$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d3e8cadb-dd47-4801-8b62-0fb6aa67bbed.roa File: d3e8cadb-dd47-4801-8b62-0fb6aa67bbed.roa (raw, json) Hash identifier: coxFoEx6AV8de+/ZQ9UKXReUEbLnNHSSDzGac3xWZcE= Subject key identifier: C5:E5:E7:BA:46:53:6D:9D:DE:E5:A1:D9:5E:D2:5E:90:96:2C:ED:F9 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2066C0EC39702EDCB06986558A8DDBFDDCA9B1A6 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d3e8cadb-dd47-4801-8b62-0fb6aa67bbed.roa Signing time: Fri 31 Jan 2025 00:00:00 +0000 ROA not before: Fri 31 Jan 2025 00:00:00 +0000 ROA not after: Fri 07 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.199.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:66:c0:ec:39:70:2e:dc:b0:69:86:55:8a:8d:db:fd:dc:a9:b1:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 31 00:00:00 2025 GMT Not After : Mar 7 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:90:83:f0:94:5a:d6:dd:9d:da:d4:5c:87:eb: 74:89:fb:00:08:c5:d6:04:50:f9:84:1c:a0:31:6b: c0:b8:ff:8d:07:2f:43:e5:65:ad:a8:3d:9a:49:19: fa:78:bc:35:02:c4:dc:66:79:01:e7:f6:af:46:79: f3:bb:5d:fe:29:02:d4:31:9d:10:3c:35:dc:d1:2f: 47:86:24:c1:b8:fb:5b:40:71:af:87:e9:0a:d3:7c: f3:32:e6:2e:bf:93:e4:98:bd:ba:63:8c:eb:cb:e2: b3:f8:24:2c:bc:54:32:57:44:4f:25:38:bf:de:0d: 3c:74:fd:ff:16:57:c8:d3:5b:35:14:f7:9a:0b:04: 0d:5e:b7:f8:db:a8:08:a3:1c:7d:61:8a:7b:aa:41: 7c:1b:9e:55:7d:1f:b2:66:dc:58:f6:e5:de:81:6a: ea:b2:a3:e8:6f:ed:91:84:c0:e6:ef:cd:5f:ec:58: f2:c3:30:77:49:b6:bf:40:93:97:cd:7c:8d:79:06: 6f:4d:6c:58:4d:81:0e:99:f4:d1:86:19:cd:95:87: 57:08:73:44:4c:b7:1c:11:00:e0:71:fc:49:c9:7c: 12:a9:35:d3:d2:7a:52:2e:17:e7:b4:1b:fa:09:1e: 77:0a:9a:28:44:2a:58:47:c1:04:51:6c:a0:3f:0f: 15:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:E5:E7:BA:46:53:6D:9D:DE:E5:A1:D9:5E:D2:5E:90:96:2C:ED:F9 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d3e8cadb-dd47-4801-8b62-0fb6aa67bbed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.199.128.0/17 Signature Algorithm: sha256WithRSAEncryption 9c:cb:59:ce:47:11:e3:97:53:bf:8e:8e:56:27:1d:0a:55:ba: 05:36:ea:b8:de:13:a8:22:28:57:f5:6d:56:8d:1a:f7:af:2a: ea:b2:f5:f6:10:22:52:64:46:9f:09:73:99:28:86:e2:5d:84: dc:4b:a3:ec:09:ae:31:ee:46:0f:dc:06:9a:29:2a:31:68:da: ea:80:cc:1b:60:a8:8c:1f:f5:44:55:db:be:99:bc:e1:17:7c: 69:c6:e4:3e:88:2d:a6:d8:05:30:7c:b2:0a:a7:e0:27:e5:04: 2e:91:03:b6:9c:06:ef:78:84:04:f3:a5:63:22:e7:fd:a7:50: b3:a0:68:2c:e5:0e:c1:e7:6e:68:ce:6f:82:32:ca:fa:ac:38: d6:42:1a:e5:ec:f5:c6:7c:f5:5f:07:b6:84:50:c6:b6:07:de: 4c:7a:26:30:8f:c1:e6:45:e6:45:db:51:19:7d:d7:a3:4b:a0: 71:17:3a:62:4b:a7:08:00:95:c3:95:e8:49:f0:e7:90:bc:3d: 81:1a:4b:31:96:0a:27:d7:6d:c1:be:58:54:5a:5c:ef:de:7d: bf:75:9f:ab:21:63:6c:39:80:26:4d:66:2d:06:5a:f0:2f:95: c4:e5:93:15:48:05:04:19:e0:a7:e4:30:40:da:b8:8a:83:87: f1:9b:fa:6e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIGbA7DlwLtywaYZVio3b/dypsaYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTMxMDAwMDAwWhcNMjUwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNTk2NTUxZWNlYmFkYjBjYjgzZWU3YjUyODdhODkzZTA2 ZDAxNjMyN2E2ZmRkOGJhODhmOTdmYTlkZjZiMTE3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDqkIPwlFrW3Z3a1FyH63SJ+wAIxdYEUPmEHKAxa8C4/40H L0PlZa2oPZpJGfp4vDUCxNxmeQHn9q9GefO7Xf4pAtQxnRA8NdzRL0eGJMG4+1tA ca+H6QrTfPMy5i6/k+SYvbpjjOvL4rP4JCy8VDJXRE8lOL/eDTx0/f8WV8jTWzUU 95oLBA1et/jbqAijHH1hinuqQXwbnlV9H7Jm3Fj25d6Bauqyo+hv7ZGEwObvzV/s WPLDMHdJtr9Ak5fNfI15Bm9NbFhNgQ6Z9NGGGc2Vh1cIc0RMtxwRAOBx/EnJfBKp NdPSelIuF+e0G/oJHncKmihEKlhHwQRRbKA/DxUBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxeXnukZTbZ3e5aHZXtJekJYs7fkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2QzZThjYWRiLWRkNDctNDgwMS04YjYyLTBmYjZhYTY3YmJlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc2x4AwDQYJKoZIhvcNAQELBQADggEBAJzLWc5HEeOXU7+OjlYnHQpVugU2 6rjeE6giKFf1bVaNGvevKuqy9fYQIlJkRp8Jc5kohuJdhNxLo+wJrjHuRg/cBpop KjFo2uqAzBtgqIwf9URV276ZvOEXfGnG5D6ILabYBTB8sgqn4CflBC6RA7acBu94 hATzpWMi5/2nULOgaCzlDsHnbmjOb4IyyvqsONZCGuXs9cZ89V8HtoRQxrYH3kx6 JjCPweZF5kXbURl916NLoHEXOmJLpwgAlcOV6Enw55C8PYEaSzGWCifXbcG+WFRa XO/efb91n6shY2w5gCZNZi0GWvAvlcTlkxVIBQQZ4KfkMEDauIqDh/Gb+m4= -----END CERTIFICATE-----Generated at Wed Feb 5 10:54:59 2025 by rpki-client