$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8475f4c8-d696-485e-8e91-0e79c562f0a2.roa File: 8475f4c8-d696-485e-8e91-0e79c562f0a2.roa (raw, json) Hash identifier: s0yJqUh6D2VNJj6EFaSS900e68n7IT56L/Dg67SbHQk= Subject key identifier: 3B:37:2E:17:D0:6A:21:FB:87:45:F1:16:FA:6F:70:DC:8F:75:FD:7A Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 36DB92779ABEA75318BF3B7D126E6BAAFE8E9D87 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8475f4c8-d696-485e-8e91-0e79c562f0a2.roa Signing time: Tue 04 Feb 2025 00:00:00 +0000 ROA not before: Tue 04 Feb 2025 00:00:00 +0000 ROA not after: Tue 11 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.5.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:db:92:77:9a:be:a7:53:18:bf:3b:7d:12:6e:6b:aa:fe:8e:9d:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 4 00:00:00 2025 GMT Not After : Mar 11 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:05:f1:55:47:c7:cb:5f:9d:81:ce:81:e5:53: b6:d5:05:2b:2d:d7:62:1f:66:98:bd:5a:59:a6:f1: 11:92:5d:55:34:e1:9b:8a:ef:50:90:a7:d1:60:aa: 3e:38:2d:49:1e:f6:86:70:59:a1:1c:83:81:f3:61: d7:12:5d:ca:57:a7:c9:ff:ed:a8:7f:5c:01:7b:c0: 6e:4a:bb:59:4e:b1:7c:af:60:0a:6a:2c:65:b6:d2: 55:e7:50:d6:af:95:32:70:cb:2c:53:fa:12:5d:6d: ae:11:c3:35:ac:a9:a4:3a:97:61:2a:fd:8a:47:4d: d5:a9:72:32:c9:7d:cf:4b:2e:ef:b7:9e:8f:3e:60: 3f:44:87:dd:d3:71:10:50:b8:ee:86:b5:75:92:79: 37:05:b3:8e:8b:f4:6c:43:d0:03:71:d7:86:d5:50: 97:5a:22:7f:55:85:4d:e3:28:e5:53:a7:17:e2:59: a9:ce:b4:e9:93:ff:3e:66:57:83:9d:0b:79:bc:10: 2a:6f:f8:2f:e4:36:2e:e1:09:aa:08:0c:a8:a9:1b: e8:fb:35:83:4e:1d:11:d9:cd:da:f6:2f:08:9c:97: 96:0f:bb:db:ce:ea:15:ef:27:96:f1:12:21:f4:83: 58:07:d9:bc:e7:ac:11:45:79:3b:8b:1c:b0:46:02: 27:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:37:2E:17:D0:6A:21:FB:87:45:F1:16:FA:6F:70:DC:8F:75:FD:7A X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8475f4c8-d696-485e-8e91-0e79c562f0a2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.5.0.0/16 Signature Algorithm: sha256WithRSAEncryption 41:fe:17:f7:be:73:6a:08:fc:e8:a9:6c:02:f2:46:57:63:b5: 8f:60:85:f7:76:af:b6:08:87:07:2e:82:91:4d:44:76:bb:ee: 1a:22:54:5a:c7:f3:13:84:e7:79:89:1e:55:b6:16:a2:6f:25: 25:dc:f9:70:c2:aa:79:a7:c7:97:a2:72:84:76:cf:f9:15:24: 3f:e4:67:4b:c7:06:14:ce:7e:6c:00:01:d9:4c:d9:8a:fa:2d: c8:3c:ff:2b:7a:1d:a7:e9:dc:e7:c7:72:30:91:15:58:28:1f: 6c:b4:44:1c:90:1a:97:e1:af:22:3d:98:10:4e:7f:79:8b:47: cf:2b:69:42:55:b5:bc:43:d6:2f:4d:ca:79:16:20:56:53:eb: c3:4e:b5:8a:a5:11:61:fd:67:f6:25:13:60:60:b1:c5:32:41: eb:ad:d7:fb:84:ce:1a:67:c8:12:34:8b:3b:ed:02:13:44:e9: 8e:6b:e9:89:08:6b:40:9c:23:2e:cb:a9:2e:6e:0c:3b:53:27: f2:84:ba:9e:00:0c:7e:a2:01:53:b5:d4:c7:da:81:04:73:e6: 80:a1:9c:09:49:a8:98:18:5a:c3:01:a1:c5:d6:e0:e8:51:f8: 98:6a:34:60:c2:76:cb:64:21:8a:13:46:8c:45:c9:3d:a7:5f: 05:33:08:10 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNtuSd5q+p1MYvzt9Em5rqv6OnYcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMjA0MDAwMDAwWhcNMjUwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNjIxODljNTQ0MDA1OTFmOWVjNGQ0ZTc0ZTRkZGUzMTlh MjFmMDU3OWEzOTczYzNhZTJiNzBhMDk0MDI1NWQwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD3BfFVR8fLX52BzoHlU7bVBSst12IfZpi9Wlmm8RGSXVU0 4ZuK71CQp9Fgqj44LUke9oZwWaEcg4HzYdcSXcpXp8n/7ah/XAF7wG5Ku1lOsXyv YApqLGW20lXnUNavlTJwyyxT+hJdba4RwzWsqaQ6l2Eq/YpHTdWpcjLJfc9LLu+3 no8+YD9Eh93TcRBQuO6GtXWSeTcFs46L9GxD0ANx14bVUJdaIn9VhU3jKOVTpxfi WanOtOmT/z5mV4OdC3m8ECpv+C/kNi7hCaoIDKipG+j7NYNOHRHZzdr2Lwicl5YP u9vO6hXvJ5bxEiH0g1gH2bznrBFFeTuLHLBGAicDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUOzcuF9BqIfuHRfEW+m9w3I91/XowHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzg0NzVmNGM4LWQ2OTYtNDg1ZS04ZTkxLTBlNzljNTYyZjBhMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwADBTANBgkqhkiG9w0BAQsFAAOCAQEAQf4X975zagj86KlsAvJGV2O1j2CF 93avtgiHBy6CkU1EdrvuGiJUWsfzE4TneYkeVbYWom8lJdz5cMKqeafHl6JyhHbP +RUkP+RnS8cGFM5+bAAB2UzZivotyDz/K3odp+nc58dyMJEVWCgfbLREHJAal+Gv Ij2YEE5/eYtHzytpQlW1vEPWL03KeRYgVlPrw061iqURYf1n9iUTYGCxxTJB663X +4TOGmfIEjSLO+0CE0TpjmvpiQhrQJwjLsupLm4MO1Mn8oS6ngAMfqIBU7XUx9qB BHPmgKGcCUmomBhawwGhxdbg6FH4mGo0YMJ2y2QhihNGjEXJPadfBTMIEA== -----END CERTIFICATE-----Generated at Wed Feb 5 10:58:00 2025 by rpki-client