$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07bcfc27-5525-4927-aa52-682006a49258.roa File: 07bcfc27-5525-4927-aa52-682006a49258.roa (raw, json) Hash identifier: mMQ/G6/rhTVGuWjsecjuisu0a4btfVcAwSujMNYaSWE= Subject key identifier: 16:C1:49:CE:82:18:99:8C:45:72:F5:8A:5A:0A:7A:89:3D:64:BB:C5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 53F1BB3138DF713115A042D1125200AA726E70DE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07bcfc27-5525-4927-aa52-682006a49258.roa Signing time: Mon 10 Feb 2025 00:00:00 +0000 ROA not before: Mon 10 Feb 2025 00:00:00 +0000 ROA not after: Mon 17 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.182.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:f1:bb:31:38:df:71:31:15:a0:42:d1:12:52:00:aa:72:6e:70:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 10 00:00:00 2025 GMT Not After : Mar 17 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d6:c0:59:b2:33:3c:c4:ce:32:a1:ad:75:69: aa:62:21:e7:3d:75:01:78:48:99:b9:09:ac:92:6e: 93:6d:77:50:56:fe:40:4e:82:8a:96:1d:c6:44:7d: 88:15:e5:a5:78:9c:f3:01:bf:f6:e2:34:21:a4:ed: a7:06:21:61:33:25:da:22:e2:0f:4f:71:40:bb:6c: 63:37:06:de:fa:dc:b9:c6:ef:c7:e1:1e:a9:b0:f6: d7:fd:be:a2:c2:bb:73:d2:a0:7e:eb:60:a6:b1:1b: b1:bd:bb:a9:7a:ce:f9:7e:84:65:cf:b5:35:76:44: 72:ae:72:0f:9f:13:62:c0:07:eb:99:bd:9a:47:4a: 7f:0c:96:fd:f4:5f:41:ab:44:13:fb:1f:fc:43:7b: 4e:a9:19:c3:34:05:27:62:53:c1:49:21:99:9b:b9: 32:7f:14:84:0e:b7:c5:81:dc:7a:94:34:d2:6d:bb: e1:80:0d:37:1b:f1:2c:61:78:e7:a1:16:42:aa:8b: d4:6b:ed:df:78:2e:f5:e5:36:80:9e:60:67:9a:62: a4:d9:e1:49:77:f2:8c:60:ad:4b:96:4b:c3:9a:c9: fd:96:a9:ba:da:9b:56:b7:9e:f2:15:b0:f0:90:1f: df:63:c4:12:d4:b2:80:ac:00:a5:84:55:b6:16:66: cd:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:C1:49:CE:82:18:99:8C:45:72:F5:8A:5A:0A:7A:89:3D:64:BB:C5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07bcfc27-5525-4927-aa52-682006a49258.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.182.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9d:1e:2d:a5:77:1c:de:b9:12:cb:f1:1b:4f:58:c4:79:46:da: 89:4d:85:83:38:36:45:36:42:76:d8:12:34:49:83:64:90:27: df:75:cd:2e:b3:28:b7:3d:fe:d9:e7:34:6e:df:78:97:59:78: 62:26:e1:1e:03:60:32:ca:96:9f:ce:84:b9:4a:45:e2:f6:f1: ab:15:c1:8c:9c:66:17:4c:b3:55:ef:b6:40:22:7d:8c:7f:0d: c0:86:41:de:5b:43:23:77:2a:1a:6c:7d:85:8f:cd:16:12:a5: 73:4a:8c:c7:94:67:70:f7:21:22:34:81:0c:3e:2a:be:a8:8e: 6b:9d:9e:eb:0d:72:ad:a2:31:7e:8e:49:a3:d4:0e:ff:4f:35: 70:21:57:e3:47:3f:3d:38:db:8c:7a:0d:a8:ff:6d:e8:cd:58: 73:c0:19:8b:ce:07:ca:ae:bf:f6:49:9e:d1:10:05:f3:df:6e: 34:1b:12:15:8f:f3:f3:83:9e:33:86:cf:ca:a7:53:dd:c9:45: ba:fd:f5:bb:cb:60:1e:f1:f4:07:c1:ba:0d:7f:d2:08:90:eb: fe:c1:29:51:19:63:88:41:67:e9:cf:e6:e9:b0:23:40:a1:a6: 2d:01:33:2c:12:73:f8:f0:ec:ef:ff:44:6e:aa:8d:e6:31:5e: 20:56:f9:0a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUU/G7MTjfcTEVoELRElIAqnJucN4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjEwMDAwMDAwWhcNMjUwMzE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMjUwNTBhMDMxNmM1NGJhMzU3Mzg0NDg4YTMwOWViZTVj NDIyNDg1YjE4NmVlM2VkYTM1MTVmYzFkYzFlMmNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC41sBZsjM8xM4yoa11aapiIec9dQF4SJm5CaySbpNtd1BW /kBOgoqWHcZEfYgV5aV4nPMBv/biNCGk7acGIWEzJdoi4g9PcUC7bGM3Bt763LnG 78fhHqmw9tf9vqLCu3PSoH7rYKaxG7G9u6l6zvl+hGXPtTV2RHKucg+fE2LAB+uZ vZpHSn8Mlv30X0GrRBP7H/xDe06pGcM0BSdiU8FJIZmbuTJ/FIQOt8WB3HqUNNJt u+GADTcb8SxheOehFkKqi9Rr7d94LvXlNoCeYGeaYqTZ4Ul38oxgrUuWS8Oayf2W qbram1a3nvIVsPCQH99jxBLUsoCsAKWEVbYWZs0BAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUFsFJzoIYmYxFcvWKWgp6iT1ku8UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA3YmNmYzI3LTU1MjUtNDkyNy1hYTUyLTY4MjAwNmE0OTI1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQtjANBgkqhkiG9w0BAQsFAAOCAQEAnR4tpXcc3rkSy/EbT1jEeUbaiU2F gzg2RTZCdtgSNEmDZJAn33XNLrMotz3+2ec0bt94l1l4YibhHgNgMsqWn86EuUpF 4vbxqxXBjJxmF0yzVe+2QCJ9jH8NwIZB3ltDI3cqGmx9hY/NFhKlc0qMx5RncPch IjSBDD4qvqiOa52e6w1yraIxfo5Jo9QO/081cCFX40c/PTjbjHoNqP9t6M1Yc8AZ i84Hyq6/9kme0RAF899uNBsSFY/z84OeM4bPyqdT3clFuv31u8tgHvH0B8G6DX/S CJDr/sEpURljiEFn6c/m6bAjQKGmLQEzLBJz+PDs7/9EbqqN5jFeIFb5Cg== -----END CERTIFICATE-----Generated at Sun Feb 16 15:13:42 2025 by rpki-client