$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4460c29b-6af6-4d15-bee1-65deb7aba765.roa File: 4460c29b-6af6-4d15-bee1-65deb7aba765.roa (raw, json) Hash identifier: yhygX9szdSsW5sFlwhUxeDq4FbaAsMWBX0qXYieHHac= Subject key identifier: 4C:3A:08:81:7B:12:59:80:03:36:7A:1F:F9:DC:79:1E:DE:5A:1C:98 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5D89E22D79E6FD9FCB9F7A665D402E2172962C53 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4460c29b-6af6-4d15-bee1-65deb7aba765.roa Signing time: Mon 13 Jan 2025 00:00:00 +0000 ROA not before: Mon 13 Jan 2025 00:00:00 +0000 ROA not after: Mon 17 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 75.101.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:89:e2:2d:79:e6:fd:9f:cb:9f:7a:66:5d:40:2e:21:72:96:2c:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 13 00:00:00 2025 GMT Not After : Feb 17 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ec:28:48:92:b1:74:76:48:34:e1:64:66:18: 3f:4a:d6:15:84:0e:e0:40:ea:18:48:32:da:20:6c: 5a:6f:04:01:36:4f:11:f2:ae:9f:8b:b9:51:23:c6: 0d:de:ee:30:35:1e:fb:c2:a8:e8:f2:f2:e2:b8:41: 6a:e3:1d:f9:89:56:3e:11:e9:9d:90:fa:e8:10:46: 1a:f1:65:4e:22:63:0a:ad:8e:71:52:73:59:ae:3a: 9d:b1:5e:7d:1c:8e:38:04:64:74:b9:29:f6:06:d3: ed:68:dd:74:40:cd:49:70:cd:47:d4:bd:a1:a7:fe: 5f:5e:8c:80:bf:e2:55:20:6f:97:07:52:82:69:38: d9:58:a6:ce:51:d0:27:d4:50:c2:f8:b0:05:fa:d5: 99:ac:9b:88:df:a4:54:b6:79:67:13:1c:3d:01:b3: 05:ba:64:94:48:e4:19:43:09:eb:8e:fc:57:9a:6a: f1:a6:3b:d5:36:89:6d:86:93:1a:19:bf:1f:d2:3a: ec:ed:3e:d1:93:11:1b:b1:f1:c6:e0:a8:b3:1e:dc: f1:d8:f2:05:56:e1:70:90:60:2c:6b:a5:3e:4b:4c: c8:05:d5:9c:ce:91:4c:ed:c3:44:f3:33:54:18:f6: 9c:1e:4c:81:52:d4:de:62:29:46:da:c4:7e:e0:d8: ff:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:3A:08:81:7B:12:59:80:03:36:7A:1F:F9:DC:79:1E:DE:5A:1C:98 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4460c29b-6af6-4d15-bee1-65deb7aba765.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 75.101.168.0/21 Signature Algorithm: sha256WithRSAEncryption ad:74:62:3c:ed:83:47:72:99:91:ee:98:1f:0b:a5:f6:94:93: 99:41:a9:49:1d:4d:a1:43:b5:92:d5:c9:a9:3c:62:49:c2:3a: 34:1f:43:6e:93:75:04:7c:39:2c:63:20:ed:db:d6:53:60:4c: 7b:5e:62:45:12:c6:0f:89:1a:29:05:b1:2e:62:92:00:24:25: a0:9d:c1:88:22:06:bc:ad:5a:d9:19:af:3a:18:5f:4a:55:d8: 44:d8:96:84:50:4c:2d:ab:83:7e:1b:9a:48:5b:e8:d8:30:ad: 2a:61:6d:34:9f:75:f9:a6:d1:b3:e7:fd:d7:1c:54:63:02:a5: 26:36:7e:54:57:6d:ad:e6:1f:98:eb:1b:8f:34:e0:36:20:bf: 66:43:75:1f:6d:c0:dd:f9:6d:b3:d7:11:0b:1b:fe:75:2a:53: f7:6f:4d:4b:c6:7d:ce:93:4b:38:e9:c0:56:20:7d:48:64:cd: db:e8:0e:9d:7a:38:c6:82:f0:34:dd:81:2a:8c:84:69:51:13: 6f:0e:ea:fc:9b:6f:e0:7b:ee:da:0c:46:fd:de:a2:10:26:2f: 40:31:5b:53:01:d4:c1:28:09:5b:a3:27:d5:1d:e2:cd:69:2d: a2:c1:fc:91:64:3c:e9:e0:33:76:79:68:ef:06:f2:fd:93:82: 82:d8:60:d8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXYniLXnm/Z/Ln3pmXUAuIXKWLFMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTEzMDAwMDAwWhcNMjUwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNTQ0YTZlZDZhODhmN2M0MDBkMmJjNDE5NTUyMGZlMGRk MDUxOWMyNWI3MDc0ODBlMTA5ZmJkNjJkNjdkNTFjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDf7ChIkrF0dkg04WRmGD9K1hWEDuBA6hhIMtogbFpvBAE2 TxHyrp+LuVEjxg3e7jA1HvvCqOjy8uK4QWrjHfmJVj4R6Z2Q+ugQRhrxZU4iYwqt jnFSc1muOp2xXn0cjjgEZHS5KfYG0+1o3XRAzUlwzUfUvaGn/l9ejIC/4lUgb5cH UoJpONlYps5R0CfUUML4sAX61Zmsm4jfpFS2eWcTHD0BswW6ZJRI5BlDCeuO/Fea avGmO9U2iW2GkxoZvx/SOuztPtGTERux8cbgqLMe3PHY8gVW4XCQYCxrpT5LTMgF 1ZzOkUztw0TzM1QY9pweTIFS1N5iKUbaxH7g2P/JAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTDoIgXsSWYADNnof+dx5Ht5aHJgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ0NjBjMjliLTZhZjYtNGQxNS1iZWUxLTY1ZGViN2FiYTc2NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANLZagwDQYJKoZIhvcNAQELBQADggEBAK10Yjztg0dymZHumB8LpfaUk5lB qUkdTaFDtZLVyak8YknCOjQfQ26TdQR8OSxjIO3b1lNgTHteYkUSxg+JGikFsS5i kgAkJaCdwYgiBrytWtkZrzoYX0pV2ETYloRQTC2rg34bmkhb6NgwrSphbTSfdfmm 0bPn/dccVGMCpSY2flRXba3mH5jrG4804DYgv2ZDdR9twN35bbPXEQsb/nUqU/dv TUvGfc6TSzjpwFYgfUhkzdvoDp16OMaC8DTdgSqMhGlRE28O6vybb+B77toMRv3e ohAmL0AxW1MB1MEoCVujJ9Ud4s1pLaLB/JFkPOngM3Z5aO8G8v2TgoLYYNg= -----END CERTIFICATE-----Generated at Wed Feb 5 09:47:44 2025 by rpki-client