$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8beaf9a0-1786-4e02-a829-a84311e20245.roa File: 8beaf9a0-1786-4e02-a829-a84311e20245.roa (raw, json) Hash identifier: Xp58MwuyMw8d05jvPgh9d4O0xynwjZ57HT9OlBUDybE= Subject key identifier: 31:70:E2:88:00:59:1E:16:CE:BD:2B:C6:ED:66:34:5F:CC:C2:5B:01 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0A61F0F1796A40515244A1FAA1ECB58477E2F194 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8beaf9a0-1786-4e02-a829-a84311e20245.roa Signing time: Mon 27 Jan 2025 00:00:00 +0000 ROA not before: Mon 27 Jan 2025 00:00:00 +0000 ROA not after: Mon 03 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.217.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:61:f0:f1:79:6a:40:51:52:44:a1:fa:a1:ec:b5:84:77:e2:f1:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 27 00:00:00 2025 GMT Not After : Mar 3 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:eb:c0:e2:92:c4:82:c3:1d:d6:cc:76:4b:66: e5:32:7c:7d:a4:b1:41:3a:be:eb:a6:bc:11:48:85: a6:99:c6:8c:11:51:22:23:9d:f8:53:4f:39:35:1c: 09:89:b0:34:b8:7d:c6:8b:3f:0d:22:37:d9:01:21: 3a:4c:0b:c1:3b:af:69:85:57:6d:52:d7:d3:03:c8: 0a:77:3f:95:84:79:00:df:67:ba:80:93:bf:b2:39: fc:2f:1a:3e:80:db:01:91:4f:f2:7a:a0:71:be:3f: e0:8f:10:c4:f4:1d:5a:8d:b0:f2:7b:f7:7f:86:af: fb:c8:8d:bb:f5:c1:94:22:01:a2:fc:5f:d8:d8:bc: a9:16:54:c5:be:1d:d0:8f:39:69:8d:2a:01:c1:4c: 63:3c:9d:85:51:29:8a:43:86:1e:06:b2:66:f0:95: 20:9c:57:ba:94:9b:01:e7:73:d9:85:2c:07:ab:c2: 65:36:d1:f3:0b:b1:6b:56:5d:23:d7:0e:f8:31:f6: f8:b4:7c:40:ad:f8:61:16:d3:a2:ad:76:4d:82:44: 7d:2d:95:81:47:5b:2e:a0:6c:4d:07:5f:b4:c7:60: 45:dc:76:44:96:6f:9e:2b:4a:45:54:a5:e5:52:a9: fe:0d:5c:7e:ec:65:b2:a3:61:5f:da:0a:30:8d:9c: 92:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:70:E2:88:00:59:1E:16:CE:BD:2B:C6:ED:66:34:5F:CC:C2:5B:01 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8beaf9a0-1786-4e02-a829-a84311e20245.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.217.208.0/20 Signature Algorithm: sha256WithRSAEncryption 2c:1c:8b:fc:59:c1:d8:d0:4a:98:a8:51:13:0c:8f:bd:3b:07: 60:76:be:13:e0:9c:63:c2:16:a7:8e:5f:c5:1b:2e:44:ac:50: c4:e1:56:aa:f7:c2:47:20:b4:35:60:fc:43:f9:1a:1b:60:55: 9d:b7:60:9f:3c:fb:0a:64:83:ac:a7:69:08:b5:be:3c:19:52: 2e:e4:21:62:fb:f8:39:2e:9b:1e:0a:c7:13:14:9d:a1:bc:91: 02:a7:9e:fd:83:9d:23:ae:46:44:57:0d:2d:23:03:1e:78:45: 29:94:ab:6a:e6:ad:af:da:4d:9f:f8:53:e6:78:1b:d7:70:e1: ea:66:75:1c:0e:14:78:a0:05:cd:35:06:6a:d5:67:7c:fc:02: 3a:6f:71:49:fb:71:bc:55:ad:d4:d4:6e:7c:99:6c:69:22:d8: 55:2d:8b:7a:76:7c:c9:ca:8f:30:80:68:1a:49:71:d0:62:78: bf:e1:db:04:8c:1d:94:34:bb:35:71:1f:c9:19:46:12:c1:d1: e6:88:e9:1e:4b:19:f9:03:78:d4:7a:1b:b6:a0:1b:93:b6:82: 37:6c:71:33:af:93:78:df:f8:2e:bc:bc:dd:5b:54:a6:e4:19: 6d:e7:53:8e:c8:28:01:7c:c2:06:12:1b:b3:e3:86:10:b3:48: 74:79:63:85 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCmHw8XlqQFFSRKH6oey1hHfi8ZQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTI3MDAwMDAwWhcNMjUwMzAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MjllYzU2MjFhOGU4MjYyZWJlNTc4YTNjZDljNjZjZjNl ZWMxYjIwYzY4MDVmNjdjYjQ1NzIzMTFmYzM5YWZjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDK68DiksSCwx3WzHZLZuUyfH2ksUE6vuumvBFIhaaZxowR USIjnfhTTzk1HAmJsDS4fcaLPw0iN9kBITpMC8E7r2mFV21S19MDyAp3P5WEeQDf Z7qAk7+yOfwvGj6A2wGRT/J6oHG+P+CPEMT0HVqNsPJ793+Gr/vIjbv1wZQiAaL8 X9jYvKkWVMW+HdCPOWmNKgHBTGM8nYVRKYpDhh4GsmbwlSCcV7qUmwHnc9mFLAer wmU20fMLsWtWXSPXDvgx9vi0fECt+GEW06Ktdk2CRH0tlYFHWy6gbE0HX7THYEXc dkSWb54rSkVUpeVSqf4NXH7sZbKjYV/aCjCNnJJxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMXDiiABZHhbOvSvG7WY0X8zCWwEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzhiZWFmOWEwLTE3ODYtNGUwMi1hODI5LWE4NDMxMWUyMDI0NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQ22dAwDQYJKoZIhvcNAQELBQADggEBACwci/xZwdjQSpioURMMj707B2B2 vhPgnGPCFqeOX8UbLkSsUMThVqr3wkcgtDVg/EP5GhtgVZ23YJ88+wpkg6ynaQi1 vjwZUi7kIWL7+Dkumx4KxxMUnaG8kQKnnv2DnSOuRkRXDS0jAx54RSmUq2rmra/a TZ/4U+Z4G9dw4epmdRwOFHigBc01BmrVZ3z8AjpvcUn7cbxVrdTUbnyZbGki2FUt i3p2fMnKjzCAaBpJcdBieL/h2wSMHZQ0uzVxH8kZRhLB0eaI6R5LGfkDeNR6G7ag G5O2gjdscTOvk3jf+C68vN1bVKbkGW3nU47IKAF8wgYSG7PjhhCzSHR5Y4U= -----END CERTIFICATE-----Generated at Wed Feb 5 10:40:47 2025 by rpki-client