$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8a0e06e8-a179-4fac-b725-de7baf6ab80c.roa File: 8a0e06e8-a179-4fac-b725-de7baf6ab80c.roa (raw, json) Hash identifier: S9UutvhSkaLj9Jl85oF7LpDhjv6z8NPo3KJ9x01c9d4= Subject key identifier: 19:15:F3:29:B6:4A:FE:91:65:ED:C2:81:6E:FA:3B:D0:AE:A6:B5:0E Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6A51B2BAB0246369DC010EE0BF4A290C123F6831 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8a0e06e8-a179-4fac-b725-de7baf6ab80c.roa Signing time: Wed 05 Feb 2025 00:00:00 +0000 ROA not before: Wed 05 Feb 2025 00:00:00 +0000 ROA not after: Wed 12 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.86.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:51:b2:ba:b0:24:63:69:dc:01:0e:e0:bf:4a:29:0c:12:3f:68:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 5 00:00:00 2025 GMT Not After : Mar 12 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:35:fd:51:16:27:22:44:84:a9:6f:7b:92:af: 13:02:cb:80:f5:e3:58:65:5b:74:7c:99:0e:8f:ed: 2b:c0:66:e8:0a:e3:15:5f:bf:e9:38:cc:10:ff:e6: 9a:5b:60:70:0b:9d:5f:8e:41:96:f2:ed:cc:0f:30: 28:ed:83:aa:d4:21:62:01:4a:49:84:ed:6e:2f:4e: 61:1d:77:d4:7e:84:d7:65:2d:e3:85:c7:f8:d7:43: a9:74:b7:e3:03:5c:9d:33:5f:52:66:d3:59:dc:36: a0:e6:23:f0:7f:44:6e:98:74:60:0e:1f:d3:62:30: 3b:2a:21:85:ac:c7:75:c5:d2:2e:34:07:07:93:da: 61:05:30:43:47:b6:d5:f1:9d:2e:74:ce:9b:f1:40: 63:8d:34:4b:8b:91:ab:ec:df:a0:5b:19:07:0e:2e: 50:44:a5:b2:ba:7a:f1:d5:22:45:28:78:a1:05:a1: 7c:b3:16:d4:17:9c:ba:9f:91:89:d0:a9:78:b1:a7: 04:22:fe:d2:90:6c:df:9b:c1:c6:c5:8f:1d:91:1d: fb:a7:9a:8d:24:55:4b:01:01:5d:56:ef:76:e8:af: 9a:37:33:f5:53:79:05:ce:d6:12:a6:ff:e3:80:59: 44:71:7a:74:a6:22:e7:93:2e:30:3c:2c:ee:2c:11: 94:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:15:F3:29:B6:4A:FE:91:65:ED:C2:81:6E:FA:3B:D0:AE:A6:B5:0E X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8a0e06e8-a179-4fac-b725-de7baf6ab80c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.86.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6a:43:ab:66:fe:7d:af:a2:fc:f6:c4:a7:58:51:a0:e5:38:6d: 2a:f4:d2:d5:dc:e2:30:b9:49:4a:7b:eb:9a:99:ca:c2:51:8b: f1:ef:f4:f9:a1:2e:30:45:bb:de:5f:39:2c:c8:1c:8c:ba:29: 52:df:35:e5:31:af:9c:79:75:f8:93:1c:74:1b:70:e6:5d:3d: ce:08:57:a3:3b:c7:a3:89:17:a7:e7:6e:f6:14:4f:18:1a:9a: c9:4a:a7:b5:57:cd:c1:fb:21:08:a2:7a:99:dc:db:06:82:d6: 74:1b:a4:63:78:7b:33:50:d2:79:43:75:65:f6:70:70:21:ed: bd:11:11:f5:00:ae:a6:72:e4:d1:36:8f:02:21:63:9f:31:ee: bc:7e:85:49:76:15:2a:88:81:b9:51:07:1a:5a:11:57:f7:03: 0f:64:20:e1:4a:33:ac:58:69:84:89:71:5c:17:c8:b8:cb:81: dc:2f:50:59:4c:1c:a6:16:af:17:12:9f:83:7d:41:85:dd:10: 3f:62:51:85:ac:c5:ca:8f:31:86:bf:a8:a1:2b:b8:b4:18:e1: 11:be:46:9f:23:54:f1:af:e3:aa:a8:a7:74:b6:45:79:31:04: 2b:d5:b5:77:ee:f8:ea:f2:7c:6a:56:61:1c:de:b8:8a:43:bf: 3a:44:1f:97 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUalGyurAkY2ncAQ7gv0opDBI/aDEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMjA1MDAwMDAwWhcNMjUwMzEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyM2Y4YTQ1Mjc0NzY0YzE3ZDMyYzNlOTBlNDVlY2Y4ZTAw ZmY1ZTE5M2JmOTljMzc2MDI2OTZjZjI4MDFjNzMxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUNf1RFiciRISpb3uSrxMCy4D141hlW3R8mQ6P7SvAZugK 4xVfv+k4zBD/5ppbYHALnV+OQZby7cwPMCjtg6rUIWIBSkmE7W4vTmEdd9R+hNdl LeOFx/jXQ6l0t+MDXJ0zX1Jm01ncNqDmI/B/RG6YdGAOH9NiMDsqIYWsx3XF0i40 BweT2mEFMENHttXxnS50zpvxQGONNEuLkavs36BbGQcOLlBEpbK6evHVIkUoeKEF oXyzFtQXnLqfkYnQqXixpwQi/tKQbN+bwcbFjx2RHfunmo0kVUsBAV1W73bor5o3 M/VTeQXO1hKm/+OAWURxenSmIueTLjA8LO4sEZT7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUGRXzKbZK/pFl7cKBbvo70K6mtQ4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzhhMGUwNmU4LWExNzktNGZhYy1iNzI1LWRlN2JhZjZhYjgwYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2VjANBgkqhkiG9w0BAQsFAAOCAQEAakOrZv59r6L89sSnWFGg5ThtKvTS 1dziMLlJSnvrmpnKwlGL8e/0+aEuMEW73l85LMgcjLopUt815TGvnHl1+JMcdBtw 5l09zghXozvHo4kXp+du9hRPGBqayUqntVfNwfshCKJ6mdzbBoLWdBukY3h7M1DS eUN1ZfZwcCHtvRER9QCupnLk0TaPAiFjnzHuvH6FSXYVKoiBuVEHGloRV/cDD2Qg 4UozrFhphIlxXBfIuMuB3C9QWUwcphavFxKfg31Bhd0QP2JRhazFyo8xhr+ooSu4 tBjhEb5GnyNU8a/jqqindLZFeTEEK9W1d+746vJ8alZhHN64ikO/OkQflw== -----END CERTIFICATE-----Generated at Wed Feb 5 10:53:36 2025 by rpki-client