$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07362990-fdea-4902-8ba4-3d2db0e1c1a4.roa File: 07362990-fdea-4902-8ba4-3d2db0e1c1a4.roa (raw, json) Hash identifier: tEP6/nMi1s1kQlaD+AdnpbGgWKNY2C+gp+nqKCsHgfs= Subject key identifier: 22:CC:6B:4B:14:84:DA:DA:86:3D:EA:63:40:EA:95:6E:8B:EE:A2:AD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 564500F12724E4E5109C5A37EBE98E6E2C3CAE4B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07362990-fdea-4902-8ba4-3d2db0e1c1a4.roa Signing time: Sat 08 Feb 2025 00:00:00 +0000 ROA not before: Sat 08 Feb 2025 00:00:00 +0000 ROA not after: Sat 15 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.208.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:45:00:f1:27:24:e4:e5:10:9c:5a:37:eb:e9:8e:6e:2c:3c:ae:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 8 00:00:00 2025 GMT Not After : Mar 15 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:02:ae:f4:bd:84:61:40:39:1f:a9:b1:fb:af: ca:59:be:aa:b2:1f:68:92:01:e6:0a:7b:f6:ca:3a: 7c:62:de:86:ad:b8:b0:c4:da:fe:4f:1f:76:c1:77: 21:f3:71:e1:2c:6b:0f:41:5e:62:79:31:f2:5d:12: 02:4b:8d:cd:f6:73:33:19:fb:ec:81:f7:da:6b:de: 63:49:f7:c1:2b:1b:2b:73:c2:77:4a:d3:32:a5:96: 82:52:c4:7b:fa:b1:83:5d:2c:38:37:63:e6:48:4d: ca:46:90:2d:19:36:21:14:f1:dd:2b:f2:54:09:8d: 8c:2e:7c:29:ba:a5:be:79:d9:24:52:68:1b:17:9d: 98:cf:31:6d:bd:19:15:a9:b4:ec:29:da:fd:d0:9f: 23:2b:78:54:c4:05:fe:67:4c:06:f3:ac:7e:f9:fc: 95:45:dc:fa:6d:1f:b8:8f:d5:8c:a9:7a:0f:f3:1c: 33:b8:11:98:c5:a8:91:5c:94:46:cc:85:f7:e3:b4: 7c:37:4a:a5:84:e8:aa:60:63:22:76:2c:e9:57:d8: 2e:e7:a7:e2:16:fc:e4:3c:aa:e2:22:52:03:33:7d: c8:dc:be:4c:89:79:d4:30:9e:25:58:b0:bb:1e:a5: 10:d2:29:e3:0a:d5:12:14:0d:a7:f8:de:98:d7:cb: 5d:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:CC:6B:4B:14:84:DA:DA:86:3D:EA:63:40:EA:95:6E:8B:EE:A2:AD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07362990-fdea-4902-8ba4-3d2db0e1c1a4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.208.0.0/16 Signature Algorithm: sha256WithRSAEncryption a6:ad:c3:24:7f:2c:ec:cf:fa:56:5f:4c:8f:53:6e:7e:92:5a: ea:80:68:d8:cd:db:74:4a:46:e4:0f:bf:fe:a0:9c:40:0a:d4: 0a:23:28:9e:30:b3:ff:7d:8e:e9:c5:89:ec:fa:e9:cc:d9:fe: a7:e9:3f:58:03:46:7a:16:9a:7a:37:a8:1a:5f:7f:9d:d0:9b: 5d:21:0b:ed:fa:1c:da:c7:bc:40:6f:3f:86:d3:24:24:74:7e: ca:c1:5e:cc:f2:b1:1a:96:b1:dc:f3:ee:d8:54:a3:62:e4:93: 8d:80:00:ca:5f:e8:98:29:0d:1b:ae:66:61:29:83:21:f2:6a: 08:f6:a4:cc:33:b8:9e:e0:56:bd:c3:b5:18:08:eb:3c:ee:51: eb:2a:85:5d:1e:c1:9b:ac:dd:2e:6e:5a:4d:77:4f:72:ae:d5: ca:40:d3:43:34:3e:b5:4f:63:1c:3a:80:3d:5c:76:55:6e:5c: 6a:97:dc:9e:67:b3:ea:3f:c2:f8:fc:a2:6d:c4:5e:72:9c:03: 82:ca:c8:1b:86:6e:01:88:08:9d:3f:18:63:73:8e:fa:00:da: a2:1d:a4:26:b1:e6:bc:d8:8e:3c:f7:51:dd:a4:26:43:39:dd: 0b:37:ee:ff:9b:ce:77:0e:2f:3a:e3:21:0f:2d:15:80:9f:b0: 49:74:db:21 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUVkUA8Sck5OUQnFo36+mObiw8rkswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjA4MDAwMDAwWhcNMjUwMzE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMmM2ZjI2MDhjZDEyMDdkYjU5Y2U4M2IzNDUwNTRhMGFh NGZiNGQ4YTA0YjBiZmE2MjE1YThkYWJlZjc5YWZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClAq70vYRhQDkfqbH7r8pZvqqyH2iSAeYKe/bKOnxi3oat uLDE2v5PH3bBdyHzceEsaw9BXmJ5MfJdEgJLjc32czMZ++yB99pr3mNJ98ErGytz wndK0zKlloJSxHv6sYNdLDg3Y+ZITcpGkC0ZNiEU8d0r8lQJjYwufCm6pb552SRS aBsXnZjPMW29GRWptOwp2v3QnyMreFTEBf5nTAbzrH75/JVF3PptH7iP1Yypeg/z HDO4EZjFqJFclEbMhffjtHw3SqWE6KpgYyJ2LOlX2C7np+IW/OQ8quIiUgMzfcjc vkyJedQwniVYsLsepRDSKeMK1RIUDaf43pjXy13/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUIsxrSxSE2tqGPepjQOqVbovuoq0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA3MzYyOTkwLWZkZWEtNDkwMi04YmE0LTNkMmRiMGUxYzFhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA40DANBgkqhkiG9w0BAQsFAAOCAQEApq3DJH8s7M/6Vl9Mj1NufpJa6oBo 2M3bdEpG5A+//qCcQArUCiMonjCz/32O6cWJ7PrpzNn+p+k/WANGehaaejeoGl9/ ndCbXSEL7foc2se8QG8/htMkJHR+ysFezPKxGpax3PPu2FSjYuSTjYAAyl/omCkN G65mYSmDIfJqCPakzDO4nuBWvcO1GAjrPO5R6yqFXR7Bm6zdLm5aTXdPcq7VykDT QzQ+tU9jHDqAPVx2VW5capfcnmez6j/C+PyibcRecpwDgsrIG4ZuAYgInT8YY3OO +gDaoh2kJrHmvNiOPPdR3aQmQzndCzfu/5vOdw4vOuMhDy0VgJ+wSXTbIQ== -----END CERTIFICATE-----Generated at Sun Feb 16 15:10:51 2025 by rpki-client