$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4e33ffa2-c29a-4fcd-bbd0-bceffa2c1860.roa File: 4e33ffa2-c29a-4fcd-bbd0-bceffa2c1860.roa (raw, json) Hash identifier: E2kgNb+KypcAsJdgaFmQzI9K42+p6FlV1jCF54h0Rjw= Subject key identifier: 15:9B:A3:D2:A4:0E:FB:66:B3:FD:AB:AA:9D:1B:60:A8:37:9D:76:A9 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0D8D21791A15BC446F6A6CEC63BC6D7C045A7C11 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4e33ffa2-c29a-4fcd-bbd0-bceffa2c1860.roa Signing time: Fri 07 Feb 2025 00:00:00 +0000 ROA not before: Fri 07 Feb 2025 00:00:00 +0000 ROA not after: Fri 14 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.94.208.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:8d:21:79:1a:15:bc:44:6f:6a:6c:ec:63:bc:6d:7c:04:5a:7c:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 7 00:00:00 2025 GMT Not After : Mar 14 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:5a:17:32:e3:b0:9c:cf:ea:fe:4b:9c:55:e5: 11:df:9d:d2:46:98:fd:de:12:14:57:8a:4b:9f:5c: 52:1f:40:7c:34:d2:ae:5e:d8:c7:16:bd:f6:8b:07: 0f:d6:5b:a3:f4:e7:7a:3b:2e:ec:2d:6c:1c:00:63: b7:bf:b0:53:f3:c8:22:5d:b4:71:ab:5b:3c:6b:00: ca:4b:d8:9a:ad:49:6a:44:d9:86:b4:f6:d3:ea:6e: 6b:a0:99:44:cf:91:b5:d2:30:7e:ef:22:a0:1e:26: fc:2b:17:d1:5f:1b:09:f2:53:74:7a:b9:21:55:3a: 25:ab:d1:87:df:ab:9d:21:91:0c:08:64:79:9a:fb: c4:ea:4a:01:e7:9c:55:f6:bb:3d:ff:19:92:b1:bc: fc:4b:8e:83:1e:22:96:69:3f:9a:5b:ab:29:7a:ea: a9:6a:fc:01:9d:04:8f:39:b6:17:31:ff:a6:9b:6d: 71:98:70:82:e6:1a:aa:11:34:97:d7:42:6a:66:98: 82:6b:04:6d:c3:95:ff:bf:5c:34:11:76:e0:25:6c: e6:b3:d9:a9:73:4b:51:f3:cb:67:1c:f6:c4:db:92: 33:77:5d:f9:7b:c2:0b:b4:73:de:3f:0d:4b:d7:9b: 0c:d9:57:af:37:64:9a:d8:8c:da:cb:d3:89:42:46: 84:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:9B:A3:D2:A4:0E:FB:66:B3:FD:AB:AA:9D:1B:60:A8:37:9D:76:A9 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4e33ffa2-c29a-4fcd-bbd0-bceffa2c1860.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.94.208.0/21 Signature Algorithm: sha256WithRSAEncryption 40:45:55:38:17:81:c4:cc:c4:f4:a4:99:60:b0:e2:67:24:41: bc:58:d4:d8:88:b3:7f:b7:36:c2:df:21:f9:4a:70:ae:bd:5d: de:0b:8a:a5:30:b7:cb:1f:52:57:f6:4b:d8:ca:36:60:63:de: 16:95:eb:2f:3e:f4:8a:14:35:c8:c6:75:0c:56:6d:cd:6c:a9: a6:2f:2a:fd:58:06:eb:dd:fe:c6:01:42:e8:8a:fd:2f:f4:a7: 91:53:ec:46:b1:4e:cb:67:a9:76:41:5a:22:90:93:71:36:75: 46:de:10:bd:d2:62:12:b1:e8:24:de:3b:ae:05:4a:df:5a:b7: d7:df:fd:0a:7c:95:c6:07:83:71:cb:e6:40:d5:a0:07:47:5a: c3:1f:c6:02:8e:b4:bd:c3:ef:c4:0a:b6:3b:48:0c:83:29:bc: ac:64:bb:a3:0d:85:6c:0e:ee:91:f4:d1:80:aa:d6:27:13:ec: c7:1a:4a:5a:18:59:d8:71:a3:c2:69:8f:b7:7b:99:6e:1a:f1: 03:d7:1f:09:3e:f3:c3:72:cc:53:f8:32:7c:7b:dd:af:d6:da: dd:be:b6:cd:37:fa:8d:76:d4:d6:d8:a0:a0:f6:17:6b:51:a4: bb:80:b6:37:35:6c:de:78:91:f5:10:af:79:e7:41:d2:3e:40: 73:5e:47:6b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDY0heRoVvERvamzsY7xtfARafBEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMjA3MDAwMDAwWhcNMjUwMzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMGIwMDJkMjg1OGQ5MDY0M2QyNzVhYTAyYWNhY2ZiNjEy ZWVlYzQxZmQ4N2NjYzMzNWZiNmVkYjk4ZjIwMmRjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgWhcy47Ccz+r+S5xV5RHfndJGmP3eEhRXikufXFIfQHw0 0q5e2McWvfaLBw/WW6P053o7LuwtbBwAY7e/sFPzyCJdtHGrWzxrAMpL2JqtSWpE 2Ya09tPqbmugmUTPkbXSMH7vIqAeJvwrF9FfGwnyU3R6uSFVOiWr0Yffq50hkQwI ZHma+8TqSgHnnFX2uz3/GZKxvPxLjoMeIpZpP5pbqyl66qlq/AGdBI85thcx/6ab bXGYcILmGqoRNJfXQmpmmIJrBG3Dlf+/XDQRduAlbOaz2alzS1Hzy2cc9sTbkjN3 Xfl7wgu0c94/DUvXmwzZV683ZJrYjNrL04lCRoSLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFZuj0qQO+2az/auqnRtgqDeddqkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzRlMzNmZmEyLWMyOWEtNGZjZC1iYmQwLWJjZWZmYTJjMTg2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM0XtAwDQYJKoZIhvcNAQELBQADggEBAEBFVTgXgcTMxPSkmWCw4mckQbxY 1NiIs3+3NsLfIflKcK69Xd4LiqUwt8sfUlf2S9jKNmBj3haV6y8+9IoUNcjGdQxW bc1sqaYvKv1YBuvd/sYBQuiK/S/0p5FT7EaxTstnqXZBWiKQk3E2dUbeEL3SYhKx 6CTeO64FSt9at9ff/Qp8lcYHg3HL5kDVoAdHWsMfxgKOtL3D78QKtjtIDIMpvKxk u6MNhWwO7pH00YCq1icT7McaSloYWdhxo8Jpj7d7mW4a8QPXHwk+88NyzFP4Mnx7 3a/W2t2+ts03+o121NbYoKD2F2tRpLuAtjc1bN54kfUQr3nnQdI+QHNeR2s= -----END CERTIFICATE-----Generated at Sun Feb 16 15:34:23 2025 by rpki-client