$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/902c55a0-4edb-4aad-945a-5ecd2f621c5d.roa File: 902c55a0-4edb-4aad-945a-5ecd2f621c5d.roa (raw, json) Hash identifier: NTtkeaO7tfwol35/t4LPcnp6f2v2PqlWvwKxI5QbCIw= Subject key identifier: E0:7D:A7:7D:79:C0:69:8F:34:7C:2B:47:F4:2D:C3:05:FA:B6:7F:37 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7173E3D15AFF592FF63DB5156D2C994F90014790 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/902c55a0-4edb-4aad-945a-5ecd2f621c5d.roa Signing time: Fri 31 Jan 2025 00:00:00 +0000 ROA not before: Fri 31 Jan 2025 00:00:00 +0000 ROA not after: Fri 07 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.240.30.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:73:e3:d1:5a:ff:59:2f:f6:3d:b5:15:6d:2c:99:4f:90:01:47:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 31 00:00:00 2025 GMT Not After : Mar 7 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:cc:05:e7:f1:18:27:ca:50:ad:c5:ef:50:d1: e5:4c:0d:e3:7a:53:14:13:13:bc:8c:9c:4c:34:56: d0:6a:a9:ad:56:15:46:77:de:cc:ee:d0:9f:d6:9e: d0:0c:ad:c9:7b:80:1b:2a:5d:6f:36:55:a5:9e:6e: 33:20:f5:7b:2c:43:bb:81:ac:34:40:05:66:8b:db: 1f:0a:47:c2:bf:a2:c2:7b:73:05:68:dd:6a:25:9d: a4:f7:a1:a9:8e:9c:c0:77:2b:bd:bb:06:88:80:38: c6:b6:64:8f:9b:83:d0:50:f1:ec:51:18:93:49:b5: a5:44:d2:ad:ed:98:d5:a8:62:06:34:be:68:5f:a3: e1:d2:f7:d3:bb:b9:b9:01:5c:92:77:60:57:e9:91: be:a7:b9:61:76:2b:ad:e6:cf:ce:4a:49:b2:44:97: 38:eb:f4:4b:99:48:fb:e0:3a:d7:51:6f:4d:ed:26: 05:d0:dc:38:b1:f4:75:32:14:43:80:f4:49:97:4b: 8b:96:69:10:3f:8b:3c:dd:cb:0d:a8:99:fa:57:92: c9:18:cc:a7:19:05:9f:92:3a:b4:f3:ed:a8:6e:14: 32:ae:70:bf:80:23:5b:e4:0a:29:88:e5:cc:a0:70: 18:4e:03:ed:2b:c7:2e:11:56:22:67:91:4a:6d:76: 46:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:7D:A7:7D:79:C0:69:8F:34:7C:2B:47:F4:2D:C3:05:FA:B6:7F:37 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/902c55a0-4edb-4aad-945a-5ecd2f621c5d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.240.30.0/23 Signature Algorithm: sha256WithRSAEncryption 51:57:16:b5:b7:69:71:b6:95:dd:c1:37:86:59:a6:19:83:6e: 8d:cf:69:0c:8d:66:9b:0c:10:c1:80:05:19:0a:da:4d:fd:48: b8:32:cc:a8:c4:5b:c7:d4:e9:46:32:c4:af:fb:7a:e0:ee:f5: ba:4b:2c:b9:f3:21:fa:ea:37:68:ad:b2:81:dc:48:93:70:5a: d0:65:f5:b5:d0:ff:39:de:c5:cf:45:77:ff:d4:3e:f1:71:4d: 19:24:af:56:4e:79:95:a3:18:b2:c1:b7:06:bb:d3:23:2a:68: 0d:ca:d5:04:ec:15:ea:50:1f:a6:03:fa:fd:f2:44:58:f4:2f: ba:9a:73:d4:a7:fa:04:b5:59:bf:93:ec:c6:8b:f1:ed:7b:38: 1f:23:a0:5a:a5:c7:d3:ad:02:bb:7a:79:4b:bb:23:06:9c:b0: fe:14:2c:4f:d6:70:d4:5c:e6:bc:03:28:ae:68:50:77:56:36: 34:64:f6:c9:24:3d:04:33:45:e9:33:30:43:46:61:06:40:68: c0:f7:65:33:46:c4:f5:69:4a:a7:5e:27:cb:2f:68:49:47:05: 12:fc:d6:f0:f1:28:c1:4d:84:7b:e7:58:88:a8:07:07:4f:a7: 34:be:57:8b:c7:41:53:8c:84:e0:10:6a:50:dc:2b:f5:ef:86: 4e:80:81:9a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcXPj0Vr/WS/2PbUVbSyZT5ABR5AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTMxMDAwMDAwWhcNMjUwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiM2VjZjQzMWIxMzNlZjA2OTc1NDcwODMyNjViNzhkYTIw NzgzYmI2YjY0ZjcwMGNhNDMyYTI3YTg2MGZiODhhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnzAXn8RgnylCtxe9Q0eVMDeN6UxQTE7yMnEw0VtBqqa1W FUZ33szu0J/WntAMrcl7gBsqXW82VaWebjMg9XssQ7uBrDRABWaL2x8KR8K/osJ7 cwVo3WolnaT3oamOnMB3K727BoiAOMa2ZI+bg9BQ8exRGJNJtaVE0q3tmNWoYgY0 vmhfo+HS99O7ubkBXJJ3YFfpkb6nuWF2K63mz85KSbJElzjr9EuZSPvgOtdRb03t JgXQ3Dix9HUyFEOA9EmXS4uWaRA/izzdyw2omfpXkskYzKcZBZ+SOrTz7ahuFDKu cL+AI1vkCimI5cygcBhOA+0rxy4RViJnkUptdkavAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4H2nfXnAaY80fCtH9C3DBfq2fzcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzkwMmM1NWEwLTRlZGItNGFhZC05NDVhLTVlY2QyZjYyMWM1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAE28B4wDQYJKoZIhvcNAQELBQADggEBAFFXFrW3aXG2ld3BN4ZZphmDbo3P aQyNZpsMEMGABRkK2k39SLgyzKjEW8fU6UYyxK/7euDu9bpLLLnzIfrqN2itsoHc SJNwWtBl9bXQ/znexc9Fd//UPvFxTRkkr1ZOeZWjGLLBtwa70yMqaA3K1QTsFepQ H6YD+v3yRFj0L7qac9Sn+gS1Wb+T7MaL8e17OB8joFqlx9OtArt6eUu7IwacsP4U LE/WcNRc5rwDKK5oUHdWNjRk9skkPQQzRekzMENGYQZAaMD3ZTNGxPVpSqdeJ8sv aElHBRL81vDxKMFNhHvnWIioBwdPpzS+V4vHQVOMhOAQalDcK/Xvhk6AgZo= -----END CERTIFICATE-----Generated at Wed Feb 5 10:58:03 2025 by rpki-client