$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3533c782-4a8e-4b05-b23e-e3741e9fb02c.roa File: 3533c782-4a8e-4b05-b23e-e3741e9fb02c.roa (raw, json) Hash identifier: THGtq6VtdXo9yGoGqGEBS6Hmgj6YyKnmdI5o87CbwzE= Subject key identifier: 1D:E2:28:30:8C:79:31:B3:D2:F1:01:24:0B:09:5B:A9:B8:C9:EE:72 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 42C35AE8A501E74ADA4D85F135A7FBB0BAA481AF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3533c782-4a8e-4b05-b23e-e3741e9fb02c.roa Signing time: Tue 21 Jan 2025 00:00:00 +0000 ROA not before: Tue 21 Jan 2025 00:00:00 +0000 ROA not after: Tue 25 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:c3:5a:e8:a5:01:e7:4a:da:4d:85:f1:35:a7:fb:b0:ba:a4:81:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 21 00:00:00 2025 GMT Not After : Feb 25 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:51:9a:3f:6c:ad:3b:ce:df:01:01:0d:4e:2a: 7d:7e:f5:c1:79:ca:ef:ee:df:8e:d0:48:ae:08:26: 85:02:ac:b3:c8:21:b1:6d:04:a1:c6:e8:54:a5:c0: ec:fe:b4:2b:e3:d3:66:2f:a1:fb:46:66:67:6f:75: 1b:13:1a:66:86:61:6a:2b:10:ca:48:e9:e2:f7:c7: d9:43:39:2e:0a:ef:02:c9:91:a1:da:d6:ea:1b:e1: f6:0a:29:d8:0e:54:6b:79:58:1a:6b:fa:53:ae:0b: ba:73:a3:df:d5:5c:18:97:be:9e:3f:34:32:d3:ea: 3a:d7:84:77:d6:31:8d:54:42:75:f6:d4:f9:95:df: f2:6b:df:54:1b:c6:47:ff:30:cc:d7:c2:ef:47:32: 00:a2:fb:ea:1a:91:7d:c5:16:93:50:09:84:80:72: a1:05:10:dc:01:7b:a4:c9:20:2f:f4:8f:02:5f:47: aa:9e:1b:8e:2f:c1:de:8f:01:0a:8b:f0:f4:9e:4f: 89:f6:61:ef:13:ab:07:cd:97:9e:62:b8:db:f7:a9: 80:8c:49:ae:9c:c6:76:f1:8e:2d:68:aa:01:e1:e3: c6:f2:58:1b:a9:6a:d5:5b:cf:a8:ed:ee:5d:1d:84: 7e:e6:08:a0:f7:9b:58:f4:b4:1d:3d:89:86:ad:0a: a6:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:E2:28:30:8C:79:31:B3:D2:F1:01:24:0B:09:5B:A9:B8:C9:EE:72 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3533c782-4a8e-4b05-b23e-e3741e9fb02c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.186.0/24 Signature Algorithm: sha256WithRSAEncryption d0:29:3d:fd:b7:4c:38:64:b5:61:a1:75:cb:ed:3a:a1:40:2c: 22:51:37:7f:68:e0:38:46:b6:9d:08:c2:a1:b2:c2:be:ea:3f: 1a:2b:9c:f7:9d:5b:13:29:99:da:12:a0:46:10:ca:9d:7c:09: c6:ef:8e:24:75:20:31:bf:e2:af:c0:a8:df:b9:00:19:41:c8: 35:68:1f:30:43:cd:f3:65:3c:47:e3:93:46:e0:e2:8b:c5:1a: 4a:92:01:dc:07:b4:39:fe:04:78:b1:9a:7d:ef:52:ef:dd:6a: 12:e5:ff:ed:cc:23:eb:77:08:73:54:24:88:ca:be:77:57:1b: a2:38:07:fc:c5:d8:a5:61:94:8d:6b:23:ec:6b:d7:d6:a3:6e: f1:e9:61:a7:1d:d4:bb:45:dd:35:3f:ff:66:e0:6b:3c:c1:4a: e1:8b:95:85:7d:08:e6:6a:87:80:85:e7:7a:43:af:2f:2c:dd: 68:af:f2:a8:c8:da:65:94:8a:67:44:f5:32:bf:a6:69:71:c4: 9e:9c:b5:c9:be:36:b6:64:6b:2c:fd:96:12:d5:63:74:88:51: 0d:03:e9:c2:9d:e7:cd:bb:7f:11:57:69:60:9e:8f:ce:1f:b2: fb:42:f8:c8:5c:63:10:01:7d:58:bb:35:7c:63:04:7e:d1:bd: 39:d0:d0:8c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQsNa6KUB50raTYXxNaf7sLqkga8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTIxMDAwMDAwWhcNMjUwMjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMzBkNjhlZDg2YmQzOWY2NmVhZjcwZTZiNDU4MWVlNTk2 YTVjZTUyY2I3ZDc0YmI0NzZmYzU4MmJmZGVjZDQ2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3UZo/bK07zt8BAQ1OKn1+9cF5yu/u347QSK4IJoUCrLPI IbFtBKHG6FSlwOz+tCvj02YvoftGZmdvdRsTGmaGYWorEMpI6eL3x9lDOS4K7wLJ kaHa1uob4fYKKdgOVGt5WBpr+lOuC7pzo9/VXBiXvp4/NDLT6jrXhHfWMY1UQnX2 1PmV3/Jr31Qbxkf/MMzXwu9HMgCi++oakX3FFpNQCYSAcqEFENwBe6TJIC/0jwJf R6qeG44vwd6PAQqL8PSeT4n2Ye8TqwfNl55iuNv3qYCMSa6cxnbxji1oqgHh48by WBupatVbz6jt7l0dhH7mCKD3m1j0tB09iYatCqZNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHeIoMIx5MbPS8QEkCwlbqbjJ7nIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1MzNjNzgyLTRhOGUtNGIwNS1iMjNlLWUzNzQxZTlmYjAyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTbowDQYJKoZIhvcNAQELBQADggEBANApPf23TDhktWGhdcvtOqFALCJR N39o4DhGtp0IwqGywr7qPxornPedWxMpmdoSoEYQyp18CcbvjiR1IDG/4q/AqN+5 ABlByDVoHzBDzfNlPEfjk0bg4ovFGkqSAdwHtDn+BHixmn3vUu/dahLl/+3MI+t3 CHNUJIjKvndXG6I4B/zF2KVhlI1rI+xr19ajbvHpYacd1LtF3TU//2bgazzBSuGL lYV9COZqh4CF53pDry8s3Wiv8qjI2mWUimdE9TK/pmlxxJ6ctcm+NrZkayz9lhLV Y3SIUQ0D6cKd5827fxFXaWCej84fsvtC+MhcYxABfVi7NXxjBH7RvTnQ0Iw= -----END CERTIFICATE-----Generated at Sun Feb 16 15:45:37 2025 by rpki-client