$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45c2e527-9738-4594-aadb-f5b7380f4d86.roa File: 45c2e527-9738-4594-aadb-f5b7380f4d86.roa (raw, json) Hash identifier: mFWLVVbk2xsOUbeG8dKq23kIKeGOFhlCLZ/W2zMkP/k= Subject key identifier: 3A:1B:FD:19:57:1A:B2:57:4D:6B:26:FF:7D:48:6D:4B:D6:E2:84:A9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 05D543FEF3D2A0A97EF535E869F6679E527B2DCF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45c2e527-9738-4594-aadb-f5b7380f4d86.roa Signing time: Wed 12 Feb 2025 00:00:00 +0000 ROA not before: Wed 12 Feb 2025 00:00:00 +0000 ROA not after: Wed 19 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:d5:43:fe:f3:d2:a0:a9:7e:f5:35:e8:69:f6:67:9e:52:7b:2d:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 12 00:00:00 2025 GMT Not After : Mar 19 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b9:e4:a0:79:54:6d:0a:af:bc:c4:60:f5:3c: 68:81:2c:b4:ab:fe:4c:13:74:d5:de:86:56:d4:9a: 68:61:16:90:ef:4b:2d:25:b1:cf:77:27:5f:21:e1: 22:3b:2d:ff:76:78:1a:35:ac:7d:c8:bd:b6:74:e1: 78:8e:ae:81:48:06:8b:d5:6f:e8:1c:a5:d2:7a:22: e8:15:df:71:09:d3:10:56:b5:43:7f:1b:de:ea:c5: 6e:3d:9e:ce:0f:ee:74:57:09:d2:b4:ae:37:85:89: 89:75:cc:fc:99:cd:d2:b4:4b:c7:7f:b1:25:a7:30: a5:6c:c8:a6:bd:60:cd:12:8d:2b:de:41:6a:c9:07: 2d:1e:b3:26:bb:6b:74:39:a4:cf:1c:7a:70:e8:6b: 06:71:58:30:1d:13:fe:81:33:36:84:b9:ff:fa:19: 53:a9:e2:35:1a:25:1c:a2:82:81:f6:37:2e:2c:53: 98:dd:cb:8c:b2:df:12:47:8e:14:ae:1b:a9:87:c7: 18:15:26:ec:4b:da:9c:57:20:ae:92:ce:a4:28:5d: bc:4c:91:c7:9d:02:e8:9c:fc:0c:63:7c:00:a5:4d: a7:7b:66:28:02:dc:ba:1e:d3:42:42:e3:80:a3:e2: 7b:d4:45:06:85:9e:35:f4:be:f7:4b:ad:ad:02:28: 6e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:1B:FD:19:57:1A:B2:57:4D:6B:26:FF:7D:48:6D:4B:D6:E2:84:A9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45c2e527-9738-4594-aadb-f5b7380f4d86.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.152.0/24 Signature Algorithm: sha256WithRSAEncryption 86:20:48:99:2a:c9:34:10:ca:0c:7f:6b:26:35:09:6d:c4:46: ee:6b:a7:8b:ce:bb:b5:fb:b4:e7:53:a9:59:4e:d3:11:37:21: b4:40:96:dd:cb:9a:81:fa:65:71:12:db:25:3a:7d:c1:03:a8: e9:00:b7:8a:da:b6:6f:aa:d1:9c:29:ca:4d:f6:04:64:35:f0: 19:e1:31:bc:9f:b4:b3:b4:8a:6c:90:28:a7:f6:45:a4:45:9f: eb:ea:2d:a7:bd:c3:e4:76:31:54:04:1a:8a:9c:62:21:28:36: 36:23:57:e1:d4:e5:f9:51:c9:3b:ab:78:ef:8b:ef:5d:ce:72: 00:23:6d:b5:26:24:73:6f:bc:25:5c:4d:86:98:8e:20:4c:91: 31:24:15:95:f8:6d:01:98:8f:bb:37:62:4d:c9:1a:50:51:e2: b7:d2:7e:4b:45:b0:0b:9a:dd:ee:c5:c7:ab:9d:33:64:9a:3f: 81:0e:24:ed:ef:0c:7e:d8:af:91:53:d4:2a:25:bf:99:18:5a: a6:fa:74:04:db:7f:7b:e2:82:4a:cb:74:96:8e:ac:48:e8:24: 1d:70:12:a6:35:bd:d6:dc:0d:01:30:c9:f5:d9:5e:d9:1b:a9: 66:9f:92:5c:82:ff:00:ac:57:07:86:7a:b8:fc:d9:56:a7:68: 58:62:3b:ed -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBdVD/vPSoKl+9TXoafZnnlJ7Lc8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjEyMDAwMDAwWhcNMjUwMzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YTRkODBjY2Y2NjBkYjdiMDM0MThmMzNmNThhZGY3ZTAy NDEwZmM5ZWMwMGQzMjg0NThhZTAxOTEzYTBlYjU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtueSgeVRtCq+8xGD1PGiBLLSr/kwTdNXehlbUmmhhFpDv Sy0lsc93J18h4SI7Lf92eBo1rH3IvbZ04XiOroFIBovVb+gcpdJ6IugV33EJ0xBW tUN/G97qxW49ns4P7nRXCdK0rjeFiYl1zPyZzdK0S8d/sSWnMKVsyKa9YM0SjSve QWrJBy0esya7a3Q5pM8cenDoawZxWDAdE/6BMzaEuf/6GVOp4jUaJRyigoH2Ny4s U5jdy4yy3xJHjhSuG6mHxxgVJuxL2pxXIK6SzqQoXbxMkcedAuic/AxjfAClTad7 ZigC3Loe00JC44Cj4nvURQaFnjX0vvdLra0CKG6hAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOhv9GVcasldNayb/fUhtS9bihKkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ1YzJlNTI3LTk3MzgtNDU5NC1hYWRiLWY1YjczODBmNGQ4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTZgwDQYJKoZIhvcNAQELBQADggEBAIYgSJkqyTQQygx/ayY1CW3ERu5r p4vOu7X7tOdTqVlO0xE3IbRAlt3LmoH6ZXES2yU6fcEDqOkAt4ratm+q0Zwpyk32 BGQ18BnhMbyftLO0imyQKKf2RaRFn+vqLae9w+R2MVQEGoqcYiEoNjYjV+HU5flR yTureO+L713OcgAjbbUmJHNvvCVcTYaYjiBMkTEkFZX4bQGYj7s3Yk3JGlBR4rfS fktFsAua3e7Fx6udM2SaP4EOJO3vDH7Yr5FT1Colv5kYWqb6dATbf3vigkrLdJaO rEjoJB1wEqY1vdbcDQEwyfXZXtkbqWafklyC/wCsVweGerj82VanaFhiO+0= -----END CERTIFICATE-----Generated at Sun Feb 16 15:34:51 2025 by rpki-client