$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2aaae616-0457-40ae-9037-643180e0b128.roa File: 2aaae616-0457-40ae-9037-643180e0b128.roa (raw, json) Hash identifier: Z86DVoLj2613XS0t2vKQwpwWM2Y0YR1hNVdWkhu2MZc= Subject key identifier: 14:5C:F1:AC:3F:08:2D:0D:55:6B:8E:C2:6D:24:3E:BA:0F:5D:EF:77 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3A4125B0AA110D5BE7F042FF2218379CCBB838AE Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2aaae616-0457-40ae-9037-643180e0b128.roa Signing time: Fri 31 Jan 2025 00:00:00 +0000 ROA not before: Fri 31 Jan 2025 00:00:00 +0000 ROA not after: Fri 07 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 15.230.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:41:25:b0:aa:11:0d:5b:e7:f0:42:ff:22:18:37:9c:cb:b8:38:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 31 00:00:00 2025 GMT Not After : Mar 7 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:66:b4:63:78:e0:43:43:b7:90:28:5e:f5:f6: 1f:d2:dd:5a:86:3e:44:c1:8f:dd:ca:74:00:bb:99: 75:21:c2:79:b6:5f:55:03:e2:da:8d:b5:12:59:33: 4b:a2:5e:83:e4:4a:57:a6:97:fb:2d:2d:b2:61:f8: f9:ad:0d:cb:00:7d:4f:89:0b:7d:76:99:4e:57:04: 4b:dc:75:86:da:25:00:8a:f8:61:c2:5f:ee:a3:3f: f6:8d:94:69:76:3f:92:ab:71:4b:6f:cb:80:7b:12: b6:fd:a5:62:70:12:bc:54:2c:f0:53:4d:4f:15:93: 22:2a:e3:b4:76:27:2e:b2:ec:f7:47:27:8d:96:7f: 80:99:3f:9f:d4:d1:e2:c4:d3:8e:05:02:96:f7:98: 47:fe:22:7e:3f:22:cd:a7:06:65:68:84:70:e5:6c: 48:7b:fe:9f:a5:0c:36:31:bd:22:b0:52:cc:f2:92: 15:b1:aa:89:34:93:fb:cc:8b:8f:0f:9a:a3:78:d0: 57:7e:cd:4c:a7:b5:2d:5b:97:08:ba:59:f1:54:a4: a5:75:72:a8:40:35:69:81:3d:d4:97:12:c2:c9:6b: 8f:d7:2a:7f:4d:b5:37:f4:40:13:41:48:54:ca:ba: ef:6d:8e:af:73:d8:17:df:1a:de:fc:89:5c:63:c2: 42:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:5C:F1:AC:3F:08:2D:0D:55:6B:8E:C2:6D:24:3E:BA:0F:5D:EF:77 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2aaae616-0457-40ae-9037-643180e0b128.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.230.248.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:22:f2:bf:bf:d7:52:bf:1d:07:3d:e7:05:47:98:98:a9:15: 23:52:10:35:6b:10:3d:ce:3a:57:2c:ab:b1:59:cb:b6:5a:bf: de:04:2e:1c:3e:f7:3d:6d:0d:c0:14:d2:60:e1:56:e8:79:46: 50:58:2e:f1:81:c1:13:8e:e8:d0:84:5b:c7:d8:49:c5:7b:f9: 0d:3f:c5:a7:ac:a1:36:6b:a1:49:34:73:d9:f6:2e:58:66:82: 1d:f1:61:b4:53:26:86:2f:56:ac:cb:d6:89:fd:24:37:e9:51: 56:54:3b:04:94:93:c5:f7:88:31:45:1b:9d:1a:d6:c1:07:0f: 35:66:a0:09:3c:da:fd:28:3e:3e:00:4c:4f:60:d0:c7:6f:3e: e0:e6:d3:f5:33:d6:c4:31:0f:73:d4:dc:47:b8:5e:83:dc:4b: 7b:80:8f:ac:06:c4:64:6e:a4:e7:80:a8:ae:7c:af:80:93:b1: a5:92:bd:ee:4b:a5:06:2d:1f:cc:c1:65:3c:40:ec:cc:30:4d: 63:d5:e8:bc:fb:0c:0c:37:45:bb:34:80:04:92:37:c8:f2:77: 36:3a:28:41:40:93:1d:e9:5f:ba:2a:c4:3c:e6:07:5d:48:fc: a7:70:a1:1a:34:8c:b8:c6:a6:d4:fc:62:8c:2b:bf:a8:bd:60: 74:7f:d7:85 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOkElsKoRDVvn8EL/Ihg3nMu4OK4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTMxMDAwMDAwWhcNMjUwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMDg4NWRhZTFlYTc2MmM2ODlhOWExMjI2MDI4NTNlODE4 NTkyZjMzNTgwOGIwMDAzMDZjZTJiMmJiMjBjMDEzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrZrRjeOBDQ7eQKF719h/S3VqGPkTBj93KdAC7mXUhwnm2 X1UD4tqNtRJZM0uiXoPkSleml/stLbJh+PmtDcsAfU+JC312mU5XBEvcdYbaJQCK +GHCX+6jP/aNlGl2P5KrcUtvy4B7Erb9pWJwErxULPBTTU8VkyIq47R2Jy6y7PdH J42Wf4CZP5/U0eLE044FApb3mEf+In4/Is2nBmVohHDlbEh7/p+lDDYxvSKwUszy khWxqok0k/vMi48PmqN40Fd+zUyntS1blwi6WfFUpKV1cqhANWmBPdSXEsLJa4/X Kn9NtTf0QBNBSFTKuu9tjq9z2BffGt78iVxjwkJrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFFzxrD8ILQ1Va47CbSQ+ug9d73cwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzJhYWFlNjE2LTA0NTctNDBhZS05MDM3LTY0MzE4MGUwYjEyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAP5vgwDQYJKoZIhvcNAQELBQADggEBACoi8r+/11K/HQc95wVHmJipFSNS EDVrED3OOlcsq7FZy7Zav94ELhw+9z1tDcAU0mDhVuh5RlBYLvGBwROO6NCEW8fY ScV7+Q0/xaesoTZroUk0c9n2Llhmgh3xYbRTJoYvVqzL1on9JDfpUVZUOwSUk8X3 iDFFG50a1sEHDzVmoAk82v0oPj4ATE9g0MdvPuDm0/Uz1sQxD3PU3Ee4XoPcS3uA j6wGxGRupOeAqK58r4CTsaWSve5LpQYtH8zBZTxA7MwwTWPV6Lz7DAw3Rbs0gASS N8jydzY6KEFAkx3pX7oqxDzmB11I/KdwoRo0jLjGptT8Yowrv6i9YHR/14U= -----END CERTIFICATE-----Generated at Wed Feb 5 09:49:51 2025 by rpki-client