$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f72b4c11-8eee-41c0-a62c-55bfb065d457.roa File: f72b4c11-8eee-41c0-a62c-55bfb065d457.roa (raw, json) Hash identifier: T/xKbTSC8CBRRKjmFdwosMgt+tQtESp1WbVZNyeq8PY= Subject key identifier: 80:7D:3D:11:0C:7D:9E:6A:0B:EA:87:91:D2:46:47:97:E6:66:4E:1D Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4C42709B656335AC9C0463A405EF75177D75F048 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f72b4c11-8eee-41c0-a62c-55bfb065d457.roa Signing time: Fri 31 Jan 2025 00:00:00 +0000 ROA not before: Fri 31 Jan 2025 00:00:00 +0000 ROA not after: Fri 07 Mar 2025 23:59:59 +0000 asID: 7224 IP address blocks: 3.2.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:42:70:9b:65:63:35:ac:9c:04:63:a4:05:ef:75:17:7d:75:f0:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 31 00:00:00 2025 GMT Not After : Mar 7 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:9a:7e:5f:39:27:34:e4:1a:68:9e:91:ec:f9: c6:83:55:32:78:76:81:5d:f2:4a:fa:ea:9f:80:25: 6d:4f:a0:eb:fe:e2:ca:75:88:46:8b:07:c0:ee:9b: cf:9f:c2:be:fd:4c:27:7b:ed:21:53:ad:6e:88:f2: 3a:f1:1b:df:98:36:2d:07:99:f5:94:53:07:84:c6: 3c:53:a8:97:92:3c:f6:40:e3:b3:54:df:6c:f5:fc: c4:64:1d:56:47:53:af:5b:7b:a2:d5:9d:50:e4:ce: 51:dc:b5:e9:fb:0c:0b:d9:c7:f1:4b:19:fb:15:24: ca:58:0a:1e:29:4b:9c:6f:ee:05:9f:96:e5:26:60: 5a:6c:35:88:2f:7b:f8:e7:d4:fa:84:17:b5:87:6f: 3d:87:f9:c3:0a:9e:97:b4:8c:7d:b0:36:d4:49:cb: bc:23:05:ce:41:b6:9d:ac:4b:de:90:b4:59:f5:bd: 27:2e:a1:b8:b5:9f:7e:4d:80:3a:a7:7f:b9:ad:40: 4f:aa:2a:8b:75:0d:73:06:d9:9d:da:1f:f8:cd:49: 13:92:67:9a:5b:1c:af:69:06:08:31:6e:36:bc:a6: 45:c0:15:0c:50:60:da:8d:4a:94:07:bf:73:f8:dd: 76:c2:14:98:26:0f:e4:88:2e:ca:21:fc:9b:26:e5: 4d:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:7D:3D:11:0C:7D:9E:6A:0B:EA:87:91:D2:46:47:97:E6:66:4E:1D X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f72b4c11-8eee-41c0-a62c-55bfb065d457.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.2.26.0/24 Signature Algorithm: sha256WithRSAEncryption ae:a3:0f:bd:64:e9:1c:a9:fb:f0:3d:6f:b6:07:40:62:76:d3: bc:d6:e1:a8:68:31:bb:eb:5f:17:48:f1:e9:3d:ba:94:46:63: 20:e5:5b:75:f7:34:a5:63:8a:33:2b:c8:a6:58:3f:c8:33:52: 47:f9:48:22:04:99:b9:e1:4d:bd:46:b7:09:32:dc:06:02:6f: 11:79:ae:d7:ab:86:2e:86:41:a7:cd:94:48:fa:76:c4:63:fd: 3b:61:56:21:a7:57:d2:1f:97:4d:28:93:c9:1c:94:c3:5a:3b: 94:43:ca:76:12:ef:6e:30:0c:ca:0a:76:8f:29:6e:1a:74:a6: d1:44:0c:d5:2f:c2:df:54:c9:fb:7b:02:e7:1f:fc:e1:6f:1b: e4:29:56:0b:1d:78:c0:5a:7a:ad:4d:a2:43:ec:c7:7a:ef:5d: d5:88:83:d9:8b:50:c1:ec:bd:82:f6:12:b2:f9:e2:af:19:ae: 02:92:a6:83:57:8e:7a:b0:98:00:4b:b1:72:e5:16:b3:e5:32: a5:52:b0:aa:42:61:dc:5c:59:8d:67:12:ee:53:f0:c3:0e:fb: c7:69:5f:62:c7:ae:42:c8:6e:3d:b1:c4:6a:1e:af:7b:9b:d4: f3:9f:98:4a:de:74:75:5b:6b:67:09:e5:ee:77:b5:d2:12:73: 3b:30:d0:65 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTEJwm2VjNaycBGOkBe91F3118EgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTMxMDAwMDAwWhcNMjUwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNWVkNzliOTU2ZWJjOWU0MjFjMzM5MzhmZDVlNDk2YWI0 MDJiMDM4ZjI3NDM1NmJmOTExNTFiZGQ3ZDVmZDkxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJmn5fOSc05BponpHs+caDVTJ4doFd8kr66p+AJW1PoOv+ 4sp1iEaLB8Dum8+fwr79TCd77SFTrW6I8jrxG9+YNi0HmfWUUweExjxTqJeSPPZA 47NU32z1/MRkHVZHU69be6LVnVDkzlHcten7DAvZx/FLGfsVJMpYCh4pS5xv7gWf luUmYFpsNYgve/jn1PqEF7WHbz2H+cMKnpe0jH2wNtRJy7wjBc5Btp2sS96QtFn1 vScuobi1n35NgDqnf7mtQE+qKot1DXMG2Z3aH/jNSROSZ5pbHK9pBggxbja8pkXA FQxQYNqNSpQHv3P43XbCFJgmD+SILsoh/Jsm5U3TAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgH09EQx9nmoL6oeR0kZHl+ZmTh0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2Y3MmI0YzExLThlZWUtNDFjMC1hNjJjLTU1YmZiMDY1ZDQ1Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADAhowDQYJKoZIhvcNAQELBQADggEBAK6jD71k6Ryp+/A9b7YHQGJ207zW 4ahoMbvrXxdI8ek9upRGYyDlW3X3NKVjijMryKZYP8gzUkf5SCIEmbnhTb1Gtwky 3AYCbxF5rterhi6GQafNlEj6dsRj/TthViGnV9Ifl00ok8kclMNaO5RDynYS724w DMoKdo8pbhp0ptFEDNUvwt9Uyft7Aucf/OFvG+QpVgsdeMBaeq1NokPsx3rvXdWI g9mLUMHsvYL2ErL54q8ZrgKSpoNXjnqwmABLsXLlFrPlMqVSsKpCYdxcWY1nEu5T 8MMO+8dpX2LHrkLIbj2xxGoer3ub1POfmEredHVba2cJ5e53tdISczsw0GU= -----END CERTIFICATE-----Generated at Wed Feb 5 10:37:25 2025 by rpki-client