$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/30930141-cf20-48b4-8894-679f35db7006.roa File: 30930141-cf20-48b4-8894-679f35db7006.roa (raw, json) Hash identifier: WgwEGMeTOkJUwbw195lg79hJ+/7kgBa7TT+pPe0Agk4= Subject key identifier: 46:6D:1D:9D:D4:4A:7A:93:39:F5:53:8B:A3:AD:CC:A2:73:2F:38:5A Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5CF0AD94595B571E1A658CB0C59B0972B48ECBE2 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/30930141-cf20-48b4-8894-679f35db7006.roa Signing time: Fri 31 Jan 2025 00:00:00 +0000 ROA not before: Fri 31 Jan 2025 00:00:00 +0000 ROA not after: Fri 07 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.204.50.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:f0:ad:94:59:5b:57:1e:1a:65:8c:b0:c5:9b:09:72:b4:8e:cb:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 31 00:00:00 2025 GMT Not After : Mar 7 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:0a:a9:50:5a:ee:ee:6e:a8:ae:68:9f:61:25: c1:6a:1e:1e:c5:63:01:ad:38:4c:69:6b:91:82:2d: 4c:1f:8c:54:c3:70:eb:3f:e4:a8:b2:71:c3:f0:08: 51:e5:6b:b5:05:e0:35:4c:de:61:e8:8e:5a:72:5a: 46:5d:8b:1a:e4:bc:22:a9:82:15:e6:7f:fa:27:76: 98:a8:c0:bd:dc:c9:cc:2a:d2:8d:0f:4a:c2:61:49: 87:cf:24:71:38:d0:fc:f7:43:48:fb:10:fc:ca:5e: 45:53:8c:4f:29:5d:55:00:89:6a:ac:31:19:38:d9: b7:ff:33:35:82:8d:f1:4a:f1:72:53:92:9c:15:76: 16:ae:8b:6d:e8:30:84:bb:3c:8c:cf:cf:8a:7a:63: 9a:82:10:9c:45:fb:58:5f:b8:b4:d0:b5:ed:57:57: 2c:72:1d:81:ab:af:fc:13:7c:c9:34:58:9e:14:ac: 58:d9:fb:34:9e:0f:df:a4:78:64:fa:1f:58:c5:5a: 54:01:9d:9c:12:8f:fa:30:38:a9:23:52:35:b9:36: 2c:87:a7:01:85:e7:8c:31:11:c0:c0:19:d2:7b:8a: e9:bb:13:4d:2f:28:02:0e:39:15:ef:b8:0c:2c:92: c2:25:84:98:ec:bf:41:0f:5a:b6:13:76:02:18:aa: 55:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:6D:1D:9D:D4:4A:7A:93:39:F5:53:8B:A3:AD:CC:A2:73:2F:38:5A X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/30930141-cf20-48b4-8894-679f35db7006.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.204.50.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:2a:0c:c5:00:88:7a:4d:33:f0:8f:0f:8d:bb:81:87:68:50: 13:7e:17:77:67:ea:71:21:9c:a5:e7:1a:d5:53:3a:85:19:73: 80:2b:b4:24:93:2f:c0:eb:70:83:12:83:ab:6a:42:f4:91:80: f5:fe:38:6c:a2:31:60:df:44:6e:a0:18:60:d6:f6:8a:85:c5: 43:09:7e:46:2a:9a:23:f2:82:ec:40:85:cf:7e:42:7f:1e:5b: bd:4d:b8:24:67:8b:1b:0b:6c:a1:77:5c:68:55:f4:4d:48:6a: 53:89:9a:7c:26:82:f0:26:f0:1b:54:87:24:0f:c6:6a:e0:02: 09:81:f6:d0:4b:6c:c6:eb:57:3d:e7:23:4e:ad:c1:f6:6d:14: fe:63:23:2f:d3:a5:59:14:c3:25:34:f1:d4:f0:45:b8:76:7b: bd:46:1e:b9:b9:df:be:69:33:e1:03:2e:a7:e4:5a:cf:ec:ac: 8a:07:24:8f:48:14:69:be:16:da:6f:92:39:29:be:d8:43:fa: 82:fd:43:95:86:22:16:ff:d3:17:f4:de:99:20:55:a0:91:b7: e9:34:98:80:75:06:d8:46:be:99:fa:61:24:0f:d2:42:48:e2: 75:93:b7:f3:da:b7:67:f6:b8:d0:e0:69:61:96:3e:b4:48:c0: f7:41:87:2a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXPCtlFlbVx4aZYywxZsJcrSOy+IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTMxMDAwMDAwWhcNMjUwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0OTY3ZjJiOGUyYzlhODk0ODYyMjY5MTNjZTRiZGM0NTI4 YTJjZmFiYjQ2ODdkYmZjYzM0YTM3ZDRhZGMzNTE2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDsCqlQWu7ubqiuaJ9hJcFqHh7FYwGtOExpa5GCLUwfjFTD cOs/5KiyccPwCFHla7UF4DVM3mHojlpyWkZdixrkvCKpghXmf/ondpiowL3cycwq 0o0PSsJhSYfPJHE40Pz3Q0j7EPzKXkVTjE8pXVUAiWqsMRk42bf/MzWCjfFK8XJT kpwVdhaui23oMIS7PIzPz4p6Y5qCEJxF+1hfuLTQte1XVyxyHYGrr/wTfMk0WJ4U rFjZ+zSeD9+keGT6H1jFWlQBnZwSj/owOKkjUjW5NiyHpwGF54wxEcDAGdJ7ium7 E00vKAIOORXvuAwsksIlhJjsv0EPWrYTdgIYqlUXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURm0dndRKepM59VOLo63MonMvOFowHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzMwOTMwMTQxLWNmMjAtNDhiNC04ODk0LTY3OWYzNWRiNzAwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAE2zDIwDQYJKoZIhvcNAQELBQADggEBAD8qDMUAiHpNM/CPD427gYdoUBN+ F3dn6nEhnKXnGtVTOoUZc4ArtCSTL8DrcIMSg6tqQvSRgPX+OGyiMWDfRG6gGGDW 9oqFxUMJfkYqmiPyguxAhc9+Qn8eW71NuCRnixsLbKF3XGhV9E1IalOJmnwmgvAm 8BtUhyQPxmrgAgmB9tBLbMbrVz3nI06twfZtFP5jIy/TpVkUwyU08dTwRbh2e71G Hrm5375pM+EDLqfkWs/srIoHJI9IFGm+FtpvkjkpvthD+oL9Q5WGIhb/0xf03pkg VaCRt+k0mIB1BthGvpn6YSQP0kJI4nWTt/Pat2f2uNDgaWGWPrRIwPdBhyo= -----END CERTIFICATE-----Generated at Wed Feb 5 10:51:42 2025 by rpki-client