$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3de3c612-36d7-4d0e-8a61-dc9891466376.roa File: 3de3c612-36d7-4d0e-8a61-dc9891466376.roa (raw, json) Hash identifier: MUMIc9c/TPvzMOBJnxAU8KDrx/OICg9gV2sE9oLkAp4= Subject key identifier: 20:E4:61:54:5D:6B:D4:35:FA:15:98:73:3E:F1:64:B6:A4:C5:86:4F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A7A1C2EFBB861E0B9B6E1A14D1DE283892DD291 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3de3c612-36d7-4d0e-8a61-dc9891466376.roa Signing time: Fri 24 Jan 2025 00:00:00 +0000 ROA not before: Fri 24 Jan 2025 00:00:00 +0000 ROA not after: Fri 28 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 63.246.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:7a:1c:2e:fb:b8:61:e0:b9:b6:e1:a1:4d:1d:e2:83:89:2d:d2:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 24 00:00:00 2025 GMT Not After : Feb 28 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:26:ae:84:c2:09:50:0c:e2:2e:18:f7:a0:a7: 4c:74:85:28:97:7b:e1:e1:44:7a:a4:37:c0:da:84: 4e:98:c9:26:5f:81:b5:58:b3:be:b8:34:e5:bc:67: 7c:0c:1f:59:eb:1a:c0:29:44:e9:63:e1:80:dd:5b: ac:5e:f3:ea:8f:f6:53:75:d2:30:a0:0a:e5:b9:e1: 28:dd:c7:b4:26:59:42:ee:6d:2c:25:13:47:4c:2e: 81:16:54:3d:e6:1f:ce:06:fd:39:11:8a:26:e3:5b: 9c:16:1b:23:ff:33:ae:ff:db:a6:f4:64:0d:4d:50: 16:77:c9:c9:4f:f7:c4:fb:39:67:b8:97:db:cc:44: 63:fd:95:ec:54:bc:1b:a4:6b:67:d3:f6:cc:f1:77: a4:78:20:e3:4f:78:2f:d5:9a:75:67:f3:77:25:a7: 99:ca:87:65:cd:3d:9b:82:6b:aa:e4:ae:88:67:eb: ee:21:26:bb:a1:c8:06:74:2b:79:64:12:10:66:7a: c9:73:19:33:34:0e:98:5b:7d:70:5e:e3:d6:92:d2: 7d:e4:87:56:e7:0a:07:4f:33:d7:45:76:d4:c3:1f: 18:c5:d9:49:f7:46:e8:f7:97:f3:51:84:75:fc:21: c4:0f:1e:c4:57:66:3b:fa:8a:0a:ce:7d:9c:39:25: 29:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:E4:61:54:5D:6B:D4:35:FA:15:98:73:3E:F1:64:B6:A4:C5:86:4F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3de3c612-36d7-4d0e-8a61-dc9891466376.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 63.246.113.0/24 Signature Algorithm: sha256WithRSAEncryption 66:58:88:d6:c2:c2:9f:23:09:29:26:21:19:c3:8d:f4:22:4b: f3:89:52:3c:d1:38:2f:ef:89:ca:9f:31:71:73:0c:16:f1:83: 64:2e:61:a4:25:74:1a:37:fd:94:51:1f:67:7d:55:76:b3:2f: b1:6b:12:08:fe:19:51:32:42:b5:2a:ad:be:42:1a:b4:97:83: b7:9e:0d:83:d6:6c:2a:27:92:f2:f6:e8:1e:d7:a9:dd:fc:d5: 48:c2:a1:c3:03:bf:af:1a:c7:a5:96:c1:aa:b6:4c:0b:22:a8: d5:bd:6c:4b:b5:4d:4f:94:25:90:bd:2f:83:9a:66:b2:a7:c4: 7a:5b:4e:17:ae:4a:bf:ef:89:45:e0:d5:a3:1a:c4:93:5f:43: b5:ac:67:50:54:82:e9:99:30:01:0a:a0:94:0e:96:41:f6:2f: a8:30:78:33:b6:4f:35:6b:3c:9b:14:9f:47:f9:51:0e:71:75: de:72:e7:07:22:9d:5b:4d:83:98:66:3d:86:36:3b:eb:47:b3: 86:fd:ca:d7:f4:ef:5a:94:53:a1:8d:8f:8f:6b:ea:2b:db:75: 30:d3:a7:42:ed:41:b9:6b:37:25:df:82:99:80:8e:a0:9a:66: 58:f7:c6:0c:58:bc:8c:8c:01:fb:6e:af:8d:d6:69:d9:c6:05: cb:e2:60:d0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOnocLvu4YeC5tuGhTR3ig4kt0pEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTI0MDAwMDAwWhcNMjUwMjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOWE5NmNlMGEyZjk0MjU3OTE0YTkzYzBhM2E3NDMwNmEz NGQ2NjhjM2NhM2Q0YTRmMzE0YzJhZWRmOTA4NmUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0Jq6EwglQDOIuGPegp0x0hSiXe+HhRHqkN8DahE6YySZf gbVYs764NOW8Z3wMH1nrGsApROlj4YDdW6xe8+qP9lN10jCgCuW54Sjdx7QmWULu bSwlE0dMLoEWVD3mH84G/TkRiibjW5wWGyP/M67/26b0ZA1NUBZ3yclP98T7OWe4 l9vMRGP9lexUvBuka2fT9szxd6R4IONPeC/VmnVn83clp5nKh2XNPZuCa6rkrohn 6+4hJruhyAZ0K3lkEhBmeslzGTM0DphbfXBe49aS0n3kh1bnCgdPM9dFdtTDHxjF 2Un3Ruj3l/NRhHX8IcQPHsRXZjv6igrOfZw5JSnJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUIORhVF1r1DX6FZhzPvFktqTFhk8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNkZTNjNjEyLTM2ZDctNGQwZS04YTYxLWRjOTg5MTQ2NjM3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA/9nEwDQYJKoZIhvcNAQELBQADggEBAGZYiNbCwp8jCSkmIRnDjfQiS/OJ UjzROC/vicqfMXFzDBbxg2QuYaQldBo3/ZRRH2d9VXazL7FrEgj+GVEyQrUqrb5C GrSXg7eeDYPWbConkvL26B7Xqd381UjCocMDv68ax6WWwaq2TAsiqNW9bEu1TU+U JZC9L4OaZrKnxHpbTheuSr/viUXg1aMaxJNfQ7WsZ1BUgumZMAEKoJQOlkH2L6gw eDO2TzVrPJsUn0f5UQ5xdd5y5wcinVtNg5hmPYY2O+tHs4b9ytf071qUU6GNj49r 6ivbdTDTp0LtQblrNyXfgpmAjqCaZlj3xgxYvIyMAftur43WadnGBcviYNA= -----END CERTIFICATE-----Generated at Sun Feb 16 15:23:50 2025 by rpki-client