHUp9srmmw0/6kHIH1e2zzWyyYI5Oaq113apPl3TBwLpJJ2LD uaB+d4ChYL28a42zbGin18QtjQlpVj2qacs9/mG3ToRfPdszxXLxcXJdPmFigWR+ jtxQxrBZn4OhgN9Yo0A9fArmZjNTlHNE/wQsmambAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUb2fQxKKMANsBmpN3uwDR1KpAhMswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzI4OTJlMWEyLWQ0OTQtNGY0YS1iOWViLWJkYjBmZjgxMTc3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGhvLowDQYJKoZIhvcNAQELBQADggEBAC3Hg8n+SfBSYIjU8vGTp5UmQRyI qf0LqNc8oTjtGGXoTx5ZbH05Tbzld3ZbCUxFnBwmzb3zJpqW8DT5xC05NjJ+C/Im wtOXpghgUmcX5WQcDflrH6s0+vXvSANxSSAhbXsnJKkKP0p/YorP1ONKmY58xZX2 MMckHR1HqJ9WB1kKOg/6FoTWOzKs5GRDyC9BHeY1bXyASMM9f/C7igE4OXiGl4rS Au2fUltfHInm++C9Fp+8bcoSHtKWBBvE/++vosBTItYGtdXKJw+9DKSuXSttnx98 figm8SlyP1gx+5VuSS1TyWFLpSPnv4Uy/X8asOSvBFqOaJM0a0uKUbhhkAY= -----END CERTIFICATE-----Generated at Sun Feb 16 15:26:30 2025 by rpki-client