$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/eba43604-9a87-4a97-9c71-09a2c1a87b9a.roa File: eba43604-9a87-4a97-9c71-09a2c1a87b9a.roa (raw, json) Hash identifier: 3la8aWz4jid0Zu/gAaezzPOLj++57lZgMu2/mlD9frc= Subject key identifier: 09:EE:AA:E5:DF:8A:31:3B:07:B3:7F:B0:EC:D8:B8:CD:F0:BC:10:23 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5AE848DDB64866E3D90FA3B7250B09C5AA819173 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/eba43604-9a87-4a97-9c71-09a2c1a87b9a.roa Signing time: Fri 07 Feb 2025 00:00:00 +0000 ROA not before: Fri 07 Feb 2025 00:00:00 +0000 ROA not after: Fri 14 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.93.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:e8:48:dd:b6:48:66:e3:d9:0f:a3:b7:25:0b:09:c5:aa:81:91:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 7 00:00:00 2025 GMT Not After : Mar 14 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:11:cb:68:83:3c:7f:c1:cd:fb:9a:80:db:b1: f7:a0:63:3a:0c:53:1e:b8:3f:7e:d6:10:9d:eb:74: 51:c6:10:70:79:9d:de:6a:b0:76:ff:d4:9b:b9:82: 69:79:60:f7:d2:97:5c:3f:04:02:34:ef:63:1b:f1: b8:15:45:a9:04:00:46:f2:1e:87:e3:96:01:18:c5: 29:f0:85:c9:26:d3:3e:ec:82:06:75:48:9f:a9:1f: 75:ca:de:18:67:9c:6d:ed:b2:43:d5:54:4c:c1:04: b0:94:76:e3:4f:e9:5c:11:68:62:8b:7b:2b:16:ce: bd:93:c2:89:0a:5e:30:96:a3:ae:23:7f:a7:c9:81: ca:b4:e8:8d:a9:fe:18:ec:05:2f:03:99:59:9f:6b: 35:f4:c7:ca:ed:3e:eb:6b:ee:c1:9c:f7:e0:5d:07: da:37:93:2b:7f:eb:69:07:14:a4:c7:ec:d0:ad:97: 35:9c:ae:67:05:93:83:79:42:34:ba:20:58:19:9e: c1:fe:3d:ab:b7:84:c8:2d:e5:12:5e:ae:8a:05:53: 77:11:d1:49:a9:9c:fe:66:ef:16:54:b4:45:87:c6: d9:57:6c:fb:89:b5:69:44:c0:a0:ce:09:79:63:db: 31:53:70:31:43:e4:43:d2:9f:48:7a:47:b3:90:49: d4:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:EE:AA:E5:DF:8A:31:3B:07:B3:7F:B0:EC:D8:B8:CD:F0:BC:10:23 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/eba43604-9a87-4a97-9c71-09a2c1a87b9a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.93.64.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:93:89:ca:31:5f:82:4c:14:9f:e1:da:62:84:06:7d:70:71: 8c:ff:56:a4:ae:34:71:32:3b:ca:21:c6:4b:37:b4:7c:cb:c1: f7:1a:82:61:4a:55:07:ff:26:49:c8:d4:15:3e:e7:b4:3a:73: cb:34:90:95:08:3c:78:7f:41:23:53:4c:18:d7:4a:3e:5d:8f: 78:4c:23:e4:84:3b:2b:22:5c:a7:49:76:5a:64:25:d0:a8:e6: 40:10:b6:67:51:1a:e2:c3:cb:93:d2:44:64:e9:53:17:15:82: 02:08:0d:32:09:6e:fe:ed:c6:43:36:26:a6:23:6c:0c:46:1f: 3a:76:42:4b:9c:22:18:4e:2e:a7:4a:69:54:91:10:9e:8a:a0: 20:0f:9d:6c:c9:4f:ab:e8:96:92:20:08:65:16:9e:05:d5:0c: 95:b4:f6:1b:ad:fc:2e:08:53:60:b2:2e:3e:79:5b:56:e5:1e: f5:07:ea:aa:8b:a9:7d:9d:45:6b:df:4a:35:d1:66:50:1e:38: 2e:8e:0a:fe:8d:f2:d0:70:a7:aa:a2:05:fa:a6:f4:a2:20:6d: cb:40:2e:d0:46:38:23:ee:2b:58:0a:e6:bd:36:45:0c:82:ad: 83:ad:63:89:b4:9f:73:7f:65:6a:3e:13:c3:99:6b:16:e9:e2: 2a:64:1b:81 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWuhI3bZIZuPZD6O3JQsJxaqBkXMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMjA3MDAwMDAwWhcNMjUwMzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2Yzg2YmE5MWIzMTA3N2Y4NzlmMTI0MTI5YjI4MjVkY2Qw NmU2Zjc3NDNhM2IwNDU3MWVhYWQ0ZTRmOTQyYmMwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChEctogzx/wc37moDbsfegYzoMUx64P37WEJ3rdFHGEHB5 nd5qsHb/1Ju5gml5YPfSl1w/BAI072Mb8bgVRakEAEbyHofjlgEYxSnwhckm0z7s ggZ1SJ+pH3XK3hhnnG3tskPVVEzBBLCUduNP6VwRaGKLeysWzr2TwokKXjCWo64j f6fJgcq06I2p/hjsBS8DmVmfazX0x8rtPutr7sGc9+BdB9o3kyt/62kHFKTH7NCt lzWcrmcFk4N5QjS6IFgZnsH+Pau3hMgt5RJerooFU3cR0UmpnP5m7xZUtEWHxtlX bPuJtWlEwKDOCXlj2zFTcDFD5EPSn0h6R7OQSdRHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCe6q5d+KMTsHs3+w7Ni4zfC8ECMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2ViYTQzNjA0LTlhODctNGE5Ny05YzcxLTA5YTJjMWE4N2I5YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0XUAwDQYJKoZIhvcNAQELBQADggEBAG2TicoxX4JMFJ/h2mKEBn1wcYz/ VqSuNHEyO8ohxks3tHzLwfcagmFKVQf/JknI1BU+57Q6c8s0kJUIPHh/QSNTTBjX Sj5dj3hMI+SEOysiXKdJdlpkJdCo5kAQtmdRGuLDy5PSRGTpUxcVggIIDTIJbv7t xkM2JqYjbAxGHzp2QkucIhhOLqdKaVSREJ6KoCAPnWzJT6volpIgCGUWngXVDJW0 9hut/C4IU2CyLj55W1blHvUH6qqLqX2dRWvfSjXRZlAeOC6OCv6N8tBwp6qiBfqm 9KIgbctALtBGOCPuK1gK5r02RQyCrYOtY4m0n3N/ZWo+E8OZaxbp4ipkG4E= -----END CERTIFICATE-----Generated at Sun Feb 16 15:37:30 2025 by rpki-client