$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2b8ccb4f-0647-4860-bb15-14042040a7f2.roa File: 2b8ccb4f-0647-4860-bb15-14042040a7f2.roa (raw, json) Hash identifier: 6UjJlT8UZz4KYxCPeZgIo5KCeThyjdP4tZ7SaxWmOMI= Subject key identifier: 91:31:0D:B4:B4:50:35:B9:E8:68:E0:13:24:16:6E:48:A8:4C:CE:77 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6016A86BBCF9C718590321565E56893D445F94DE Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2b8ccb4f-0647-4860-bb15-14042040a7f2.roa Signing time: Mon 27 Jan 2025 00:00:00 +0000 ROA not before: Mon 27 Jan 2025 00:00:00 +0000 ROA not after: Mon 03 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 3.83.168.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:16:a8:6b:bc:f9:c7:18:59:03:21:56:5e:56:89:3d:44:5f:94:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 27 00:00:00 2025 GMT Not After : Mar 3 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f1:30:ea:68:a6:a7:68:f0:2f:49:05:9b:ed: 03:f0:e4:8f:0b:2b:ba:2c:94:1e:68:f8:04:35:2d: 53:ca:da:6b:55:ca:ec:19:29:e4:d3:71:0a:c7:8c: 58:fe:4c:bb:7a:cf:41:c1:d7:29:40:3d:75:74:e7: 17:1c:a4:5d:13:e0:b3:b1:df:0b:54:6f:c3:1a:a0: 76:ef:6e:7b:e9:ff:c0:df:d4:50:78:37:c4:b8:22: 2c:f8:67:f5:8e:c9:aa:c9:5b:6b:61:91:c4:37:f8: 49:b4:5a:50:20:5e:9b:a8:b1:a4:cf:cc:69:40:93: 25:4e:9b:73:c8:4f:1a:b7:7a:2c:9f:5b:3b:16:b9: d4:91:4c:62:a6:e8:3c:b4:e2:2e:ef:a2:cb:ad:aa: a4:28:9a:a1:45:c7:ac:4b:2c:7f:f0:9e:a2:e7:c5: 5c:31:4e:60:3b:8e:f4:2b:02:32:be:ed:1e:44:43: e0:87:11:6c:b8:01:db:bb:a3:93:e8:d9:fc:44:2b: b8:d1:b1:8f:8a:e0:7c:02:8b:b7:b8:28:d6:73:1a: 96:05:6f:d6:cf:34:9e:93:08:a2:3d:bc:25:80:84: e7:61:ff:dd:a1:38:4f:86:01:33:c9:df:aa:17:6b: aa:10:71:4a:40:89:bd:96:e4:db:7d:83:89:5d:d0: 7c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:31:0D:B4:B4:50:35:B9:E8:68:E0:13:24:16:6E:48:A8:4C:CE:77 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2b8ccb4f-0647-4860-bb15-14042040a7f2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.83.168.0/22 Signature Algorithm: sha256WithRSAEncryption 62:f3:0a:93:a5:89:1c:27:de:ca:b1:9d:cf:f8:98:4d:d8:da: 2e:33:f2:5a:49:3b:30:01:15:ce:a5:1f:80:00:64:39:84:90: c6:fe:d4:d6:b7:37:67:f0:be:79:1b:3d:69:16:9d:ed:be:68: b8:96:17:26:e6:ad:27:e5:87:70:b1:63:ba:87:ef:31:36:32: 1f:45:4b:2f:ca:71:99:5d:7b:e8:6c:8a:f6:35:43:e9:8a:e9: 17:93:b4:c8:d9:c9:d2:67:73:26:bb:1b:0a:8e:af:67:c1:69: 36:04:2b:11:e3:f8:2f:a4:e9:3c:99:88:f1:64:1f:7e:eb:4d: 00:a1:39:0c:05:89:4f:e7:6a:79:f3:12:b9:cc:25:2b:eb:fd: 3e:da:ca:9b:d9:4e:79:6b:93:8e:d1:c9:34:08:ac:7d:16:35: df:84:c4:6e:fb:7b:24:92:e6:a4:85:5e:7e:4f:4a:63:3e:72: 24:11:e2:63:2e:44:4e:56:f8:b9:8c:c5:75:04:d0:23:2b:ed: 13:48:b3:b5:0f:d1:ed:4d:93:cd:62:17:a0:e0:c3:aa:c1:29: 2c:94:59:54:36:b7:b6:2c:6d:6a:30:02:ca:e7:7b:bd:52:89: d2:0d:af:1a:71:67:32:3f:bf:2d:e0:c1:83:05:4b:59:f7:9f: fc:7a:31:4d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYBaoa7z5xxhZAyFWXlaJPURflN4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTI3MDAwMDAwWhcNMjUwMzAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlY2NhMWUzMDM3ODM2YTFkZTU5MzRiYWQxM2JhYWUyOTIx ZDBkYzU1ZDJkMzJmYmM4OWQ2OTkwZTdmNzBhMDY0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDH8TDqaKanaPAvSQWb7QPw5I8LK7oslB5o+AQ1LVPK2mtV yuwZKeTTcQrHjFj+TLt6z0HB1ylAPXV05xccpF0T4LOx3wtUb8MaoHbvbnvp/8Df 1FB4N8S4Iiz4Z/WOyarJW2thkcQ3+Em0WlAgXpuosaTPzGlAkyVOm3PITxq3eiyf WzsWudSRTGKm6Dy04i7vosutqqQomqFFx6xLLH/wnqLnxVwxTmA7jvQrAjK+7R5E Q+CHEWy4Adu7o5Po2fxEK7jRsY+K4HwCi7e4KNZzGpYFb9bPNJ6TCKI9vCWAhOdh /92hOE+GATPJ36oXa6oQcUpAib2W5Nt9g4ld0Hy1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkTENtLRQNbnoaOATJBZuSKhMzncwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzJiOGNjYjRmLTA2NDctNDg2MC1iYjE1LTE0MDQyMDQwYTdmMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIDU6gwDQYJKoZIhvcNAQELBQADggEBAGLzCpOliRwn3sqxnc/4mE3Y2i4z 8lpJOzABFc6lH4AAZDmEkMb+1Na3N2fwvnkbPWkWne2+aLiWFybmrSflh3CxY7qH 7zE2Mh9FSy/KcZlde+hsivY1Q+mK6ReTtMjZydJncya7GwqOr2fBaTYEKxHj+C+k 6TyZiPFkH37rTQChOQwFiU/nannzErnMJSvr/T7aypvZTnlrk47RyTQIrH0WNd+E xG77eySS5qSFXn5PSmM+ciQR4mMuRE5W+LmMxXUE0CMr7RNIs7UP0e1Nk81iF6Dg w6rBKSyUWVQ2t7YsbWowAsrne71SidINrxpxZzI/vy3gwYMFS1n3n/x6MU0= -----END CERTIFICATE-----Generated at Wed Feb 5 09:46:43 2025 by rpki-client