$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/859dea27-078b-4708-89e6-1e0188e51e9f.roa File: 859dea27-078b-4708-89e6-1e0188e51e9f.roa (raw, json) Hash identifier: d+SKCPycxYEAWM4g80VnLNnp0rrH7i6hwmr/ycSDpaM= Subject key identifier: 20:42:52:DF:3E:AB:AA:90:C1:4A:C5:6C:C6:7D:63:9C:C0:AB:FC:A5 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5DAB0ECAED0C45DF35529B1AC820D9F4C3941D34 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/859dea27-078b-4708-89e6-1e0188e51e9f.roa Signing time: Fri 31 Jan 2025 00:00:00 +0000 ROA not before: Fri 31 Jan 2025 00:00:00 +0000 ROA not after: Fri 07 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.150.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:ab:0e:ca:ed:0c:45:df:35:52:9b:1a:c8:20:d9:f4:c3:94:1d:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 31 00:00:00 2025 GMT Not After : Mar 7 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c7:94:c4:52:c5:f2:53:82:27:1f:4d:2c:53: c4:87:1f:b4:24:c7:49:dd:51:7f:02:8e:65:6c:ff: 17:15:bc:38:39:77:22:ad:6b:ad:17:86:6a:4f:b5: 10:74:f3:21:d7:4d:53:ac:9b:b4:88:19:73:d8:71: 5c:90:c3:79:47:f7:05:b8:75:50:23:88:e0:d1:4d: 53:a4:32:0c:cb:90:83:4c:ef:57:93:e7:f9:6a:e7: 96:d6:d8:a2:7f:3d:52:ec:bf:78:ea:cd:fb:ce:9b: b1:b5:d2:87:af:f5:65:ad:85:0c:57:48:d7:2b:13: 2f:87:6c:3a:f8:54:16:86:fe:99:80:5f:1a:d3:c6: ac:ba:b7:ee:02:ac:9c:e0:9e:69:af:43:89:bc:0a: 86:72:37:6d:fc:26:ed:13:ee:d1:e6:bd:1a:59:e9: ca:49:5e:61:b7:01:b7:61:2e:87:88:e8:17:51:02: 07:cc:47:0a:19:6c:56:ff:7e:ac:94:b2:0d:05:49: 6c:61:85:6d:f6:3f:4c:21:e4:ff:bc:44:e4:76:49: 52:63:bc:89:48:9b:1b:8f:c1:8c:78:43:e3:25:67: 09:4e:9f:07:9b:05:55:e1:1b:49:9a:20:e8:83:a4: 8e:05:f0:3c:7d:9e:e7:58:a9:96:1f:25:82:d2:c2: c2:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:42:52:DF:3E:AB:AA:90:C1:4A:C5:6C:C6:7D:63:9C:C0:AB:FC:A5 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/859dea27-078b-4708-89e6-1e0188e51e9f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.150.144.0/20 Signature Algorithm: sha256WithRSAEncryption 77:e8:d4:a3:97:50:56:9b:d5:29:c0:ad:bd:ba:59:a4:b6:96: 88:d8:1b:89:d2:c9:fe:45:44:ad:a5:14:c8:86:c7:1a:fe:9e: a4:ce:a8:67:40:b2:f0:9a:2f:cc:ec:5c:e3:9a:a5:7c:43:7b: e7:2c:de:23:6f:80:44:4a:72:6e:02:03:ce:98:fc:fc:7b:14: 00:64:f3:fb:54:66:b0:1b:4c:3b:3c:79:20:89:28:35:28:fc: 97:75:99:b6:15:40:0b:d5:be:15:36:b0:d6:43:50:3f:c2:68: 32:db:68:0a:90:ea:dd:f2:87:c1:c7:f7:90:eb:83:a0:b3:43: ed:8d:1d:2e:2e:1a:b0:54:94:53:08:c3:f1:a3:c3:04:e2:53: 7c:38:53:84:02:4f:21:8e:25:6a:6d:cf:ee:33:fa:0b:d5:6f: 44:fd:47:bf:5a:9e:e4:c8:5e:d6:25:fc:0a:7f:cc:a8:49:54: 99:b6:b1:6d:b1:9a:46:ed:d7:38:27:1e:06:4e:88:43:da:46: a6:c6:b8:ce:47:36:50:7b:21:61:5a:58:a2:f1:8d:f7:3a:94: ec:0d:d5:28:9f:fa:a1:6a:98:e4:20:5a:3e:ad:7d:a4:30:75: 90:77:b5:30:29:94:22:ab:ea:fb:2a:e6:72:dd:ed:72:db:7b: 79:f5:8d:60 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXasOyu0MRd81UpsayCDZ9MOUHTQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTMxMDAwMDAwWhcNMjUwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NDI2ZjE3MTVkMjdjZDQ3NGE4NDZlNTAwN2ZmY2VhNjcy ODBmMWE5NjJiYzMyMGVjODE4ZDFiOWRhYmZmNzhiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBx5TEUsXyU4InH00sU8SHH7Qkx0ndUX8CjmVs/xcVvDg5 dyKta60XhmpPtRB08yHXTVOsm7SIGXPYcVyQw3lH9wW4dVAjiODRTVOkMgzLkINM 71eT5/lq55bW2KJ/PVLsv3jqzfvOm7G10oev9WWthQxXSNcrEy+HbDr4VBaG/pmA XxrTxqy6t+4CrJzgnmmvQ4m8CoZyN238Ju0T7tHmvRpZ6cpJXmG3AbdhLoeI6BdR AgfMRwoZbFb/fqyUsg0FSWxhhW32P0wh5P+8ROR2SVJjvIlImxuPwYx4Q+MlZwlO nwebBVXhG0maIOiDpI4F8Dx9nudYqZYfJYLSwsKFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUIEJS3z6rqpDBSsVsxn1jnMCr/KUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzg1OWRlYTI3LTA3OGItNDcwOC04OWU2LTFlMDE4OGU1MWU5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQ2lpAwDQYJKoZIhvcNAQELBQADggEBAHfo1KOXUFab1SnArb26WaS2lojY G4nSyf5FRK2lFMiGxxr+nqTOqGdAsvCaL8zsXOOapXxDe+cs3iNvgERKcm4CA86Y /Px7FABk8/tUZrAbTDs8eSCJKDUo/Jd1mbYVQAvVvhU2sNZDUD/CaDLbaAqQ6t3y h8HH95Drg6CzQ+2NHS4uGrBUlFMIw/GjwwTiU3w4U4QCTyGOJWptz+4z+gvVb0T9 R79anuTIXtYl/Ap/zKhJVJm2sW2xmkbt1zgnHgZOiEPaRqbGuM5HNlB7IWFaWKLx jfc6lOwN1Sif+qFqmOQgWj6tfaQwdZB3tTAplCKr6vsq5nLd7XLbe3n1jWA= -----END CERTIFICATE-----Generated at Wed Feb 5 10:57:31 2025 by rpki-client