$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2af70416-397a-4ea4-b7b1-ad7e045c72b6.roa File: 2af70416-397a-4ea4-b7b1-ad7e045c72b6.roa (raw, json) Hash identifier: NQZiOQ0mBysbMl//DDs2emmr8SMFdPDvFUZcInXCpHY= Subject key identifier: F7:AA:39:FF:43:31:31:40:77:55:A7:FA:AD:C7:B4:EB:B8:D3:DF:68 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 59DED182DF29EFE6A7E85CC44521EDCB237FBB21 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2af70416-397a-4ea4-b7b1-ad7e045c72b6.roa Signing time: Wed 12 Feb 2025 00:00:00 +0000 ROA not before: Wed 12 Feb 2025 00:00:00 +0000 ROA not after: Wed 19 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.134.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:de:d1:82:df:29:ef:e6:a7:e8:5c:c4:45:21:ed:cb:23:7f:bb:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 12 00:00:00 2025 GMT Not After : Mar 19 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ce:fc:3a:ac:8f:89:a4:f8:aa:b2:78:c4:cc: 9c:14:ec:fd:c7:ca:7c:44:f2:e0:ca:df:b9:3c:bd: 96:f9:8f:32:5b:46:03:db:e4:a9:d1:7d:17:83:de: e8:d0:88:be:a9:52:3c:37:fb:3b:ee:c4:0b:bd:dc: 26:06:f6:25:82:e9:ee:22:96:44:70:fc:50:bb:b9: 18:75:6f:43:d6:a8:32:a7:28:8e:a6:76:72:b6:b0: 91:f8:06:ce:03:71:ae:1c:2e:b4:f3:2c:f3:1d:cd: 65:6b:c0:53:d8:bf:8e:c5:d2:25:fc:71:60:8e:be: 03:c2:80:33:82:23:25:0a:b9:d7:a7:e5:3b:3c:19: b6:e6:e8:0d:c1:d3:a7:fc:d2:ac:87:90:5f:0c:99: 7c:77:f0:9c:0d:ca:da:71:28:e2:94:b7:e2:5c:85: 30:38:15:70:75:9f:63:9e:b5:4e:c4:c2:42:e4:d3: 9d:ff:ed:df:d7:60:07:ff:1e:2e:e8:05:a5:44:e2: e1:e0:10:5a:67:8f:5a:f2:d3:52:90:6b:03:4d:27: f6:c8:a0:f4:c2:b1:6a:39:dd:5b:7f:f2:0c:0e:c3: 16:40:da:07:16:4f:93:ff:e3:c8:a3:61:fa:26:97: 46:a4:9a:dc:be:a9:04:25:1a:57:38:0d:a0:ae:d6: a7:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:AA:39:FF:43:31:31:40:77:55:A7:FA:AD:C7:B4:EB:B8:D3:DF:68 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2af70416-397a-4ea4-b7b1-ad7e045c72b6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.134.0.0/16 Signature Algorithm: sha256WithRSAEncryption 20:26:ec:5b:83:32:4f:b1:5d:e7:9b:3e:95:71:ad:a5:67:0b: 8c:69:ae:b2:70:f0:46:10:bd:d3:a6:e4:39:a6:72:80:bb:c7: d9:ec:99:ee:67:e9:fa:08:1e:cc:d6:72:c1:2f:b0:5d:63:8a: 13:e6:93:55:32:5c:2f:ed:95:ef:61:6c:ea:cf:ce:ba:e6:6f: 39:95:ee:5b:da:56:a9:e7:be:df:01:b3:96:ed:44:5a:81:a9: f6:b6:fb:88:8a:dd:ef:bc:e0:9d:19:12:0e:a4:6e:6e:c3:42: e5:6a:c2:cc:6d:cd:4b:4a:d7:61:cb:39:d5:49:40:0d:7e:8d: 7c:de:af:6d:df:b6:3f:05:5c:6f:c3:3e:ab:2b:a4:21:b6:79: 5d:21:64:02:a8:19:38:0b:60:0b:3d:3f:c9:69:91:43:a1:49: 0a:3d:0e:f7:5e:2d:02:d4:ee:05:af:07:4a:89:14:e6:18:37: e9:94:cd:55:d6:8b:10:c5:67:32:f3:bc:d9:86:a3:b2:06:52: f9:87:75:8e:46:dd:93:a9:23:fd:37:f2:82:20:f9:eb:86:4f: 21:07:b6:16:c7:7a:66:e0:08:ca:56:c1:28:28:35:7d:3c:56: 36:19:71:ef:c1:0b:37:ae:5d:36:8f:66:08:ec:88:76:81:f6: dd:c9:d9:59 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWd7Rgt8p7+an6FzERSHtyyN/uyEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjEyMDAwMDAwWhcNMjUwMzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYWVjMzhmNjYyNWZjYTA2NTgzY2JmMGE0YjlmOWY0MzEw MWQ4N2E4ZTRjNDU4ZGUwMDFjZjYwZTcyNDBjYzgzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOzvw6rI+JpPiqsnjEzJwU7P3HynxE8uDK37k8vZb5jzJb RgPb5KnRfReD3ujQiL6pUjw3+zvuxAu93CYG9iWC6e4ilkRw/FC7uRh1b0PWqDKn KI6mdnK2sJH4Bs4Dca4cLrTzLPMdzWVrwFPYv47F0iX8cWCOvgPCgDOCIyUKuden 5Ts8Gbbm6A3B06f80qyHkF8MmXx38JwNytpxKOKUt+JchTA4FXB1n2OetU7EwkLk 053/7d/XYAf/Hi7oBaVE4uHgEFpnj1ry01KQawNNJ/bIoPTCsWo53Vt/8gwOwxZA 2gcWT5P/48ijYfoml0akmty+qQQlGlc4DaCu1qcZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU96o5/0MxMUB3Vaf6rce067jT32gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJhZjcwNDE2LTM5N2EtNGVhNC1iN2IxLWFkN2UwNDVjNzJiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2hjANBgkqhkiG9w0BAQsFAAOCAQEAICbsW4MyT7Fd55s+lXGtpWcLjGmu snDwRhC906bkOaZygLvH2eyZ7mfp+ggezNZywS+wXWOKE+aTVTJcL+2V72Fs6s/O uuZvOZXuW9pWqee+3wGzlu1EWoGp9rb7iIrd77zgnRkSDqRubsNC5WrCzG3NS0rX Ycs51UlADX6NfN6vbd+2PwVcb8M+qyukIbZ5XSFkAqgZOAtgCz0/yWmRQ6FJCj0O 914tAtTuBa8HSokU5hg36ZTNVdaLEMVnMvO82YajsgZS+Yd1jkbdk6kj/TfygiD5 64ZPIQe2Fsd6ZuAIylbBKCg1fTxWNhlx78ELN65dNo9mCOyIdoH23cnZWQ== -----END CERTIFICATE-----Generated at Sun Feb 16 15:51:27 2025 by rpki-client