$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/70e3f95f-4fd8-4acd-84e4-3ac6703b0781.roa File: 70e3f95f-4fd8-4acd-84e4-3ac6703b0781.roa (raw, json) Hash identifier: g4a4h/qiICIgTpT4gwigXWdqNeg7YB+SX7fClJFCiTo= Subject key identifier: 8D:4C:8A:9A:C7:C4:81:76:87:C1:81:AC:1C:2A:7F:1C:9A:F7:A3:39 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 30978EE3F06E3D46D8AE97D944D11E7C946D8D71 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/70e3f95f-4fd8-4acd-84e4-3ac6703b0781.roa Signing time: Mon 27 Jan 2025 00:00:00 +0000 ROA not before: Mon 27 Jan 2025 00:00:00 +0000 ROA not after: Mon 03 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.66.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:97:8e:e3:f0:6e:3d:46:d8:ae:97:d9:44:d1:1e:7c:94:6d:8d:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 27 00:00:00 2025 GMT Not After : Mar 3 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:60:69:29:f3:2e:a5:02:92:02:18:16:c5:d6: 39:a9:4c:68:1e:87:9e:aa:5b:b1:52:98:18:80:05: af:65:5f:82:07:9e:5e:a7:18:c3:05:fd:4c:7f:e4: 46:ba:34:81:fd:61:f4:e7:d1:b2:33:31:8a:86:fb: d1:60:2d:82:e1:f4:7e:dd:dc:f8:14:84:19:c7:a6: 8a:28:9a:ec:c0:0c:13:25:7d:aa:b3:d7:62:ff:60: fe:7a:c1:93:63:79:43:c4:ee:17:c2:1d:13:4f:81: 79:a8:ca:9b:cc:9a:5c:12:4e:11:8b:a6:10:67:e0: c7:88:10:12:91:6f:2e:16:a5:39:88:30:71:08:d0: 7b:50:fb:26:db:0c:b1:8d:41:1c:61:76:22:a8:22: c7:bb:8d:de:e7:f6:f3:80:3f:66:b8:9c:2c:bc:c4: ed:af:0e:5f:5a:ce:28:40:bc:74:38:1f:a7:57:96: 40:80:db:13:76:f6:04:fc:58:73:df:ee:91:d7:e5: 1e:57:64:02:29:23:00:fb:58:2e:14:c8:f0:12:92: 02:c8:0f:50:a7:d2:c5:a5:ff:2c:12:32:83:c3:70: d5:80:00:64:d1:70:c5:55:b9:e2:6c:ac:0a:8e:92: 49:76:92:7e:fe:01:a1:02:46:7a:bd:d4:9a:e5:4e: 84:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:4C:8A:9A:C7:C4:81:76:87:C1:81:AC:1C:2A:7F:1C:9A:F7:A3:39 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/70e3f95f-4fd8-4acd-84e4-3ac6703b0781.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.66.32.0/19 Signature Algorithm: sha256WithRSAEncryption 33:e3:64:dc:05:33:8f:b9:1b:dd:0e:36:5a:63:0d:2b:d6:7e: 0f:23:0b:5e:19:83:0a:ce:dd:04:77:7e:5c:0d:7a:de:03:f3: 17:99:56:bf:01:d7:93:41:9d:0a:c8:0b:11:6b:7e:ec:02:ac: 50:d0:5f:98:c6:60:4d:73:9f:f7:9f:4e:78:29:64:4d:a3:95: c6:96:c7:bb:a4:00:cd:ac:02:84:57:6a:c2:7a:27:6a:40:fd: 5e:16:c9:0d:13:14:2e:91:45:e0:8a:37:a3:e3:b3:f2:31:bf: d6:ed:b5:fc:89:f8:19:8a:96:20:c0:ab:c3:8f:c8:36:46:f1: 69:3b:c6:42:27:98:0c:9d:be:72:2d:67:54:e8:3f:ce:88:39: 65:81:98:ab:46:fe:6a:05:74:d9:c9:86:41:49:c2:0c:8a:9f: b2:8f:33:ab:81:15:54:88:e3:e7:77:b8:77:1a:a6:5c:55:60: 22:b4:a5:a5:d6:70:e4:6a:01:58:c2:93:f5:ea:cd:d8:4e:ca: 12:5b:40:a1:3b:49:46:5a:d7:56:d2:fb:a3:16:38:7f:f8:5f: d3:10:db:af:a0:08:bd:12:dc:f6:b3:d9:83:bb:af:13:8d:96: 95:ae:9f:d1:e0:95:47:e4:3f:8e:88:03:c6:d5:48:96:ef:42: 66:b2:d5:8d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMJeO4/BuPUbYrpfZRNEefJRtjXEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTI3MDAwMDAwWhcNMjUwMzAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYjFjNzdmNmM5N2ZhNzkxZGQ3MTM0ZDgxNjAzY2ZhZmQx NTU3MzJmNWNhOTA4NGZlM2YxNmY2OTIzYTUyZmVkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDrYGkp8y6lApICGBbF1jmpTGgeh56qW7FSmBiABa9lX4IH nl6nGMMF/Ux/5Ea6NIH9YfTn0bIzMYqG+9FgLYLh9H7d3PgUhBnHpooomuzADBMl faqz12L/YP56wZNjeUPE7hfCHRNPgXmoypvMmlwSThGLphBn4MeIEBKRby4WpTmI MHEI0HtQ+ybbDLGNQRxhdiKoIse7jd7n9vOAP2a4nCy8xO2vDl9azihAvHQ4H6dX lkCA2xN29gT8WHPf7pHX5R5XZAIpIwD7WC4UyPASkgLID1Cn0sWl/ywSMoPDcNWA AGTRcMVVueJsrAqOkkl2kn7+AaECRnq91JrlToSFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjUyKmsfEgXaHwYGsHCp/HJr3ozkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzcwZTNmOTVmLTRmZDgtNGFjZC04NGU0LTNhYzY3MDNiMDc4MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU0QiAwDQYJKoZIhvcNAQELBQADggEBADPjZNwFM4+5G90ONlpjDSvWfg8j C14ZgwrO3QR3flwNet4D8xeZVr8B15NBnQrICxFrfuwCrFDQX5jGYE1zn/efTngp ZE2jlcaWx7ukAM2sAoRXasJ6J2pA/V4WyQ0TFC6RReCKN6Pjs/Ixv9bttfyJ+BmK liDAq8OPyDZG8Wk7xkInmAydvnItZ1ToP86IOWWBmKtG/moFdNnJhkFJwgyKn7KP M6uBFVSI4+d3uHcaplxVYCK0paXWcORqAVjCk/XqzdhOyhJbQKE7SUZa11bS+6MW OH/4X9MQ26+gCL0S3Paz2YO7rxONlpWun9HglUfkP46IA8bVSJbvQmay1Y0= -----END CERTIFICATE-----Generated at Wed Feb 5 10:46:36 2025 by rpki-client