$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a721e853-0369-4d32-b3f4-ef9c261b1f58.roa File: a721e853-0369-4d32-b3f4-ef9c261b1f58.roa (raw, json) Hash identifier: MypZWbMuw/bcadYUS9E+P/+6f30ebqACkI0hgzF68CM= Subject key identifier: 0C:2D:37:AE:23:96:B2:76:14:17:F2:92:A8:30:81:2A:4B:1B:B7:32 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2BD2993BB117F9F97547D74E51FBF33BA2847916 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a721e853-0369-4d32-b3f4-ef9c261b1f58.roa Signing time: Mon 27 Jan 2025 00:00:00 +0000 ROA not before: Mon 27 Jan 2025 00:00:00 +0000 ROA not after: Mon 03 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 34.217.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:d2:99:3b:b1:17:f9:f9:75:47:d7:4e:51:fb:f3:3b:a2:84:79:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 27 00:00:00 2025 GMT Not After : Mar 3 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:c1:33:41:22:b2:62:df:e4:75:94:ab:72:3b: b4:ca:b8:2e:a3:df:eb:65:0f:dc:4c:cd:97:c8:5b: 55:2e:aa:54:87:b8:6a:a0:84:69:ed:fb:fd:3e:f8: 89:c6:c3:98:74:0f:5a:00:a4:93:44:86:75:0a:32: 3e:82:30:68:a9:d4:1b:87:21:be:df:6f:4e:34:0b: 1f:88:bf:3e:0e:d9:9b:3c:44:b5:07:82:3b:7e:20: 95:70:93:3f:1a:85:ba:8b:40:5d:98:6b:38:d8:d9: e5:39:b5:56:e0:ff:81:89:9d:11:4f:3a:a8:38:dd: e2:78:67:cd:f4:12:69:bb:78:46:3d:b9:27:54:34: cb:57:e7:a6:9d:ef:bc:fd:a3:14:75:ad:97:7e:98: b5:f0:f0:9c:a2:11:92:3d:dd:ba:8c:d9:f3:e7:64: 45:bc:94:08:1d:83:b5:b0:06:4e:ba:00:99:ab:64: 0b:d0:bf:b4:24:a5:e6:76:e9:c3:42:29:93:fe:32: 7e:3d:67:e5:15:b0:4c:31:26:16:d7:31:95:9b:5a: 13:1e:d2:21:45:1f:f2:dc:fa:13:ad:57:9f:fe:dc: d1:8c:0e:10:81:c2:92:3b:8a:ea:e7:7d:e7:ce:ef: 64:a4:2a:b6:e3:71:15:5e:d4:78:3c:e4:fe:9e:cb: cc:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:2D:37:AE:23:96:B2:76:14:17:F2:92:A8:30:81:2A:4B:1B:B7:32 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a721e853-0369-4d32-b3f4-ef9c261b1f58.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 34.217.143.0/24 Signature Algorithm: sha256WithRSAEncryption 56:31:0d:fe:d7:73:2a:18:44:ea:ad:ec:98:4d:19:bb:64:b1: 78:b8:b9:be:2a:cf:d9:23:63:a6:50:2a:19:38:33:11:80:59: 55:43:e0:23:91:f2:52:6a:37:93:1c:df:4d:3a:b8:7f:26:a2: 1a:c6:03:d7:f3:0e:6f:4b:f3:a9:f6:5a:c9:66:8b:c5:95:4d: 45:79:69:0d:dc:86:cb:7a:fe:87:e1:c1:ad:b5:4d:06:e7:4a: a3:d5:2b:6d:81:b8:d6:a0:81:9a:06:48:fe:e0:ac:23:0f:35: 31:59:f7:f0:0f:48:ec:bb:b8:e7:a6:16:2d:07:83:e4:d1:0c: 53:1c:a4:1c:25:53:ce:99:9b:02:39:44:93:d6:b8:af:ba:39: d9:31:e6:57:7c:91:2a:06:70:09:1e:9f:3f:b8:b0:5d:3e:06: 9f:c3:59:e4:6f:f5:30:44:dd:20:74:b2:50:0e:94:1b:d7:d8: c6:3e:cc:1f:fe:92:a7:0c:7d:da:59:0c:10:cf:07:41:5f:e5: af:d0:df:50:80:4b:69:7b:af:2c:c8:a9:bc:62:6b:7a:a2:55: 46:90:29:15:c6:5b:ec:7e:d5:3c:eb:87:f0:aa:a4:c3:4f:16: a9:f1:9f:e0:d7:f0:09:0a:64:ae:bd:fd:6e:85:66:85:c2:4b: 57:c9:1a:6e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK9KZO7EX+fl1R9dOUfvzO6KEeRYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTI3MDAwMDAwWhcNMjUwMzAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5OTMxOTM3YjFjMzc4ZGRhNmYxZDJmYzUwNmQ4YzA3MTU0 ZThlYjUyM2Y1ZmYyNjQ1M2JjZjc5M2MyMGJjOTRiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUwTNBIrJi3+R1lKtyO7TKuC6j3+tlD9xMzZfIW1UuqlSH uGqghGnt+/0++InGw5h0D1oApJNEhnUKMj6CMGip1BuHIb7fb040Cx+Ivz4O2Zs8 RLUHgjt+IJVwkz8ahbqLQF2YazjY2eU5tVbg/4GJnRFPOqg43eJ4Z830Emm7eEY9 uSdUNMtX56ad77z9oxR1rZd+mLXw8JyiEZI93bqM2fPnZEW8lAgdg7WwBk66AJmr ZAvQv7QkpeZ26cNCKZP+Mn49Z+UVsEwxJhbXMZWbWhMe0iFFH/Lc+hOtV5/+3NGM DhCBwpI7iurnfefO72SkKrbjcRVe1Hg85P6ey8yvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDC03riOWsnYUF/KSqDCBKksbtzIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2E3MjFlODUzLTAzNjktNGQzMi1iM2Y0LWVmOWMyNjFiMWY1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAi2Y8wDQYJKoZIhvcNAQELBQADggEBAFYxDf7XcyoYROqt7JhNGbtksXi4 ub4qz9kjY6ZQKhk4MxGAWVVD4COR8lJqN5Mc3006uH8mohrGA9fzDm9L86n2Wslm i8WVTUV5aQ3chst6/ofhwa21TQbnSqPVK22BuNaggZoGSP7grCMPNTFZ9/APSOy7 uOemFi0Hg+TRDFMcpBwlU86ZmwI5RJPWuK+6Odkx5ld8kSoGcAkenz+4sF0+Bp/D WeRv9TBE3SB0slAOlBvX2MY+zB/+kqcMfdpZDBDPB0Ff5a/Q31CAS2l7ryzIqbxi a3qiVUaQKRXGW+x+1Tzrh/CqpMNPFqnxn+DX8AkKZK69/W6FZoXCS1fJGm4= -----END CERTIFICATE-----Generated at Wed Feb 5 10:41:43 2025 by rpki-client