$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/65549db5-a673-4279-ab49-63b27f53257d.roa File: 65549db5-a673-4279-ab49-63b27f53257d.roa (raw, json) Hash identifier: 3PQp+FhMeQ98IpCX3ihHhIMEz5drNUNajCVJUv2ANLg= Subject key identifier: F1:BD:C1:26:43:B0:8E:A8:B5:EC:EC:D7:90:5D:45:D6:45:A7:E0:59 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3DD67CFF09BB1A95ACCD1773A344859DAAE6349F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/65549db5-a673-4279-ab49-63b27f53257d.roa Signing time: Mon 13 Jan 2025 00:00:00 +0000 ROA not before: Mon 13 Jan 2025 00:00:00 +0000 ROA not after: Mon 17 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.231.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:d6:7c:ff:09:bb:1a:95:ac:cd:17:73:a3:44:85:9d:aa:e6:34:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 13 00:00:00 2025 GMT Not After : Feb 17 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:25:c3:d6:8e:12:6c:eb:00:aa:cf:1e:90:42: 30:29:8c:99:8b:af:51:ed:c6:ce:ff:85:70:c1:eb: a8:1a:86:74:38:ca:96:56:1c:47:38:a7:5e:5f:29: ef:4f:0e:11:12:88:71:70:9e:f4:43:93:b8:e5:69: 5e:6d:eb:e3:48:71:d3:0b:3c:66:c7:66:c0:66:48: ad:9b:4d:3a:e3:ef:ab:d7:d0:7d:a0:6d:ee:1a:12: 7a:d1:71:81:73:8e:aa:3d:9d:5b:b2:bd:e1:d6:22: 95:8a:b5:03:5e:6e:10:33:9b:21:2e:37:f6:87:af: 82:ec:a8:40:09:94:c0:d3:94:28:98:17:3f:79:e8: 30:d5:69:05:03:3a:1c:49:b7:8e:14:3e:b3:fc:c4: de:4b:57:6f:d6:87:cf:69:4e:03:41:b2:75:c0:2c: 2b:af:6f:1f:18:7f:fc:55:dd:31:cc:f8:2b:e6:91: c3:fa:9a:5b:6d:45:a9:7f:83:62:10:fe:88:f5:0d: a8:6f:d2:72:59:4d:c7:c8:60:0d:31:07:de:7f:e1: 6c:5c:ab:eb:65:48:84:a9:8e:d1:16:94:43:63:84: c5:74:e0:93:41:c8:83:50:83:60:5d:8e:c5:6b:4d: a6:96:49:e7:85:a5:c3:71:9e:6c:87:8e:ba:d9:7e: 09:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:BD:C1:26:43:B0:8E:A8:B5:EC:EC:D7:90:5D:45:D6:45:A7:E0:59 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/65549db5-a673-4279-ab49-63b27f53257d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.231.224.0/24 Signature Algorithm: sha256WithRSAEncryption 38:8d:a7:3d:7f:09:a6:2a:2f:c5:89:c5:85:a6:11:01:ee:7b: 92:e7:50:aa:f4:e1:f8:79:43:47:7b:77:94:4a:25:55:2e:a2: cb:79:97:93:76:e8:a6:2c:5f:d4:65:56:14:d4:2d:4e:15:92: 97:e1:9f:c0:ab:22:a2:28:84:1a:ce:a0:8f:ff:e8:f7:48:08: 59:7e:af:1d:b9:85:1b:80:ee:ae:88:4b:96:0c:27:98:2f:84: a7:85:5d:f4:c4:54:4e:62:1d:cc:f5:e1:f9:f7:21:52:95:59: 11:60:27:08:67:da:37:7b:c2:b3:09:1b:e7:d3:91:15:71:c9: 8b:a3:b1:31:95:df:4b:87:6b:ad:3f:a5:ae:74:57:1a:c5:a3: fe:c7:55:a5:c9:3d:c1:fd:36:5a:bc:8b:f7:ee:6b:5d:e0:e9: fd:ff:2b:fd:a8:bc:7b:0d:70:73:bc:d1:07:97:ee:11:dc:99: 70:d9:df:87:4b:65:71:51:e3:8b:0a:7b:fc:fe:66:4f:88:f0: d0:21:13:2a:a2:42:df:56:74:f6:c0:03:78:82:45:67:e5:47: ff:e7:ce:a4:e6:1c:f4:54:85:b8:c8:bb:65:30:51:b5:be:47: d7:cb:7c:60:b0:43:42:1b:4f:69:df:17:be:32:b7:02:78:f5: f0:59:73:5a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPdZ8/wm7GpWszRdzo0SFnarmNJ8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTEzMDAwMDAwWhcNMjUwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NWI3ZGZlZGJmOThmNTZjYTc0NjNkODZjNTIwYzE2MTE4 ODZlOTNlMjBkMjMwYmZiYmJlNDkxNTNlYjU5MDA3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcJcPWjhJs6wCqzx6QQjApjJmLr1Htxs7/hXDB66gahnQ4 ypZWHEc4p15fKe9PDhESiHFwnvRDk7jlaV5t6+NIcdMLPGbHZsBmSK2bTTrj76vX 0H2gbe4aEnrRcYFzjqo9nVuyveHWIpWKtQNebhAzmyEuN/aHr4LsqEAJlMDTlCiY Fz956DDVaQUDOhxJt44UPrP8xN5LV2/Wh89pTgNBsnXALCuvbx8Yf/xV3THM+Cvm kcP6mlttRal/g2IQ/oj1Dahv0nJZTcfIYA0xB95/4Wxcq+tlSISpjtEWlENjhMV0 4JNByINQg2BdjsVrTaaWSeeFpcNxnmyHjrrZfgkRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8b3BJkOwjqi17OzXkF1F1kWn4FkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzY1NTQ5ZGI1LWE2NzMtNDI3OS1hYjQ5LTYzYjI3ZjUzMjU3ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAS5+AwDQYJKoZIhvcNAQELBQADggEBADiNpz1/CaYqL8WJxYWmEQHue5Ln UKr04fh5Q0d7d5RKJVUuost5l5N26KYsX9RlVhTULU4Vkpfhn8CrIqIohBrOoI// 6PdICFl+rx25hRuA7q6IS5YMJ5gvhKeFXfTEVE5iHcz14fn3IVKVWRFgJwhn2jd7 wrMJG+fTkRVxyYujsTGV30uHa60/pa50VxrFo/7HVaXJPcH9Nlq8i/fua13g6f3/ K/2ovHsNcHO80QeX7hHcmXDZ34dLZXFR44sKe/z+Zk+I8NAhEyqiQt9WdPbAA3iC RWflR//nzqTmHPRUhbjIu2UwUbW+R9fLfGCwQ0IbT2nfF74ytwJ49fBZc1o= -----END CERTIFICATE-----Generated at Wed Feb 5 10:52:43 2025 by rpki-client