$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ec62a8b2-8a8a-4a64-bf41-4c1e5865792b.roa File: ec62a8b2-8a8a-4a64-bf41-4c1e5865792b.roa (raw, json) Hash identifier: MTEJoV82xx3iSdZ/HysdExUTQrFWKVvZZ3QHtpNIWE4= Subject key identifier: 8E:2F:FB:96:76:10:90:63:29:3A:91:90:79:87:E6:9F:E2:6D:92:62 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5902908DB39F68E28DA39461E2938F0D8E102EA6 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ec62a8b2-8a8a-4a64-bf41-4c1e5865792b.roa Signing time: Mon 27 Jan 2025 00:00:00 +0000 ROA not before: Mon 27 Jan 2025 00:00:00 +0000 ROA not after: Mon 03 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.64.0.0/12 maxlen: 12 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:02:90:8d:b3:9f:68:e2:8d:a3:94:61:e2:93:8f:0d:8e:10:2e:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 27 00:00:00 2025 GMT Not After : Mar 3 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c5:d6:5d:a9:0a:d4:dc:42:15:55:6e:93:16: fc:05:58:c6:7b:ed:90:79:0c:03:26:a9:c1:34:0d: 3b:9c:ef:75:ab:4d:4c:83:44:35:da:41:e5:67:e5: 11:dc:ac:b5:1a:a5:d7:34:10:42:63:c0:7d:a9:fb: 52:88:5d:ca:6e:6e:92:1c:33:16:63:42:b7:b1:57: c7:44:fc:e5:fa:f6:d8:05:bd:e5:2c:5b:12:a8:69: 75:1b:9b:3f:e5:1e:a2:93:68:ce:b9:a1:9a:8a:2a: 85:75:6d:31:81:d5:4d:32:33:e9:9e:2d:1c:b9:04: 67:03:c7:ca:55:d5:41:86:90:48:f5:3d:7f:28:92: a3:0e:a6:73:8e:41:94:0c:43:02:af:83:e9:68:2e: 0a:4f:30:0f:85:5e:d8:00:0a:42:5e:05:4c:25:40: 45:3f:2a:90:bd:e7:93:6a:b0:25:5b:a1:1b:26:44: 4d:d6:06:7b:70:d2:d9:01:ad:b8:35:0b:5f:a8:c4: fd:23:1d:eb:8e:0f:b1:c6:c6:5e:51:7b:f5:12:1a: 9e:d9:15:f6:af:2e:ba:ad:6c:ab:89:de:38:6b:14: 38:97:f4:77:91:0d:79:48:32:0f:60:f6:72:3d:49: c6:dc:88:88:12:d6:11:1c:df:3a:87:52:f5:e6:34: a3:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:2F:FB:96:76:10:90:63:29:3A:91:90:79:87:E6:9F:E2:6D:92:62 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ec62a8b2-8a8a-4a64-bf41-4c1e5865792b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.64.0.0/12 Signature Algorithm: sha256WithRSAEncryption 49:66:93:4f:53:bc:11:d2:5e:0c:d7:d2:ea:99:04:3a:41:f1: a2:7b:ce:07:e4:7f:87:39:16:c8:14:b4:9c:0d:c8:7a:15:e4: eb:99:78:93:70:fc:a2:4a:5e:47:1f:a9:93:ff:83:d0:03:0e: 63:a4:d6:77:69:32:60:b4:b1:71:47:e1:1d:b7:a7:b3:9f:28: da:c3:7f:30:af:93:6c:1c:a4:bf:bc:30:8c:e1:41:e9:35:4c: 38:11:df:5f:b7:6c:ec:b5:e3:9d:41:19:4b:b2:25:73:c1:20: 3e:99:c1:c0:09:45:fc:d2:00:df:90:05:02:58:91:06:4d:25: 60:d4:27:b7:bd:df:e6:21:26:af:9a:a4:78:c0:97:25:6e:55: d8:ca:32:31:34:ad:9c:ba:23:1b:20:4d:ce:d4:27:a1:66:a1: 45:e9:06:3e:be:3b:2a:bb:f9:bf:50:ac:b1:c7:25:db:ea:b1: a8:1b:92:bf:03:2f:35:d4:d2:61:d0:77:74:ef:98:53:d4:53: b5:48:7d:54:a7:04:46:4b:df:45:83:93:5b:eb:3c:10:08:6d: 86:39:ed:a0:b9:8c:b4:f2:56:2a:e4:df:e4:bf:4b:d5:e4:eb: 91:dc:71:a7:06:c7:35:6d:52:84:96:75:34:7b:0a:e5:d7:dd: 98:3a:42:d4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWQKQjbOfaOKNo5Rh4pOPDY4QLqYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTI3MDAwMDAwWhcNMjUwMzAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZDU3NmMwYzg5MmVjZDdiNWIwZjZmY2MwZjc1ODI3ZTM2 NTkzNTgyODhlODBmNGNmMmZjMzM2ZGZkN2YzMDJhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/xdZdqQrU3EIVVW6TFvwFWMZ77ZB5DAMmqcE0DTuc73Wr TUyDRDXaQeVn5RHcrLUapdc0EEJjwH2p+1KIXcpubpIcMxZjQrexV8dE/OX69tgF veUsWxKoaXUbmz/lHqKTaM65oZqKKoV1bTGB1U0yM+meLRy5BGcDx8pV1UGGkEj1 PX8okqMOpnOOQZQMQwKvg+loLgpPMA+FXtgACkJeBUwlQEU/KpC955NqsCVboRsm RE3WBntw0tkBrbg1C1+oxP0jHeuOD7HGxl5Re/USGp7ZFfavLrqtbKuJ3jhrFDiX 9HeRDXlIMg9g9nI9ScbciIgS1hEc3zqHUvXmNKPZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUji/7lnYQkGMpOpGQeYfmn+JtkmIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2VjNjJhOGIyLThhOGEtNGE2NC1iZjQxLTRjMWU1ODY1NzkyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwQDQDANBgkqhkiG9w0BAQsFAAOCAQEASWaTT1O8EdJeDNfS6pkEOkHxonvO B+R/hzkWyBS0nA3IehXk65l4k3D8okpeRx+pk/+D0AMOY6TWd2kyYLSxcUfhHben s58o2sN/MK+TbBykv7wwjOFB6TVMOBHfX7ds7LXjnUEZS7Ilc8EgPpnBwAlF/NIA 35AFAliRBk0lYNQnt73f5iEmr5qkeMCXJW5V2MoyMTStnLojGyBNztQnoWahRekG Pr47Krv5v1Cssccl2+qxqBuSvwMvNdTSYdB3dO+YU9RTtUh9VKcERkvfRYOTW+s8 EAhthjntoLmMtPJWKuTf5L9L1eTrkdxxpwbHNW1ShJZ1NHsK5dfdmDpC1A== -----END CERTIFICATE-----Generated at Wed Feb 5 10:57:28 2025 by rpki-client