$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/04ee03b7-12a6-41a9-a0ce-ab7e197d0ac3.roa File: 04ee03b7-12a6-41a9-a0ce-ab7e197d0ac3.roa (raw, json) Hash identifier: PcSu2iqP7xmHSZGMqd3rjpD3v9P2PXq3NYF9DNjjtec= Subject key identifier: 54:11:28:7E:28:C9:38:82:B3:50:24:FD:D6:53:B6:53:EB:83:E4:90 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 790E89BBEBAE7771C9E77699A80105351D6AB622 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/04ee03b7-12a6-41a9-a0ce-ab7e197d0ac3.roa Signing time: Tue 21 Jan 2025 00:00:00 +0000 ROA not before: Tue 21 Jan 2025 00:00:00 +0000 ROA not after: Tue 25 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 209.54.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:0e:89:bb:eb:ae:77:71:c9:e7:76:99:a8:01:05:35:1d:6a:b6:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 21 00:00:00 2025 GMT Not After : Feb 25 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9b:f7:4c:f3:d0:e9:7c:3b:3f:77:b1:f2:f2: f2:4f:86:49:4c:50:18:db:04:3c:46:40:5f:76:c6: 11:47:4c:89:d1:56:49:09:2e:00:9b:51:d4:51:45: 21:df:36:a3:87:47:90:e6:8c:99:a1:9f:75:27:75: 1c:e5:a9:c4:2a:b9:e3:74:cb:43:69:d2:b6:ab:75: ec:63:f5:90:b0:5e:11:50:ec:52:a7:6a:63:d1:c0: af:ae:b5:62:86:e0:4d:a1:cb:1f:56:d0:93:dc:8e: c4:75:8d:e3:c9:a8:84:57:6c:45:65:9b:58:5b:6d: bb:cf:e8:85:08:fb:da:10:58:ba:d7:d3:04:83:f3: 2e:68:07:bb:7c:61:6b:01:fe:0e:b2:9d:55:8c:ba: b5:7c:78:6a:86:90:54:2e:26:ce:4e:e4:0b:ae:1c: b7:ce:ee:42:bf:dc:24:cf:ed:20:c1:cf:d0:66:7d: 4e:27:7b:e2:8a:4e:31:0d:d7:6e:9d:03:42:67:9d: c5:fb:3f:c4:0a:44:9d:15:27:e6:88:a4:f6:58:ec: 43:6e:cc:a7:c6:57:df:de:2b:dc:d1:e1:c1:af:6d: aa:a0:4a:2a:9e:fb:b1:f0:9a:4e:5f:e8:62:8a:86: 1c:cc:be:75:78:6a:30:b4:8c:c6:59:b3:c4:a2:11: 1f:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:11:28:7E:28:C9:38:82:B3:50:24:FD:D6:53:B6:53:EB:83:E4:90 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/04ee03b7-12a6-41a9-a0ce-ab7e197d0ac3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.54.160.0/19 Signature Algorithm: sha256WithRSAEncryption 23:e5:5f:55:41:07:ed:d9:b5:d9:bc:58:7e:73:1c:f6:e6:5f: 5d:ae:57:47:7a:cd:f1:d6:3d:ae:69:83:4a:d5:3b:2a:72:5d: 25:90:64:44:fb:b0:cf:0f:d2:98:68:6d:27:16:83:ad:98:d3: 3e:99:0f:84:4a:47:f6:44:03:ae:ad:26:b3:99:3d:10:31:71: 57:b0:3f:01:53:2d:37:5b:6a:84:55:5f:6f:d6:9c:2f:a2:0b: 60:9d:c3:55:d3:75:9c:db:3a:a6:f4:61:bd:ea:fa:41:1c:7c: c1:fd:c6:66:b5:5c:28:5e:bc:71:1e:42:16:71:fe:1b:fa:f8: 63:a1:81:df:f1:52:ee:f5:30:33:02:ec:31:a8:d9:63:c2:59: 7e:b2:d2:af:dc:9a:50:a1:0e:bd:9f:b4:9a:d7:ab:a7:0b:8b: 1d:94:e1:9d:76:79:39:3e:17:4f:a8:cc:1c:50:3d:07:d3:57: 44:09:0a:c0:85:1f:7c:f9:5c:ce:e1:36:99:08:22:2f:ea:76: a3:ce:fc:53:9b:93:87:e9:d2:d3:78:36:e7:39:45:8a:0a:b1: 36:58:4b:a7:60:12:b0:d3:6e:39:43:1b:59:9b:9c:51:28:5b: b2:b5:b1:12:08:84:97:e5:87:ea:b7:e8:30:5e:af:4d:7f:65: 1a:4a:fb:39 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeQ6Ju+uud3HJ53aZqAEFNR1qtiIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTIxMDAwMDAwWhcNMjUwMjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMjQ1MzAwMWRlYmRmNzFkN2Q5MWQ2MDI5NzY5NWI4M2Nh YzgxNzgyMTZjYTAzYjk2OWRhNjAwOWUwMWYyNzQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/m/dM89DpfDs/d7Hy8vJPhklMUBjbBDxGQF92xhFHTInR VkkJLgCbUdRRRSHfNqOHR5DmjJmhn3UndRzlqcQqueN0y0Np0rardexj9ZCwXhFQ 7FKnamPRwK+utWKG4E2hyx9W0JPcjsR1jePJqIRXbEVlm1hbbbvP6IUI+9oQWLrX 0wSD8y5oB7t8YWsB/g6ynVWMurV8eGqGkFQuJs5O5AuuHLfO7kK/3CTP7SDBz9Bm fU4ne+KKTjEN126dA0JnncX7P8QKRJ0VJ+aIpPZY7ENuzKfGV9/eK9zR4cGvbaqg Siqe+7Hwmk5f6GKKhhzMvnV4ajC0jMZZs8SiER8ZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVBEofijJOIKzUCT91lO2U+uD5JAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA0ZWUwM2I3LTEyYTYtNDFhOS1hMGNlLWFiN2UxOTdkMGFjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXRNqAwDQYJKoZIhvcNAQELBQADggEBACPlX1VBB+3Ztdm8WH5zHPbmX12u V0d6zfHWPa5pg0rVOypyXSWQZET7sM8P0phobScWg62Y0z6ZD4RKR/ZEA66tJrOZ PRAxcVewPwFTLTdbaoRVX2/WnC+iC2Cdw1XTdZzbOqb0Yb3q+kEcfMH9xma1XChe vHEeQhZx/hv6+GOhgd/xUu71MDMC7DGo2WPCWX6y0q/cmlChDr2ftJrXq6cLix2U 4Z12eTk+F0+ozBxQPQfTV0QJCsCFH3z5XM7hNpkIIi/qdqPO/FObk4fp0tN4Nuc5 RYoKsTZYS6dgErDTbjlDG1mbnFEoW7K1sRIIhJflh+q36DBer01/ZRpK+zk= -----END CERTIFICATE-----Generated at Sun Feb 16 15:18:22 2025 by rpki-client