$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2309db7a-9533-458b-bc2b-77dd1708ae8a.roa File: 2309db7a-9533-458b-bc2b-77dd1708ae8a.roa (raw, json) Hash identifier: 6wTpIZ6ZsUuDNsUxHBulrnAe16TCvD8+y3sYZO5n5u0= Subject key identifier: 24:CE:C2:BD:30:67:EF:0F:15:04:7C:5C:1E:0A:04:47:6E:0E:25:42 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 52940F7EAFAF5048B275C847E052949BB3E78186 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2309db7a-9533-458b-bc2b-77dd1708ae8a.roa Signing time: Tue 21 Jan 2025 00:00:00 +0000 ROA not before: Tue 21 Jan 2025 00:00:00 +0000 ROA not after: Tue 25 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:94:0f:7e:af:af:50:48:b2:75:c8:47:e0:52:94:9b:b3:e7:81:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 21 00:00:00 2025 GMT Not After : Feb 25 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:18:d2:63:04:d7:12:26:83:39:ba:ba:dc:11: ed:48:d1:dc:a1:7e:36:09:52:1e:51:01:c2:41:8a: 3d:b1:71:94:37:44:23:c4:e0:53:ee:90:c3:97:94: 43:29:4c:20:a4:85:cf:ba:d1:3f:63:b8:58:92:73: 51:d0:2f:a4:fe:44:38:35:aa:4a:88:7f:d9:1e:7a: 5f:6b:e1:f3:0d:2d:45:0c:ff:77:c4:c8:d3:9d:44: cc:2c:70:ae:88:ca:72:97:75:c2:d9:5a:11:47:33: f7:70:2c:fb:fc:55:13:40:03:64:49:4b:24:94:00: 5b:5a:67:e1:ba:0e:86:cd:0e:94:97:94:e8:1b:88: 69:7f:af:9f:84:ee:89:cc:5b:8f:c9:5d:19:60:2d: 34:5f:e6:30:c3:32:75:42:80:95:97:bd:61:91:e8: 15:ad:74:0b:a9:16:03:b7:67:65:89:c2:c5:b3:ab: c9:74:cf:ee:e0:94:dc:f5:35:41:87:f3:4a:10:6d: 2e:31:6f:11:c6:f5:e2:e8:ba:9a:c0:eb:4b:c8:73: 8e:44:41:ff:94:b7:5f:08:07:99:42:aa:52:81:bc: cb:ff:e5:62:57:32:27:95:21:af:d4:0e:67:b0:ef: 57:16:e6:dc:67:a5:c5:38:54:b5:84:7e:e7:49:a1: 34:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:CE:C2:BD:30:67:EF:0F:15:04:7C:5C:1E:0A:04:47:6E:0E:25:42 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2309db7a-9533-458b-bc2b-77dd1708ae8a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.105.0/24 Signature Algorithm: sha256WithRSAEncryption 91:af:43:00:9f:be:66:03:b1:48:01:45:9b:5e:24:7e:90:ee: d7:3c:f9:b5:06:0c:5b:e7:02:72:7c:cc:b9:6f:d0:22:98:02: 04:44:08:76:b9:12:7b:09:ac:ca:11:3c:48:74:e7:54:11:62: eb:ef:b6:bd:dc:0c:af:55:78:1b:25:82:87:5a:4f:34:32:3a: ef:0d:82:05:6b:ba:d1:6c:ca:d2:cd:d5:f2:dc:5a:97:58:c1: d1:b6:d0:0c:1c:34:a7:e0:67:49:3e:79:82:c3:6c:43:bc:9b: c5:9f:16:c4:5b:33:4d:e2:68:52:2a:06:ce:17:bc:28:d5:b0: 84:3d:53:52:e0:f3:1f:6d:71:a1:59:44:03:11:b3:bf:c5:fb: aa:a5:ac:21:c7:0c:66:3e:b1:4a:d9:44:ad:b4:56:1d:54:74: dd:95:b5:a0:43:d5:40:bd:e1:7f:e9:4a:5d:bd:bd:95:4d:1e: e4:b0:7e:c9:9d:5e:f6:f6:22:38:ca:5c:49:da:d1:17:19:67: 90:8a:c7:f2:fc:a7:8f:25:63:cd:f7:ab:68:6c:e6:b3:26:14: 82:33:64:36:c2:83:89:b3:9f:ec:4a:ef:bb:29:d5:42:a6:1c: 78:c6:9d:d8:26:e6:f2:77:27:c4:1b:d4:ae:1a:8c:0b:bf:a8: 85:ee:e2:24 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUpQPfq+vUEiydchH4FKUm7PngYYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTIxMDAwMDAwWhcNMjUwMjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYmRlOWEwZjIyOWQ5MzAzMjRlMmYyNGFiYTViOWJiMmY0 MGEwMWY3Y2FkODM3NTYxODhiODE4YTUwM2M5YmQzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRGNJjBNcSJoM5urrcEe1I0dyhfjYJUh5RAcJBij2xcZQ3 RCPE4FPukMOXlEMpTCCkhc+60T9juFiSc1HQL6T+RDg1qkqIf9keel9r4fMNLUUM /3fEyNOdRMwscK6IynKXdcLZWhFHM/dwLPv8VRNAA2RJSySUAFtaZ+G6DobNDpSX lOgbiGl/r5+E7onMW4/JXRlgLTRf5jDDMnVCgJWXvWGR6BWtdAupFgO3Z2WJwsWz q8l0z+7glNz1NUGH80oQbS4xbxHG9eLouprA60vIc45EQf+Ut18IB5lCqlKBvMv/ 5WJXMieVIa/UDmew71cW5txnpcU4VLWEfudJoTT5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJM7CvTBn7w8VBHxcHgoER24OJUIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIzMDlkYjdhLTk1MzMtNDU4Yi1iYzJiLTc3ZGQxNzA4YWU4YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/GkwDQYJKoZIhvcNAQELBQADggEBAJGvQwCfvmYDsUgBRZteJH6Q7tc8 +bUGDFvnAnJ8zLlv0CKYAgRECHa5EnsJrMoRPEh051QRYuvvtr3cDK9VeBslgoda TzQyOu8NggVrutFsytLN1fLcWpdYwdG20AwcNKfgZ0k+eYLDbEO8m8WfFsRbM03i aFIqBs4XvCjVsIQ9U1Lg8x9tcaFZRAMRs7/F+6qlrCHHDGY+sUrZRK20Vh1UdN2V taBD1UC94X/pSl29vZVNHuSwfsmdXvb2IjjKXEna0RcZZ5CKx/L8p48lY833q2hs 5rMmFIIzZDbCg4mzn+xK77sp1UKmHHjGndgm5vJ3J8Qb1K4ajAu/qIXu4iQ= -----END CERTIFICATE-----Generated at Sun Feb 16 15:11:05 2025 by rpki-client