$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4570f34c-671a-4fcc-a171-7871c3923f46.roa File: 4570f34c-671a-4fcc-a171-7871c3923f46.roa (raw, json) Hash identifier: YYTDL5EzGrGBqXYHxOJ2b5ciZk5dIcHwDs1ozDD8+GA= Subject key identifier: EE:4D:78:8E:29:B4:84:77:83:19:B9:1E:54:FB:3C:84:D3:7C:F5:00 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 207C13034F01189C19A94EA921A58FBC7B1448E9 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4570f34c-671a-4fcc-a171-7871c3923f46.roa Signing time: Mon 27 Jan 2025 00:00:00 +0000 ROA not before: Mon 27 Jan 2025 00:00:00 +0000 ROA not after: Mon 03 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.72.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:7c:13:03:4f:01:18:9c:19:a9:4e:a9:21:a5:8f:bc:7b:14:48:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 27 00:00:00 2025 GMT Not After : Mar 3 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:38:f8:fa:2f:e2:98:e1:b3:19:6c:a1:10:17: dd:26:1b:e7:72:95:81:65:fc:95:0e:e7:fd:d2:d0: 24:06:1a:71:f9:6f:18:da:35:cc:38:02:4b:ba:02: 7b:93:8b:a6:b8:fd:ab:37:ad:43:0f:db:07:c5:d3: f0:66:4e:4f:8e:6f:3c:da:80:43:95:65:a3:ef:38: 57:69:42:93:9b:1d:96:f6:6f:98:25:8d:57:1e:9d: 50:70:43:f5:1b:b8:6e:4e:5a:e5:42:eb:8c:98:4a: bd:18:ed:0b:7b:bd:b7:24:07:e2:6d:f3:30:f3:ac: 8c:f4:33:a3:90:43:1f:84:7f:9a:6b:be:6d:5d:5e: af:52:ff:2f:7a:86:7d:1e:3a:6c:e6:0f:a7:b8:f4: 7a:40:52:9e:2b:96:a9:fb:47:02:15:c1:b9:22:85: 89:06:ac:ec:ef:73:88:d7:97:ae:2a:b5:8f:ad:ff: 1e:d4:1c:06:b8:5d:ca:a7:0c:03:89:1b:94:55:93: ee:c6:60:84:cd:f5:2e:e5:6b:3d:e4:99:ac:30:5d: e3:50:61:f9:01:7a:0e:4e:71:67:5c:31:34:5b:31: 56:6a:ad:41:4b:1a:48:12:80:bf:c7:1d:52:2c:cb: 15:af:52:70:a1:67:9c:09:f2:30:b4:8c:30:dc:68: 00:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:4D:78:8E:29:B4:84:77:83:19:B9:1E:54:FB:3C:84:D3:7C:F5:00 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4570f34c-671a-4fcc-a171-7871c3923f46.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.72.0.0/15 Signature Algorithm: sha256WithRSAEncryption 12:55:e7:27:5e:e2:af:21:34:46:20:eb:0b:c6:c0:ec:23:ac: 74:87:8f:b3:b5:02:05:3d:5c:1f:6d:df:09:23:c7:dd:d3:ce: 06:92:5a:70:a9:91:19:a2:59:85:af:97:3c:53:c4:93:3e:32: 39:77:69:25:8c:c8:c6:c2:f9:1b:d9:31:c4:25:ca:1d:46:cc: 87:6b:eb:b5:30:06:f7:4d:85:d8:8f:b2:0d:ea:50:07:8e:ee: 3d:3a:40:8b:36:ba:1a:9e:66:bf:c2:bf:dc:ef:d8:d3:8b:fc: 71:1d:c9:84:ed:19:d4:a4:1b:2a:39:71:39:e3:ce:0b:7d:f0: 4c:c8:aa:87:5c:54:bb:44:69:d7:00:6f:6d:86:2f:66:d2:cc: 6c:1d:bc:c7:86:b4:05:9e:b5:4d:51:3d:65:28:a4:40:87:43: f4:4f:d5:2d:a3:9e:0c:b0:0a:5d:79:8b:5d:fa:b5:34:95:0f: d4:13:71:20:df:d6:4c:4e:d4:e5:fa:db:3f:a7:92:18:6e:0a: d8:b2:a4:b6:cd:86:18:ad:06:04:5b:73:2e:5b:bc:4b:7b:5d: ae:3e:0e:4d:fc:f6:49:75:29:7d:f5:b2:28:6c:81:01:32:62: e8:f3:78:d4:4c:39:b6:be:f1:a6:fe:bf:36:11:a8:42:4a:8d: 6f:f8:2e:69 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIHwTA08BGJwZqU6pIaWPvHsUSOkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTI3MDAwMDAwWhcNMjUwMzAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNDQ2MzIxYmMxYWVhY2Y2NmI3MDIyY2ViMTM4YTYxODg1 YzUzNWI0M2IwZDkxN2Q2YmU4NmVlN2U0OGZjNmMyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8OPj6L+KY4bMZbKEQF90mG+dylYFl/JUO5/3S0CQGGnH5 bxjaNcw4Aku6AnuTi6a4/as3rUMP2wfF0/BmTk+ObzzagEOVZaPvOFdpQpObHZb2 b5gljVcenVBwQ/UbuG5OWuVC64yYSr0Y7Qt7vbckB+Jt8zDzrIz0M6OQQx+Ef5pr vm1dXq9S/y96hn0eOmzmD6e49HpAUp4rlqn7RwIVwbkihYkGrOzvc4jXl64qtY+t /x7UHAa4XcqnDAOJG5RVk+7GYITN9S7laz3kmawwXeNQYfkBeg5OcWdcMTRbMVZq rUFLGkgSgL/HHVIsyxWvUnChZ5wJ8jC0jDDcaAATAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU7k14jim0hHeDGbkeVPs8hNN89QAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQ1NzBmMzRjLTY3MWEtNGZjYy1hMTcxLTc4NzFjMzkyM2Y0Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwE0SDANBgkqhkiG9w0BAQsFAAOCAQEAElXnJ17iryE0RiDrC8bA7COsdIeP s7UCBT1cH23fCSPH3dPOBpJacKmRGaJZha+XPFPEkz4yOXdpJYzIxsL5G9kxxCXK HUbMh2vrtTAG902F2I+yDepQB47uPTpAiza6Gp5mv8K/3O/Y04v8cR3JhO0Z1KQb KjlxOePOC33wTMiqh1xUu0Rp1wBvbYYvZtLMbB28x4a0BZ61TVE9ZSikQIdD9E/V LaOeDLAKXXmLXfq1NJUP1BNxIN/WTE7U5frbP6eSGG4K2LKkts2GGK0GBFtzLlu8 S3tdrj4OTfz2SXUpffWyKGyBATJi6PN41Ew5tr7xpv6/NhGoQkqNb/guaQ== -----END CERTIFICATE-----Generated at Wed Feb 5 10:46:43 2025 by rpki-client