$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42cfc8f8-a4b6-48c2-aac3-95e1116a6303.roa File: 42cfc8f8-a4b6-48c2-aac3-95e1116a6303.roa (raw, json) Hash identifier: OhkyfU5QhW3HfvEemoUT+av+PM8ThPvIXPtEQwJdnkY= Subject key identifier: A8:64:92:E7:40:F2:0C:63:36:82:F5:63:4D:95:F4:31:01:0C:C2:6B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 504070AC9B669327D9D093B74B87DB1695C4DDF6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42cfc8f8-a4b6-48c2-aac3-95e1116a6303.roa Signing time: Sat 08 Feb 2025 00:00:00 +0000 ROA not before: Sat 08 Feb 2025 00:00:00 +0000 ROA not after: Sat 15 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.166.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:40:70:ac:9b:66:93:27:d9:d0:93:b7:4b:87:db:16:95:c4:dd:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 8 00:00:00 2025 GMT Not After : Mar 15 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:81:bc:a2:fd:6c:59:04:58:c4:79:e7:00:3e: a1:e7:c0:5b:fd:ef:74:f7:cf:0a:36:79:62:87:ec: 9c:6e:2e:35:e6:66:49:e1:3f:3a:48:1e:7a:6d:d2: fc:cc:22:84:89:b3:09:53:69:6f:04:a6:c9:c5:e5: 84:cc:1f:82:b5:c5:94:00:9c:e7:65:16:3f:a8:6d: 63:79:7f:f4:36:fa:e3:b5:fe:f2:46:13:36:ee:46: e6:13:0c:fb:f5:d8:cd:e8:09:b0:59:18:96:3d:78: a0:d3:24:3d:ff:3b:ab:2e:c4:45:53:5a:07:88:27: ee:fc:e5:7b:58:bf:76:aa:ee:6c:45:bc:9a:cd:3a: a7:d9:b4:32:10:b3:37:3a:fa:21:df:9f:96:16:3c: 39:a9:be:1b:b6:bf:7d:28:0c:13:10:74:0a:c3:2a: 73:77:23:ba:b1:6b:5c:aa:62:4e:7f:e5:d7:f8:62: 8c:fb:c2:ea:e2:f9:06:7a:e1:af:4d:ec:24:f9:12: be:a9:de:36:cb:d3:c3:26:af:4a:3f:17:43:42:d8: 13:e1:62:e9:fc:36:5a:41:01:5c:12:c3:ae:e0:d1: c6:0c:d6:0a:be:c6:17:66:e3:8e:08:a7:5e:26:b7: f6:e5:2a:7c:12:b6:78:a7:12:94:a4:fe:9b:0c:41: e1:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:64:92:E7:40:F2:0C:63:36:82:F5:63:4D:95:F4:31:01:0C:C2:6B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42cfc8f8-a4b6-48c2-aac3-95e1116a6303.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.166.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6c:8a:28:c2:9e:f5:ac:d1:e8:7e:54:84:59:5b:4c:57:5c:80: 01:e1:cf:7f:e2:5a:2e:b0:59:fc:1e:99:3d:5e:a7:ba:08:ba: c4:4b:88:05:b9:65:e1:8c:10:db:2c:81:b5:4f:1d:9b:b9:6d: 47:a6:4d:21:f2:a9:6a:d1:8e:0b:13:a4:13:b6:55:fd:bf:cd: 69:2b:2a:42:1c:18:12:a8:18:c8:e6:5f:9f:bd:67:5a:70:43: a7:c8:32:dd:cd:b0:3b:e1:b8:01:3f:c5:0a:58:23:3c:1f:f5: a2:60:bc:c1:30:40:c0:91:98:15:7b:a9:95:8e:11:9f:87:19: 03:b4:65:dc:5f:d7:5e:28:6e:4c:ad:e4:bd:8a:61:a7:64:76: b1:24:b8:e1:42:7a:5b:45:9d:5a:0f:61:5d:66:d4:c8:a1:7f: 53:dd:79:1f:25:49:44:d0:e1:d4:83:34:4d:e2:cf:d5:a5:1f: ef:c7:73:c1:f7:3b:db:0e:27:41:62:d3:70:ea:5f:a2:bd:8c: 5d:21:63:57:b4:26:97:d0:fa:bd:48:14:c5:22:93:b5:15:91: b1:e4:2d:bb:16:85:45:54:10:21:cb:93:49:e6:14:4a:b6:31: 46:a0:5b:fa:da:ba:e2:7a:39:10:96:02:b2:19:fa:62:4e:3c: 92:9b:eb:82 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUEBwrJtmkyfZ0JO3S4fbFpXE3fYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjA4MDAwMDAwWhcNMjUwMzE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMDQzY2Q4N2Q3YmUzMmE3NjMyMjYxYjI1NmFiNDU3NGQ1 NTk0MTIzZGQxOTcwMjVmMDQwMzJiY2YyZDRkZWRjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCFgbyi/WxZBFjEeecAPqHnwFv973T3zwo2eWKH7JxuLjXm ZknhPzpIHnpt0vzMIoSJswlTaW8EpsnF5YTMH4K1xZQAnOdlFj+obWN5f/Q2+uO1 /vJGEzbuRuYTDPv12M3oCbBZGJY9eKDTJD3/O6suxEVTWgeIJ+785XtYv3aq7mxF vJrNOqfZtDIQszc6+iHfn5YWPDmpvhu2v30oDBMQdArDKnN3I7qxa1yqYk5/5df4 Yoz7wuri+QZ64a9N7CT5Er6p3jbL08Mmr0o/F0NC2BPhYun8NlpBAVwSw67g0cYM 1gq+xhdm444Ip14mt/blKnwStninEpSk/psMQeGtAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUqGSS50DyDGM2gvVjTZX0MQEMwmswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQyY2ZjOGY4LWE0YjYtNDhjMi1hYWMzLTk1ZTExMTZhNjMwMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAopjANBgkqhkiG9w0BAQsFAAOCAQEAbIoowp71rNHoflSEWVtMV1yAAeHP f+JaLrBZ/B6ZPV6nugi6xEuIBbll4YwQ2yyBtU8dm7ltR6ZNIfKpatGOCxOkE7ZV /b/NaSsqQhwYEqgYyOZfn71nWnBDp8gy3c2wO+G4AT/FClgjPB/1omC8wTBAwJGY FXuplY4Rn4cZA7Rl3F/XXihuTK3kvYphp2R2sSS44UJ6W0WdWg9hXWbUyKF/U915 HyVJRNDh1IM0TeLP1aUf78dzwfc72w4nQWLTcOpfor2MXSFjV7Qml9D6vUgUxSKT tRWRseQtuxaFRVQQIcuTSeYUSrYxRqBb+tq64no5EJYCshn6Yk48kpvrgg== -----END CERTIFICATE-----Generated at Sun Feb 16 15:30:12 2025 by rpki-client