$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/809b8de9-35a6-4f5e-b327-c96f51b0a969.roa File: 809b8de9-35a6-4f5e-b327-c96f51b0a969.roa (raw, json) Hash identifier: f7dUyuM9uu1FahihzIgHL81VLYDgYOpwxwEbOkR+N6c= Subject key identifier: 31:ED:52:EC:93:13:E9:D0:0A:77:0C:D5:F4:57:49:FC:76:50:97:2F Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 359111435EE243FB6A9F17291C1272D81C0CE34E Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/809b8de9-35a6-4f5e-b327-c96f51b0a969.roa Signing time: Fri 31 Jan 2025 00:00:00 +0000 ROA not before: Fri 31 Jan 2025 00:00:00 +0000 ROA not after: Fri 07 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.157.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:91:11:43:5e:e2:43:fb:6a:9f:17:29:1c:12:72:d8:1c:0c:e3:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 31 00:00:00 2025 GMT Not After : Mar 7 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:06:c1:11:63:3a:23:45:b1:62:2d:1b:0e:95: aa:38:78:cc:68:6c:21:dd:30:33:18:14:49:8d:31: 8c:e8:e7:25:3b:fa:99:71:f3:24:89:b1:31:83:06: 92:97:b8:20:50:0d:ef:62:97:ea:0f:27:66:bc:3b: 73:fe:2f:8d:f5:1d:72:94:6c:08:f7:d5:ec:88:59: 66:2f:3e:91:ab:c6:1c:78:80:3a:1f:51:0c:85:7c: c5:a7:77:f3:da:64:37:77:25:b5:75:43:5c:b3:1b: 1a:8d:49:70:50:35:f4:be:50:38:87:56:a7:fa:22: 05:fb:aa:12:f7:c8:6e:2d:22:97:bc:3f:fc:b2:45: 9f:46:49:dc:9e:38:4b:52:bb:88:1a:62:6b:e6:32: cc:d5:e7:ad:67:6a:d6:cd:de:ea:3e:50:19:0b:37: 90:ee:4f:be:5b:28:f8:ee:89:d3:fd:f9:22:92:d8: 74:7a:2e:c4:79:4b:97:ce:4c:ed:3e:12:08:54:d4: f4:82:5f:77:e6:8a:97:6b:9d:86:af:ef:65:2e:77: 8d:2c:20:e9:5e:7b:9d:33:4b:52:d0:eb:cf:81:af: 61:cc:b1:c5:a0:49:ea:93:31:7a:26:63:af:9b:5f: 12:c5:11:79:c0:36:8a:4b:64:74:7b:c0:38:b0:c1: cf:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:ED:52:EC:93:13:E9:D0:0A:77:0C:D5:F4:57:49:FC:76:50:97:2F X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/809b8de9-35a6-4f5e-b327-c96f51b0a969.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.157.192.0/18 Signature Algorithm: sha256WithRSAEncryption 8d:85:71:aa:d4:f8:d6:41:38:14:6c:b3:3c:85:02:e9:58:b8: a2:8d:d1:2a:93:61:d4:55:35:d5:ff:92:3d:fc:49:b5:32:2c: 54:51:86:fc:b9:05:09:c2:df:e1:6d:3a:2d:3c:d6:a1:be:a7: 56:02:17:24:2f:36:6e:b4:f7:c8:8c:ce:02:3b:55:94:6d:7f: a4:63:8d:9d:4f:74:d7:e4:67:ec:a5:a0:05:6e:03:db:f0:f5: 42:8e:fb:97:ca:af:5e:62:a2:3e:09:91:5d:0e:56:e7:9e:cd: a0:e9:58:03:be:bc:15:22:db:e6:db:a5:d7:ed:76:fa:2b:75: be:66:4b:6f:94:09:42:d0:70:fd:5c:d1:b4:dc:70:d0:a6:65: 13:21:2a:fa:8d:43:a5:ed:87:30:f9:56:d6:e1:12:a3:9d:84: c8:d9:4e:25:03:31:54:21:b9:8e:79:e6:a9:b9:44:92:19:dd: 6e:4c:87:b6:6a:03:a6:a7:01:a3:04:40:be:c6:58:b7:af:fe: fe:12:44:2d:02:cd:54:56:e0:32:b6:98:e1:20:d0:3d:53:62: b6:bb:5e:ac:f4:67:a3:33:ed:2f:3d:0e:cc:52:45:0f:05:07: 76:7b:8b:5d:d9:bf:91:1a:1e:2a:18:b6:a2:36:79:64:ff:46: e1:52:87:70 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNZERQ17iQ/tqnxcpHBJy2BwM404wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTMxMDAwMDAwWhcNMjUwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYjUyZWY4NDdmNWFiMDc4OGUzOGE5NjcwMzgxMjdmOTM5 MWJkYTA3ZjQ4MmQxOTRhOGI0Y2Y1YzQ1YzBlNTM5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6BsERYzojRbFiLRsOlao4eMxobCHdMDMYFEmNMYzo5yU7 +plx8ySJsTGDBpKXuCBQDe9il+oPJ2a8O3P+L431HXKUbAj31eyIWWYvPpGrxhx4 gDofUQyFfMWnd/PaZDd3JbV1Q1yzGxqNSXBQNfS+UDiHVqf6IgX7qhL3yG4tIpe8 P/yyRZ9GSdyeOEtSu4gaYmvmMszV561natbN3uo+UBkLN5DuT75bKPjuidP9+SKS 2HR6LsR5S5fOTO0+EghU1PSCX3fmipdrnYav72Uud40sIOlee50zS1LQ68+Br2HM scWgSeqTMXomY6+bXxLFEXnANopLZHR7wDiwwc+3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMe1S7JMT6dAKdwzV9FdJ/HZQly8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzgwOWI4ZGU5LTM1YTYtNGY1ZS1iMzI3LWM5NmY1MWIwYTk2OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY2ncAwDQYJKoZIhvcNAQELBQADggEBAI2FcarU+NZBOBRsszyFAulYuKKN 0SqTYdRVNdX/kj38SbUyLFRRhvy5BQnC3+FtOi081qG+p1YCFyQvNm6098iMzgI7 VZRtf6RjjZ1PdNfkZ+yloAVuA9vw9UKO+5fKr15ioj4JkV0OVueezaDpWAO+vBUi 2+bbpdftdvordb5mS2+UCULQcP1c0bTccNCmZRMhKvqNQ6XthzD5VtbhEqOdhMjZ TiUDMVQhuY555qm5RJIZ3W5Mh7ZqA6anAaMEQL7GWLev/v4SRC0CzVRW4DK2mOEg 0D1TYra7Xqz0Z6Mz7S89DsxSRQ8FB3Z7i13Zv5EaHioYtqI2eWT/RuFSh3A= -----END CERTIFICATE-----Generated at Wed Feb 5 09:52:25 2025 by rpki-client