$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0a2fbad4-ef20-49dd-9b21-8abbc46cef31.roa File: 0a2fbad4-ef20-49dd-9b21-8abbc46cef31.roa (raw, json) Hash identifier: 0WGYc4IICvVUhUN88kjrlfGtDkuci0taA2o+WLmWFBI= Subject key identifier: AB:EE:B1:7B:9D:7C:A4:46:BC:5D:00:CC:F9:19:34:68:30:5A:0C:C8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 44D3292F246832066C46F66786C2C28F5BA5FC93 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0a2fbad4-ef20-49dd-9b21-8abbc46cef31.roa Signing time: Fri 07 Feb 2025 00:00:00 +0000 ROA not before: Fri 07 Feb 2025 00:00:00 +0000 ROA not after: Fri 14 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.25.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:d3:29:2f:24:68:32:06:6c:46:f6:67:86:c2:c2:8f:5b:a5:fc:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 7 00:00:00 2025 GMT Not After : Mar 14 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:23:85:cf:48:93:dc:cb:a1:db:ae:af:87:ab: cd:dd:64:73:b1:4d:97:71:5b:15:0d:f3:8b:cb:e0: cd:7f:b2:3c:fa:60:b3:42:c7:41:20:1a:d7:10:d3: f1:09:71:11:63:73:7b:ae:07:ea:b2:03:e9:0d:aa: 33:3b:65:cc:4e:b0:cc:82:d7:a5:9d:75:13:f5:42: 9d:e2:85:86:d4:23:97:07:96:c7:d7:65:ac:a0:7e: 87:61:1b:5d:4b:32:e0:4a:86:2c:f5:44:b4:4e:78: 29:31:b2:c9:71:3b:57:49:7c:4a:73:74:63:0e:72: a5:8c:75:62:d4:e1:9b:e8:ee:41:c9:48:d4:4b:40: a9:f7:1b:ba:9e:ce:2f:eb:18:a6:15:55:5c:3b:6f: 9b:d3:cc:ab:6e:2c:e2:8f:7f:69:ee:a2:b5:3f:07: 48:a6:17:c6:87:e1:48:c8:94:6b:df:4e:4d:9e:1d: 0b:9f:58:6a:80:cb:e3:d3:ba:c7:78:4b:25:b8:47: a0:43:7f:3a:0a:df:a2:40:87:52:3e:55:25:86:29: e8:9c:39:37:aa:11:1c:51:3d:a3:86:88:73:0f:24: 09:46:d2:c2:a4:f3:72:45:c4:ef:28:90:22:9c:c1: 7b:67:ec:00:37:be:8d:59:3c:2f:10:27:b6:b2:34: 29:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:EE:B1:7B:9D:7C:A4:46:BC:5D:00:CC:F9:19:34:68:30:5A:0C:C8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0a2fbad4-ef20-49dd-9b21-8abbc46cef31.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.25.82.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:03:bb:2e:1c:a4:8a:7d:2b:42:8c:f9:1d:99:dc:70:48:42: 3b:67:ad:30:33:12:c1:2b:c7:61:af:20:18:37:8b:34:d5:7a: 79:90:6d:d1:45:d5:d4:38:91:10:c7:ef:6a:4a:99:14:09:89: ff:f2:d7:6a:6f:05:07:ba:e6:96:37:1a:77:15:92:0c:06:64: ec:2a:0a:d9:91:de:7a:00:5e:ed:10:0a:bc:0f:4d:7a:8e:4b: 2d:ac:78:c6:2e:c9:eb:27:db:be:ed:e3:34:1f:c2:81:9a:ea: bd:1e:34:ac:1d:70:98:42:c1:b9:ff:72:08:b5:ad:22:0e:4f: 82:be:96:6d:72:e8:e9:c5:5e:5a:a7:87:2c:b9:34:23:06:27: 27:14:30:92:5e:b8:14:fd:77:47:02:2c:5f:3c:e8:5f:7a:e9: 26:cd:44:98:8a:c6:07:1a:ed:45:a5:f0:09:3f:95:94:35:84: d0:17:77:1d:a5:7d:8d:28:c5:f4:c3:2c:c0:b9:af:06:06:6d: 61:bd:fc:11:74:ce:a0:b8:ad:73:f1:7b:78:fd:d4:c8:cf:80: cc:a1:97:96:39:08:7b:24:13:4c:76:22:40:b4:ff:31:f5:e5: df:a1:e9:66:c1:4f:40:f7:e7:3c:94:9c:f2:7e:81:1d:a7:1e: e1:9d:42:cb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURNMpLyRoMgZsRvZnhsLCj1ul/JMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjA3MDAwMDAwWhcNMjUwMzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmY2ViMTMyNDA0YzRhNjM4YWM0ZmQ4NjhlNmY2MjQ1YzY1 OWY2NTYyMjMyZjMwNDkxY2VhZGNmNDVlMmFmYmQ0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHI4XPSJPcy6Hbrq+Hq83dZHOxTZdxWxUN84vL4M1/sjz6 YLNCx0EgGtcQ0/EJcRFjc3uuB+qyA+kNqjM7ZcxOsMyC16WddRP1Qp3ihYbUI5cH lsfXZaygfodhG11LMuBKhiz1RLROeCkxsslxO1dJfEpzdGMOcqWMdWLU4Zvo7kHJ SNRLQKn3G7qezi/rGKYVVVw7b5vTzKtuLOKPf2nuorU/B0imF8aH4UjIlGvfTk2e HQufWGqAy+PTusd4SyW4R6BDfzoK36JAh1I+VSWGKeicOTeqERxRPaOGiHMPJAlG 0sKk83JFxO8okCKcwXtn7AA3vo1ZPC8QJ7ayNCmZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUq+6xe518pEa8XQDM+Rk0aDBaDMgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBhMmZiYWQ0LWVmMjAtNDlkZC05YjIxLThhYmJjNDZjZWYzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA2GVIwDQYJKoZIhvcNAQELBQADggEBAF4Duy4cpIp9K0KM+R2Z3HBIQjtn rTAzEsErx2GvIBg3izTVenmQbdFF1dQ4kRDH72pKmRQJif/y12pvBQe65pY3GncV kgwGZOwqCtmR3noAXu0QCrwPTXqOSy2seMYuyesn277t4zQfwoGa6r0eNKwdcJhC wbn/cgi1rSIOT4K+lm1y6OnFXlqnhyy5NCMGJycUMJJeuBT9d0cCLF886F966SbN RJiKxgca7UWl8Ak/lZQ1hNAXdx2lfY0oxfTDLMC5rwYGbWG9/BF0zqC4rXPxe3j9 1MjPgMyhl5Y5CHskE0x2IkC0/zH15d+h6WbBT0D35zyUnPJ+gR2nHuGdQss= -----END CERTIFICATE-----Generated at Sun Feb 16 15:42:22 2025 by rpki-client