$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0fbcb60b-a5ea-46f5-9918-7ad443253fcf.roa File: 0fbcb60b-a5ea-46f5-9918-7ad443253fcf.roa (raw, json) Hash identifier: 1cO06hVTLnstGBWpD2ryy/wFpS7Hzy7OnSp/EWkIhlI= Subject key identifier: 9C:95:BA:F4:FD:B8:27:71:CA:B1:BE:CB:7B:1C:51:C2:A4:6A:AE:E2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 754DD5EB5395F1C4AA9BC2AF1A56C10FE9C7C79B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0fbcb60b-a5ea-46f5-9918-7ad443253fcf.roa Signing time: Fri 28 Feb 2025 20:30:47 +0000 ROA not before: Fri 28 Feb 2025 20:30:47 +0000 ROA not after: Fri 04 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 107.160.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:4d:d5:eb:53:95:f1:c4:aa:9b:c2:af:1a:56:c1:0f:e9:c7:c7:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 28 20:30:47 2025 GMT Not After : Apr 4 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:22:7a:f4:06:35:b6:f0:ba:6e:7f:34:24:b0: 13:ef:0f:c1:80:69:61:ad:e7:4d:86:d3:a5:21:36: ce:16:e5:45:36:ec:33:6e:a9:63:78:1a:08:63:20: 68:8b:68:90:c6:31:06:af:df:e3:ce:e1:7a:44:2a: f6:58:fc:03:24:64:4e:7f:d4:db:32:e0:8c:77:e1: 75:80:ff:1a:17:0a:1c:6e:38:ef:8e:b2:c0:ee:92: a9:07:fc:7d:ea:90:7a:eb:60:5d:b9:73:0f:a3:58: 7b:d9:71:e0:0b:99:f0:25:61:27:a6:1d:a9:07:83: c1:43:b8:af:8b:43:63:bc:7e:5b:b0:6a:fd:fe:b2: 23:a3:1c:89:e7:5a:13:5e:49:31:a5:77:24:38:ff: e7:6e:cd:66:ff:fd:33:b9:cb:55:b6:b9:6e:64:44: 3d:f8:d6:69:93:67:20:ad:84:26:85:c0:49:b8:83: 5e:02:7c:54:b7:01:f8:f9:13:b4:ff:a0:d3:df:4d: ca:f2:a1:a8:ec:4e:54:d8:91:cc:fa:23:ac:63:26: fa:4c:c1:f4:a3:45:63:44:75:1c:a1:62:59:e1:40: 6b:e6:14:a6:3a:db:d7:d3:bf:2b:b8:f7:70:6d:e5: 24:87:0d:eb:bd:41:28:68:4e:ed:90:9d:51:b4:e7: e0:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:95:BA:F4:FD:B8:27:71:CA:B1:BE:CB:7B:1C:51:C2:A4:6A:AE:E2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0fbcb60b-a5ea-46f5-9918-7ad443253fcf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.160.0.0/16 Signature Algorithm: sha256WithRSAEncryption c9:b4:86:73:a3:b6:b5:33:6d:f7:50:b8:20:9a:2b:b1:4a:01: 17:f2:79:80:74:cc:e4:7e:d5:97:a9:5e:09:4f:98:74:b4:34: 1e:a8:fb:f2:78:a9:40:ce:90:e7:bd:28:f7:f5:5b:b9:4c:d5: 96:16:7c:ca:73:89:c8:5c:21:0f:d8:74:ab:24:d3:01:72:2d: 71:e5:1f:b7:c4:7c:a4:87:89:e5:13:87:11:8c:2e:77:01:cd: 53:d6:04:33:54:cf:69:d4:3a:26:b6:6d:5d:db:d6:ad:6a:8a: 7b:11:83:ac:0b:be:79:4c:a3:10:c7:fb:b1:ea:d0:e8:c5:bc: 28:f7:54:5f:3f:6a:09:4a:9d:a2:49:cb:75:93:28:08:1c:93: 84:ca:3b:6f:56:0f:7b:91:a9:b0:46:88:97:7d:96:b2:5d:84: 19:af:f6:27:b4:c5:7e:d2:58:3d:fb:3d:2e:e9:17:cb:fa:17: 43:7b:52:2d:28:88:23:7c:c5:b4:09:ad:f5:b9:f2:7c:86:59: 19:16:e3:ca:99:13:fe:2b:f0:1e:43:eb:7c:b2:9a:27:38:2a: 89:89:8e:d7:95:5f:64:44:fd:13:7c:6c:62:a3:69:a3:0d:95: b5:44:aa:7b:b1:05:1a:d2:59:4b:4c:69:84:56:76:3e:4c:b7: d4:21:f6:2e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdU3V61OV8cSqm8KvGlbBD+nHx5swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjI4MjAzMDQ3WhcNMjUwNDA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYTlkMzMyNDYzNDZkMGRjNWI3ZjRmMGVjYTI0OGRkNDk5 MjgwY2NiODBiOTc3YTYyNzQ5YzdiNmNkMmZmMGQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbInr0BjW28LpufzQksBPvD8GAaWGt502G06UhNs4W5UU2 7DNuqWN4GghjIGiLaJDGMQav3+PO4XpEKvZY/AMkZE5/1Nsy4Ix34XWA/xoXChxu OO+OssDukqkH/H3qkHrrYF25cw+jWHvZceALmfAlYSemHakHg8FDuK+LQ2O8fluw av3+siOjHInnWhNeSTGldyQ4/+duzWb//TO5y1W2uW5kRD341mmTZyCthCaFwEm4 g14CfFS3Afj5E7T/oNPfTcryoajsTlTYkcz6I6xjJvpMwfSjRWNEdRyhYlnhQGvm FKY629fTvyu493Bt5SSHDeu9QShoTu2QnVG05+ADAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUnJW69P24J3HKsb7LexxRwqRqruIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBmYmNiNjBiLWE1ZWEtNDZmNS05OTE4LTdhZDQ0MzI1M2ZjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBroDANBgkqhkiG9w0BAQsFAAOCAQEAybSGc6O2tTNt91C4IJorsUoBF/J5 gHTM5H7Vl6leCU+YdLQ0Hqj78nipQM6Q570o9/VbuUzVlhZ8ynOJyFwhD9h0qyTT AXItceUft8R8pIeJ5ROHEYwudwHNU9YEM1TPadQ6JrZtXdvWrWqKexGDrAu+eUyj EMf7serQ6MW8KPdUXz9qCUqdoknLdZMoCByThMo7b1YPe5GpsEaIl32Wsl2EGa/2 J7TFftJYPfs9LukXy/oXQ3tSLSiII3zFtAmt9bnyfIZZGRbjypkT/ivwHkPrfLKa JzgqiYmO15VfZET9E3xsYqNpow2VtUSqe7EFGtJZS0xphFZ2Pky31CH2Lg== -----END CERTIFICATE-----Generated at Thu Mar 13 23:52:57 2025 by rpki-client