$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a59bee5-89f9-485c-8a59-86cfb9d5b61b.roa File: 2a59bee5-89f9-485c-8a59-86cfb9d5b61b.roa (raw, json) Hash identifier: QJ6qOYEK3B22RuMudMUfH8ElbgJZKMwdQCxO68rM/74= Subject key identifier: DE:EF:A8:E0:AA:E0:58:B9:C6:F3:4A:7B:95:2F:CF:C0:20:D0:B8:84 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5942A394E2A8BB1EBE8AF1E8DF22F63939423615 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a59bee5-89f9-485c-8a59-86cfb9d5b61b.roa Signing time: Fri 07 Feb 2025 00:00:00 +0000 ROA not before: Fri 07 Feb 2025 00:00:00 +0000 ROA not after: Fri 14 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 139.56.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:42:a3:94:e2:a8:bb:1e:be:8a:f1:e8:df:22:f6:39:39:42:36:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 7 00:00:00 2025 GMT Not After : Mar 14 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ac:3f:22:34:bb:1e:81:2c:9a:3a:fa:41:8f: d7:bc:01:aa:06:45:80:06:81:ce:8f:05:ec:be:df: 61:84:e2:e9:ac:90:63:03:ef:05:d3:67:4d:d6:18: 4c:00:a1:b0:0e:dd:dd:f9:13:76:54:58:92:1f:67: 99:6c:61:58:98:81:82:03:4b:65:54:c3:13:af:71: ee:d3:58:c6:18:31:e1:71:eb:5d:75:c7:c9:f0:81: b7:34:89:f3:4e:dc:35:6d:e9:be:94:e3:7e:7e:93: 50:d7:91:90:99:97:78:91:70:30:e1:37:9e:08:53: 7c:95:b1:19:ae:5f:ce:3a:0a:d2:ec:61:b8:5e:23: 53:ca:7a:d0:67:30:d4:ce:12:ec:6e:b1:45:79:7d: 84:ea:79:17:85:23:56:42:f6:b0:46:af:aa:44:65: 69:d9:c7:da:6f:bd:4b:d3:8c:49:13:5c:a2:b4:24: 6b:fd:b9:ee:5b:c6:69:a8:b9:df:6a:e2:e3:b7:02: 10:10:0e:cc:2a:98:f4:7b:86:ad:61:48:37:9d:e9: 05:a3:3e:3c:9c:61:9e:64:89:cd:d5:82:b8:f7:85: 59:0e:a1:e3:a0:ce:35:91:fa:4f:2e:7d:bf:a3:ed: f3:49:e3:5d:04:17:48:dd:12:59:db:7a:59:e4:5a: f9:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:EF:A8:E0:AA:E0:58:B9:C6:F3:4A:7B:95:2F:CF:C0:20:D0:B8:84 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a59bee5-89f9-485c-8a59-86cfb9d5b61b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.56.4.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:f4:be:12:4d:0d:99:be:db:1d:ba:84:bb:8f:a6:48:64:7e: 21:e6:16:43:e9:45:36:7e:a5:fc:d0:a6:04:0d:2c:4e:72:dd: 4e:43:f9:5c:9d:82:bb:b9:db:8c:6d:05:db:14:35:77:2e:f3: e9:65:6b:d1:f7:25:31:4a:7a:75:43:04:22:75:3a:51:1c:84: ca:c1:17:09:89:46:e8:0b:82:c4:0f:94:a5:0c:b0:2b:1d:0d: 97:88:3e:06:08:a0:84:68:16:78:21:5c:cf:3a:78:fd:f4:d3: 9a:41:90:78:1f:7a:df:06:b7:00:b8:fd:25:fd:9a:d6:48:b4: cd:7a:45:0b:b9:ae:61:68:9d:30:52:df:a0:97:73:b7:de:be: 4f:fd:4b:86:9c:e7:3e:ce:e2:06:60:8e:d7:ae:9a:bd:88:7e: 2f:17:75:dc:f9:e3:3e:cd:90:4f:a1:4d:21:15:55:68:72:c0: 22:ab:fb:21:41:17:eb:e3:6b:0d:66:fc:5a:53:6b:bb:04:67: e4:d5:48:60:cc:ec:4b:c3:76:a4:b7:18:b4:08:bb:24:eb:fb: 01:81:60:1c:5e:ff:19:71:8d:b6:af:1c:b6:b4:0c:dd:57:69: aa:6a:7f:1b:be:cf:2b:ca:0b:00:aa:42:94:15:23:42:55:74: e3:29:c1:12 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWUKjlOKoux6+ivHo3yL2OTlCNhUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjA3MDAwMDAwWhcNMjUwMzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MGRhYzc5NTIyZjM1ZWFiNWNkOTBiN2YxYjYyNGJhYWEx MmNmNmYwZjVmOTBjYjQxNDY1ZjUzZmIzNjZjMzdmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRrD8iNLsegSyaOvpBj9e8AaoGRYAGgc6PBey+32GE4ums kGMD7wXTZ03WGEwAobAO3d35E3ZUWJIfZ5lsYViYgYIDS2VUwxOvce7TWMYYMeFx 6111x8nwgbc0ifNO3DVt6b6U435+k1DXkZCZl3iRcDDhN54IU3yVsRmuX846CtLs YbheI1PKetBnMNTOEuxusUV5fYTqeReFI1ZC9rBGr6pEZWnZx9pvvUvTjEkTXKK0 JGv9ue5bxmmoud9q4uO3AhAQDswqmPR7hq1hSDed6QWjPjycYZ5kic3Vgrj3hVkO oeOgzjWR+k8ufb+j7fNJ410EF0jdElnbelnkWvlTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3u+o4KrgWLnG80p7lS/PwCDQuIQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJhNTliZWU1LTg5ZjktNDg1Yy04YTU5LTg2Y2ZiOWQ1YjYxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACLOAQwDQYJKoZIhvcNAQELBQADggEBAEz0vhJNDZm+2x26hLuPpkhkfiHm FkPpRTZ+pfzQpgQNLE5y3U5D+Vydgru524xtBdsUNXcu8+lla9H3JTFKenVDBCJ1 OlEchMrBFwmJRugLgsQPlKUMsCsdDZeIPgYIoIRoFnghXM86eP3005pBkHgfet8G twC4/SX9mtZItM16RQu5rmFonTBS36CXc7fevk/9S4ac5z7O4gZgjteumr2Ifi8X ddz54z7NkE+hTSEVVWhywCKr+yFBF+vjaw1m/FpTa7sEZ+TVSGDM7EvDdqS3GLQI uyTr+wGBYBxe/xlxjbavHLa0DN1Xaapqfxu+zyvKCwCqQpQVI0JVdOMpwRI= -----END CERTIFICATE-----Generated at Sun Feb 16 15:12:35 2025 by rpki-client