$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/08f6921c-8b33-46e8-8cbd-ae0d5016bb70.roa File: 08f6921c-8b33-46e8-8cbd-ae0d5016bb70.roa (raw, json) Hash identifier: 43nAVo7vLW/KA/ipKem4E+GCvuwpqMNcYPIZtKvXEfc= Subject key identifier: 82:BF:EB:7F:EA:0A:6D:C9:FB:76:81:DE:80:CE:FB:4A:9C:50:2C:C7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 336C6B551A5AC82407BD925BCF8DEEE4883C7970 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/08f6921c-8b33-46e8-8cbd-ae0d5016bb70.roa Signing time: Mon 10 Feb 2025 00:00:00 +0000 ROA not before: Mon 10 Feb 2025 00:00:00 +0000 ROA not after: Mon 17 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 104.153.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:6c:6b:55:1a:5a:c8:24:07:bd:92:5b:cf:8d:ee:e4:88:3c:79:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 10 00:00:00 2025 GMT Not After : Mar 17 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e2:b3:ba:95:1d:79:6b:81:eb:47:3a:89:27: 0c:30:fc:40:c2:b9:98:77:78:ca:78:59:04:cf:dc: 6d:e8:a4:12:ed:b4:8c:cb:0d:a4:9b:23:2c:b5:5c: c6:f0:9f:25:e9:82:14:77:08:8c:76:8b:13:46:72: 07:0e:b7:22:08:8c:ac:94:1f:2d:a3:b8:10:7c:d1: 53:83:bf:5d:f5:e5:4a:11:df:6a:df:15:94:47:a7: 12:d8:c3:26:73:e9:cf:14:4d:d4:e2:f9:24:4c:7b: 63:67:2e:24:8c:1a:65:de:6b:16:71:8d:37:76:d4: 32:4c:b7:38:fe:2d:56:9b:72:4e:3c:0b:32:1e:0d: b3:51:29:a9:2c:ad:ef:1a:03:cf:be:30:49:b3:2b: 46:ce:54:ac:d1:94:c3:42:1e:68:dc:73:a4:8c:01: 54:b3:15:cc:ad:13:6b:4f:82:67:70:e9:c9:d0:2a: 51:95:92:2e:e1:40:02:7e:74:b6:2d:b9:f3:4e:ca: 73:58:7f:9a:84:94:ae:17:77:7b:7b:77:23:ce:f5: ac:d1:2a:0d:fa:54:13:71:78:e7:4f:63:1d:34:35: aa:7d:b0:6d:47:f8:6a:5d:9a:5d:39:ce:ad:49:94: f3:7a:dc:a4:bf:d6:44:b8:e8:5d:bd:5a:fb:d9:d9: eb:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:BF:EB:7F:EA:0A:6D:C9:FB:76:81:DE:80:CE:FB:4A:9C:50:2C:C7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/08f6921c-8b33-46e8-8cbd-ae0d5016bb70.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.153.116.0/24 Signature Algorithm: sha256WithRSAEncryption 08:29:08:b0:e5:cb:47:3e:04:08:17:2e:de:b4:7a:44:88:3e: 60:b9:19:3e:cb:72:cb:5f:37:a1:f8:6b:b7:0c:d3:ef:3c:98: 28:61:84:f6:98:63:db:73:eb:dd:95:b1:8c:88:ca:dc:6a:a5: ee:0e:f1:89:73:7d:b2:91:d9:97:46:34:85:e7:9c:21:bd:b1: f4:b1:90:80:97:5c:66:10:4a:9b:63:ec:86:15:81:f2:13:a4: 5e:c5:88:40:90:38:7b:fc:07:fd:5b:09:fd:9e:7d:9e:20:24: b8:d7:2c:02:b8:bc:83:45:31:34:d0:d4:30:9d:d9:de:cb:ce: be:30:51:45:9a:29:a6:24:3b:6b:63:26:47:46:f9:fe:11:05: ab:b9:2a:1f:1b:da:d2:dd:c3:d8:7a:a3:24:84:16:60:60:76: 0c:51:a9:56:78:c4:cb:22:2a:f8:d0:51:13:ea:56:70:69:7a: 59:d6:7a:8d:99:ec:36:dc:ad:63:e6:63:65:d8:46:39:3b:6c: 25:45:c8:20:98:71:2d:d9:54:fa:da:fc:24:39:77:23:da:96: d7:c0:db:56:98:9a:1b:40:ad:57:c8:d0:d8:2d:03:1d:4b:03: a9:d9:bb:00:10:3a:f6:04:c5:80:3d:e8:41:9f:d2:a8:7d:6a: 6e:ac:76:14 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUM2xrVRpayCQHvZJbz43u5Ig8eXAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjEwMDAwMDAwWhcNMjUwMzE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZjQ4Yzg3ZmFmZWY1MjBiYTY4YzRlMTM4Zjk2OTgxNmE5 OGU4Njk2OWE2MzVkY2FlYzk1OWRjODM3OWYzYWJmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/4rO6lR15a4HrRzqJJwww/EDCuZh3eMp4WQTP3G3opBLt tIzLDaSbIyy1XMbwnyXpghR3CIx2ixNGcgcOtyIIjKyUHy2juBB80VODv1315UoR 32rfFZRHpxLYwyZz6c8UTdTi+SRMe2NnLiSMGmXeaxZxjTd21DJMtzj+LVabck48 CzIeDbNRKaksre8aA8++MEmzK0bOVKzRlMNCHmjcc6SMAVSzFcytE2tPgmdw6cnQ KlGVki7hQAJ+dLYtufNOynNYf5qElK4Xd3t7dyPO9azRKg36VBNxeOdPYx00Nap9 sG1H+Gpdml05zq1JlPN63KS/1kS46F29WvvZ2euXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgr/rf+oKbcn7doHegM77SpxQLMcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA4ZjY5MjFjLThiMzMtNDZlOC04Y2JkLWFlMGQ1MDE2YmI3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABomXQwDQYJKoZIhvcNAQELBQADggEBAAgpCLDly0c+BAgXLt60ekSIPmC5 GT7LcstfN6H4a7cM0+88mChhhPaYY9tz692VsYyIytxqpe4O8YlzfbKR2ZdGNIXn nCG9sfSxkICXXGYQSptj7IYVgfITpF7FiECQOHv8B/1bCf2efZ4gJLjXLAK4vINF MTTQ1DCd2d7Lzr4wUUWaKaYkO2tjJkdG+f4RBau5Kh8b2tLdw9h6oySEFmBgdgxR qVZ4xMsiKvjQURPqVnBpelnWeo2Z7DbcrWPmY2XYRjk7bCVFyCCYcS3ZVPra/CQ5 dyPaltfA21aYmhtArVfI0NgtAx1LA6nZuwAQOvYExYA96EGf0qh9am6sdhQ= -----END CERTIFICATE-----Generated at Sun Feb 16 15:06:45 2025 by rpki-client