$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2b40ac1e-e997-4852-9eb8-c845296d5869.roa File: 2b40ac1e-e997-4852-9eb8-c845296d5869.roa (raw, json) Hash identifier: waqFPoxWzKzvmYEtkrvmKZskQNgviaK6yzFx4BXGkR0= Subject key identifier: 0A:1A:A4:DD:8A:59:E4:02:E0:F9:24:8F:55:0E:3E:A5:8A:8B:6E:83 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7E8EFBD0212F5701AD12A1C8EA61A6435BBD7D4A Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2b40ac1e-e997-4852-9eb8-c845296d5869.roa Signing time: Mon 13 Jan 2025 00:00:00 +0000 ROA not before: Mon 13 Jan 2025 00:00:00 +0000 ROA not after: Mon 17 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.153.2.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:8e:fb:d0:21:2f:57:01:ad:12:a1:c8:ea:61:a6:43:5b:bd:7d:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 13 00:00:00 2025 GMT Not After : Feb 17 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:86:91:44:fb:6c:8c:39:2d:93:1d:c4:ca:e7: 37:44:70:52:0b:18:99:88:f4:ce:47:b1:fd:08:b6: f8:24:be:24:24:8c:74:7c:e0:7f:b4:e0:f0:55:f4: f8:cb:e0:0e:07:11:b6:93:38:d8:2d:51:39:ef:bd: f8:52:45:a6:55:42:c8:58:5e:13:a7:8e:ff:95:67: 3c:25:bc:f5:85:50:99:cd:80:b4:ab:b2:62:58:ed: b8:e8:26:fd:ad:52:bf:4f:a2:30:3c:fb:c7:d2:99: 8f:7a:a3:77:fa:b5:72:8c:a2:d1:a6:fd:76:90:4d: df:75:05:d7:ab:64:5c:6c:84:8a:cc:a5:c2:b9:bc: 1a:36:e8:14:5c:91:55:61:9c:fd:65:d8:9f:8e:45: c3:18:8c:43:3b:49:79:30:59:6a:f5:54:4e:64:9b: fb:5f:3c:e6:20:f3:f5:fd:2d:43:bc:82:3a:54:67: 33:30:5b:f2:1e:52:ca:13:f8:89:3a:0e:e2:f1:50: 3c:98:d1:0e:99:fd:06:13:78:4e:e1:f4:ec:e9:6d: e1:e0:7f:c8:1c:63:cd:b1:ec:fb:54:ba:7b:42:05: 18:17:60:fc:1b:48:fe:e7:9e:46:18:f1:a1:f3:e1: e6:66:cc:38:bf:8d:8d:90:74:25:71:8b:b5:cb:b9: 56:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:1A:A4:DD:8A:59:E4:02:E0:F9:24:8F:55:0E:3E:A5:8A:8B:6E:83 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2b40ac1e-e997-4852-9eb8-c845296d5869.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.153.2.0/23 Signature Algorithm: sha256WithRSAEncryption 62:2a:2a:0d:50:93:2a:25:96:5f:e8:06:2b:57:40:59:03:04: 5c:08:8b:c1:b5:51:0b:ca:7f:53:38:dd:bf:f9:89:7c:53:c9: d4:9b:98:27:db:67:9b:0f:fa:30:be:f0:2d:0f:10:26:8b:69: f0:c8:ee:23:4e:af:61:c2:e1:43:f2:ce:04:a1:74:59:9d:ae: 5f:13:bc:3d:8a:77:c9:fb:6b:01:5f:0a:43:30:eb:f1:db:77: c2:cd:7a:5d:af:8c:aa:36:e1:64:2f:ed:35:98:37:a7:bb:37: 72:bf:43:f2:bf:eb:1d:d9:82:4d:9c:dc:e4:59:1a:86:e0:17: d5:91:6e:92:77:46:2b:fc:77:ac:f5:46:b6:83:ae:ac:07:d2: 4b:dc:5d:16:4e:9d:76:77:6c:bb:99:1a:ff:85:fa:35:9e:e9: d1:fb:03:6e:e3:63:58:d7:a4:4e:3c:e3:b6:c6:de:cf:b6:f1: a2:0a:7f:99:75:02:bf:59:ee:ab:65:18:0f:f9:29:fd:59:cf: 8a:f3:f8:17:e8:36:0d:f7:57:db:d3:cf:2c:4a:ae:ea:3d:f3: 65:9c:8e:88:c8:6c:c1:09:be:4a:c0:cb:50:fb:32:37:41:a7: 46:de:e5:89:f8:d6:d4:1f:e9:eb:f8:92:31:62:37:ce:f0:02: c6:a0:16:59 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfo770CEvVwGtEqHI6mGmQ1u9fUowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTEzMDAwMDAwWhcNMjUwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzY2U2MDZiNzY0MjRiMjJkZGVlYjA5N2MwMDY2NzY1MTVi NzIyMmY0N2UxOTc2Y2U5ZWNlNzJmNDY5ZWFhYTQ2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdhpFE+2yMOS2THcTK5zdEcFILGJmI9M5Hsf0ItvgkviQk jHR84H+04PBV9PjL4A4HEbaTONgtUTnvvfhSRaZVQshYXhOnjv+VZzwlvPWFUJnN gLSrsmJY7bjoJv2tUr9PojA8+8fSmY96o3f6tXKMotGm/XaQTd91BderZFxshIrM pcK5vBo26BRckVVhnP1l2J+ORcMYjEM7SXkwWWr1VE5km/tfPOYg8/X9LUO8gjpU ZzMwW/IeUsoT+Ik6DuLxUDyY0Q6Z/QYTeE7h9OzpbeHgf8gcY82x7PtUuntCBRgX YPwbSP7nnkYY8aHz4eZmzDi/jY2QdCVxi7XLuVYRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUChqk3YpZ5ALg+SSPVQ4+pYqLboMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzJiNDBhYzFlLWU5OTctNDg1Mi05ZWI4LWM4NDUyOTZkNTg2OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjmQIwDQYJKoZIhvcNAQELBQADggEBAGIqKg1Qkyolll/oBitXQFkDBFwI i8G1UQvKf1M43b/5iXxTydSbmCfbZ5sP+jC+8C0PECaLafDI7iNOr2HC4UPyzgSh dFmdrl8TvD2Kd8n7awFfCkMw6/Hbd8LNel2vjKo24WQv7TWYN6e7N3K/Q/K/6x3Z gk2c3ORZGobgF9WRbpJ3Riv8d6z1RraDrqwH0kvcXRZOnXZ3bLuZGv+F+jWe6dH7 A27jY1jXpE4847bG3s+28aIKf5l1Ar9Z7qtlGA/5Kf1Zz4rz+BfoNg33V9vTzyxK ruo982WcjojIbMEJvkrAy1D7MjdBp0be5Yn41tQf6ev4kjFiN87wAsagFlk= -----END CERTIFICATE-----Generated at Wed Feb 5 09:58:55 2025 by rpki-client