$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4a5670e2-3a21-4962-958f-d6dba70b79be.roa File: 4a5670e2-3a21-4962-958f-d6dba70b79be.roa (raw, json) Hash identifier: vLJOJGpAA1n75iUnE0y9w1vHkzjEIg8wYH/15DFWvFk= Subject key identifier: 82:26:2B:E7:E4:74:DD:AE:70:34:3B:97:59:42:AA:BA:78:D0:85:1B Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7FC543EC7458BAF50DEA871B4549AE0AA121EAFF Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4a5670e2-3a21-4962-958f-d6dba70b79be.roa Signing time: Mon 27 Jan 2025 00:00:00 +0000 ROA not before: Mon 27 Jan 2025 00:00:00 +0000 ROA not after: Mon 03 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.104.82.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:c5:43:ec:74:58:ba:f5:0d:ea:87:1b:45:49:ae:0a:a1:21:ea:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 27 00:00:00 2025 GMT Not After : Mar 3 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:15:d8:4b:2e:c3:03:e3:fd:8d:2a:fe:25:c9: 01:b2:11:2e:a3:2f:ad:fc:45:ec:5f:60:1b:53:70: 48:0b:44:5f:18:1c:11:73:9e:c5:24:1c:2d:df:9e: 30:d8:b5:16:ef:b8:6c:93:7e:ec:16:c1:aa:80:e8: a4:7c:4b:14:51:23:ad:92:98:2d:c3:a4:07:bf:ab: 05:60:d1:cb:94:f7:fa:c2:94:fa:b9:03:32:ce:0e: d2:31:1e:a4:66:18:87:e3:c2:07:4b:a2:d4:18:2a: 42:86:c8:d2:18:e5:7e:04:f6:ba:5e:a1:b0:d6:17: de:4a:b2:34:82:d2:b9:ee:25:2f:b4:e3:b3:35:06: 38:a5:2f:27:1f:61:92:e9:44:f9:19:77:e1:e0:52: 79:12:5d:8a:d1:58:fa:12:e8:95:0d:e9:2a:73:a6: 0e:3a:0b:c7:db:26:c2:cd:97:4e:73:d8:2b:b9:bd: c5:39:7d:49:0f:a6:6b:46:3b:8f:44:d6:df:e6:a7: 39:e0:86:20:09:23:a6:09:e8:b7:e7:f7:0d:5e:56: 09:71:e5:47:80:41:e8:93:de:c6:8a:8b:1c:d5:ef: 70:6a:6e:c3:36:49:2b:c5:d2:0a:8e:f3:8a:27:bc: 93:a2:c6:07:d7:b1:8b:fe:f9:a8:8d:78:7a:43:89: 24:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:26:2B:E7:E4:74:DD:AE:70:34:3B:97:59:42:AA:BA:78:D0:85:1B X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4a5670e2-3a21-4962-958f-d6dba70b79be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.104.82.0/23 Signature Algorithm: sha256WithRSAEncryption 03:76:4d:a4:e7:2a:34:e4:61:07:a4:96:f7:fe:01:ec:1b:fc: 5b:82:16:74:cb:96:74:f4:73:c8:54:82:ae:24:22:c7:30:c7: 10:34:b2:4b:b7:61:46:2b:9e:89:5b:8d:95:5d:06:be:02:05: 78:ff:aa:73:47:38:92:d9:b0:c0:3b:a4:c7:18:40:d2:5f:4d: 22:d4:37:7a:39:53:f8:c9:c5:a6:75:61:1f:f5:f8:7a:00:56: 67:06:1e:1e:bf:85:93:dd:bf:be:cf:65:47:ba:fc:f9:e5:81: 03:25:a8:63:a8:bb:20:0a:82:27:9d:3b:fd:cf:58:a0:7e:b7: 51:59:cb:ef:08:99:ed:60:1e:c1:9a:e9:97:9a:40:75:af:f8: 20:f9:07:cf:87:a0:91:c7:92:d1:e6:c1:98:39:97:b6:20:a4: e7:c1:79:70:88:9d:70:b3:af:f4:1e:d8:51:5b:8a:31:c1:00: ae:16:13:dd:1d:a9:45:c7:ae:6b:1e:9c:38:f6:c2:81:a7:c8: 05:72:49:0c:bc:02:cd:3d:3e:c7:f9:ba:1a:78:94:02:2c:ad: e0:3c:9b:94:99:3e:8b:1c:14:f1:97:8d:9c:7c:a7:64:de:ff: d6:8b:f9:05:a7:64:4f:ae:2c:00:4b:3a:78:ec:a2:f8:c7:f9: 4a:24:e0:83 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUf8VD7HRYuvUN6ocbRUmuCqEh6v8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTI3MDAwMDAwWhcNMjUwMzAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NGY3MzQ3NzU3MTcyYWMyZjhlZmRhYTU5NTc3NDgwYTUx MmI5MWI5NGVmYmUwYTVhYWNhMDhmMDFjNDA4MzVmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuFdhLLsMD4/2NKv4lyQGyES6jL638RexfYBtTcEgLRF8Y HBFznsUkHC3fnjDYtRbvuGyTfuwWwaqA6KR8SxRRI62SmC3DpAe/qwVg0cuU9/rC lPq5AzLODtIxHqRmGIfjwgdLotQYKkKGyNIY5X4E9rpeobDWF95KsjSC0rnuJS+0 47M1BjilLycfYZLpRPkZd+HgUnkSXYrRWPoS6JUN6Spzpg46C8fbJsLNl05z2Cu5 vcU5fUkPpmtGO49E1t/mpznghiAJI6YJ6Lfn9w1eVglx5UeAQeiT3saKixzV73Bq bsM2SSvF0gqO84onvJOixgfXsYv++aiNeHpDiSSvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgiYr5+R03a5wNDuXWUKqunjQhRswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzRhNTY3MGUyLTNhMjEtNDk2Mi05NThmLWQ2ZGJhNzBiNzliZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEDaFIwDQYJKoZIhvcNAQELBQADggEBAAN2TaTnKjTkYQeklvf+Aewb/FuC FnTLlnT0c8hUgq4kIscwxxA0sku3YUYrnolbjZVdBr4CBXj/qnNHOJLZsMA7pMcY QNJfTSLUN3o5U/jJxaZ1YR/1+HoAVmcGHh6/hZPdv77PZUe6/PnlgQMlqGOouyAK giedO/3PWKB+t1FZy+8Ime1gHsGa6ZeaQHWv+CD5B8+HoJHHktHmwZg5l7YgpOfB eXCInXCzr/Qe2FFbijHBAK4WE90dqUXHrmsenDj2woGnyAVySQy8As09Psf5uhp4 lAIsreA8m5SZPoscFPGXjZx8p2Te/9aL+QWnZE+uLABLOnjsovjH+Uok4IM= -----END CERTIFICATE-----Generated at Wed Feb 5 10:52:27 2025 by rpki-client