$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/97e8e038-2f32-48eb-b946-6eb5e4c1682c.roa File: 97e8e038-2f32-48eb-b946-6eb5e4c1682c.roa (raw, json) Hash identifier: qgTwMsrz+G259kPQJ/vcVpM+oyoYiz8Ta3YgxAc+Pb8= Subject key identifier: 2B:D1:62:08:5B:19:AC:11:D5:72:70:A3:56:01:79:6B:0F:EE:A8:A3 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 20A3668D6E391EE54A8C6D37EC7AA9AF7DC13F55 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/97e8e038-2f32-48eb-b946-6eb5e4c1682c.roa Signing time: Tue 28 Jan 2025 00:00:00 +0000 ROA not before: Tue 28 Jan 2025 00:00:00 +0000 ROA not after: Tue 04 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 161.188.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:a3:66:8d:6e:39:1e:e5:4a:8c:6d:37:ec:7a:a9:af:7d:c1:3f:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 28 00:00:00 2025 GMT Not After : Mar 4 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:9b:d2:88:67:fd:60:42:83:2c:af:86:28:2e: ef:c8:63:bd:91:34:87:5d:19:19:17:22:c7:b9:f7: 3a:d6:d7:8c:22:22:c8:6d:94:73:b5:96:23:08:5a: 00:f5:c2:59:68:fa:5f:ed:b8:ad:b5:dc:3c:c1:0e: 66:6c:4d:6d:35:2b:a8:f7:e6:96:4e:fd:be:f8:f5: 7b:43:0e:a5:ca:b3:cd:37:5a:4d:bf:04:7a:59:98: 31:44:df:e7:69:5e:a7:68:33:28:6f:80:a9:61:0b: 5b:4f:53:a4:9a:6d:65:79:0d:1d:8b:09:0a:79:f3: 1b:1d:ee:21:57:95:f6:db:49:13:11:75:b9:5e:c6: 05:c0:00:71:4d:91:b2:99:29:a6:30:a6:ce:7d:49: d0:ff:bf:bd:0f:df:07:c2:66:c3:a4:f6:ac:b0:37: 6b:6c:db:4b:1c:d3:f4:f6:cb:cd:e4:e0:b5:a9:d4: 44:a2:ce:51:d6:e8:79:d3:3b:8f:02:95:e0:d1:dc: a7:17:9d:36:bd:34:c8:8a:23:9c:7d:ff:ea:9c:74: da:50:58:d8:b0:d5:91:02:3f:f7:de:c1:25:b0:12: 76:07:40:a5:47:86:5e:e6:26:1a:ad:21:d9:32:a9: 9a:81:59:48:05:8b:7c:c6:f8:15:a5:03:d4:eb:10: 38:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:D1:62:08:5B:19:AC:11:D5:72:70:A3:56:01:79:6B:0F:EE:A8:A3 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/97e8e038-2f32-48eb-b946-6eb5e4c1682c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.188.143.0/24 Signature Algorithm: sha256WithRSAEncryption 62:08:c9:04:fe:91:55:92:2f:86:8c:2b:15:88:c1:e9:e8:0a: 9f:eb:1c:ed:2f:fd:ea:92:12:2f:7c:7e:3e:f5:49:f3:fa:01: 16:bc:c7:ee:4f:a8:fe:fe:33:b9:be:be:77:7a:b2:0a:11:93: 05:d8:c2:8f:5b:d1:96:41:c8:2c:68:ab:49:bf:4f:49:60:93: 61:a5:4f:43:a5:23:9f:1b:52:f6:ff:03:b2:96:59:ea:bc:1d: 2d:34:48:90:49:f4:ba:50:46:55:26:8c:84:3a:f8:62:2b:34: 2e:94:02:96:40:0e:aa:49:70:03:f5:71:ef:b1:fa:a2:8a:b4: 2b:b4:92:eb:07:f4:bd:16:8f:d5:04:12:d1:69:66:d3:78:bd: ec:ca:5d:73:d7:93:a0:10:c7:b8:fa:38:68:a7:b3:27:ad:40: 82:f1:9d:b0:f9:44:23:65:08:4d:2c:b1:ba:0e:89:e9:80:f7: 38:13:31:0d:46:fa:04:29:7a:e9:40:25:9c:93:7b:43:a5:a2: 0c:a3:37:23:bc:59:5d:f9:f7:1b:f5:91:cf:0d:31:25:3a:7a: cf:9d:ce:6e:2c:1d:dd:4c:18:37:6e:31:ef:69:14:07:32:e3: 09:87:f4:29:b9:91:2c:f6:9e:ba:fe:f8:85:25:3d:74:71:af: 75:be:13:55 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIKNmjW45HuVKjG037Hqpr33BP1UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTI4MDAwMDAwWhcNMjUwMzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNGY1YTExM2I0Njg1ODdiODhmNmRiYTJkOTY3NzI2YWFm MGU4ZGJmOWIwZDdkNWM4NGQ0ZTlhM2MyYTcwYzE5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCym9KIZ/1gQoMsr4YoLu/IY72RNIddGRkXIse59zrW14wi IshtlHO1liMIWgD1wllo+l/tuK213DzBDmZsTW01K6j35pZO/b749XtDDqXKs803 Wk2/BHpZmDFE3+dpXqdoMyhvgKlhC1tPU6SabWV5DR2LCQp58xsd7iFXlfbbSRMR dblexgXAAHFNkbKZKaYwps59SdD/v70P3wfCZsOk9qywN2ts20sc0/T2y83k4LWp 1ESizlHW6HnTO48CleDR3KcXnTa9NMiKI5x9/+qcdNpQWNiw1ZECP/fewSWwEnYH QKVHhl7mJhqtIdkyqZqBWUgFi3zG+BWlA9TrEDgzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUK9FiCFsZrBHVcnCjVgF5aw/uqKMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzk3ZThlMDM4LTJmMzItNDhlYi1iOTQ2LTZlYjVlNGMxNjgyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAChvI8wDQYJKoZIhvcNAQELBQADggEBAGIIyQT+kVWSL4aMKxWIwenoCp/r HO0v/eqSEi98fj71SfP6ARa8x+5PqP7+M7m+vnd6sgoRkwXYwo9b0ZZByCxoq0m/ T0lgk2GlT0OlI58bUvb/A7KWWeq8HS00SJBJ9LpQRlUmjIQ6+GIrNC6UApZADqpJ cAP1ce+x+qKKtCu0kusH9L0Wj9UEEtFpZtN4vezKXXPXk6AQx7j6OGinsyetQILx nbD5RCNlCE0ssboOiemA9zgTMQ1G+gQpeulAJZyTe0OlogyjNyO8WV359xv1kc8N MSU6es+dzm4sHd1MGDduMe9pFAcy4wmH9Cm5kSz2nrr++IUlPXRxr3W+E1U= -----END CERTIFICATE-----Generated at Wed Feb 5 10:42:27 2025 by rpki-client