$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/00a5e67e-d81d-4547-b011-580d41cad494.roa File: 00a5e67e-d81d-4547-b011-580d41cad494.roa (raw, json) Hash identifier: oOjdl4XEZW0Vn6MqYEYZboSg9vHUHC5Xc3Sd1+6j4vo= Subject key identifier: 14:E5:C8:1B:BC:D5:CE:E2:95:8C:02:58:9E:C8:51:5A:3A:0A:63:23 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 56E8DFAC9DA5C10EC0D58C49CCFAD406B6BA7DB0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/00a5e67e-d81d-4547-b011-580d41cad494.roa Signing time: Fri 24 Jan 2025 00:00:00 +0000 ROA not before: Fri 24 Jan 2025 00:00:00 +0000 ROA not after: Fri 28 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:e8:df:ac:9d:a5:c1:0e:c0:d5:8c:49:cc:fa:d4:06:b6:ba:7d:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 24 00:00:00 2025 GMT Not After : Feb 28 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f7:e5:08:7d:61:a6:75:f2:0b:99:fc:aa:46: 58:0c:a3:21:a3:cc:96:63:7e:0d:55:6f:15:e7:ca: c2:fc:85:10:2c:7e:07:59:8e:22:3b:e5:54:c0:c8: dd:c0:61:44:50:53:2b:95:1a:ae:06:f4:95:00:c2: 81:f9:20:45:08:1e:30:76:bc:44:95:63:7c:7c:a8: 7b:89:12:0c:b8:8f:50:cb:14:fa:4e:dd:3c:ea:83: 06:bf:03:5b:71:20:87:27:0d:9d:9c:11:fd:a9:ec: 61:77:d9:48:38:9b:f6:de:c8:8d:c8:52:6b:a2:7a: 56:ba:81:ad:ec:95:63:ec:84:5e:13:39:7d:6b:23: 9d:f1:c3:79:6e:ee:5a:7f:95:c6:28:44:59:69:83: 9f:39:94:52:ff:1a:47:87:e4:72:27:e6:9a:d9:d5: c0:83:37:62:69:05:b9:c4:4c:d0:d3:a1:9b:02:47: df:fc:bd:fd:6d:cc:31:4a:b7:d8:72:f5:25:e0:64: 4f:06:70:a1:d2:b2:21:a8:51:1a:f1:5f:84:a8:13: 4d:fe:d7:c6:7e:64:2f:8d:14:da:e9:aa:e7:d3:b9: 5d:20:8e:0c:41:88:f2:fb:9e:98:41:43:27:57:f0: 00:09:58:7d:87:d4:66:b1:a9:3a:af:a8:d4:69:b2: ad:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:E5:C8:1B:BC:D5:CE:E2:95:8C:02:58:9E:C8:51:5A:3A:0A:63:23 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/00a5e67e-d81d-4547-b011-580d41cad494.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.243.0/24 Signature Algorithm: sha256WithRSAEncryption 04:bc:ae:75:96:2b:66:35:9c:97:2e:65:5d:48:f2:aa:27:50: 1a:9e:47:c7:ba:fe:4c:8b:8c:af:18:9f:3d:3d:2d:36:db:9d: 0f:54:48:a5:d1:94:7b:6d:c7:a2:c5:e8:85:e5:6e:cb:be:0b: c1:3e:14:0d:38:c2:e0:1d:c5:a4:1a:48:7a:0f:10:3a:f0:fd: a8:69:19:5a:b7:65:0e:d8:f8:79:15:2a:b8:dd:ad:da:1b:6c: a0:3e:07:6c:e9:c8:e4:5e:9f:b0:4f:46:b8:0f:39:ac:6b:88: eb:5e:ec:5d:64:52:bf:93:17:48:94:71:bc:a7:e0:2d:a9:66: 49:b5:d6:62:8d:ed:23:4c:50:8a:3e:7e:23:1a:a4:4c:8b:72: 08:a8:bb:cb:ba:56:0d:2c:12:4f:d7:2f:e6:b6:c4:bb:0e:c1: bf:e2:41:bb:a9:09:da:78:18:20:9c:96:63:40:5c:21:c8:fc: cf:7b:10:c2:42:da:84:2d:b3:24:25:77:ec:fe:fa:84:f9:ce: c6:90:30:61:0a:05:3a:f2:8e:6d:f4:5a:1e:fc:5b:69:dd:42: bd:52:ca:ae:7b:14:0e:56:cc:23:ac:a9:4e:dc:f4:29:b2:d4: 08:b2:86:df:c0:69:68:8d:9c:99:86:be:06:e7:fa:4b:df:e8: fc:cb:cd:57 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVujfrJ2lwQ7A1YxJzPrUBra6fbAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTI0MDAwMDAwWhcNMjUwMjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYWEwMWMxYTlkNTc4NDdlYTVhN2U4MzM3NGYyNzQ2M2M5 M2E1OTNlNjdmNjhlYmEzYTZkYzE5YWY3NTRhYzI1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDW9+UIfWGmdfILmfyqRlgMoyGjzJZjfg1VbxXnysL8hRAs fgdZjiI75VTAyN3AYURQUyuVGq4G9JUAwoH5IEUIHjB2vESVY3x8qHuJEgy4j1DL FPpO3Tzqgwa/A1txIIcnDZ2cEf2p7GF32Ug4m/beyI3IUmuiela6ga3slWPshF4T OX1rI53xw3lu7lp/lcYoRFlpg585lFL/GkeH5HIn5prZ1cCDN2JpBbnETNDToZsC R9/8vf1tzDFKt9hy9SXgZE8GcKHSsiGoURrxX4SoE03+18Z+ZC+NFNrpqufTuV0g jgxBiPL7nphBQydX8AAJWH2H1GaxqTqvqNRpsq35AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFOXIG7zVzuKVjAJYnshRWjoKYyMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAwYTVlNjdlLWQ4MWQtNDU0Ny1iMDExLTU4MGQ0MWNhZDQ5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTfMwDQYJKoZIhvcNAQELBQADggEBAAS8rnWWK2Y1nJcuZV1I8qonUBqe R8e6/kyLjK8Ynz09LTbbnQ9USKXRlHttx6LF6IXlbsu+C8E+FA04wuAdxaQaSHoP EDrw/ahpGVq3ZQ7Y+HkVKrjdrdobbKA+B2zpyORen7BPRrgPOaxriOte7F1kUr+T F0iUcbyn4C2pZkm11mKN7SNMUIo+fiMapEyLcgiou8u6Vg0sEk/XL+a2xLsOwb/i QbupCdp4GCCclmNAXCHI/M97EMJC2oQtsyQld+z++oT5zsaQMGEKBTryjm30Wh78 W2ndQr1Syq57FA5WzCOsqU7c9Cmy1Aiyht/AaWiNnJmGvgbn+kvf6PzLzVc= -----END CERTIFICATE-----Generated at Sun Feb 16 15:55:32 2025 by rpki-client