$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a0a429e3-e7ff-4211-b53b-efbdce5fb3a8.roa File: a0a429e3-e7ff-4211-b53b-efbdce5fb3a8.roa (raw, json) Hash identifier: 2wr5kZM8G0zn6mg+SaE+J+XixYOCO0aEmQk5tuYC54w= Subject key identifier: 28:1F:A2:D4:26:88:5D:96:F0:DD:39:B7:2B:E3:AA:BE:AA:BF:64:E0 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0ECBA90DD086BFA26C5FD966DE3611AA0ABF00 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a0a429e3-e7ff-4211-b53b-efbdce5fb3a8.roa Signing time: Fri 31 Jan 2025 00:00:00 +0000 ROA not before: Fri 31 Jan 2025 00:00:00 +0000 ROA not after: Fri 07 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.203.248.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:cb:a9:0d:d0:86:bf:a2:6c:5f:d9:66:de:36:11:aa:0a:bf:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 31 00:00:00 2025 GMT Not After : Mar 7 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:d1:5a:56:25:b9:12:2a:96:1a:c0:e9:22:e0: cc:fd:54:78:bd:49:73:0b:a0:fd:cc:3d:96:25:52: ad:10:7f:8c:64:29:97:8a:93:07:95:4f:69:e3:a2: 1b:5c:2e:d1:ce:11:1b:a9:5a:e8:82:21:37:42:63: 97:d2:ee:ee:8b:6d:a0:4f:20:cb:ab:e2:5e:2a:00: de:b1:87:4c:de:0d:de:18:94:72:9e:80:2a:45:f4: d2:a1:11:65:d9:78:ff:25:03:7d:d0:72:44:9c:b9: e2:11:66:53:fd:c7:11:50:45:76:61:5b:2a:f1:18: 71:ee:45:ff:11:75:ee:3b:7c:1f:a6:19:ac:a3:44: 6c:41:63:24:63:e4:e1:8a:c5:2a:25:c1:dc:b1:e1: 51:2d:5c:20:ac:23:4a:e2:dd:a5:bb:87:3f:43:7f: 9f:69:22:e4:4f:5f:a9:5c:9b:8b:00:16:e2:52:54: 45:85:77:ba:5f:66:58:79:d1:b7:01:fc:d7:8a:a6: 61:30:73:c2:18:21:da:33:23:6a:ec:83:e4:a8:dd: e0:51:0d:74:3a:55:f9:1c:c8:ce:1d:64:08:95:b9: d4:56:5c:7b:3e:59:76:75:0f:30:ab:51:72:51:53: 90:d9:54:49:f4:76:91:02:2e:df:1a:a8:6c:99:45: a8:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:1F:A2:D4:26:88:5D:96:F0:DD:39:B7:2B:E3:AA:BE:AA:BF:64:E0 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a0a429e3-e7ff-4211-b53b-efbdce5fb3a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.203.248.0/21 Signature Algorithm: sha256WithRSAEncryption 3c:cd:fd:93:89:66:c3:2c:32:18:00:55:a7:f2:13:ea:69:65: 2f:06:82:94:c8:da:cd:66:b1:01:d8:cc:d5:5f:a4:66:42:f9: 10:c1:f1:0e:93:e1:f7:37:71:69:25:fa:94:70:43:13:62:ff: 64:00:96:4f:47:be:9d:3f:ba:0f:4c:c9:06:6a:83:d0:b3:66: 8f:12:50:21:a0:1a:24:4e:8b:95:2e:7e:a0:22:a3:2b:de:4d: e5:be:e6:4a:b9:dd:8c:67:ba:3f:d4:32:22:77:de:59:6a:ca: 5a:8e:f8:c5:80:09:dd:86:64:cf:ff:6a:a9:ab:fb:5b:4b:e0: 82:88:f8:db:d8:32:b6:0f:a0:25:14:9a:78:7c:16:73:6a:17: 93:e9:af:e9:7a:ff:24:6b:8f:2b:4b:0b:70:63:90:10:a2:24: 9e:c0:18:6a:41:ea:e3:9a:9a:2d:28:bf:55:c4:5e:39:06:41: be:45:ee:c6:a0:fe:17:14:4d:a9:3d:7f:68:c3:65:11:5f:67: 33:0d:79:6f:f6:2a:16:d0:20:f6:75:38:21:63:13:6d:29:fc: 24:6c:e1:dd:8a:ac:8c:98:b7:20:41:35:c4:f8:bc:d8:ee:1a: 15:15:d5:eb:8c:f7:67:ac:86:49:8a:71:61:c9:20:09:4f:18: 1c:39:74:b9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITDsupDdCGv6JsX9lm3jYRqgq/ADANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNTAxMzEwMDAwMDBaFw0yNTAzMDcyMzU5NTla MHoxSTBHBgNVBAUTQDk0ODNhZWUyNmE4ZjExNDY4YzgwYzU0OGYyMjM3NWFiZmRm MzhkYjJmMGFiYTY4NGUwMTljZjA1NzI0MmZjODIxLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAJ3RWlYluRIqlhrA6SLgzP1UeL1Jcwug/cw9liVSrRB/jGQp l4qTB5VPaeOiG1wu0c4RG6la6IIhN0Jjl9Lu7ottoE8gy6viXioA3rGHTN4N3hiU cp6AKkX00qERZdl4/yUDfdByRJy54hFmU/3HEVBFdmFbKvEYce5F/xF17jt8H6YZ rKNEbEFjJGPk4YrFKiXB3LHhUS1cIKwjSuLdpbuHP0N/n2ki5E9fqVybiwAW4lJU RYV3ul9mWHnRtwH814qmYTBzwhgh2jMjauyD5Kjd4FENdDpV+RzIzh1kCJW51FZc ez5ZdnUPMKtRclFTkNlUSfR2kQIu3xqobJlFqJ0CAwEAAaOCArEwggKtMB0GA1Ud DgQWBBQoH6LUJohdlvDdObcr46q+qr9k4DAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvYTBhNDI5ZTMtZTdmZi00MjExLWI1M2ItZWZiZGNlNWZiM2E4LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAzbL+DANBgkqhkiG9w0BAQsFAAOCAQEAPM39k4lmwywyGABVp/IT6mllLwaC lMjazWaxAdjM1V+kZkL5EMHxDpPh9zdxaSX6lHBDE2L/ZACWT0e+nT+6D0zJBmqD 0LNmjxJQIaAaJE6LlS5+oCKjK95N5b7mSrndjGe6P9QyInfeWWrKWo74xYAJ3YZk z/9qqav7W0vggoj429gytg+gJRSaeHwWc2oXk+mv6Xr/JGuPK0sLcGOQEKIknsAY akHq45qaLSi/VcReOQZBvkXuxqD+FxRNqT1/aMNlEV9nMw15b/YqFtAg9nU4IWMT bSn8JGzh3YqsjJi3IEE1xPi82O4aFRXV64z3Z6yGSYpxYckgCU8YHDl0uQ== -----END CERTIFICATE-----Generated at Wed Feb 5 11:00:11 2025 by rpki-client