$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3589350f-7992-407d-b32f-3238cdd65087.roa File: 3589350f-7992-407d-b32f-3238cdd65087.roa (raw, json) Hash identifier: q4JeF/f7px1iGu2HaUJYbiUGW7FCZT44QM/5AiAz0kk= Subject key identifier: 74:52:5F:8F:A3:15:F7:68:54:C2:28:AB:6A:00:7B:D1:35:FB:08:62 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5395FBE4C51462431772BE5C89721AEEFC75147F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3589350f-7992-407d-b32f-3238cdd65087.roa Signing time: Mon 13 Jan 2025 00:00:00 +0000 ROA not before: Mon 13 Jan 2025 00:00:00 +0000 ROA not after: Mon 17 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 72.44.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:95:fb:e4:c5:14:62:43:17:72:be:5c:89:72:1a:ee:fc:75:14:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 13 00:00:00 2025 GMT Not After : Feb 17 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:43:80:f7:ca:67:bc:2f:e5:f5:fe:a0:a4:ad: 37:dd:91:f0:38:8e:04:93:1d:f9:a6:53:4b:02:30: 6b:67:8d:80:ee:3a:1d:62:8f:9e:33:6b:f5:48:98: 2c:08:b1:2d:20:72:8d:00:9a:90:c3:1c:0a:23:9e: 2f:87:37:01:69:79:1c:ff:a2:b7:fc:27:1b:42:cf: d7:0d:51:d7:8b:fa:2b:86:e0:e9:d8:3d:8b:8d:6c: 2e:4a:b9:d3:29:fd:1b:93:7a:2e:0b:ed:42:0f:e6: 1d:d5:ef:cf:f2:e4:50:8a:49:42:52:c9:13:17:a4: 4c:7d:6e:e8:f3:8c:06:86:8e:34:04:25:32:77:30: 1b:14:2f:05:83:82:95:1e:1a:95:97:39:03:43:3b: 8d:3c:5a:78:b5:cb:36:18:9e:33:23:cd:5f:ca:4e: 95:08:ea:4e:c0:20:ba:82:93:b5:d9:41:d9:8f:7a: b6:a8:bd:b3:d7:37:66:91:37:79:46:30:bd:4b:b4: af:34:3f:6c:79:88:4c:19:e5:1d:f6:60:d5:c7:4e: 8d:53:f4:0b:f9:f1:a7:09:d6:5b:53:a2:58:a2:6b: d1:9f:a3:da:42:35:1d:f4:7a:63:95:0a:c7:06:bb: b7:8d:32:5e:eb:d5:fc:c9:77:4d:63:af:b8:64:7d: 72:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:52:5F:8F:A3:15:F7:68:54:C2:28:AB:6A:00:7B:D1:35:FB:08:62 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3589350f-7992-407d-b32f-3238cdd65087.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.44.40.0/21 Signature Algorithm: sha256WithRSAEncryption bc:a1:08:8e:d2:d5:bc:26:e1:6e:ec:3a:db:97:03:a6:85:ef: 15:31:5e:bf:a3:1f:76:ca:a8:c4:90:40:f0:be:2e:3e:bb:5a: 9b:2c:d2:7b:b2:54:68:28:6e:f9:bb:bd:4c:33:b0:56:27:f9: ac:83:05:68:f7:bf:45:b9:65:e9:bb:76:95:dd:16:74:77:58: e3:cf:ef:50:1b:d9:55:72:a3:5e:48:7b:28:ba:ea:7e:69:25: 8a:d7:3e:69:09:a4:1f:2d:b5:4b:9d:77:89:3b:6e:6b:74:bb: 7e:45:b3:df:fa:45:a9:63:1c:ec:00:b4:ca:bd:58:94:32:54: 7e:33:3c:6a:b4:76:36:29:7c:18:13:f2:21:e4:b7:86:8f:fa: 8d:2c:be:c1:5c:40:12:9d:47:1d:c3:00:d7:1e:cc:2d:e6:1e: 38:7a:3f:a3:67:b6:d7:87:ed:18:4c:3e:b7:11:60:7a:fd:6e: 59:ad:16:4c:6c:a8:3d:4c:b6:ec:40:13:9d:ce:35:34:70:8a: 4e:c8:b6:ee:29:ad:73:c5:8c:eb:be:ee:a7:37:ef:7c:60:7a: 9c:3a:b4:70:41:9c:eb:e1:c7:4b:32:46:ef:f2:f1:2d:ab:64: f3:9b:ea:73:55:22:4d:ff:ca:cf:54:fc:3b:c4:1e:45:b0:1f: f1:38:79:08 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUU5X75MUUYkMXcr5ciXIa7vx1FH8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTEzMDAwMDAwWhcNMjUwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNjRmMjcxYzM4ZGJkNGI0NWZlY2ZmOTA4MDAzNzQ0MGZk MjAzNmJiYWEwMjI0OGYxOGZlN2UwZDgyMDE4NjQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXQ4D3yme8L+X1/qCkrTfdkfA4jgSTHfmmU0sCMGtnjYDu Oh1ij54za/VImCwIsS0gco0AmpDDHAojni+HNwFpeRz/orf8JxtCz9cNUdeL+iuG 4OnYPYuNbC5KudMp/RuTei4L7UIP5h3V78/y5FCKSUJSyRMXpEx9bujzjAaGjjQE JTJ3MBsULwWDgpUeGpWXOQNDO408Wni1yzYYnjMjzV/KTpUI6k7AILqCk7XZQdmP eraovbPXN2aRN3lGML1LtK80P2x5iEwZ5R32YNXHTo1T9Av58acJ1ltToliia9Gf o9pCNR30emOVCscGu7eNMl7r1fzJd01jr7hkfXInAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdFJfj6MV92hUwiiragB70TX7CGIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1ODkzNTBmLTc5OTItNDA3ZC1iMzJmLTMyMzhjZGQ2NTA4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANILCgwDQYJKoZIhvcNAQELBQADggEBALyhCI7S1bwm4W7sOtuXA6aF7xUx Xr+jH3bKqMSQQPC+Lj67Wpss0nuyVGgobvm7vUwzsFYn+ayDBWj3v0W5Zem7dpXd FnR3WOPP71Ab2VVyo15Ieyi66n5pJYrXPmkJpB8ttUudd4k7bmt0u35Fs9/6Ralj HOwAtMq9WJQyVH4zPGq0djYpfBgT8iHkt4aP+o0svsFcQBKdRx3DANcezC3mHjh6 P6NntteH7RhMPrcRYHr9blmtFkxsqD1MtuxAE53ONTRwik7Itu4prXPFjOu+7qc3 73xgepw6tHBBnOvhx0syRu/y8S2rZPOb6nNVIk3/ys9U/DvEHkWwH/E4eQg= -----END CERTIFICATE-----Generated at Wed Feb 5 09:44:57 2025 by rpki-client