$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c0caee73-d612-4f2d-a944-989cb3ca78df.roa File: c0caee73-d612-4f2d-a944-989cb3ca78df.roa (raw, json) Hash identifier: 54dvPHxZepuQtCcZbPnm1Gx4TOln6At7AlTKsdaNnuI= Subject key identifier: BF:81:14:B2:11:58:FC:EF:67:1E:80:96:F0:E1:96:79:B1:60:EF:F7 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 52E0980FED7E93288D83C6CA62CB3DD71A9FB52E Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c0caee73-d612-4f2d-a944-989cb3ca78df.roa Signing time: Mon 27 Jan 2025 00:00:00 +0000 ROA not before: Mon 27 Jan 2025 00:00:00 +0000 ROA not after: Mon 03 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.176.0.0/12 maxlen: 12 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:e0:98:0f:ed:7e:93:28:8d:83:c6:ca:62:cb:3d:d7:1a:9f:b5:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 27 00:00:00 2025 GMT Not After : Mar 3 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:21:09:df:d1:fc:a9:dd:65:23:9c:98:b5:73: 00:eb:ae:46:71:b8:fa:6c:05:43:cb:91:a8:3f:47: aa:69:0b:42:ba:23:0b:f0:f7:19:13:dc:20:96:be: 3e:7c:58:f0:fb:c9:dd:3f:2c:7a:b1:e6:6f:ac:01: f8:63:2a:0d:1e:08:ad:17:d6:17:02:47:05:51:92: 29:c9:f2:07:3a:94:35:1f:4e:94:7a:32:b1:dc:60: 0d:2f:ee:3f:64:5c:1b:56:9b:5e:37:57:c5:10:3c: e2:c1:b8:77:b8:35:3b:30:eb:a7:16:15:78:73:67: d6:5b:92:32:0d:02:0c:a7:02:35:7a:f5:48:bb:6f: e9:fa:7f:d3:73:f5:b9:dd:38:c7:3d:9a:f0:b5:d5: 67:a0:67:25:c6:f9:3f:fc:78:99:c3:9a:6b:a8:8c: ce:c1:b4:d2:61:61:f7:df:ce:3c:fa:3a:8d:3c:74: d1:56:86:68:4c:41:75:84:d2:ad:2b:ed:e8:22:6e: 13:e5:ec:17:72:59:42:95:d3:20:3d:3f:db:dd:a2: a9:7a:51:b6:62:84:2e:44:9c:88:db:49:f8:64:ae: 0a:98:62:46:ae:13:9a:8d:69:53:70:be:81:09:69: 60:9f:a3:00:b2:28:2b:5d:61:ad:8f:a6:cc:f3:1e: 78:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:81:14:B2:11:58:FC:EF:67:1E:80:96:F0:E1:96:79:B1:60:EF:F7 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c0caee73-d612-4f2d-a944-989cb3ca78df.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.176.0.0/12 Signature Algorithm: sha256WithRSAEncryption 9b:19:ff:c7:ce:4a:10:41:20:7e:f5:5e:47:29:7a:f5:3b:40: 15:50:79:de:bc:8b:8e:66:a3:68:8d:67:17:f0:a5:50:47:05: 8f:f1:51:68:4f:b8:42:d3:33:4f:d2:5d:22:97:62:23:91:49: 18:ec:4c:d8:8d:2b:8c:33:27:93:90:b2:dc:95:10:85:66:a1: 8b:82:37:26:41:a3:6e:c0:b1:55:71:79:12:cf:fa:31:85:5b: 1f:71:ca:06:8d:1e:6a:5c:43:43:89:bb:2b:b0:8e:86:1d:19: 5f:a4:1f:e7:de:52:66:49:32:cd:ae:e6:16:a7:5d:1a:de:3c: 42:55:ba:11:60:53:fe:07:8d:64:59:82:bb:3d:9b:56:be:41: 46:80:bb:8d:ee:c3:3f:04:4d:07:d2:9b:30:2d:c4:6f:41:80: 14:5f:1d:aa:0d:f7:0b:d9:34:2c:4d:88:43:08:e7:37:fc:2b: b1:39:6f:3f:0d:20:b4:1a:2d:c6:53:cc:35:e0:4d:c8:bf:56: 59:ee:86:9c:ad:06:76:8a:5c:b6:a7:21:19:87:25:80:f3:1d: ec:6f:7c:88:af:ba:d7:e6:4b:be:28:07:5b:6a:17:4c:a6:6a: d3:2e:ef:ac:e3:1e:15:65:73:a0:0f:71:9b:a8:55:9e:f8:c9: 4b:88:1f:96 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUuCYD+1+kyiNg8bKYss91xqftS4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTI3MDAwMDAwWhcNMjUwMzAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZmZjMDMyOTI2ODViNGMyMmUwN2E5YjMxM2NmMjdhNTNh OTJkNWU4MzU1ZGVlY2E2NTcxNTYxOWI3MGFiYjM3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzIQnf0fyp3WUjnJi1cwDrrkZxuPpsBUPLkag/R6ppC0K6 Iwvw9xkT3CCWvj58WPD7yd0/LHqx5m+sAfhjKg0eCK0X1hcCRwVRkinJ8gc6lDUf TpR6MrHcYA0v7j9kXBtWm143V8UQPOLBuHe4NTsw66cWFXhzZ9ZbkjINAgynAjV6 9Ui7b+n6f9Nz9bndOMc9mvC11WegZyXG+T/8eJnDmmuojM7BtNJhYfffzjz6Oo08 dNFWhmhMQXWE0q0r7egibhPl7BdyWUKV0yA9P9vdoql6UbZihC5EnIjbSfhkrgqY YkauE5qNaVNwvoEJaWCfowCyKCtdYa2PpszzHnhjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUv4EUshFY/O9nHoCW8OGWebFg7/cwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2MwY2FlZTczLWQ2MTItNGYyZC1hOTQ0LTk4OWNiM2NhNzhkZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwQ2sDANBgkqhkiG9w0BAQsFAAOCAQEAmxn/x85KEEEgfvVeRyl69TtAFVB5 3ryLjmajaI1nF/ClUEcFj/FRaE+4QtMzT9JdIpdiI5FJGOxM2I0rjDMnk5Cy3JUQ hWahi4I3JkGjbsCxVXF5Es/6MYVbH3HKBo0ealxDQ4m7K7COhh0ZX6Qf595SZkky za7mFqddGt48QlW6EWBT/geNZFmCuz2bVr5BRoC7je7DPwRNB9KbMC3Eb0GAFF8d qg33C9k0LE2IQwjnN/wrsTlvPw0gtBotxlPMNeBNyL9WWe6GnK0GdopctqchGYcl gPMd7G98iK+61+ZLvigHW2oXTKZq0y7vrOMeFWVzoA9xm6hVnvjJS4gflg== -----END CERTIFICATE-----Generated at Wed Feb 5 10:49:43 2025 by rpki-client