$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cf5f416-8b16-485d-b4ee-307762770eef.roa File: 3cf5f416-8b16-485d-b4ee-307762770eef.roa (raw, json) Hash identifier: jpVCMtrvSPaxf2gAfKVnb/DX+q7HpPBFdRdRctZdiIY= Subject key identifier: 46:C9:66:F2:3B:8D:41:80:26:98:30:29:C0:9F:B0:E4:F7:6A:7E:EB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3CDF65FCC0E7E63BF34A3E17E7286B6909F281 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cf5f416-8b16-485d-b4ee-307762770eef.roa Signing time: Tue 21 Jan 2025 00:00:00 +0000 ROA not before: Tue 21 Jan 2025 00:00:00 +0000 ROA not after: Tue 25 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.156.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:df:65:fc:c0:e7:e6:3b:f3:4a:3e:17:e7:28:6b:69:09:f2:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 21 00:00:00 2025 GMT Not After : Feb 25 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:01:ba:cb:07:ba:65:31:b5:64:ba:e9:33:09: 2b:bd:64:4f:eb:69:e3:ea:ae:e0:42:23:44:00:7f: 2c:e7:4e:bb:dd:03:ec:49:b7:6d:64:80:6f:97:2a: 22:9b:bf:e7:62:39:16:71:10:1f:05:7c:14:a3:bf: 8f:d5:2c:bb:7f:15:d8:16:2e:3b:61:df:27:d3:7f: 9c:52:53:e0:26:be:93:14:d3:40:ea:c9:eb:06:f1: 1f:b4:42:ae:55:02:bc:a7:ba:d3:19:f8:da:d7:a8: 4a:3f:22:a7:f7:dd:36:32:90:13:47:1d:11:92:56: 87:f8:47:31:20:8f:f4:20:63:ae:2e:27:12:0f:05: 4a:d3:a9:7c:43:c6:96:f1:d3:88:fe:ab:78:b4:91: 03:a8:94:20:51:52:f6:d0:43:31:a0:80:ac:7b:8d: f5:c3:fd:e5:0d:ce:c0:4c:d5:28:41:e4:63:96:68: 3a:2d:47:58:6f:4b:1a:15:1b:e8:5c:3f:2b:6a:5d: ea:5c:7b:50:d0:fe:64:54:b8:12:50:83:58:74:95: a4:79:2d:15:53:e5:3e:aa:48:6b:d9:01:87:48:d5: 5f:d0:7a:6f:d2:f2:59:2f:69:02:47:a1:6e:fe:71: e3:bd:fa:49:ee:1f:35:96:17:85:12:25:c4:85:4c: 0b:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:C9:66:F2:3B:8D:41:80:26:98:30:29:C0:9F:B0:E4:F7:6A:7E:EB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cf5f416-8b16-485d-b4ee-307762770eef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.156.192.0/18 Signature Algorithm: sha256WithRSAEncryption 1c:6e:04:e3:37:4d:d2:91:45:52:28:b1:42:ca:44:2a:67:71: 3b:46:62:00:38:7c:3d:af:56:60:31:ed:e7:e3:dc:dd:81:49: f1:f7:be:a2:8e:96:aa:38:68:fa:5a:c5:8f:45:50:f3:80:3a: 17:86:ee:ee:82:aa:27:d7:5c:fb:70:bb:20:65:2d:b9:b5:8c: 42:f3:18:81:0a:88:11:2d:d0:61:86:38:54:73:89:e1:bc:cb: ec:fc:19:7c:1f:92:35:73:e3:0e:e9:36:13:2e:49:5c:2e:46: 7d:71:bf:b5:e1:82:be:78:18:df:3b:6e:ea:c6:82:34:da:cd: 1d:cd:71:c7:2e:e4:4e:82:ac:02:8f:76:6e:5e:7a:ee:76:af: 4a:a5:07:97:b1:40:2e:a2:0d:73:f6:7b:13:22:0f:c6:0d:cb: 86:40:c9:06:58:bb:01:29:32:42:dd:af:1a:d0:57:e3:b7:87: ff:8e:c7:e0:91:c4:14:08:71:68:e5:16:b8:19:86:38:ea:36: 3c:ca:9f:11:c3:a9:03:03:01:a3:92:22:c9:ff:89:49:32:5f: 0d:77:ab:fd:56:90:aa:37:47:bf:12:54:e8:4d:45:8d:5c:ec: b1:c2:fa:9a:39:f4:84:65:5f:37:ee:92:09:2c:10:d6:f7:6e: eb:28:72:ab -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITPN9l/MDn5jvzSj4X5yhraQnygTANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTAxMjEwMDAwMDBaFw0yNTAyMjUyMzU5NTla MHoxSTBHBgNVBAUTQGYzYTNlNjc4YWE5YzA5MmYyZTEwNDU4ODcwMzNkODRiODNi ZTNlNWVlY2Q1NjlhMjIzMmI0NTI4NDk5OWE1ZmMxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAJoBussHumUxtWS66TMJK71kT+tp4+qu4EIjRAB/LOdOu90D 7Em3bWSAb5cqIpu/52I5FnEQHwV8FKO/j9Usu38V2BYuO2HfJ9N/nFJT4Ca+kxTT QOrJ6wbxH7RCrlUCvKe60xn42teoSj8ip/fdNjKQE0cdEZJWh/hHMSCP9CBjri4n Eg8FStOpfEPGlvHTiP6reLSRA6iUIFFS9tBDMaCArHuN9cP95Q3OwEzVKEHkY5Zo Oi1HWG9LGhUb6Fw/K2pd6lx7UND+ZFS4ElCDWHSVpHktFVPlPqpIa9kBh0jVX9B6 b9LyWS9pAkehbv5x4736Se4fNZYXhRIlxIVMC30CAwEAAaOCArEwggKtMB0GA1Ud DgQWBBRGyWbyO41BgCaYMCnAn7Dk92p+6zAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvM2NmNWY0MTYtOGIxNi00ODVkLWI0ZWUtMzA3NzYyNzcwZWVmLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBmOcwDANBgkqhkiG9w0BAQsFAAOCAQEAHG4E4zdN0pFFUiixQspEKmdxO0Zi ADh8Pa9WYDHt5+Pc3YFJ8fe+oo6Wqjho+lrFj0VQ84A6F4bu7oKqJ9dc+3C7IGUt ubWMQvMYgQqIES3QYYY4VHOJ4bzL7PwZfB+SNXPjDuk2Ey5JXC5GfXG/teGCvngY 3ztu6saCNNrNHc1xxy7kToKsAo92bl567navSqUHl7FALqINc/Z7EyIPxg3LhkDJ Bli7ASkyQt2vGtBX47eH/47H4JHEFAhxaOUWuBmGOOo2PMqfEcOpAwMBo5Iiyf+J STJfDXer/VaQqjdHvxJU6E1FjVzsscL6mjn0hGVfN+6SCSwQ1vdu6yhyqw== -----END CERTIFICATE-----Generated at Sun Feb 16 15:34:53 2025 by rpki-client