$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1044c764-927e-41a1-b94e-b8bb9091f9c3.roa File: 1044c764-927e-41a1-b94e-b8bb9091f9c3.roa (raw, json) Hash identifier: JtvtTXcIepZXVJeLPifPav1NEyyEQpmyKzWu3oWGTeQ= Subject key identifier: 90:BA:B5:8F:0F:1E:C7:73:F1:C5:AC:80:58:33:3A:BB:39:7A:3B:BF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1B9A418D7C2CBDA0351C6D48D73B64DD58622647 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1044c764-927e-41a1-b94e-b8bb9091f9c3.roa Signing time: Sat 15 Feb 2025 00:40:18 +0000 ROA not before: Sat 15 Feb 2025 00:40:18 +0000 ROA not after: Sat 22 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 194.134.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:9a:41:8d:7c:2c:bd:a0:35:1c:6d:48:d7:3b:64:dd:58:62:26:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 15 00:40:18 2025 GMT Not After : Mar 22 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c4:88:29:95:9a:5a:49:03:73:c9:e9:21:8b: 4b:ea:0b:3a:d6:11:a3:ae:cb:31:8e:a2:b4:5d:47: 6c:bf:6b:5e:d4:3f:c4:7a:9a:fd:7e:f0:b5:92:13: d8:81:b5:0e:94:f0:1b:39:5a:83:9b:e1:84:58:a3: 81:21:36:c3:26:5d:48:6e:5c:52:98:94:82:68:87: 4f:08:5b:ea:6c:17:23:de:ed:6f:12:67:f2:3b:1b: 08:12:30:59:c6:04:90:9b:ab:f8:98:76:a7:f6:04: 77:10:f2:32:28:41:a6:72:db:16:64:42:74:89:43: ce:f6:72:45:5a:20:5c:fa:ee:24:d6:22:d6:93:66: 43:b7:ee:85:eb:2f:41:93:c6:80:16:18:49:04:54: a5:1e:b3:e8:af:48:70:c4:6e:b3:1e:cc:e4:63:ca: 50:6b:56:dc:51:bc:99:25:ef:79:5b:81:4a:0e:d1: 7c:68:d7:55:8c:39:9d:5b:c7:1c:6f:eb:37:ac:34: cc:39:bf:c4:54:0c:7f:23:88:67:77:c4:d0:22:5c: a6:29:df:e9:c3:e4:e6:19:9e:1b:4a:99:60:8d:0b: f2:8b:ad:35:75:50:0b:84:a6:77:98:4c:60:c3:86: b5:f8:4c:3d:cd:f1:f7:26:2a:78:7e:d1:20:ee:4d: 10:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:BA:B5:8F:0F:1E:C7:73:F1:C5:AC:80:58:33:3A:BB:39:7A:3B:BF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1044c764-927e-41a1-b94e-b8bb9091f9c3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.134.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4d:0a:f9:6a:06:a2:96:f2:af:29:6b:df:b7:51:66:55:4a:c4: d6:9e:84:61:0a:36:4d:2d:3a:7a:7a:f5:0a:32:1e:51:41:55: ce:bc:f0:87:34:7c:4e:56:21:59:15:dc:02:dd:5d:8b:56:27: b8:d8:a6:90:12:33:99:dd:0a:d7:20:43:0b:39:a0:89:4e:21: 5a:8b:e9:49:6a:c2:aa:07:65:e8:a0:14:7c:d7:12:27:7f:c1: 35:e4:a4:6e:9d:93:3f:a9:ba:a7:4a:8c:9a:99:6c:d9:ab:ed: df:6d:21:a9:3d:8d:57:db:15:20:f4:e2:76:2d:77:4b:d3:74: 57:ce:3e:ca:ef:4f:d8:3c:f4:57:74:d2:00:22:16:cc:36:96: 96:ff:64:5b:be:28:c0:7a:97:3b:45:d1:6c:27:c3:6e:37:ed: 64:8e:eb:83:e6:d0:40:b7:ed:64:aa:78:69:fc:8e:02:9f:3c: 74:74:1f:35:7b:c9:49:7c:2d:cb:ca:30:91:36:79:7a:5b:87: ca:f4:34:b8:80:58:57:c7:d4:bf:dc:13:f7:d5:91:09:62:3a: f7:cc:54:82:4f:10:8e:10:28:5c:ba:7d:a7:9b:fa:2e:3d:5f: 99:20:e2:cd:69:05:99:5c:7d:9c:69:63:12:6c:fd:97:63:c6: 63:62:1c:ef -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUG5pBjXwsvaA1HG1I1ztk3VhiJkcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjE1MDA0MDE4WhcNMjUwMzIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMTUxNzAzMGJlODZkM2MxYTE0ZDFlOTYzMGIyMDI1NGIw NzM4MTllZGJkYTc1ZDA2NjdlZjhmOWFhODg4YzAzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1xIgplZpaSQNzyekhi0vqCzrWEaOuyzGOorRdR2y/a17U P8R6mv1+8LWSE9iBtQ6U8Bs5WoOb4YRYo4EhNsMmXUhuXFKYlIJoh08IW+psFyPe 7W8SZ/I7GwgSMFnGBJCbq/iYdqf2BHcQ8jIoQaZy2xZkQnSJQ872ckVaIFz67iTW ItaTZkO37oXrL0GTxoAWGEkEVKUes+ivSHDEbrMezORjylBrVtxRvJkl73lbgUoO 0Xxo11WMOZ1bxxxv6zesNMw5v8RUDH8jiGd3xNAiXKYp3+nD5OYZnhtKmWCNC/KL rTV1UAuEpneYTGDDhrX4TD3N8fcmKnh+0SDuTRBbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUkLq1jw8ex3PxxayAWDM6uzl6O78wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEwNDRjNzY0LTkyN2UtNDFhMS1iOTRlLWI4YmI5MDkxZjljMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDChjANBgkqhkiG9w0BAQsFAAOCAQEATQr5agailvKvKWvft1FmVUrE1p6E YQo2TS06enr1CjIeUUFVzrzwhzR8TlYhWRXcAt1di1YnuNimkBIzmd0K1yBDCzmg iU4hWovpSWrCqgdl6KAUfNcSJ3/BNeSkbp2TP6m6p0qMmpls2avt320hqT2NV9sV IPTidi13S9N0V84+yu9P2Dz0V3TSACIWzDaWlv9kW74owHqXO0XRbCfDbjftZI7r g+bQQLftZKp4afyOAp88dHQfNXvJSXwty8owkTZ5eluHyvQ0uIBYV8fUv9wT99WR CWI698xUgk8QjhAoXLp9p5v6Lj1fmSDizWkFmVx9nGljEmz9l2PGY2Ic7w== -----END CERTIFICATE-----Generated at Sun Feb 16 15:38:11 2025 by rpki-client