$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40022edc-7d4c-49da-b461-30d23c93029d.roa File: 40022edc-7d4c-49da-b461-30d23c93029d.roa (raw, json) Hash identifier: qB66vmyi7Rpty2lcB/04Ww1nfITG9nnihOyqCeNIGTE= Subject key identifier: 04:98:39:7D:C5:78:58:83:B7:BE:E6:25:66:4A:30:AA:55:4A:24:14 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1932DC5F231038E8C82B658978A6AFD07B24DACF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40022edc-7d4c-49da-b461-30d23c93029d.roa Signing time: Fri 24 Jan 2025 00:00:00 +0000 ROA not before: Fri 24 Jan 2025 00:00:00 +0000 ROA not after: Fri 28 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.79.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:32:dc:5f:23:10:38:e8:c8:2b:65:89:78:a6:af:d0:7b:24:da:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 24 00:00:00 2025 GMT Not After : Feb 28 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:d9:15:85:2b:83:aa:da:c0:21:77:65:61:7d: 14:da:4b:a6:a0:00:9a:37:bc:4f:d7:4f:64:67:af: 92:58:eb:1a:35:22:44:87:26:ac:57:b4:ac:7b:7f: bb:ba:b7:e2:9e:ce:e2:6a:54:ac:e1:3b:2e:a2:da: f4:a5:81:11:17:37:54:c7:e9:01:b9:8e:37:d0:99: 2b:e3:fb:a1:ff:e6:81:db:ef:73:1f:4a:18:be:05: f5:cf:72:e5:87:f9:bc:c0:4c:5e:f9:db:45:71:84: 7f:98:29:3e:e6:54:ab:db:87:e4:ee:9b:83:01:8b: d6:6d:e8:ee:4a:d8:f3:0c:77:6a:06:3e:e8:d5:78: 3a:be:db:64:bc:49:9b:fd:e3:77:0d:5d:ad:fa:1b: f7:95:b7:28:52:73:f6:c5:73:34:ee:6a:50:90:ff: fd:f5:f8:3d:39:7b:c2:dc:3a:97:47:4f:4c:d4:d5: ba:50:05:23:ee:35:6b:a7:e9:ec:5f:a6:a7:d3:34: 84:48:51:d1:e7:f9:62:58:55:f9:ae:27:3f:a4:e4: 91:e2:cf:7c:2f:d4:43:9e:66:e7:ca:73:ae:97:99: 3b:ca:21:5e:27:cb:04:6c:2d:be:bf:4d:14:21:c1: 7b:f5:90:cb:bc:a7:e3:46:5f:4c:12:4d:48:31:b6: 24:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:98:39:7D:C5:78:58:83:B7:BE:E6:25:66:4A:30:AA:55:4A:24:14 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40022edc-7d4c-49da-b461-30d23c93029d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.79.0.0/16 Signature Algorithm: sha256WithRSAEncryption 72:8d:ab:28:ec:23:d7:ed:ca:a1:16:16:3c:0e:21:53:ac:5f: 41:7f:4f:31:d2:80:70:ae:56:60:47:6c:61:80:09:a2:05:b2: 41:98:08:01:4c:98:25:cd:c7:76:8a:aa:e0:f7:25:e3:71:26: c2:87:4b:c6:8d:32:d8:11:d2:5b:29:68:d1:b8:0d:3b:eb:3a: 12:27:9b:11:06:31:71:36:4b:11:5b:f0:8d:52:c0:7c:1c:d6: 90:c4:2e:63:40:68:83:98:38:f9:58:c1:22:40:f6:b6:7b:22: ad:1c:a6:cb:11:7a:67:1a:f8:8f:a8:cf:33:e7:14:39:93:49: 83:c9:23:25:1f:4d:b5:2b:da:47:c1:0e:bb:51:18:32:50:9d: 53:e4:03:34:67:5c:dd:99:e2:bf:b4:7f:d5:7f:3c:20:95:2d: 86:44:03:92:eb:77:88:8f:e8:0e:7b:97:84:ce:be:e4:e0:60: ec:f7:cf:e1:2d:ce:49:3b:03:45:4b:ae:e4:6b:0e:51:c8:d0: c5:95:0a:74:c8:a3:c9:8d:b6:42:2b:e8:f0:f1:0f:63:fa:dc: b4:a5:ce:a6:99:18:a3:d4:e6:d9:5a:a1:87:c8:2b:49:d2:2c: 34:4e:83:5a:0e:88:6f:27:dd:6d:b4:c2:47:de:50:26:31:8a: 83:df:a9:b2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGTLcXyMQOOjIK2WJeKav0Hsk2s8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTI0MDAwMDAwWhcNMjUwMjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZjkwYzM4ZGJmNzVmN2MwMTViMWZkNzhlMDhmYzBiOTJi N2JiNTFkMWY1NTZmMWZiZWY3OTQ1Y2U2MmQxODNjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCS2RWFK4Oq2sAhd2VhfRTaS6agAJo3vE/XT2Rnr5JY6xo1 IkSHJqxXtKx7f7u6t+KezuJqVKzhOy6i2vSlgREXN1TH6QG5jjfQmSvj+6H/5oHb 73MfShi+BfXPcuWH+bzATF7520VxhH+YKT7mVKvbh+Tum4MBi9Zt6O5K2PMMd2oG PujVeDq+22S8SZv943cNXa36G/eVtyhSc/bFczTualCQ//31+D05e8LcOpdHT0zU 1bpQBSPuNWun6exfpqfTNIRIUdHn+WJYVfmuJz+k5JHiz3wv1EOeZufKc66XmTvK IV4nywRsLb6/TRQhwXv1kMu8p+NGX0wSTUgxtiR1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUBJg5fcV4WIO3vuYlZkowqlVKJBQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQwMDIyZWRjLTdkNGMtNDlkYS1iNDYxLTMwZDIzYzkzMDI5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4TzANBgkqhkiG9w0BAQsFAAOCAQEAco2rKOwj1+3KoRYWPA4hU6xfQX9P MdKAcK5WYEdsYYAJogWyQZgIAUyYJc3Hdoqq4Pcl43EmwodLxo0y2BHSWylo0bgN O+s6EiebEQYxcTZLEVvwjVLAfBzWkMQuY0Bog5g4+VjBIkD2tnsirRymyxF6Zxr4 j6jPM+cUOZNJg8kjJR9NtSvaR8EOu1EYMlCdU+QDNGdc3Zniv7R/1X88IJUthkQD kut3iI/oDnuXhM6+5OBg7PfP4S3OSTsDRUuu5GsOUcjQxZUKdMijyY22Qivo8PEP Y/rctKXOppkYo9Tm2Vqhh8grSdIsNE6DWg6IbyfdbbTCR95QJjGKg9+psg== -----END CERTIFICATE-----Generated at Sun Feb 16 15:10:35 2025 by rpki-client