$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/aabc0a4e-ae35-481a-870c-636ab81ff119.roa File: aabc0a4e-ae35-481a-870c-636ab81ff119.roa (raw, json) Hash identifier: /gBx496kKlGqDtRe40pwwB79uuvA9Wnsa7kWTYYM3hk= Subject key identifier: E1:25:27:14:7D:EA:6E:1B:2C:9E:9C:97:3C:08:3D:4D:F8:83:5E:C0 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 71FC45A8F96530703BE8FD06DEBDB6BCCF2EC92F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/aabc0a4e-ae35-481a-870c-636ab81ff119.roa Signing time: Mon 13 Jan 2025 00:00:00 +0000 ROA not before: Mon 13 Jan 2025 00:00:00 +0000 ROA not after: Mon 17 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.246.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:fc:45:a8:f9:65:30:70:3b:e8:fd:06:de:bd:b6:bc:cf:2e:c9:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 13 00:00:00 2025 GMT Not After : Feb 17 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:9e:7d:29:53:f6:2d:fc:71:9f:04:c7:e7:ac: 20:6a:00:74:58:bf:09:1b:56:c1:96:ee:4a:50:74: be:41:65:9e:8f:c4:1d:71:6b:28:38:3f:0b:c9:b3: 49:84:7f:4a:ed:fa:6a:be:c6:41:66:3d:34:c6:ad: 40:b0:aa:9e:d0:02:83:5d:54:bd:6b:bd:ec:7b:dd: 6c:11:58:e5:62:d6:2d:41:53:3a:69:fb:d7:0d:31: 79:c7:e8:d8:eb:b5:43:ac:8d:e3:11:78:98:b5:b6: 39:1d:c1:02:d8:73:35:97:d5:be:29:f4:f9:83:f4: b5:ea:cc:b3:2d:ed:d7:3d:dd:81:81:37:b9:96:11: ae:62:5f:9f:b7:4b:10:88:aa:a5:2b:db:6b:cb:3a: 75:19:55:7b:f5:07:d0:b4:87:e1:4d:2e:8c:88:0e: 7d:e2:48:9a:ef:63:c4:7d:da:db:77:03:3f:96:40: 84:82:14:58:51:e7:26:e9:b2:08:75:42:c8:6b:2f: 2d:60:22:7e:56:ac:19:46:24:7d:a0:a6:38:9e:eb: ff:90:79:16:25:0e:09:83:cb:ce:78:c4:76:bb:71: 42:2a:88:6e:a6:a6:cb:6a:7c:bf:ea:3e:ce:ed:6b: 2d:56:8e:99:8c:1e:ce:f8:3b:a7:95:85:dd:84:91: af:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:25:27:14:7D:EA:6E:1B:2C:9E:9C:97:3C:08:3D:4D:F8:83:5E:C0 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/aabc0a4e-ae35-481a-870c-636ab81ff119.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.246.120.0/22 Signature Algorithm: sha256WithRSAEncryption 8b:e7:c6:92:f9:ba:10:4b:11:96:fa:7f:27:4c:9b:e9:9a:e4: d1:96:f2:b7:8a:4d:b7:ba:7a:b0:58:28:35:27:d9:2f:17:e8: c0:89:95:33:ac:d9:9a:cf:2d:c2:62:28:c9:ea:4f:5c:ce:0a: af:3b:a0:bf:12:b0:8a:bb:46:4d:a2:91:62:b0:ef:5d:d3:13: 47:11:7d:8d:ce:95:e1:c5:19:f7:0b:f9:16:d4:e0:b5:48:9e: 0a:46:ac:10:c5:2a:e8:b0:ed:2f:55:d7:ec:8c:75:95:82:a7: 52:a1:7e:f5:c2:1c:1e:17:6a:0c:8d:67:d6:60:dc:44:2c:91: 35:94:23:30:be:79:89:47:04:72:02:35:86:b2:2d:33:3a:4e: 2e:38:72:15:a2:f3:74:60:14:8b:52:50:ee:c9:c7:74:2e:c9: 70:fb:ca:e0:91:ef:f1:5c:cc:be:04:76:73:9c:2f:f7:08:5a: 70:51:40:c5:a9:26:5c:d2:a1:5b:a0:c1:17:d1:75:96:e8:9a: 27:66:35:ca:09:a0:33:b5:18:05:bd:c6:de:04:45:39:33:4a: 18:6d:01:0c:58:e2:d9:44:d1:37:f3:05:69:3c:3b:ee:b4:4d: 23:52:3a:38:35:8c:2d:29:46:f3:36:2d:04:e8:84:6b:6d:5f: a0:f0:f1:72 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcfxFqPllMHA76P0G3r22vM8uyS8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTEzMDAwMDAwWhcNMjUwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNDE3MTY4NDliN2YwMDlmMTY1ODAwOGEwOTEzMWVmZDQ1 MzA2MmJkOTQxZWIwZjE3MzVmOGQ4NTJiODFlYTg0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYnn0pU/Yt/HGfBMfnrCBqAHRYvwkbVsGW7kpQdL5BZZ6P xB1xayg4PwvJs0mEf0rt+mq+xkFmPTTGrUCwqp7QAoNdVL1rvex73WwRWOVi1i1B Uzpp+9cNMXnH6NjrtUOsjeMReJi1tjkdwQLYczWX1b4p9PmD9LXqzLMt7dc93YGB N7mWEa5iX5+3SxCIqqUr22vLOnUZVXv1B9C0h+FNLoyIDn3iSJrvY8R92tt3Az+W QISCFFhR5ybpsgh1QshrLy1gIn5WrBlGJH2gpjie6/+QeRYlDgmDy854xHa7cUIq iG6mpstqfL/qPs7tay1WjpmMHs74O6eVhd2Eka+NAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4SUnFH3qbhssnpyXPAg9TfiDXsAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2FhYmMwYTRlLWFlMzUtNDgxYS04NzBjLTYzNmFiODFmZjExOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIS9ngwDQYJKoZIhvcNAQELBQADggEBAIvnxpL5uhBLEZb6fydMm+ma5NGW 8reKTbe6erBYKDUn2S8X6MCJlTOs2ZrPLcJiKMnqT1zOCq87oL8SsIq7Rk2ikWKw 713TE0cRfY3OleHFGfcL+RbU4LVIngpGrBDFKuiw7S9V1+yMdZWCp1KhfvXCHB4X agyNZ9Zg3EQskTWUIzC+eYlHBHICNYayLTM6Ti44chWi83RgFItSUO7Jx3QuyXD7 yuCR7/FczL4EdnOcL/cIWnBRQMWpJlzSoVugwRfRdZbomidmNcoJoDO1GAW9xt4E RTkzShhtAQxY4tlE0TfzBWk8O+60TSNSOjg1jC0pRvM2LQTohGttX6Dw8XI= -----END CERTIFICATE-----Generated at Wed Feb 5 10:55:55 2025 by rpki-client