$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/113d5556-8776-4980-8481-4392894f76ea.roa File: 113d5556-8776-4980-8481-4392894f76ea.roa (raw, json) Hash identifier: syUR5NOkk7vs83qVYR1wHtwoanPQzRsYCB4Td8kv0nY= Subject key identifier: 56:1C:F2:CD:3D:19:89:22:C9:6E:38:8E:34:2B:BB:67:74:63:1E:80 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4BF0BD2A55E796890C1C5696206C4F615D1710DB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/113d5556-8776-4980-8481-4392894f76ea.roa Signing time: Sat 15 Feb 2025 00:20:57 +0000 ROA not before: Sat 15 Feb 2025 00:20:57 +0000 ROA not after: Sat 22 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.94.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:f0:bd:2a:55:e7:96:89:0c:1c:56:96:20:6c:4f:61:5d:17:10:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 15 00:20:57 2025 GMT Not After : Mar 22 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:98:82:4d:c0:4a:f3:18:a8:e8:21:c4:7f:24: 04:36:84:bc:06:47:84:0d:18:a1:84:f2:c2:f4:7f: 86:d7:e1:30:cb:90:87:30:19:e8:b3:81:06:96:65: 41:05:99:50:03:f2:89:d4:8d:cd:f5:aa:00:34:18: fa:be:60:b3:1d:6d:9a:90:5e:7f:70:3f:26:c6:5f: b3:b0:45:0e:ac:32:8b:4b:e1:bd:1e:db:ff:09:bd: af:82:0c:70:db:ee:f8:88:c2:e1:df:73:8f:b9:ae: 7a:d4:2f:25:1c:e1:62:04:60:3f:be:32:fa:cb:4e: 78:27:b8:b8:69:8d:f2:79:7d:f3:73:f1:1c:3a:bb: ff:33:5d:78:1e:18:8c:29:36:4e:9a:b4:ff:43:e9: 6f:ad:ff:d4:38:3e:8c:67:48:a8:e0:49:ab:c4:18: 31:be:73:78:92:13:cb:be:07:29:db:40:13:44:4a: 3e:54:90:38:cf:3d:3e:6e:8e:0e:e7:10:18:ba:54: 5b:82:47:dc:1a:9a:07:70:bb:a9:05:80:f9:7d:c0: 5d:f0:bb:48:71:71:43:79:78:e3:75:95:f4:bb:e9: 48:60:bc:d0:dc:51:8d:bf:dd:08:b3:76:9e:71:28: ce:95:dd:df:16:2d:00:4c:e7:ed:15:25:c2:7a:3a: c9:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:1C:F2:CD:3D:19:89:22:C9:6E:38:8E:34:2B:BB:67:74:63:1E:80 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/113d5556-8776-4980-8481-4392894f76ea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.94.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6a:c5:e7:4a:0c:ae:31:5f:b3:82:bc:6e:59:cd:99:f5:dd:bb: ca:2a:a3:c4:0c:28:2a:71:43:83:f5:45:12:99:bf:9b:6d:29: e5:29:bb:ac:91:fa:ab:30:b1:9f:f8:0f:49:d9:7b:05:3c:fb: 0f:b7:8f:cf:84:c6:f3:19:12:52:57:c9:57:d8:29:13:4b:d5: da:3e:c7:6e:80:25:7f:4a:3b:41:cd:ca:b5:31:57:9a:5a:65: bc:ae:5c:3d:7d:28:59:3e:a9:a2:e9:b9:7c:aa:a2:97:46:2c: 48:9c:1e:9a:e7:d0:73:6d:a1:9e:76:8a:2e:7e:90:b6:e8:8e: 83:8f:18:1c:bf:61:06:1b:ea:b2:e8:15:a1:9c:09:db:63:c8: 08:10:23:c5:ca:37:43:fd:22:dd:6f:03:18:50:6f:c3:62:31: 74:e3:0a:e3:b1:9b:a2:e4:cc:77:90:a2:8c:b8:d7:c3:c9:b8: 73:10:35:ae:a6:b3:b4:69:3c:cf:ca:49:11:73:72:19:de:02: df:8b:21:16:66:bf:93:9e:cf:da:95:74:3a:c6:ca:e6:98:ed: c7:62:2e:37:94:0c:d3:f5:b7:48:d8:b6:5a:b5:a5:f4:de:c8: 33:c2:1e:44:61:bf:d7:85:da:f1:d7:38:34:e7:74:9c:3a:83: d2:a7:51:44 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUS/C9KlXnlokMHFaWIGxPYV0XENswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjE1MDAyMDU3WhcNMjUwMzIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZTAyYjRlYWExYTc2NjkzNzA1N2YyOTdkOTJkNWI1Mjhh NjdjYWUzYmUxMmE3Zjk2NWEyMmZhNmEyMDgxYzk0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCumIJNwErzGKjoIcR/JAQ2hLwGR4QNGKGE8sL0f4bX4TDL kIcwGeizgQaWZUEFmVAD8onUjc31qgA0GPq+YLMdbZqQXn9wPybGX7OwRQ6sMotL 4b0e2/8Jva+CDHDb7viIwuHfc4+5rnrULyUc4WIEYD++MvrLTngnuLhpjfJ5ffNz 8Rw6u/8zXXgeGIwpNk6atP9D6W+t/9Q4PoxnSKjgSavEGDG+c3iSE8u+BynbQBNE Sj5UkDjPPT5ujg7nEBi6VFuCR9wamgdwu6kFgPl9wF3wu0hxcUN5eON1lfS76Uhg vNDcUY2/3Qizdp5xKM6V3d8WLQBM5+0VJcJ6OsmjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUVhzyzT0ZiSLJbjiONCu7Z3RjHoAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzExM2Q1NTU2LTg3NzYtNDk4MC04NDgxLTQzOTI4OTRmNzZlYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQXjANBgkqhkiG9w0BAQsFAAOCAQEAasXnSgyuMV+zgrxuWc2Z9d27yiqj xAwoKnFDg/VFEpm/m20p5Sm7rJH6qzCxn/gPSdl7BTz7D7ePz4TG8xkSUlfJV9gp E0vV2j7HboAlf0o7Qc3KtTFXmlplvK5cPX0oWT6poum5fKqil0YsSJwemufQc22h nnaKLn6QtuiOg48YHL9hBhvqsugVoZwJ22PICBAjxco3Q/0i3W8DGFBvw2IxdOMK 47GbouTMd5CijLjXw8m4cxA1rqaztGk8z8pJEXNyGd4C34shFma/k57P2pV0OsbK 5pjtx2IuN5QM0/W3SNi2WrWl9N7IM8IeRGG/14Xa8dc4NOd0nDqD0qdRRA== -----END CERTIFICATE-----Generated at Sun Feb 16 15:41:15 2025 by rpki-client