$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45a29cb5-ef36-49b6-8d84-d87fbb54fd2e.roa File: 45a29cb5-ef36-49b6-8d84-d87fbb54fd2e.roa (raw, json) Hash identifier: 0qwwGCQKhO4ZpZOmZbMnnGr/VnZxJcCdvpdPQTfHLu0= Subject key identifier: 25:E6:AF:DD:B9:B4:61:4B:85:35:56:80:C7:FD:B1:3D:66:B8:31:D8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3E0D6B27B94226A5CB424442513D0970080E8031 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45a29cb5-ef36-49b6-8d84-d87fbb54fd2e.roa Signing time: Mon 13 Jan 2025 00:00:00 +0000 ROA not before: Mon 13 Jan 2025 00:00:00 +0000 ROA not after: Mon 17 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.20.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:0d:6b:27:b9:42:26:a5:cb:42:44:42:51:3d:09:70:08:0e:80:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 13 00:00:00 2025 GMT Not After : Feb 17 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:00:d0:45:3e:8b:97:fe:4c:75:c7:8a:d8:19: ce:e5:0a:51:50:59:e3:67:32:65:2b:27:58:69:a8: f7:8f:20:72:e5:8a:f1:16:df:07:44:f3:13:82:a5: 67:cc:55:3e:dd:44:13:9e:32:24:5e:0a:90:84:b7: a2:3c:20:cb:09:b6:93:e9:97:38:09:47:2d:46:37: 30:83:04:e3:66:ba:c1:31:aa:87:9b:2c:49:f8:7a: f4:99:4a:d2:b0:6b:6a:42:6b:7a:80:d1:45:c6:2a: 8d:8f:74:87:99:e5:fb:e2:8b:ce:57:1c:82:4d:85: e7:40:04:ad:9e:74:b3:37:7c:58:15:01:4d:0c:c6: 71:75:2d:c8:c5:d2:fd:ca:b0:59:60:a2:9a:a1:44: 6c:e9:b3:f4:83:d0:6b:47:fe:81:9a:c5:c6:1d:68: e2:6b:4c:ed:c0:10:8e:40:d2:e8:0d:21:e1:4a:22: db:e4:68:5e:e1:bd:c6:08:1c:e9:0d:66:be:e6:2e: 24:a1:9b:57:21:90:7c:32:ec:a0:df:76:43:e6:43: bc:11:44:51:96:5a:ac:b0:4d:c4:68:59:42:db:c5: 6b:5d:0a:c7:e1:36:fb:c0:a0:23:73:2a:48:b6:2b: 08:59:11:b8:d5:e9:96:2e:b7:46:cf:02:80:e9:26: 62:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:E6:AF:DD:B9:B4:61:4B:85:35:56:80:C7:FD:B1:3D:66:B8:31:D8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45a29cb5-ef36-49b6-8d84-d87fbb54fd2e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.20.0.0/16 Signature Algorithm: sha256WithRSAEncryption 13:f7:b8:4d:3b:f6:fb:74:cc:ab:02:f1:c6:4a:cf:c5:4a:1c: 09:08:12:61:66:61:8f:0b:b4:3a:4f:c8:17:8c:03:0e:46:2b: 8c:29:6b:88:03:e7:6a:33:7c:4c:f8:78:96:37:9e:c1:a4:a4: 50:8e:9a:03:eb:5d:10:67:79:ae:9c:60:17:83:79:c2:08:cc: 28:c5:39:a1:1c:62:59:2d:d7:a2:3f:4c:cd:b1:c4:03:78:0a: c2:2d:95:c9:ee:ff:8a:bb:66:a5:eb:76:ca:83:59:86:c9:6b: b0:15:20:45:67:b7:62:d0:f6:a0:a0:91:f2:e9:04:01:79:a2: a3:6d:c4:9f:55:49:ea:46:ac:48:84:a4:96:24:14:91:7f:a2: dd:40:a1:68:d6:75:6d:46:24:16:88:4c:03:d3:7d:9a:14:fd: 88:c4:40:59:68:08:de:36:19:bb:92:d3:cb:22:f2:c4:63:76: 59:4a:ae:a9:0b:9d:dd:93:15:47:44:1c:20:b5:af:8f:45:3f: f3:bf:75:75:59:87:b0:b1:38:a8:4d:ad:98:57:6d:ea:a6:ca: d5:39:f1:ca:61:33:fb:d0:e5:85:a8:f7:7d:a4:e8:eb:65:5d: ec:33:97:5e:0e:28:f5:13:32:72:2e:6a:1e:3c:4d:1b:72:40: 58:90:be:85 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUPg1rJ7lCJqXLQkRCUT0JcAgOgDEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTEzMDAwMDAwWhcNMjUwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NjRlMWUxZjNiOTMwODJkMmIwY2Y0ZTdlYWMyNzYzZTQ2 ZjJhMDU5NDgwM2VlNWQ1ZjI1NDg1NjcyYmRmNzllMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+ANBFPouX/kx1x4rYGc7lClFQWeNnMmUrJ1hpqPePIHLl ivEW3wdE8xOCpWfMVT7dRBOeMiReCpCEt6I8IMsJtpPplzgJRy1GNzCDBONmusEx qoebLEn4evSZStKwa2pCa3qA0UXGKo2PdIeZ5fvii85XHIJNhedABK2edLM3fFgV AU0MxnF1LcjF0v3KsFlgopqhRGzps/SD0GtH/oGaxcYdaOJrTO3AEI5A0ugNIeFK ItvkaF7hvcYIHOkNZr7mLiShm1chkHwy7KDfdkPmQ7wRRFGWWqywTcRoWULbxWtd CsfhNvvAoCNzKki2KwhZEbjV6ZYut0bPAoDpJmIJAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUJeav3bm0YUuFNVaAx/2xPWa4MdgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ1YTI5Y2I1LWVmMzYtNDliNi04ZDg0LWQ4N2ZiYjU0ZmQyZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAXFDANBgkqhkiG9w0BAQsFAAOCAQEAE/e4TTv2+3TMqwLxxkrPxUocCQgS YWZhjwu0Ok/IF4wDDkYrjClriAPnajN8TPh4ljeewaSkUI6aA+tdEGd5rpxgF4N5 wgjMKMU5oRxiWS3Xoj9MzbHEA3gKwi2Vye7/irtmpet2yoNZhslrsBUgRWe3YtD2 oKCR8ukEAXmio23En1VJ6kasSISkliQUkX+i3UChaNZ1bUYkFohMA9N9mhT9iMRA WWgI3jYZu5LTyyLyxGN2WUquqQud3ZMVR0QcILWvj0U/8791dVmHsLE4qE2tmFdt 6qbK1TnxymEz+9Dlhaj3faTo62Vd7DOXXg4o9RMyci5qHjxNG3JAWJC+hQ== -----END CERTIFICATE-----Generated at Wed Feb 5 09:51:27 2025 by rpki-client