$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bb3edb19-9dc8-4fb1-80a7-e7d90b77a937.roa File: bb3edb19-9dc8-4fb1-80a7-e7d90b77a937.roa (raw, json) Hash identifier: 7iZPdTwXLMNG1tERQoTn8VEz8lsJMcmos+FwHI1ZAD8= Subject key identifier: FF:94:D4:9E:33:13:6D:6D:21:9A:3F:4E:82:3E:D4:C5:AB:E0:BA:17 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1DABBBA623407ECB3926E97C123F2068C12A559B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bb3edb19-9dc8-4fb1-80a7-e7d90b77a937.roa Signing time: Mon 13 Jan 2025 00:00:00 +0000 ROA not before: Mon 13 Jan 2025 00:00:00 +0000 ROA not after: Mon 17 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.208.0.0/13 maxlen: 13 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:ab:bb:a6:23:40:7e:cb:39:26:e9:7c:12:3f:20:68:c1:2a:55:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 13 00:00:00 2025 GMT Not After : Feb 17 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:93:35:d8:04:82:ab:b4:a6:3c:74:59:10:4a: fe:00:b7:e2:5b:78:de:17:74:71:89:c7:1d:6a:77: 32:8d:3a:1e:e6:1c:1a:b8:e3:a0:68:7e:83:0f:9d: ca:68:b4:ea:ff:c2:e5:89:9f:d7:71:9d:c8:4a:51: 88:5a:05:73:5d:a8:1d:be:9f:d0:00:4a:f0:a1:19: a3:35:dc:cd:68:92:94:63:b8:9e:b5:fe:86:ed:76: 8c:e4:81:58:10:0b:af:f2:95:2d:02:62:41:13:41: 8a:f2:1b:d3:65:c5:c8:f0:7b:4b:06:e8:a2:79:f1: dc:10:38:2d:78:65:35:22:77:88:13:6a:7b:06:94: 98:5a:ae:39:85:a2:4e:15:b5:be:6d:46:3e:21:f5: ce:e0:22:d0:cc:3d:df:77:a0:cb:29:f6:10:62:89: f8:f4:01:06:cb:94:eb:33:61:c7:dc:e2:34:0d:8e: d0:23:e4:a2:0c:b7:c0:ef:d0:3a:37:70:f3:a4:db: aa:1c:9f:6f:c1:2a:8f:23:a4:42:5c:29:1e:23:cd: 1f:c2:2d:ea:43:f2:de:77:d6:dc:fb:26:57:8c:d7: 1d:4d:75:13:7a:46:ba:a8:d5:94:d2:24:fe:d0:12: da:e4:cb:6d:e0:8f:0f:15:0c:80:c5:1a:43:ec:be: 54:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:94:D4:9E:33:13:6D:6D:21:9A:3F:4E:82:3E:D4:C5:AB:E0:BA:17 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bb3edb19-9dc8-4fb1-80a7-e7d90b77a937.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.208.0.0/13 Signature Algorithm: sha256WithRSAEncryption 1c:90:4f:5b:5b:55:e0:86:99:65:31:04:6d:3e:ac:8d:cc:f5: da:70:65:b0:f4:b8:40:12:da:54:c9:a4:e0:37:8a:eb:49:b4: cb:67:1c:e5:b0:68:03:91:0d:f0:9f:95:ca:a1:d7:0b:2c:8d: 7e:c2:62:9c:1e:9a:a9:19:fa:6a:7a:ea:0e:5a:b2:c4:76:2a: 17:d7:d9:79:f8:9e:5f:3b:67:0e:7a:1e:03:ef:37:79:e1:d0: f0:01:8f:c1:18:8a:2f:22:7f:0c:6b:df:69:3b:e9:f1:36:15: 68:fd:c2:50:76:37:dd:db:69:3c:35:5d:22:2f:58:bf:be:5e: 07:4b:fc:ac:98:a9:4e:8a:94:6a:4e:10:dd:fa:81:ab:6a:d4: 3c:b8:1d:58:74:7f:0c:cf:cd:f3:65:87:32:ec:24:c1:84:bf: 21:9a:1d:4f:fc:e7:56:3c:8e:e0:39:88:fb:ad:00:87:98:e2: ba:4d:07:84:31:8a:ba:83:3b:79:7f:7c:93:33:47:bf:ee:e7: d1:f9:23:63:7e:67:61:b1:23:87:67:c5:91:c7:09:b7:72:da: 8e:f1:d8:d0:0e:cb:9b:12:18:44:f7:fb:eb:9f:b3:77:93:49: 63:d2:e8:35:f1:f7:c1:54:99:e3:47:34:29:3f:27:a1:1b:d6: a3:d3:34:a1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHau7piNAfss5Jul8Ej8gaMEqVZswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTEzMDAwMDAwWhcNMjUwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNzEwM2FhOWYzYzZmOGVlMzhhOTg4ZGZlMmM4YmUxZGZk NDUzNDVjNWRhOGExOWRhODk0M2U1MDY1NTFlODMzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9kzXYBIKrtKY8dFkQSv4At+JbeN4XdHGJxx1qdzKNOh7m HBq446BofoMPncpotOr/wuWJn9dxnchKUYhaBXNdqB2+n9AASvChGaM13M1okpRj uJ61/obtdozkgVgQC6/ylS0CYkETQYryG9Nlxcjwe0sG6KJ58dwQOC14ZTUid4gT ansGlJharjmFok4Vtb5tRj4h9c7gItDMPd93oMsp9hBiifj0AQbLlOszYcfc4jQN jtAj5KIMt8Dv0Do3cPOk26ocn2/BKo8jpEJcKR4jzR/CLepD8t531tz7JleM1x1N dRN6Rrqo1ZTSJP7QEtrky23gjw8VDIDFGkPsvlSDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/5TUnjMTbW0hmj9Ogj7UxavguhcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2JiM2VkYjE5LTlkYzgtNGZiMS04MGE3LWU3ZDkwYjc3YTkzNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwMS0DANBgkqhkiG9w0BAQsFAAOCAQEAHJBPW1tV4IaZZTEEbT6sjcz12nBl sPS4QBLaVMmk4DeK60m0y2cc5bBoA5EN8J+VyqHXCyyNfsJinB6aqRn6anrqDlqy xHYqF9fZefieXztnDnoeA+83eeHQ8AGPwRiKLyJ/DGvfaTvp8TYVaP3CUHY33dtp PDVdIi9Yv75eB0v8rJipToqUak4Q3fqBq2rUPLgdWHR/DM/N82WHMuwkwYS/IZod T/znVjyO4DmI+60Ah5jiuk0HhDGKuoM7eX98kzNHv+7n0fkjY35nYbEjh2fFkccJ t3LajvHY0A7LmxIYRPf765+zd5NJY9LoNfH3wVSZ40c0KT8noRvWo9M0oQ== -----END CERTIFICATE-----Generated at Wed Feb 5 10:48:52 2025 by rpki-client