$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f70bc190-28d3-4312-9add-43a86be21508.roa File: f70bc190-28d3-4312-9add-43a86be21508.roa (raw, json) Hash identifier: w+VyGDBoCbPQ2qjH7uqcTBHx8gNvXea31OVfRcKyRPA= Subject key identifier: 2F:B9:CB:37:B7:4F:12:D3:3F:E5:EA:19:E7:F5:6B:92:E8:01:42:97 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4C88B15D49EDD8B7D621E1E2E801071FC6688171 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f70bc190-28d3-4312-9add-43a86be21508.roa Signing time: Mon 27 Jan 2025 00:00:00 +0000 ROA not before: Mon 27 Jan 2025 00:00:00 +0000 ROA not after: Mon 03 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.179.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:88:b1:5d:49:ed:d8:b7:d6:21:e1:e2:e8:01:07:1f:c6:68:81:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 27 00:00:00 2025 GMT Not After : Mar 3 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:2e:0c:6b:e2:a4:2c:31:07:56:6d:52:ab:66: 33:64:dc:8f:67:c4:7c:ec:cd:cb:cd:13:50:ee:5b: a0:f9:76:3d:b0:63:e7:3b:b6:d0:c3:b7:83:c4:17: 96:bd:4d:68:8e:8a:f7:45:8a:93:2b:19:a5:7c:ad: b1:bf:61:e4:c1:9f:4c:c4:a8:65:f9:40:e9:f4:b7: 7a:72:2a:9f:9f:e2:1c:83:29:90:9d:b4:e1:c3:44: a0:ef:04:82:54:87:bc:80:2c:6a:bd:25:22:55:5e: 46:be:9f:df:72:6b:93:3d:94:46:9a:8c:e3:00:a9: 62:51:dd:8f:fd:7b:52:2f:06:0b:1c:5e:d1:4d:f2: 22:60:29:56:04:5c:8b:b1:bf:f1:58:68:33:59:af: ab:eb:7f:c4:0a:f2:2c:e6:e4:5f:bd:c3:ae:06:c0: 82:b1:68:f9:60:e0:80:cb:08:01:7c:41:6f:73:74: 9c:07:91:1a:6e:41:cc:7e:31:43:60:28:1c:aa:ee: 50:58:7f:b5:28:fb:3e:45:20:d1:ef:62:83:26:2a: 8e:0b:b6:42:83:07:f1:f5:74:5b:0c:4b:77:0f:b0: e6:1e:53:6e:10:ca:16:96:56:92:a5:4e:22:5b:4c: 42:47:5a:d0:cb:a4:20:73:1e:97:8d:ae:e7:6e:a3: fe:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:B9:CB:37:B7:4F:12:D3:3F:E5:EA:19:E7:F5:6B:92:E8:01:42:97 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f70bc190-28d3-4312-9add-43a86be21508.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.179.192.0/18 Signature Algorithm: sha256WithRSAEncryption 28:1d:39:e1:78:23:99:5f:4d:0e:27:ae:b5:dc:f7:16:4b:d1: d4:bd:01:5c:03:9c:de:4a:7a:c3:33:24:9c:09:88:f2:b3:54: 4d:ae:b0:61:54:35:fb:6a:36:6a:a8:ea:bf:c0:23:7d:e8:91: 43:e8:11:81:c3:f6:8f:7b:18:14:21:f5:12:46:29:40:4e:5d: f0:79:92:06:3d:e6:7d:d6:70:86:1f:4d:1f:eb:d4:10:f1:ed: 30:2f:12:30:68:94:76:9e:46:fa:b8:f2:a3:23:ff:6a:ca:0d: fd:d0:38:c9:b5:a6:a7:a0:57:7a:3a:f2:57:99:32:c6:09:b1: 05:cd:52:fe:6e:54:9d:be:17:1f:51:02:38:0d:c3:f2:51:12: fd:99:16:8d:4b:c2:e7:15:fc:cb:9f:8c:fb:1b:ff:a7:52:92: 77:a8:dd:15:ef:e8:92:14:50:48:4b:87:b2:5e:00:96:b1:59: 3e:f7:aa:08:7f:83:3a:9c:bf:06:03:ef:14:2d:28:02:72:ff: 31:e1:94:5c:34:54:ea:9b:a2:d1:6a:f9:fd:71:5d:81:38:e6: 15:ca:81:0e:79:ca:5e:96:fb:90:68:d0:00:55:3f:03:82:38: 80:e5:e0:56:93:92:3d:cd:eb:08:4e:5d:4c:1a:a5:9a:12:20: 8d:70:29:47 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTIixXUnt2LfWIeHi6AEHH8ZogXEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTI3MDAwMDAwWhcNMjUwMzAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxYzdlOTE3ZmM0ZmFiNjlkNzIxZWZlMzFlZmRlYzhjMWI1 NTlhNGY2Nzc4NTQ1NjUxNTgzMmZlYjQ1ZTdiYjZkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnLgxr4qQsMQdWbVKrZjNk3I9nxHzszcvNE1DuW6D5dj2w Y+c7ttDDt4PEF5a9TWiOivdFipMrGaV8rbG/YeTBn0zEqGX5QOn0t3pyKp+f4hyD KZCdtOHDRKDvBIJUh7yALGq9JSJVXka+n99ya5M9lEaajOMAqWJR3Y/9e1IvBgsc XtFN8iJgKVYEXIuxv/FYaDNZr6vrf8QK8izm5F+9w64GwIKxaPlg4IDLCAF8QW9z dJwHkRpuQcx+MUNgKByq7lBYf7Uo+z5FINHvYoMmKo4LtkKDB/H1dFsMS3cPsOYe U24QyhaWVpKlTiJbTEJHWtDLpCBzHpeNruduo/6rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUL7nLN7dPEtM/5eoZ5/VrkugBQpcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2Y3MGJjMTkwLTI4ZDMtNDMxMi05YWRkLTQzYTg2YmUyMTUwOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY2s8AwDQYJKoZIhvcNAQELBQADggEBACgdOeF4I5lfTQ4nrrXc9xZL0dS9 AVwDnN5KesMzJJwJiPKzVE2usGFUNftqNmqo6r/AI33okUPoEYHD9o97GBQh9RJG KUBOXfB5kgY95n3WcIYfTR/r1BDx7TAvEjBolHaeRvq48qMj/2rKDf3QOMm1pqeg V3o68leZMsYJsQXNUv5uVJ2+Fx9RAjgNw/JREv2ZFo1LwucV/MufjPsb/6dSkneo 3RXv6JIUUEhLh7JeAJaxWT73qgh/gzqcvwYD7xQtKAJy/zHhlFw0VOqbotFq+f1x XYE45hXKgQ55yl6W+5Bo0ABVPwOCOIDl4FaTkj3N6whOXUwapZoSII1wKUc= -----END CERTIFICATE-----Generated at Wed Feb 5 10:54:19 2025 by rpki-client