$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8cafc145-cc20-43ba-8d8d-31718235fe5c.roa File: 8cafc145-cc20-43ba-8d8d-31718235fe5c.roa (raw, json) Hash identifier: yof3BdQm/ftDDimKR4KKm9TeCN1gamd38Y5BA+jOzHI= Subject key identifier: 08:39:AE:0C:66:F9:E0:8F:FF:B2:FF:AD:1C:8B:48:70:98:E5:D3:B0 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 06E5764183BE7F33F2789099526328231CDC3378 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8cafc145-cc20-43ba-8d8d-31718235fe5c.roa Signing time: Mon 10 Feb 2025 00:00:00 +0000 ROA not before: Mon 10 Feb 2025 00:00:00 +0000 ROA not after: Mon 17 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.119.212.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:e5:76:41:83:be:7f:33:f2:78:90:99:52:63:28:23:1c:dc:33:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 10 00:00:00 2025 GMT Not After : Mar 17 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:64:0a:9c:f7:1b:08:e0:cc:79:6f:43:bb:bf: c2:a5:12:27:1c:0c:32:b9:c4:c6:ab:e8:0d:1b:9c: 47:37:d6:40:35:cf:4e:55:35:e3:a4:fe:60:9d:55: a5:75:af:aa:fd:26:87:b0:cc:22:59:f0:f6:e7:fe: 49:de:a1:38:9c:93:bf:f5:71:31:4b:51:fc:dc:95: df:d4:35:d2:70:79:39:df:0c:f3:f7:4d:9c:06:17: e7:3a:bf:86:a9:24:9b:0d:e1:da:8e:f2:2b:4e:ab: 84:f7:fc:ee:f7:11:9a:31:89:95:ce:21:21:27:d6: 11:12:5c:65:09:99:ca:be:b2:0e:e9:85:0e:34:87: 3e:8c:cf:cd:be:ea:e2:65:bd:35:7e:ce:91:2c:83: 4e:fc:18:c6:c9:cc:93:4e:72:e8:fd:19:ad:4f:59: 1d:bf:97:68:b8:ac:14:bc:a0:ec:3e:fa:0a:c5:70: 64:84:6f:ca:1a:58:e4:b8:df:d0:45:18:55:6c:3f: 98:00:81:59:f0:5c:d8:3d:53:5f:41:4b:fb:27:8e: ee:42:99:bd:e4:5c:ad:ec:a9:2c:18:cb:b1:0e:c5: ad:01:e9:d2:c4:fe:c6:bb:8f:85:08:b0:4d:71:61: 87:48:f6:7c:bc:ce:32:c8:d5:59:99:30:47:ff:e9: 8b:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:39:AE:0C:66:F9:E0:8F:FF:B2:FF:AD:1C:8B:48:70:98:E5:D3:B0 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8cafc145-cc20-43ba-8d8d-31718235fe5c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.119.212.0/23 Signature Algorithm: sha256WithRSAEncryption 74:32:84:83:70:4a:62:b4:ca:2c:ba:f8:8d:d9:d2:90:04:1b: c7:2e:a4:4e:e3:0e:63:6f:9b:7c:9b:75:bc:b7:6d:88:f3:33: 5d:d2:90:e4:12:eb:d1:43:bf:f3:c2:d6:f7:35:96:87:0d:a8: 7b:41:e1:24:74:ba:d6:19:6f:c9:a0:eb:fc:1a:af:46:df:aa: f7:9e:93:65:b9:73:df:56:c5:4d:c6:ef:eb:a2:84:cc:d3:d1: 33:f1:f8:83:56:4a:c6:7e:59:88:13:4b:ca:27:c1:dc:a0:8d: 1f:b3:5b:c0:31:68:4c:71:31:49:93:76:02:50:b3:42:b1:ac: 50:73:52:4d:77:d1:46:40:e1:1f:f4:97:95:aa:b7:84:45:55: 3d:6e:6c:e2:04:ae:56:e3:2e:14:0d:fb:2b:32:db:ae:51:3f: ba:34:0f:a2:ca:d3:03:b0:34:e7:3d:7d:15:74:b6:fb:42:ee: 0f:fd:d7:0a:14:02:0e:99:b2:46:90:9b:cb:9a:c0:25:e5:34: c5:a3:aa:71:1b:e8:6a:6c:95:d6:ec:7f:14:19:6f:cd:7b:12: 82:4a:f7:1f:10:e2:49:c5:a0:f9:5c:22:38:2f:5e:90:71:4b: d1:8d:cd:92:40:f3:0d:69:f6:45:3d:74:46:4f:45:83:d3:f2: 4b:a7:b8:72 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBuV2QYO+fzPyeJCZUmMoIxzcM3gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMjEwMDAwMDAwWhcNMjUwMzE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMDBjOWQ1NDA1YmZkNDg2ZjJhYThlYjFmMGI4ZmI2ZDI1 MzEzNTBlYmQwYWYwMzc4NDhiMmVlMjk1NTJjMzg4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9ZAqc9xsI4Mx5b0O7v8KlEiccDDK5xMar6A0bnEc31kA1 z05VNeOk/mCdVaV1r6r9JoewzCJZ8Pbn/kneoTick7/1cTFLUfzcld/UNdJweTnf DPP3TZwGF+c6v4apJJsN4dqO8itOq4T3/O73EZoxiZXOISEn1hESXGUJmcq+sg7p hQ40hz6Mz82+6uJlvTV+zpEsg078GMbJzJNOcuj9Ga1PWR2/l2i4rBS8oOw++grF cGSEb8oaWOS439BFGFVsP5gAgVnwXNg9U19BS/snju5Cmb3kXK3sqSwYy7EOxa0B 6dLE/sa7j4UIsE1xYYdI9ny8zjLI1VmZMEf/6YspAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCDmuDGb54I//sv+tHItIcJjl07AwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzhjYWZjMTQ1LWNjMjAtNDNiYS04ZDhkLTMxNzE4MjM1ZmU1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAE0d9QwDQYJKoZIhvcNAQELBQADggEBAHQyhINwSmK0yiy6+I3Z0pAEG8cu pE7jDmNvm3ybdby3bYjzM13SkOQS69FDv/PC1vc1locNqHtB4SR0utYZb8mg6/wa r0bfqveek2W5c99WxU3G7+uihMzT0TPx+INWSsZ+WYgTS8onwdygjR+zW8AxaExx MUmTdgJQs0KxrFBzUk130UZA4R/0l5Wqt4RFVT1ubOIErlbjLhQN+ysy265RP7o0 D6LK0wOwNOc9fRV0tvtC7g/91woUAg6ZskaQm8uawCXlNMWjqnEb6GpsldbsfxQZ b817EoJK9x8Q4knFoPlcIjgvXpBxS9GNzZJA8w1p9kU9dEZPRYPT8kunuHI= -----END CERTIFICATE-----Generated at Sun Feb 16 15:25:56 2025 by rpki-client