$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/96e55d42-eddf-4dd8-b4d1-1e927888a9e7.roa File: 96e55d42-eddf-4dd8-b4d1-1e927888a9e7.roa (raw, json) Hash identifier: x0mM1Ks5rbq1r5bbpUkIsKQahofNluxk2ldpocKEFf4= Subject key identifier: 5F:1B:6B:3E:6C:61:66:F1:30:2A:4A:41:BC:99:D2:F4:B7:41:9B:1F Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0E8803E55F7A9FE9FFB8BDC776F4D05FFEACA2A3 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/96e55d42-eddf-4dd8-b4d1-1e927888a9e7.roa Signing time: Fri 31 Jan 2025 00:00:00 +0000 ROA not before: Fri 31 Jan 2025 00:00:00 +0000 ROA not after: Fri 07 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.204.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:88:03:e5:5f:7a:9f:e9:ff:b8:bd:c7:76:f4:d0:5f:fe:ac:a2:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 31 00:00:00 2025 GMT Not After : Mar 7 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:e9:52:0e:b0:09:e9:2d:d2:79:67:f6:76:b2: ed:03:f3:b0:c7:b6:83:c5:30:08:1b:c2:37:a7:4c: 20:0e:ba:4d:f0:99:e3:91:ca:91:b0:8c:ad:2b:36: 99:85:42:e2:44:fb:98:70:1a:b9:50:78:71:d6:77: 69:c3:2c:3c:19:49:4b:22:14:e1:23:7c:70:7a:05: ad:38:59:20:8e:58:8f:42:78:db:84:bf:39:49:22: f7:9d:c7:ae:f0:75:7d:1f:69:1e:6a:0e:72:a6:90: 9c:7a:a2:d2:77:b3:b3:c7:e2:18:04:62:af:a1:00: b8:e6:00:29:82:a1:03:ee:5c:85:bc:35:0d:c1:2d: 42:44:44:96:4b:06:06:88:4f:f9:c2:4d:a6:e8:e8: 6c:0d:ba:49:24:33:fc:1e:ca:6e:54:f9:07:81:0a: b8:99:ea:0e:c8:56:7a:5a:83:45:78:ba:4c:9c:1c: 98:c7:1f:f6:c3:74:cf:e8:52:6c:a0:e6:5d:62:18: 9e:f9:49:1b:18:7f:b2:25:24:50:ea:8b:81:df:22: d1:d4:f2:a9:51:bb:20:5e:bd:8b:b7:15:01:b7:b6: bc:fc:aa:34:06:99:69:43:7e:ca:0a:77:1b:ba:72: c2:c0:e2:6a:cf:21:b3:12:8c:a2:c4:08:19:1f:eb: 48:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:1B:6B:3E:6C:61:66:F1:30:2A:4A:41:BC:99:D2:F4:B7:41:9B:1F X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/96e55d42-eddf-4dd8-b4d1-1e927888a9e7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.204.49.0/24 Signature Algorithm: sha256WithRSAEncryption 55:67:37:65:7e:ea:e6:bc:2f:c3:b1:9d:a5:71:1b:3b:59:39: 0b:e3:72:3b:0d:8d:60:f3:5c:6a:1c:52:02:65:4c:84:f5:e1: c1:f6:ef:42:dd:91:84:82:d9:0b:a2:93:86:c4:7c:07:e0:eb: 7c:84:a9:e8:61:c7:43:23:13:85:d1:fa:62:b0:a4:85:74:c9: 38:57:fe:23:4b:50:85:8d:3a:93:48:69:02:20:97:b2:93:9c: 63:7c:bb:45:1e:3a:a4:98:8e:b4:4f:9c:39:81:f1:d3:0d:69: 91:2d:5a:0e:35:d8:1d:1d:a6:d6:c6:6c:7d:fe:7f:27:64:a6: b7:ed:75:62:61:9d:45:76:c3:b0:bb:f2:ff:e9:cd:73:e4:06: c6:ec:93:66:b1:d3:c9:8e:09:0b:fc:d1:6b:48:47:ce:3e:22: 6e:4f:d3:a1:f2:2d:51:f1:f5:ab:51:f3:0c:2d:f6:37:5c:9b: 74:ba:79:1f:4a:5a:e5:56:55:c8:bd:95:cc:9b:81:37:d0:49: 2c:fd:40:3a:80:c7:10:4c:8a:89:3b:98:5b:08:c8:3f:e2:87: cd:c1:c1:7c:48:f9:6f:3b:15:7d:e9:d7:f9:eb:66:de:c8:c4: d1:d5:54:6c:17:7a:b5:08:13:7d:2b:dc:f5:24:57:84:10:8d: a9:5a:22:86 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDogD5V96n+n/uL3HdvTQX/6soqMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTMxMDAwMDAwWhcNMjUwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YzA4YTEyOTkyYjM4YjA0ZTg4YTk0MzBlMmZkMmQzZmY0 OWVjM2Y5OGRlNmI2ZGRmZTZiMTY3Y2IxMDhiMGE3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCR6VIOsAnpLdJ5Z/Z2su0D87DHtoPFMAgbwjenTCAOuk3w meORypGwjK0rNpmFQuJE+5hwGrlQeHHWd2nDLDwZSUsiFOEjfHB6Ba04WSCOWI9C eNuEvzlJIvedx67wdX0faR5qDnKmkJx6otJ3s7PH4hgEYq+hALjmACmCoQPuXIW8 NQ3BLUJERJZLBgaIT/nCTabo6GwNukkkM/weym5U+QeBCriZ6g7IVnpag0V4ukyc HJjHH/bDdM/oUmyg5l1iGJ75SRsYf7IlJFDqi4HfItHU8qlRuyBevYu3FQG3trz8 qjQGmWlDfsoKdxu6csLA4mrPIbMSjKLECBkf60j3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXxtrPmxhZvEwKkpBvJnS9LdBmx8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzk2ZTU1ZDQyLWVkZGYtNGRkOC1iNGQxLTFlOTI3ODg4YTllNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA2zDEwDQYJKoZIhvcNAQELBQADggEBAFVnN2V+6ua8L8OxnaVxGztZOQvj cjsNjWDzXGocUgJlTIT14cH270LdkYSC2Quik4bEfAfg63yEqehhx0MjE4XR+mKw pIV0yThX/iNLUIWNOpNIaQIgl7KTnGN8u0UeOqSYjrRPnDmB8dMNaZEtWg412B0d ptbGbH3+fydkprftdWJhnUV2w7C78v/pzXPkBsbsk2ax08mOCQv80WtIR84+Im5P 06HyLVHx9atR8wwt9jdcm3S6eR9KWuVWVci9lcybgTfQSSz9QDqAxxBMiok7mFsI yD/ih83BwXxI+W87FX3p1/nrZt7IxNHVVGwXerUIE30r3PUkV4QQjalaIoY= -----END CERTIFICATE-----Generated at Wed Feb 5 09:37:56 2025 by rpki-client