$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6886b238-5980-463b-b119-e9a682f0a65f.roa File: 6886b238-5980-463b-b119-e9a682f0a65f.roa (raw, json) Hash identifier: 5pIabUyXwb8rh2geQRmlrB32PnEZfPDbw3d1aBDD0qY= Subject key identifier: FC:4B:EF:5F:55:13:48:51:DD:02:D7:CB:EA:C0:0E:2C:EA:7D:A6:A6 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 066BED3DD5E5355546D0BAC40E29AB26ADC1D111 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6886b238-5980-463b-b119-e9a682f0a65f.roa Signing time: Mon 27 Jan 2025 00:00:00 +0000 ROA not before: Mon 27 Jan 2025 00:00:00 +0000 ROA not after: Mon 03 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.89.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:6b:ed:3d:d5:e5:35:55:46:d0:ba:c4:0e:29:ab:26:ad:c1:d1:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 27 00:00:00 2025 GMT Not After : Mar 3 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:74:dd:df:51:72:e8:93:cb:18:c1:46:f7:64: 97:9f:93:99:2e:97:9f:49:87:41:0a:f9:ae:f2:b5: d3:25:b3:28:02:9b:19:16:9e:c5:47:7d:d7:b2:f0: ef:99:38:b5:97:f1:e3:cb:e5:b8:59:dc:7f:c9:e3: ce:dd:d7:ba:9b:0d:e3:4d:98:d5:f0:e7:96:65:53: f6:0a:85:3f:3e:ee:f7:3d:97:8d:db:48:a2:9e:70: 83:25:5c:41:34:6a:d4:3e:9b:bb:2d:11:fa:b9:6b: 28:9a:6c:02:6b:23:f7:0a:cc:c6:54:77:1d:4f:1f: 2f:d7:d8:26:c3:d2:4a:05:c9:0a:8b:54:c9:30:5e: dc:3d:b2:8e:ba:53:9e:43:05:5f:24:02:1a:f6:d3: a2:05:fb:2c:37:ad:81:fb:61:0f:da:69:e5:b8:f3: 06:34:05:c8:b7:39:e1:49:3c:0c:d3:d2:0d:60:f6: 13:19:02:03:10:75:90:59:78:15:b3:61:96:b2:9b: c1:29:2a:19:ce:d3:d0:e4:09:ad:7c:e7:af:bf:75: f2:35:fc:09:b8:a3:4c:a8:69:74:88:bf:09:d3:34: a1:78:58:cf:6b:1b:99:8f:93:d0:4c:97:af:13:44: 40:19:98:b9:0f:e1:44:9d:bd:a9:b9:c9:bb:e6:6e: 6f:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:4B:EF:5F:55:13:48:51:DD:02:D7:CB:EA:C0:0E:2C:EA:7D:A6:A6 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6886b238-5980-463b-b119-e9a682f0a65f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.89.128.0/18 Signature Algorithm: sha256WithRSAEncryption 7d:48:8a:52:ee:71:27:e4:f2:ed:e1:eb:46:02:f2:c2:d9:3a: 38:30:16:69:b5:65:14:e3:9e:4f:79:4e:0c:c3:81:3c:79:e1: 05:3b:b5:17:e4:f9:1f:9d:ff:da:b2:30:8d:d7:7d:23:0f:a7: 77:aa:5f:6b:a2:49:58:4e:a9:05:85:55:5e:8a:3f:23:05:99: 8e:b8:11:1c:53:19:77:9a:f2:34:06:2d:0f:f6:29:47:3d:0c: 18:32:5b:26:2d:d0:be:55:84:f4:74:ea:cd:24:98:5f:55:42: af:e0:bf:c6:70:63:f5:40:8b:18:30:9e:cf:c8:cd:5e:c0:5d: c4:93:14:4e:6b:5f:60:e1:d2:cc:da:bc:ac:70:8a:23:f4:59: 1d:8f:20:b3:f2:f5:12:f5:dc:6b:f4:d0:53:68:bb:63:1d:05: 61:78:12:15:f7:c4:1a:f8:08:88:a0:0c:51:15:94:40:4b:d6: f2:32:6a:56:ca:c6:f2:98:c3:ec:53:77:9c:cd:c2:e2:5e:3f: 75:18:b7:d2:91:df:41:d8:69:d2:e1:3b:88:1e:94:ae:21:33: 65:64:c3:18:95:d4:e9:d2:fe:2e:ae:6b:fd:7e:7b:01:38:9c: e5:4f:04:4d:d1:ec:88:27:a6:0d:0f:1e:30:1a:f5:10:75:c1: c0:36:cf:72 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBmvtPdXlNVVG0LrEDimrJq3B0REwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTI3MDAwMDAwWhcNMjUwMzAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ODg2MTUwODMwOTE2ZjYxZjRiNmE2YzVkNWI3ODczYTJl Yjk4N2I2Y2NhZjY5YWFkOWM4N2U3ZmZiYjRlMzk1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCedN3fUXLok8sYwUb3ZJefk5kul59Jh0EK+a7ytdMlsygC mxkWnsVHfdey8O+ZOLWX8ePL5bhZ3H/J487d17qbDeNNmNXw55ZlU/YKhT8+7vc9 l43bSKKecIMlXEE0atQ+m7stEfq5ayiabAJrI/cKzMZUdx1PHy/X2CbD0koFyQqL VMkwXtw9so66U55DBV8kAhr206IF+yw3rYH7YQ/aaeW48wY0Bci3OeFJPAzT0g1g 9hMZAgMQdZBZeBWzYZaym8EpKhnO09DkCa1856+/dfI1/Am4o0yoaXSIvwnTNKF4 WM9rG5mPk9BMl68TREAZmLkP4USdvam5ybvmbm81AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/EvvX1UTSFHdAtfL6sAOLOp9pqYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzY4ODZiMjM4LTU5ODAtNDYzYi1iMTE5LWU5YTY4MmYwYTY1Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYSWYAwDQYJKoZIhvcNAQELBQADggEBAH1IilLucSfk8u3h60YC8sLZOjgw Fmm1ZRTjnk95TgzDgTx54QU7tRfk+R+d/9qyMI3XfSMPp3eqX2uiSVhOqQWFVV6K PyMFmY64ERxTGXea8jQGLQ/2KUc9DBgyWyYt0L5VhPR06s0kmF9VQq/gv8ZwY/VA ixgwns/IzV7AXcSTFE5rX2Dh0szavKxwiiP0WR2PILPy9RL13Gv00FNou2MdBWF4 EhX3xBr4CIigDFEVlEBL1vIyalbKxvKYw+xTd5zNwuJeP3UYt9KR30HYadLhO4ge lK4hM2VkwxiV1OnS/i6ua/1+ewE4nOVPBE3R7Ignpg0PHjAa9RB1wcA2z3I= -----END CERTIFICATE-----Generated at Wed Feb 5 10:41:14 2025 by rpki-client