$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8e3e61d4-d511-4b5c-b686-ca4337a7cd4c.roa File: 8e3e61d4-d511-4b5c-b686-ca4337a7cd4c.roa (raw, json) Hash identifier: 2RSzY5TUjvfZQaJNfpcWPqNdor+GaaVofPnRPZ1S7QI= Subject key identifier: 04:DE:17:6D:F1:71:21:07:AF:D5:CA:F2:0D:87:C0:32:72:29:5E:D9 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3201B4401E6CFC9CC4C3DA752A9BD78794966C89 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8e3e61d4-d511-4b5c-b686-ca4337a7cd4c.roa Signing time: Mon 27 Jan 2025 00:00:00 +0000 ROA not before: Mon 27 Jan 2025 00:00:00 +0000 ROA not after: Mon 03 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.136.0.0/13 maxlen: 13 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:01:b4:40:1e:6c:fc:9c:c4:c3:da:75:2a:9b:d7:87:94:96:6c:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 27 00:00:00 2025 GMT Not After : Mar 3 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:80:ec:5c:34:3d:08:62:61:53:7a:cb:8a:37: d0:a9:27:2b:13:49:72:24:67:24:88:c6:2e:ef:d2: 26:40:fd:4c:95:dd:e6:1b:c1:94:54:f6:58:1b:c4: 6b:b5:1a:5b:c9:78:ab:a2:b9:55:4f:63:af:40:27: 0a:e7:44:a4:ab:d5:51:fd:59:da:a9:0b:92:92:a6: dd:a7:d0:18:c7:76:60:a5:6c:41:5a:dd:64:65:da: 36:78:50:df:12:6b:ee:00:24:cf:31:8f:1b:af:36: df:bf:1c:65:90:8a:6e:c6:26:a9:49:be:b7:2a:1f: 50:d4:e3:78:3e:ba:b8:11:cf:ab:81:76:0f:22:c5: 4e:b4:e7:46:65:97:b2:fe:ea:98:61:cd:c7:fb:62: a6:ee:05:3b:55:0d:ee:3e:70:9b:ed:97:e5:a7:74: 51:e9:af:63:8f:80:95:e5:b0:a9:7c:d1:ab:25:a8: 92:db:e9:3d:d7:9b:a7:18:44:0f:3f:60:68:b8:02: 53:a1:24:6b:0d:1f:92:8b:34:c2:95:43:cb:d2:c7: 00:3c:0d:e9:bf:e0:12:70:03:87:a2:7b:fb:b6:87: 04:db:64:c8:79:9d:5b:83:b2:d9:7c:03:f0:b0:da: d0:13:f5:ec:64:1f:ee:dc:19:21:46:4e:03:ca:00: 42:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:DE:17:6D:F1:71:21:07:AF:D5:CA:F2:0D:87:C0:32:72:29:5E:D9 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8e3e61d4-d511-4b5c-b686-ca4337a7cd4c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.136.0.0/13 Signature Algorithm: sha256WithRSAEncryption 40:44:15:fd:c5:ce:a3:ec:c9:c0:eb:0c:c7:55:36:45:47:e8: 5a:fd:38:6b:9e:54:ba:6b:44:d7:86:33:a4:6f:24:6e:36:31: 3d:27:91:11:b4:2a:41:1a:49:f1:31:97:76:62:ac:65:91:bd: 51:28:a7:9c:8d:fc:53:a3:17:65:88:64:5e:3a:bd:d0:bf:ae: ef:7e:58:98:a2:8d:0a:aa:d1:64:a9:50:b1:77:af:95:4a:66: 02:19:b4:43:ab:5e:ee:45:63:cc:45:7b:f8:03:d7:0d:ec:42: 9d:51:a5:9f:5a:ea:2b:34:3c:b7:4e:16:2a:3f:03:83:78:aa: f2:27:ef:76:1e:97:2b:b5:fb:63:55:7b:1c:7e:6f:fb:e6:64: 34:57:70:8f:8a:5b:c8:86:15:40:57:92:ca:fb:1c:5c:67:ba: 07:33:9a:df:10:8d:9c:cf:5c:3a:01:c8:be:58:75:62:bf:75: 22:9c:f0:2e:54:06:28:ff:f7:00:5c:76:42:ca:06:1a:05:e6: d9:09:9f:cc:86:92:be:ec:bb:50:ff:27:88:10:b5:35:6a:14: 42:39:d9:ca:45:29:30:75:27:ca:26:93:c7:1a:12:b9:48:39: a3:62:4f:0d:ea:bd:13:e8:3a:f0:72:8d:9f:a8:17:3d:77:cb: c5:61:32:ea -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMgG0QB5s/JzEw9p1KpvXh5SWbIkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTI3MDAwMDAwWhcNMjUwMzAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNTA2YjVkYzFiMmI2OGMzM2I2NDBkOTIzYTMzNWI3Y2Vm ZDZhYjNmZjU4YzBmNDZmYzdhZTQ1OGJhMGQxZjAzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdgOxcND0IYmFTesuKN9CpJysTSXIkZySIxi7v0iZA/UyV 3eYbwZRU9lgbxGu1GlvJeKuiuVVPY69AJwrnRKSr1VH9WdqpC5KSpt2n0BjHdmCl bEFa3WRl2jZ4UN8Sa+4AJM8xjxuvNt+/HGWQim7GJqlJvrcqH1DU43g+urgRz6uB dg8ixU6050Zll7L+6phhzcf7YqbuBTtVDe4+cJvtl+WndFHpr2OPgJXlsKl80asl qJLb6T3Xm6cYRA8/YGi4AlOhJGsNH5KLNMKVQ8vSxwA8Dem/4BJwA4eie/u2hwTb ZMh5nVuDstl8A/Cw2tAT9exkH+7cGSFGTgPKAEKpAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUBN4XbfFxIQev1cryDYfAMnIpXtkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzhlM2U2MWQ0LWQ1MTEtNGI1Yy1iNjg2LWNhNDMzN2E3Y2Q0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwMDiDANBgkqhkiG9w0BAQsFAAOCAQEAQEQV/cXOo+zJwOsMx1U2RUfoWv04 a55UumtE14YzpG8kbjYxPSeREbQqQRpJ8TGXdmKsZZG9USinnI38U6MXZYhkXjq9 0L+u735YmKKNCqrRZKlQsXevlUpmAhm0Q6te7kVjzEV7+APXDexCnVGln1rqKzQ8 t04WKj8Dg3iq8ifvdh6XK7X7Y1V7HH5v++ZkNFdwj4pbyIYVQFeSyvscXGe6BzOa 3xCNnM9cOgHIvlh1Yr91IpzwLlQGKP/3AFx2QsoGGgXm2QmfzIaSvuy7UP8niBC1 NWoUQjnZykUpMHUnyiaTxxoSuUg5o2JPDeq9E+g68HKNn6gXPXfLxWEy6g== -----END CERTIFICATE-----Generated at Wed Feb 5 10:52:50 2025 by rpki-client