$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/96153943-47a2-4e90-86d0-e9cc82f48310.roa File: 96153943-47a2-4e90-86d0-e9cc82f48310.roa (raw, json) Hash identifier: muVQyDwOi1ISnIjvAuMdEKXZWGiXIobHRHm1ltZMHO0= Subject key identifier: E1:03:04:85:EA:7B:A7:19:AD:6D:2B:6D:35:40:2C:98:43:DD:29:16 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 64BA257310100DFAE3823A285F0B6DF8A2B1D9EE Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/96153943-47a2-4e90-86d0-e9cc82f48310.roa Signing time: Fri 31 Jan 2025 00:00:00 +0000 ROA not before: Fri 31 Jan 2025 00:00:00 +0000 ROA not after: Fri 07 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.58.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:ba:25:73:10:10:0d:fa:e3:82:3a:28:5f:0b:6d:f8:a2:b1:d9:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 31 00:00:00 2025 GMT Not After : Mar 7 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:64:e9:26:8a:0c:41:5a:e8:41:c6:24:f8:fe: eb:42:ea:e6:dd:b0:2e:7c:4b:af:1e:0f:02:cb:3a: 89:bf:09:e7:6a:86:35:bb:a0:07:8b:53:d3:78:6a: 93:9a:21:23:30:4d:1e:b2:15:30:3a:01:2d:b0:07: 32:4e:47:92:0d:3b:09:a6:02:f4:10:fa:2a:5e:ce: 79:33:5a:e0:fe:86:21:0e:6f:26:9f:99:0c:d6:e6: 82:79:83:98:4b:9a:ed:31:b0:af:76:96:dc:50:d4: 59:a6:a5:07:40:19:13:15:20:17:09:ee:1c:0a:a7: b7:ef:ba:5f:23:c8:12:4d:a1:55:f5:84:23:69:fc: 10:a8:8e:ed:62:83:12:f6:6e:2b:48:9d:aa:88:0e: 51:1c:f7:b3:3f:70:39:01:df:7a:8e:21:96:76:be: d8:e2:a6:13:4d:5d:64:7b:6e:26:86:32:86:b9:ea: 29:50:6f:13:8e:b6:eb:5f:f1:d0:b5:39:b6:40:52: ed:27:27:52:36:37:fc:b6:18:ad:e7:50:9a:ca:d1: 58:fa:e2:b3:da:4d:d3:08:37:fa:6e:d6:f9:fb:df: 4d:4c:57:f6:12:e2:74:65:4a:02:89:c8:f5:07:92: 52:13:cb:e5:75:8b:5f:af:b7:38:70:2d:8c:ed:0f: 00:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:03:04:85:EA:7B:A7:19:AD:6D:2B:6D:35:40:2C:98:43:DD:29:16 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/96153943-47a2-4e90-86d0-e9cc82f48310.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.58.0.0/15 Signature Algorithm: sha256WithRSAEncryption 6d:01:91:f0:c5:99:ba:a9:c1:e3:85:46:0f:63:0e:bb:d4:6d: aa:1d:62:16:45:eb:31:9b:ba:68:99:de:5a:89:17:a6:00:b4: 05:80:25:d6:d2:64:e5:98:c4:f2:41:b7:4c:50:3c:f8:25:3d: 09:80:79:c9:c9:bd:9a:be:54:d1:c6:80:59:f6:0f:32:24:4b: 8a:03:e5:b8:54:2f:e4:4b:e8:0f:df:36:bf:c2:86:ec:1f:c8: 4a:2a:db:8f:75:9e:6b:1a:f8:80:10:84:3f:d0:92:f3:cf:56: cf:45:13:cb:27:1a:9e:aa:88:5b:58:f7:6d:7d:d0:b5:9c:99: 7c:bd:3f:53:14:04:7e:17:be:22:3c:de:11:bb:3f:1e:ba:8c: 71:96:6b:f4:93:ad:df:c4:13:22:c0:9b:eb:07:f4:7c:a2:54: a4:f3:c9:cc:ae:e2:fb:23:e2:27:fa:70:bc:2d:a4:d5:56:cc: e2:62:84:cb:7e:7a:f9:b3:34:66:41:b4:fd:c9:d0:6f:b5:21: 8d:98:70:66:59:b1:c9:e8:58:15:eb:9a:14:5b:5d:5b:e7:85: b9:8b:7b:7a:25:5d:4d:33:a4:cc:5b:f7:cf:f6:31:4e:3e:d2: c4:88:06:6d:40:7c:c9:0a:51:50:8c:5d:bc:4f:32:79:ce:28: 40:b0:15:33 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZLolcxAQDfrjgjooXwtt+KKx2e4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTMxMDAwMDAwWhcNMjUwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0Zjk4YjljOWI3MDI2NGIwMDZiNzBkMTYwZGRmYTg2NmVh Y2UyZTVjZmZhNTlhOWIxYmMwNjIyODExMTJjNTY3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2ZOkmigxBWuhBxiT4/utC6ubdsC58S68eDwLLOom/Cedq hjW7oAeLU9N4apOaISMwTR6yFTA6AS2wBzJOR5INOwmmAvQQ+ipeznkzWuD+hiEO byafmQzW5oJ5g5hLmu0xsK92ltxQ1FmmpQdAGRMVIBcJ7hwKp7fvul8jyBJNoVX1 hCNp/BCoju1igxL2bitInaqIDlEc97M/cDkB33qOIZZ2vtjiphNNXWR7biaGMoa5 6ilQbxOOtutf8dC1ObZAUu0nJ1I2N/y2GK3nUJrK0Vj64rPaTdMIN/pu1vn7301M V/YS4nRlSgKJyPUHklITy+V1i1+vtzhwLYztDwDZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU4QMEhep7pxmtbSttNUAsmEPdKRYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzk2MTUzOTQzLTQ3YTItNGU5MC04NmQwLWU5Y2M4MmY0ODMxMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwE0OjANBgkqhkiG9w0BAQsFAAOCAQEAbQGR8MWZuqnB44VGD2MOu9Rtqh1i FkXrMZu6aJneWokXpgC0BYAl1tJk5ZjE8kG3TFA8+CU9CYB5ycm9mr5U0caAWfYP MiRLigPluFQv5EvoD982v8KG7B/ISirbj3Weaxr4gBCEP9CS889Wz0UTyycanqqI W1j3bX3QtZyZfL0/UxQEfhe+IjzeEbs/HrqMcZZr9JOt38QTIsCb6wf0fKJUpPPJ zK7i+yPiJ/pwvC2k1VbM4mKEy356+bM0ZkG0/cnQb7UhjZhwZlmxyehYFeuaFFtd W+eFuYt7eiVdTTOkzFv3z/YxTj7SxIgGbUB8yQpRUIxdvE8yec4oQLAVMw== -----END CERTIFICATE-----Generated at Wed Feb 5 10:47:58 2025 by rpki-client