$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/047471e9-5147-4aae-82fa-97d22965384b.roa File: 047471e9-5147-4aae-82fa-97d22965384b.roa (raw, json) Hash identifier: SoguhogG9wp07o+GFZt+MKlEeBjGIc28Z7Oopd7v5ZE= Subject key identifier: 75:C5:D3:F5:CB:9A:41:02:F2:19:C9:73:AB:6E:65:D0:0A:99:56:C4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 08A688B12332E6CF81297917DC25698B89D1D87D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/047471e9-5147-4aae-82fa-97d22965384b.roa Signing time: Mon 10 Feb 2025 00:00:00 +0000 ROA not before: Mon 10 Feb 2025 00:00:00 +0000 ROA not after: Mon 17 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 161.46.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:a6:88:b1:23:32:e6:cf:81:29:79:17:dc:25:69:8b:89:d1:d8:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 10 00:00:00 2025 GMT Not After : Mar 17 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:35:22:d0:94:6f:31:77:36:db:31:b1:ff:eb: 0f:95:40:19:8e:9d:04:77:0d:0e:d2:b3:bd:e9:25: 76:5b:92:4c:22:c6:af:40:a1:24:2e:e9:11:62:2e: 30:25:44:d8:17:63:1f:7b:80:74:1c:21:97:c2:ae: 7a:e7:3d:4e:cf:c4:1c:0c:22:16:bc:3d:72:4b:ef: d0:ae:3c:7b:37:e8:b3:87:21:cb:33:50:45:5e:c4: 80:de:97:35:ae:c7:65:0a:d1:24:fc:34:c5:b0:82: cd:ef:8f:25:ca:16:f1:ab:64:3e:d9:5b:8f:6a:6c: b1:e1:27:fc:b2:3d:68:92:12:ac:6b:5a:06:b3:a6: 05:45:82:07:f4:82:37:d7:d5:4a:6c:3e:ad:c5:fe: 31:26:18:cd:c0:c6:27:7f:4a:24:52:ef:a2:80:bc: 7b:4e:11:63:ee:d5:b2:cd:7f:df:b1:ca:24:83:9b: c8:a7:f5:e0:46:90:57:6c:98:d7:f8:e9:eb:ed:60: 54:08:56:ff:b1:df:f8:87:7f:d3:64:be:fb:0f:75: 77:5d:b5:8e:ca:c8:83:02:29:a2:58:5e:ed:0c:da: 8f:6b:de:10:41:03:42:ab:d0:f6:0f:45:82:63:db: 4b:1e:50:ec:05:e1:90:1a:a1:34:b5:43:17:9f:ce: e8:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:C5:D3:F5:CB:9A:41:02:F2:19:C9:73:AB:6E:65:D0:0A:99:56:C4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/047471e9-5147-4aae-82fa-97d22965384b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.46.0.0/16 Signature Algorithm: sha256WithRSAEncryption cb:9d:df:e6:22:6f:a1:c6:01:c9:b7:64:3e:1c:15:84:19:b3: 4d:bd:c3:3e:be:3f:00:41:ef:16:b7:07:6b:86:16:d0:0e:ef: 5f:00:7a:ae:ac:8d:84:04:d6:17:47:ee:63:3d:01:b8:58:8b: d5:4a:49:54:c4:16:0a:90:89:9f:d4:15:6c:6f:8e:84:96:38: bf:c6:3b:db:aa:27:3f:0e:3d:2f:82:06:f5:f5:63:14:16:be: fa:41:68:11:c6:c3:54:e6:72:a1:61:8c:58:49:2d:e0:4c:c2: d6:17:3e:97:42:d4:1a:37:6f:70:74:92:ae:2c:31:1c:05:a5: ac:5e:13:74:1a:4b:d9:89:3b:6b:c8:24:94:ad:1e:11:62:6a: d7:59:19:de:c6:0c:a0:7f:61:83:4a:76:43:33:3b:4b:ba:18: 28:86:72:f9:55:08:24:d5:12:9b:23:57:32:aa:21:6c:93:a4: ee:9e:2f:57:89:9f:c0:d3:fe:98:b5:e1:25:a0:54:c3:82:6f: 1c:71:32:93:4e:f9:38:ec:f0:a9:37:40:2b:b7:4f:27:66:3c: 9c:bb:88:0c:67:89:57:33:7f:c1:76:b0:de:ee:7f:33:56:de: 5b:7e:a5:0d:76:dc:78:b8:97:f5:1b:c1:80:23:76:58:dc:2c: ea:5d:e3:d6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCKaIsSMy5s+BKXkX3CVpi4nR2H0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjEwMDAwMDAwWhcNMjUwMzE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZDFlZTRkYTgyMDNkMGNhMTMxY2M3M2UwOTJiN2QyNzcz OGVlMzYyYmQzZGUyOTA4Njk2MjEzYzMyNmFjYjAzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnNSLQlG8xdzbbMbH/6w+VQBmOnQR3DQ7Ss73pJXZbkkwi xq9AoSQu6RFiLjAlRNgXYx97gHQcIZfCrnrnPU7PxBwMIha8PXJL79CuPHs36LOH IcszUEVexIDelzWux2UK0ST8NMWwgs3vjyXKFvGrZD7ZW49qbLHhJ/yyPWiSEqxr WgazpgVFggf0gjfX1UpsPq3F/jEmGM3Axid/SiRS76KAvHtOEWPu1bLNf9+xyiSD m8in9eBGkFdsmNf46evtYFQIVv+x3/iHf9NkvvsPdXddtY7KyIMCKaJYXu0M2o9r 3hBBA0Kr0PYPRYJj20seUOwF4ZAaoTS1QxefzuiFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUdcXT9cuaQQLyGclzq25l0AqZVsQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA0NzQ3MWU5LTUxNDctNGFhZS04MmZhLTk3ZDIyOTY1Mzg0Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwChLjANBgkqhkiG9w0BAQsFAAOCAQEAy53f5iJvocYBybdkPhwVhBmzTb3D Pr4/AEHvFrcHa4YW0A7vXwB6rqyNhATWF0fuYz0BuFiL1UpJVMQWCpCJn9QVbG+O hJY4v8Y726onPw49L4IG9fVjFBa++kFoEcbDVOZyoWGMWEkt4EzC1hc+l0LUGjdv cHSSriwxHAWlrF4TdBpL2Yk7a8gklK0eEWJq11kZ3sYMoH9hg0p2QzM7S7oYKIZy +VUIJNUSmyNXMqohbJOk7p4vV4mfwNP+mLXhJaBUw4JvHHEyk075OOzwqTdAK7dP J2Y8nLuIDGeJVzN/wXaw3u5/M1beW36lDXbceLiX9RvBgCN2WNws6l3j1g== -----END CERTIFICATE-----Generated at Sun Feb 16 15:49:01 2025 by rpki-client