$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48743620-d852-4c45-84d7-d4a7e3874270.roa File: 48743620-d852-4c45-84d7-d4a7e3874270.roa (raw, json) Hash identifier: oBJpBMHOQz1zAluUx/avTHlUnGpy2XZH7I5zcr2AAjk= Subject key identifier: F7:D8:97:14:7B:30:EF:9C:51:02:29:42:CD:42:9B:04:F6:38:F8:AD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1972D7B0570F334F3EA124906FB6355910F8A21C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48743620-d852-4c45-84d7-d4a7e3874270.roa Signing time: Sat 08 Feb 2025 00:00:00 +0000 ROA not before: Sat 08 Feb 2025 00:00:00 +0000 ROA not after: Sat 15 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 168.192.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:72:d7:b0:57:0f:33:4f:3e:a1:24:90:6f:b6:35:59:10:f8:a2:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 8 00:00:00 2025 GMT Not After : Mar 15 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:af:68:d8:82:92:74:ee:9d:41:e1:85:cd:e1: 1b:e6:e2:bd:81:53:1b:ec:5a:6e:6a:20:55:98:61: 4b:0e:d6:44:98:5b:70:f1:09:43:10:59:df:bd:30: 2c:a6:4f:4e:b2:df:9c:50:5d:ca:e3:a7:b3:41:cf: 0f:79:a7:c0:d8:4a:73:f5:4b:ad:db:f8:b7:ff:1e: 38:2a:70:26:2f:16:fc:67:34:db:a4:c5:5c:ef:0d: 45:20:5b:33:e5:32:9b:7b:82:f4:59:8c:39:1f:15: e3:31:40:89:ed:16:ff:7d:10:46:89:5a:41:a9:42: 05:29:bf:a4:3c:51:db:fe:67:cb:6f:55:b8:e9:b5: f7:aa:fe:19:c8:4d:6f:69:c3:58:97:af:ab:36:3a: c1:17:16:20:6b:b7:85:ae:af:22:d4:31:8c:05:33: aa:fe:a4:44:e3:8d:34:3f:8c:00:13:77:1e:30:38: bf:1a:af:af:e6:03:0a:97:e0:c0:ee:a2:41:e1:e5: 47:69:88:b1:26:a8:42:16:bb:12:1b:44:c6:2b:48: 31:f6:9c:a7:c5:8f:ad:48:e1:ff:62:04:ed:11:64: 5e:13:57:d4:b3:c4:b1:60:db:62:bb:6c:d9:00:fe: f2:53:cd:82:4c:cd:6c:9f:03:a0:66:52:cf:4e:6a: 57:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:D8:97:14:7B:30:EF:9C:51:02:29:42:CD:42:9B:04:F6:38:F8:AD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48743620-d852-4c45-84d7-d4a7e3874270.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.192.0.0/15 Signature Algorithm: sha256WithRSAEncryption bb:c1:56:49:4e:c1:ac:56:ef:6a:a8:f1:72:a3:d4:46:1b:fa: 97:73:f5:84:5e:e4:0f:b0:47:c2:e9:82:a7:f2:53:54:39:b3: c2:3a:f1:61:8e:40:3e:26:8c:e0:6e:a7:53:bb:4c:41:84:d8: 5b:73:11:2a:a5:64:6f:a1:d1:fb:2c:50:bc:c7:ff:33:b6:f6: c7:26:4d:0a:36:3b:12:f1:20:bd:64:d7:96:80:91:12:ae:27: 10:ff:1e:78:27:cc:a4:12:57:29:28:41:51:b6:92:6d:b0:82: ae:90:1c:18:c6:f9:8b:9d:65:93:2b:d8:1f:4b:31:6f:df:bb: 56:c4:6b:65:0b:21:b2:b0:79:40:fa:c8:2b:cf:c7:5a:6e:70: 26:78:4a:a9:ef:a4:67:cf:57:64:d5:88:94:59:5e:d3:20:41: ad:54:cf:45:3f:75:94:e2:b0:86:1a:7e:19:ac:18:d3:c9:0b: 61:22:64:ed:66:77:dd:39:88:87:ed:09:80:8b:23:16:ff:aa: c2:da:78:70:fe:8c:c6:2f:c1:6a:1c:89:e6:b3:6c:20:e9:08: 66:3d:a3:e5:31:78:c1:09:6e:a4:3b:fd:21:60:2a:3a:9f:3a: 93:0e:c6:f0:a7:1e:07:0e:67:2e:23:c0:46:26:bc:b0:e9:a1: ad:39:ff:35 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGXLXsFcPM08+oSSQb7Y1WRD4ohwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjA4MDAwMDAwWhcNMjUwMzE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MTZiZjc4NWEwZjcxZTkzNmU0MDk0YWI3MWI5YTU3OTNk MzRjNDA3ZTJiN2I3ZDE5YjA3NWUwMDFhYzg3ZDM4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfr2jYgpJ07p1B4YXN4Rvm4r2BUxvsWm5qIFWYYUsO1kSY W3DxCUMQWd+9MCymT06y35xQXcrjp7NBzw95p8DYSnP1S63b+Lf/HjgqcCYvFvxn NNukxVzvDUUgWzPlMpt7gvRZjDkfFeMxQIntFv99EEaJWkGpQgUpv6Q8Udv+Z8tv Vbjptfeq/hnITW9pw1iXr6s2OsEXFiBrt4WuryLUMYwFM6r+pETjjTQ/jAATdx4w OL8ar6/mAwqX4MDuokHh5UdpiLEmqEIWuxIbRMYrSDH2nKfFj61I4f9iBO0RZF4T V9SzxLFg22K7bNkA/vJTzYJMzWyfA6BmUs9Oalf1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU99iXFHsw75xRAilCzUKbBPY4+K0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ4NzQzNjIwLWQ4NTItNGM0NS04NGQ3LWQ0YTdlMzg3NDI3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwGowDANBgkqhkiG9w0BAQsFAAOCAQEAu8FWSU7BrFbvaqjxcqPURhv6l3P1 hF7kD7BHwumCp/JTVDmzwjrxYY5APiaM4G6nU7tMQYTYW3MRKqVkb6HR+yxQvMf/ M7b2xyZNCjY7EvEgvWTXloCREq4nEP8eeCfMpBJXKShBUbaSbbCCrpAcGMb5i51l kyvYH0sxb9+7VsRrZQshsrB5QPrIK8/HWm5wJnhKqe+kZ89XZNWIlFle0yBBrVTP RT91lOKwhhp+GawY08kLYSJk7WZ33TmIh+0JgIsjFv+qwtp4cP6Mxi/BahyJ5rNs IOkIZj2j5TF4wQlupDv9IWAqOp86kw7G8KceBw5nLiPARia8sOmhrTn/NQ== -----END CERTIFICATE-----Generated at Sun Feb 16 15:30:19 2025 by rpki-client