$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fdecee65-c952-4f49-9973-5248d6a502de.roa File: fdecee65-c952-4f49-9973-5248d6a502de.roa (raw, json) Hash identifier: zUA/46VsrJzjWSukAKC68t3tDdQKhMhw5NP6NBhThDE= Subject key identifier: 0F:AB:99:6B:BC:8D:74:CC:DE:B3:C2:1F:92:61:60:D9:A7:AA:C6:55 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 01044240CBEB7D7FE22CCC9D0348D3E5D5DF228D Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fdecee65-c952-4f49-9973-5248d6a502de.roa Signing time: Sat 08 Feb 2025 00:00:00 +0000 ROA not before: Sat 08 Feb 2025 00:00:00 +0000 ROA not after: Sat 15 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.141.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:04:42:40:cb:eb:7d:7f:e2:2c:cc:9d:03:48:d3:e5:d5:df:22:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 8 00:00:00 2025 GMT Not After : Mar 15 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b5:d9:ad:be:98:c6:2c:7f:6b:26:c4:ee:7f: 89:c0:24:c1:c0:58:38:f9:e3:aa:20:2b:d2:c2:80: 1f:f2:3e:7e:ac:13:8b:e8:6f:02:ce:cc:a4:a2:a8: 89:db:05:9a:ae:b8:14:8d:2a:c2:e0:b0:e4:d1:f9: 60:d0:69:7c:62:96:06:5e:9e:49:df:96:de:32:3b: 84:e0:c2:2d:f0:1c:5b:6c:f0:8e:d3:22:a2:96:3d: 2d:3d:0a:f8:22:c8:7c:05:21:57:85:94:ef:7e:65: e0:ef:f7:a7:62:98:ad:3f:17:b9:c5:2e:47:44:85: f1:37:1e:a3:95:11:f0:ff:37:81:ff:e5:f8:8a:64: 58:88:69:86:97:13:03:c4:fd:11:79:ea:14:c8:b1: cf:ff:9f:93:de:41:62:37:73:b3:07:30:fa:1d:c8: 6a:35:b5:57:a1:e7:95:c5:e9:e6:0b:0e:0d:97:9e: 8e:18:4c:18:03:1e:d1:81:10:f6:4b:d2:27:57:a7: 8d:c0:d5:c8:c2:26:68:4b:ca:5c:a1:3f:32:a0:af: d3:c4:f7:56:5a:7e:95:60:c5:07:34:b8:c4:16:ad: 89:ff:d3:8c:18:d9:68:d2:36:6e:cd:ba:7f:91:3c: b4:97:19:cb:24:4a:d2:b3:c3:71:cf:35:54:c5:f8: f1:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:AB:99:6B:BC:8D:74:CC:DE:B3:C2:1F:92:61:60:D9:A7:AA:C6:55 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fdecee65-c952-4f49-9973-5248d6a502de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.141.0.0/16 Signature Algorithm: sha256WithRSAEncryption 89:1f:5e:bc:97:37:43:23:6a:b4:07:70:d2:10:57:21:f8:63: ca:87:b8:38:6d:e7:19:2f:1f:e0:f6:1a:11:82:d0:8c:f1:91: d2:1a:39:9b:27:c0:44:1c:2f:bf:d1:60:67:1f:1e:f0:2c:09: 5e:31:80:a9:87:96:db:c7:e8:47:57:4b:e2:21:67:b5:f4:1c: 72:ba:df:da:ec:a6:d7:a5:54:09:17:5f:8b:0f:4c:86:1d:9a: 8e:c5:16:9a:8f:d0:34:f4:32:1b:8e:f9:64:ba:fc:a3:9b:6e: 8f:ad:63:bd:fb:0f:16:a2:0e:f7:2e:b2:50:55:98:1f:e6:78: a2:3c:88:93:24:17:26:07:d0:ea:84:ad:10:4e:b8:36:5e:05: f4:93:f2:01:d2:26:1b:50:a5:84:97:8a:ba:2b:61:88:8c:9f: c9:0e:e5:69:3e:06:45:ae:2c:05:e6:8c:8b:d3:65:6c:f3:62: d4:21:e8:42:11:d0:e1:b4:f0:a0:cf:88:29:e0:79:2c:19:da: a6:36:89:80:1f:2d:c7:78:af:a5:bd:11:f2:35:e1:91:82:aa: 8e:93:57:19:df:b6:8f:3c:cd:4a:7a:44:f9:cf:89:50:36:60: fe:b4:72:f1:83:35:05:28:b4:7b:da:c1:7d:ae:ec:12:6b:d5: de:c7:2a:95 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAQRCQMvrfX/iLMydA0jT5dXfIo0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMjA4MDAwMDAwWhcNMjUwMzE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxOTgzNWM4M2U2MWU3YWFhMzlkMDEzN2VjMjUxMzg0ODY0 M2E0M2I3NzIzMGQ4MDJmMDViODc0ZDk1M2IyODAyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8tdmtvpjGLH9rJsTuf4nAJMHAWDj546ogK9LCgB/yPn6s E4vobwLOzKSiqInbBZquuBSNKsLgsOTR+WDQaXxilgZenknflt4yO4Tgwi3wHFts 8I7TIqKWPS09CvgiyHwFIVeFlO9+ZeDv96dimK0/F7nFLkdEhfE3HqOVEfD/N4H/ 5fiKZFiIaYaXEwPE/RF56hTIsc//n5PeQWI3c7MHMPodyGo1tVeh55XF6eYLDg2X no4YTBgDHtGBEPZL0idXp43A1cjCJmhLylyhPzKgr9PE91ZafpVgxQc0uMQWrYn/ 04wY2WjSNm7Nun+RPLSXGcskStKzw3HPNVTF+PGvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUD6uZa7yNdMzes8IfkmFg2aeqxlUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2ZkZWNlZTY1LWM5NTItNGY0OS05OTczLTUyNDhkNmE1MDJkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAPjTANBgkqhkiG9w0BAQsFAAOCAQEAiR9evJc3QyNqtAdw0hBXIfhjyoe4 OG3nGS8f4PYaEYLQjPGR0ho5myfARBwvv9FgZx8e8CwJXjGAqYeW28foR1dL4iFn tfQccrrf2uym16VUCRdfiw9Mhh2ajsUWmo/QNPQyG475ZLr8o5tuj61jvfsPFqIO 9y6yUFWYH+Z4ojyIkyQXJgfQ6oStEE64Nl4F9JPyAdImG1ClhJeKuithiIyfyQ7l aT4GRa4sBeaMi9NlbPNi1CHoQhHQ4bTwoM+IKeB5LBnapjaJgB8tx3ivpb0R8jXh kYKqjpNXGd+2jzzNSnpE+c+JUDZg/rRy8YM1BSi0e9rBfa7sEmvV3scqlQ== -----END CERTIFICATE-----Generated at Sun Feb 16 15:37:35 2025 by rpki-client