$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a6073f80-fafc-4e6b-940c-475df5662892.roa File: a6073f80-fafc-4e6b-940c-475df5662892.roa (raw, json) Hash identifier: LXJDvpwGl8rh80GPMUyRk8Qs6dyukersS7VwzVGLAP0= Subject key identifier: 34:0D:51:59:19:A2:B5:CF:7B:54:A6:B3:6B:BD:B7:9E:75:C9:7F:2C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 056A93A218EAF05BF512B4DDFB2E8834F7433667 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a6073f80-fafc-4e6b-940c-475df5662892.roa Signing time: Mon 27 Jan 2025 00:00:00 +0000 ROA not before: Mon 27 Jan 2025 00:00:00 +0000 ROA not after: Mon 03 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.250.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:6a:93:a2:18:ea:f0:5b:f5:12:b4:dd:fb:2e:88:34:f7:43:36:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 27 00:00:00 2025 GMT Not After : Mar 3 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:65:1e:61:4a:43:81:a1:94:9f:9e:34:38:5c: 57:b3:c9:b3:0d:f7:92:c8:42:dc:0e:70:b8:83:96: ba:bf:d7:64:07:16:c8:d4:e9:8b:fa:b0:6a:d9:96: 39:c0:f4:95:16:f9:b2:31:59:a6:32:9c:43:97:e2: 11:0b:6c:35:8f:dd:e2:2f:c2:e5:fc:f8:4b:a0:a6: 7b:24:c7:ae:d5:9a:78:f6:58:6a:c3:85:94:3d:26: 42:3a:a8:74:67:63:b4:80:12:d4:f0:03:6b:21:89: 65:af:0c:55:5f:aa:08:6b:4a:c0:6e:30:11:3b:8e: 17:d5:ef:77:ca:45:6e:aa:50:bc:9f:03:f6:d0:0f: c9:e6:9f:18:72:37:60:7b:5a:86:64:8d:ab:2d:37: 72:3d:55:cb:e6:b1:ab:b7:b9:0a:49:8b:70:0e:81: ab:a0:ea:a1:b0:ff:53:89:13:fd:98:00:0f:05:12: 1d:ae:8f:33:75:3d:98:33:f7:1b:c9:7a:0a:06:25: fc:12:95:43:fb:20:df:08:0d:94:4c:9f:75:a4:c6: 29:8d:67:51:53:60:04:35:f1:3c:d8:b4:24:0e:8f: 26:81:46:59:27:59:03:60:3d:b8:c1:f9:72:7b:47: 91:7e:aa:af:2d:86:91:0a:10:39:d3:74:d7:ab:0a: 8b:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:0D:51:59:19:A2:B5:CF:7B:54:A6:B3:6B:BD:B7:9E:75:C9:7F:2C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a6073f80-fafc-4e6b-940c-475df5662892.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.250.0.0/15 Signature Algorithm: sha256WithRSAEncryption 93:29:75:99:ed:05:0a:9f:5d:a9:b1:c1:77:1f:a0:e1:a1:e4: 50:e0:5c:fe:61:69:ad:35:ce:8e:3a:e8:12:59:7c:e0:a2:bf: 44:f4:75:f2:c5:87:d0:41:af:41:15:ab:70:ed:8f:5c:84:05: d4:5e:ab:71:77:af:da:28:84:43:07:8e:60:6a:28:07:9f:5d: 2d:75:ff:98:13:e6:89:f2:a3:44:62:2e:08:db:49:f7:3b:54: fb:1b:b1:bb:48:f2:e6:4e:6c:a1:7a:8a:33:8f:3e:41:b0:48: 65:97:a4:73:75:43:b9:7c:ce:5c:3b:5c:de:4d:5b:25:3e:0c: 2d:7d:d2:46:00:c2:11:0c:7c:2d:3b:0f:04:94:00:25:f7:69: c6:01:98:0e:a5:de:95:6e:43:ad:ec:fe:63:79:cb:e9:fe:7f: e4:1b:70:c2:d4:8e:82:24:fb:e2:71:a6:58:48:b1:3c:bf:7f: d7:44:3b:e7:86:74:3b:09:a0:36:88:9b:d0:01:c9:e0:17:a3: 99:eb:d1:9a:0a:d2:5f:18:26:3a:d1:98:2e:43:59:7f:a0:ef: 84:4a:52:c1:10:47:1c:40:8e:7f:98:60:1e:91:a0:e3:56:05: 0f:4e:dc:cc:c0:0a:51:b9:9a:49:57:2c:42:06:3e:02:8f:97: 98:83:6f:a6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBWqTohjq8Fv1ErTd+y6INPdDNmcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTI3MDAwMDAwWhcNMjUwMzAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkOTEzZDM1MzYwMDIwYzU1NzMxZTZmZTZkOWVmMDZiNjU0 NDg4YjIzMDRlZGY5ODEwNzU1YmVjNTQ1ZjhkYTUyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjZR5hSkOBoZSfnjQ4XFezybMN95LIQtwOcLiDlrq/12QH FsjU6Yv6sGrZljnA9JUW+bIxWaYynEOX4hELbDWP3eIvwuX8+Eugpnskx67Vmnj2 WGrDhZQ9JkI6qHRnY7SAEtTwA2shiWWvDFVfqghrSsBuMBE7jhfV73fKRW6qULyf A/bQD8nmnxhyN2B7WoZkjastN3I9Vcvmsau3uQpJi3AOgaug6qGw/1OJE/2YAA8F Eh2ujzN1PZgz9xvJegoGJfwSlUP7IN8IDZRMn3WkximNZ1FTYAQ18TzYtCQOjyaB RlknWQNgPbjB+XJ7R5F+qq8thpEKEDnTdNerCosZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUNA1RWRmitc97VKaza723nnXJfywwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2E2MDczZjgwLWZhZmMtNGU2Yi05NDBjLTQ3NWRmNTY2Mjg5Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwED+jANBgkqhkiG9w0BAQsFAAOCAQEAkyl1me0FCp9dqbHBdx+g4aHkUOBc /mFprTXOjjroEll84KK/RPR18sWH0EGvQRWrcO2PXIQF1F6rcXev2iiEQweOYGoo B59dLXX/mBPmifKjRGIuCNtJ9ztU+xuxu0jy5k5soXqKM48+QbBIZZekc3VDuXzO XDtc3k1bJT4MLX3SRgDCEQx8LTsPBJQAJfdpxgGYDqXelW5Drez+Y3nL6f5/5Btw wtSOgiT74nGmWEixPL9/10Q754Z0OwmgNoib0AHJ4BejmevRmgrSXxgmOtGYLkNZ f6DvhEpSwRBHHECOf5hgHpGg41YFD07czMAKUbmaSVcsQgY+Ao+XmINvpg== -----END CERTIFICATE-----Generated at Wed Feb 5 10:53:37 2025 by rpki-client