$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07dc4f6d-7b9d-49fa-9765-75c8f4dab02a.roa File: 07dc4f6d-7b9d-49fa-9765-75c8f4dab02a.roa (raw, json) Hash identifier: e9T0eaE9fI462Qs4r0BXAyNjsO2/GlYN9WbzJPjrosQ= Subject key identifier: E5:4F:40:14:6B:C9:CC:91:ED:1A:D7:9B:52:6B:12:05:6D:37:8C:A7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2A7C4BDBE24939433497923AF200A4BE46549FDB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07dc4f6d-7b9d-49fa-9765-75c8f4dab02a.roa Signing time: Wed 12 Feb 2025 00:00:00 +0000 ROA not before: Wed 12 Feb 2025 00:00:00 +0000 ROA not after: Wed 19 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.76.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:7c:4b:db:e2:49:39:43:34:97:92:3a:f2:00:a4:be:46:54:9f:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 12 00:00:00 2025 GMT Not After : Mar 19 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:94:25:ec:d2:d5:a6:51:10:26:0b:fe:33:7f: 31:0e:05:1b:73:9c:f5:e2:6c:5f:74:2e:07:58:91: 41:df:e1:d1:fe:89:b9:7b:1d:16:3c:45:b3:6f:fb: 61:94:0e:53:32:fa:b8:06:c7:b4:6e:7e:a1:c1:4f: 83:22:26:af:95:21:53:df:87:7b:4d:8a:fb:42:86: 37:19:0f:ec:43:01:45:c0:df:bb:02:01:48:cb:a8: 11:0b:fd:8a:39:cf:39:08:d2:12:32:27:f5:17:e4: e9:47:80:74:3b:8f:fd:82:25:e7:a2:df:26:50:9a: 0f:9a:ae:45:0d:77:7e:c5:62:c1:e8:ae:d6:89:1b: 9b:ce:fb:4d:c3:b3:c5:9d:53:5d:28:41:38:44:30: f8:3d:b4:d5:fe:84:15:37:93:3c:e1:94:7f:cf:6d: 2d:b2:86:8d:91:53:4b:61:cb:0c:81:02:ef:a0:be: b6:97:34:db:e0:b2:e2:07:cc:43:b1:69:74:4b:05: 7c:80:a0:78:9b:d7:73:27:d9:6a:4f:ba:db:6c:af: 03:72:fc:d3:42:a1:81:91:77:bb:eb:f8:bc:53:8d: dd:dd:40:1b:4a:98:5b:db:7c:eb:53:34:6a:80:64: a4:63:57:73:ce:01:00:fa:e9:33:3f:23:03:75:f0: 34:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:4F:40:14:6B:C9:CC:91:ED:1A:D7:9B:52:6B:12:05:6D:37:8C:A7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07dc4f6d-7b9d-49fa-9765-75c8f4dab02a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.76.0.0/16 Signature Algorithm: sha256WithRSAEncryption a8:ee:90:2f:5c:26:12:8a:92:cd:bc:e2:dc:38:12:6f:fc:19: 30:2b:76:58:0a:7a:70:01:aa:14:2e:41:96:a5:ff:ef:b1:4c: 56:fd:9a:fb:44:7c:6c:30:08:87:ca:cb:3f:03:e6:6d:7c:8d: e0:b4:a4:ae:34:94:4b:1f:a8:3f:48:d2:c8:f0:7c:fb:e1:2b: f6:c3:0f:72:6e:07:c7:08:14:eb:4d:ec:81:a2:81:9b:f6:df: 74:76:5a:d5:9b:f0:97:c4:62:f2:e1:79:62:71:7c:17:80:a4: aa:f6:0e:29:a6:3e:8f:bd:78:56:f8:8e:9e:91:94:72:76:4d: 05:5a:2c:b8:b9:4a:51:dd:b5:7c:52:5e:1e:a7:8e:c4:4d:cb: 75:e1:0b:8e:da:a4:51:b9:5c:0b:54:18:6e:24:d9:9c:67:59: d8:b7:c7:6c:3f:38:1f:31:e3:1c:40:e3:37:e0:90:57:f5:99: f4:db:9b:a7:27:bc:66:69:e1:ed:b7:8f:6d:8e:6a:7a:14:d2: d9:50:a6:32:60:12:0a:d6:8d:98:4d:13:b2:ba:68:27:bc:57: bf:2f:57:d8:75:88:a5:28:0b:f8:92:e0:f5:3a:b1:68:d1:ba: d7:d4:75:c3:1c:8e:b7:0d:95:f7:81:55:2b:d4:c8:cd:89:e6: 82:68:c0:dd -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKnxL2+JJOUM0l5I68gCkvkZUn9swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjEyMDAwMDAwWhcNMjUwMzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYzU0OGExN2E5MTNiMWJmMWE0NWM3ZmFiMzY5Y2MyMmJj MGI2NjU5MGZjMzEwOWVhZjMyMTNmNjQxMWVjZmRhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRlCXs0tWmURAmC/4zfzEOBRtznPXibF90LgdYkUHf4dH+ ibl7HRY8RbNv+2GUDlMy+rgGx7RufqHBT4MiJq+VIVPfh3tNivtChjcZD+xDAUXA 37sCAUjLqBEL/Yo5zzkI0hIyJ/UX5OlHgHQ7j/2CJeei3yZQmg+arkUNd37FYsHo rtaJG5vO+03Ds8WdU10oQThEMPg9tNX+hBU3kzzhlH/PbS2yho2RU0thywyBAu+g vraXNNvgsuIHzEOxaXRLBXyAoHib13Mn2WpPuttsrwNy/NNCoYGRd7vr+LxTjd3d QBtKmFvbfOtTNGqAZKRjV3POAQD66TM/IwN18DRVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU5U9AFGvJzJHtGtebUmsSBW03jKcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA3ZGM0ZjZkLTdiOWQtNDlmYS05NzY1LTc1YzhmNGRhYjAyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQTDANBgkqhkiG9w0BAQsFAAOCAQEAqO6QL1wmEoqSzbzi3DgSb/wZMCt2 WAp6cAGqFC5BlqX/77FMVv2a+0R8bDAIh8rLPwPmbXyN4LSkrjSUSx+oP0jSyPB8 ++Er9sMPcm4HxwgU603sgaKBm/bfdHZa1Zvwl8Ri8uF5YnF8F4CkqvYOKaY+j714 VviOnpGUcnZNBVosuLlKUd21fFJeHqeOxE3LdeELjtqkUblcC1QYbiTZnGdZ2LfH bD84HzHjHEDjN+CQV/WZ9Nubpye8Zmnh7bePbY5qehTS2VCmMmASCtaNmE0Tsrpo J7xXvy9X2HWIpSgL+JLg9TqxaNG619R1wxyOtw2V94FVK9TIzYnmgmjA3Q== -----END CERTIFICATE-----Generated at Sun Feb 16 15:12:56 2025 by rpki-client