$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/357cc8cb-3922-4040-b959-cd8b8bdf549b.roa File: 357cc8cb-3922-4040-b959-cd8b8bdf549b.roa (raw, json) Hash identifier: z1QosdyORjhN2+XCjzc+bPU9zYUMll37IyuUXHMrI4E= Subject key identifier: 1E:13:90:A4:54:90:59:D6:26:D3:75:58:9C:C7:FA:D1:3F:2A:65:B9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1EB28152612E4F2D58DB3679EFDDF294A2CCD4ED Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/357cc8cb-3922-4040-b959-cd8b8bdf549b.roa Signing time: Mon 13 Jan 2025 00:00:00 +0000 ROA not before: Mon 13 Jan 2025 00:00:00 +0000 ROA not after: Mon 17 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.21.32.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:b2:81:52:61:2e:4f:2d:58:db:36:79:ef:dd:f2:94:a2:cc:d4:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 13 00:00:00 2025 GMT Not After : Feb 17 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ad:25:42:63:c7:a8:45:37:4e:62:66:58:2f: e7:51:38:17:20:34:fe:7a:97:3b:fa:e6:0c:9b:85: ea:a6:0d:12:0f:9e:ad:1a:5e:8e:61:33:69:bd:19: 7f:20:11:d7:4d:b3:f2:79:37:09:c0:7b:a3:5f:b3: b9:ce:47:c2:f6:12:c8:0a:27:dc:b5:ae:cc:8d:4b: da:5c:c9:9f:0d:6e:24:11:76:91:b3:c2:94:08:36: 74:17:7b:4a:03:2a:f7:34:f0:af:36:6c:d1:81:ed: e1:49:98:24:52:ce:92:86:90:31:b3:13:dc:ad:27: af:79:ce:f8:f2:62:b9:e0:2f:d1:94:14:4f:f1:ca: 50:28:b2:ff:5f:f0:c7:af:80:8e:55:9f:fa:7f:dd: 8e:83:c9:e3:0d:66:72:7e:9f:bf:7e:97:3c:ad:de: b1:61:26:0f:13:e0:26:bd:20:cc:1c:b9:6d:93:56: 98:c1:80:0e:c5:28:90:94:a0:13:a5:3b:33:fa:24: bc:c1:79:41:8c:79:20:38:33:1e:8b:a1:f3:08:e1: 00:da:e7:ae:a2:84:e9:7f:1d:03:98:21:7b:90:0f: 5e:86:23:a4:c4:b0:95:9f:ad:8c:4d:86:51:ad:89: 86:3e:b3:c2:31:bf:eb:16:c5:48:44:15:2a:4f:76: 9a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:13:90:A4:54:90:59:D6:26:D3:75:58:9C:C7:FA:D1:3F:2A:65:B9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/357cc8cb-3922-4040-b959-cd8b8bdf549b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.21.32.0/21 Signature Algorithm: sha256WithRSAEncryption 38:56:4a:9d:24:71:a8:6b:8e:15:52:3a:d2:4e:fd:f1:ae:2e: 3c:15:b0:12:17:a2:b6:cd:79:0e:6c:2d:a3:b0:b6:31:59:f5: 9d:7f:03:9d:df:c0:01:dc:b2:ec:a2:e2:b3:dd:76:d7:82:14: c6:10:1f:79:df:83:76:81:46:cc:64:cb:3b:9e:76:0b:25:89: a3:bf:7b:ff:0c:16:48:cf:d2:d6:e4:d3:cd:91:6e:44:fe:a0: 7f:58:e6:62:cb:8c:df:fd:24:88:6e:61:ad:a0:a9:94:56:e9: 19:bb:ca:86:52:1e:36:cf:b1:e2:79:e5:8c:2c:17:b3:c0:44: 65:85:3f:66:23:c1:a6:9c:76:df:d7:02:62:56:c4:30:9f:80: d5:57:87:c9:b7:98:b7:d7:9b:d2:97:db:d8:82:3c:02:7f:5f: 3e:51:fb:43:d2:06:84:f2:0f:5b:f1:ba:27:19:4a:8a:1d:21: 2c:8a:2b:c6:ec:fd:72:c1:4d:9b:c2:e7:e3:6f:bd:02:bb:5e: 10:69:e1:3d:8d:37:fb:35:00:8a:03:dd:c3:4e:f5:ec:fa:ad: 0a:84:a4:74:2f:8a:99:b8:48:d1:2b:09:63:76:33:f7:aa:df: 67:97:fc:84:86:2b:4d:a4:86:e7:af:48:2d:fa:45:ba:e4:58: 19:29:33:41 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHrKBUmEuTy1Y2zZ5793ylKLM1O0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTEzMDAwMDAwWhcNMjUwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTNhYzIyZjdiMThkNWZjMDc1YzgwZjIzZjAxNjc3YWYy MzhjZTE1MDIwNWNmZTY5OWI3ZGYyMGU4M2I1OGY3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHrSVCY8eoRTdOYmZYL+dROBcgNP56lzv65gybheqmDRIP nq0aXo5hM2m9GX8gEddNs/J5NwnAe6Nfs7nOR8L2EsgKJ9y1rsyNS9pcyZ8NbiQR dpGzwpQINnQXe0oDKvc08K82bNGB7eFJmCRSzpKGkDGzE9ytJ695zvjyYrngL9GU FE/xylAosv9f8MevgI5Vn/p/3Y6DyeMNZnJ+n79+lzyt3rFhJg8T4Ca9IMwcuW2T VpjBgA7FKJCUoBOlOzP6JLzBeUGMeSA4Mx6LofMI4QDa566ihOl/HQOYIXuQD16G I6TEsJWfrYxNhlGtiYY+s8Ixv+sWxUhEFSpPdpopAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHhOQpFSQWdYm03VYnMf60T8qZbkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1N2NjOGNiLTM5MjItNDA0MC1iOTU5LWNkOGI4YmRmNTQ5Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMXFSAwDQYJKoZIhvcNAQELBQADggEBADhWSp0kcahrjhVSOtJO/fGuLjwV sBIXorbNeQ5sLaOwtjFZ9Z1/A53fwAHcsuyi4rPddteCFMYQH3nfg3aBRsxkyzue dgsliaO/e/8MFkjP0tbk082RbkT+oH9Y5mLLjN/9JIhuYa2gqZRW6Rm7yoZSHjbP seJ55YwsF7PARGWFP2Yjwaacdt/XAmJWxDCfgNVXh8m3mLfXm9KX29iCPAJ/Xz5R +0PSBoTyD1vxuicZSoodISyKK8bs/XLBTZvC5+NvvQK7XhBp4T2NN/s1AIoD3cNO 9ez6rQqEpHQvipm4SNErCWN2M/eq32eX/ISGK02khuevSC36RbrkWBkpM0E= -----END CERTIFICATE-----Generated at Wed Feb 5 09:40:59 2025 by rpki-client