$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/79639a63-aa0f-43bf-8632-7b6d5e2c2567.roa File: 79639a63-aa0f-43bf-8632-7b6d5e2c2567.roa (raw, json) Hash identifier: zEc7HhIAJ7/zJYge6VC7GUxrpqwE3+zu00DTslPTXT8= Subject key identifier: D1:5D:9A:A2:12:16:88:89:EE:F6:12:25:02:B5:C0:1C:A5:25:95:7B Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 75A509C566F3DB21FF7A84382B7C23DD301A5CA1 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/79639a63-aa0f-43bf-8632-7b6d5e2c2567.roa Signing time: Mon 13 Jan 2025 00:00:00 +0000 ROA not before: Mon 13 Jan 2025 00:00:00 +0000 ROA not after: Mon 17 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.230.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:a5:09:c5:66:f3:db:21:ff:7a:84:38:2b:7c:23:dd:30:1a:5c:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 13 00:00:00 2025 GMT Not After : Feb 17 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:59:fc:0f:0a:b5:ef:48:7e:58:fa:96:33:82: 16:f5:de:cb:58:cf:ed:2d:b0:f8:20:93:1f:3b:03: 73:fc:a3:7b:15:1d:65:69:0f:85:1b:8a:69:32:b8: 9b:10:bc:54:16:8a:e8:db:9b:6e:86:fa:20:bc:6f: 36:06:91:a7:77:fd:33:4b:3a:82:ef:ba:ce:4f:0a: d7:79:72:38:4f:8a:3d:4c:59:78:a8:d8:2a:27:60: 24:be:5b:62:40:f5:3b:7c:02:45:f7:c9:8f:4e:7d: 68:a2:73:c7:7b:fa:28:51:bd:cd:c2:48:cd:8b:0a: d9:cf:a1:1d:31:86:21:3f:09:f9:35:1b:f5:b2:0a: 10:9e:44:87:4f:47:91:9a:c4:cc:8b:46:66:36:a7: f9:63:77:57:45:50:c1:69:b7:2e:cd:73:b2:9c:7d: a5:6d:bf:b8:31:35:cc:36:cd:96:fc:34:d8:9f:65: 51:f6:3b:9f:d0:dd:d6:15:c8:bd:7e:22:a9:09:ef: 50:7c:f5:e2:8b:4d:1f:ad:85:4c:a3:76:3b:6b:48: 4f:78:f5:d6:46:9a:52:56:a5:28:8c:35:a3:fe:19: 99:26:4c:09:76:dc:39:42:69:a8:de:e9:e1:b8:09: f0:56:74:25:47:8c:3d:f7:6b:7c:82:4c:59:01:c9: 19:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:5D:9A:A2:12:16:88:89:EE:F6:12:25:02:B5:C0:1C:A5:25:95:7B X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/79639a63-aa0f-43bf-8632-7b6d5e2c2567.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.230.0.0/16 Signature Algorithm: sha256WithRSAEncryption 15:2c:8b:7a:3e:03:59:4a:96:ee:3f:56:19:cf:a8:92:4c:d8: 14:97:65:27:08:79:d5:ec:3f:fa:b4:16:4c:fc:a9:6d:09:1a: ea:a3:f3:3a:40:b1:9e:0d:57:a2:bc:80:16:46:dd:34:79:7e: 80:8d:48:98:d1:5f:3b:42:67:e0:47:0e:f9:1a:c5:d9:41:e0: c5:4f:df:3e:e4:0a:4b:42:ed:18:6c:48:28:dd:35:62:77:2d: f9:fc:ec:b1:24:3e:e3:26:bb:be:47:ad:fb:23:81:41:a0:e9: 26:58:84:e7:67:23:be:c3:cc:49:41:1c:67:13:97:bc:21:c5: 31:31:97:1c:be:c8:90:84:4c:14:cf:79:be:64:5f:1a:e7:80: e8:b2:65:b4:56:50:3d:02:f5:5f:c2:19:57:83:66:c6:f9:02: 34:8d:c4:52:36:9b:96:f0:49:21:98:bd:7e:07:1c:b8:54:44: 00:25:a9:e8:6d:4a:85:b7:a2:4a:f7:26:57:a1:a2:27:9e:68: 67:9f:66:61:96:8c:9c:a0:5f:a3:9f:36:5f:55:95:c0:1f:28: c9:bb:84:2b:da:a8:14:57:cf:2a:44:7b:0c:67:6c:14:19:6e: c7:64:59:6a:e0:bc:73:35:d9:bc:9e:84:e2:d8:2c:77:5a:88: 07:0d:3d:e3 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdaUJxWbz2yH/eoQ4K3wj3TAaXKEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTEzMDAwMDAwWhcNMjUwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNDZkZWMzYTg0MTQyMTIxNWE2YmNhZjg2YmRiMjBhMzk4 NmU1MGQ0NzczOTkxNDljMTg3NTY5ZDg5MDA1YzFkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1WfwPCrXvSH5Y+pYzghb13stYz+0tsPggkx87A3P8o3sV HWVpD4UbimkyuJsQvFQWiujbm26G+iC8bzYGkad3/TNLOoLvus5PCtd5cjhPij1M WXio2ConYCS+W2JA9Tt8AkX3yY9OfWiic8d7+ihRvc3CSM2LCtnPoR0xhiE/Cfk1 G/WyChCeRIdPR5GaxMyLRmY2p/ljd1dFUMFpty7Nc7KcfaVtv7gxNcw2zZb8NNif ZVH2O5/Q3dYVyL1+IqkJ71B89eKLTR+thUyjdjtrSE949dZGmlJWpSiMNaP+GZkm TAl23DlCaaje6eG4CfBWdCVHjD33a3yCTFkByRmxAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU0V2aohIWiInu9hIlArXAHKUllXswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzc5NjM5YTYzLWFhMGYtNDNiZi04NjMyLTdiNmQ1ZTJjMjU2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAS5jANBgkqhkiG9w0BAQsFAAOCAQEAFSyLej4DWUqW7j9WGc+okkzYFJdl Jwh51ew/+rQWTPypbQka6qPzOkCxng1XoryAFkbdNHl+gI1ImNFfO0Jn4EcO+RrF 2UHgxU/fPuQKS0LtGGxIKN01Ynct+fzssSQ+4ya7vket+yOBQaDpJliE52cjvsPM SUEcZxOXvCHFMTGXHL7IkIRMFM95vmRfGueA6LJltFZQPQL1X8IZV4NmxvkCNI3E UjablvBJIZi9fgccuFREACWp6G1KhbeiSvcmV6GiJ55oZ59mYZaMnKBfo582X1WV wB8oybuEK9qoFFfPKkR7DGdsFBlux2RZauC8czXZvJ6E4tgsd1qIBw094w== -----END CERTIFICATE-----Generated at Wed Feb 5 10:53:29 2025 by rpki-client