$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d9499c0-c507-4e26-9055-7e0de6b69d27.roa File: 4d9499c0-c507-4e26-9055-7e0de6b69d27.roa (raw, json) Hash identifier: 55I65NXaA4pgsCUGOv3jFQSlQCz09fHxX/7LCl/NjpQ= Subject key identifier: C3:16:2F:86:C8:F8:80:8E:D6:3F:40:0B:C4:CE:7B:05:AE:9E:AA:9F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 151630759CDFD3427621D8ED0DF23508587CED00 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d9499c0-c507-4e26-9055-7e0de6b69d27.roa Signing time: Tue 11 Feb 2025 00:00:00 +0000 ROA not before: Tue 11 Feb 2025 00:00:00 +0000 ROA not after: Tue 18 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:16:30:75:9c:df:d3:42:76:21:d8:ed:0d:f2:35:08:58:7c:ed:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 11 00:00:00 2025 GMT Not After : Mar 18 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:56:ca:73:52:28:05:04:92:24:60:42:9d:d8: c3:0d:33:75:ac:da:b8:77:c0:9a:e0:8f:dc:1b:db: 02:6a:b3:ac:fc:32:bd:74:63:32:fd:62:bf:28:32: c8:46:04:55:01:19:83:44:05:f0:a7:e8:83:8a:60: 0c:7b:7b:92:46:bf:00:43:6b:c3:72:d0:0e:72:2f: d5:8a:37:68:1b:cb:47:0b:0c:71:3b:50:10:97:45: 66:65:84:bf:d1:81:3b:d9:92:da:1c:19:ce:24:65: b2:e1:95:ba:f6:ec:b0:af:76:11:0e:fe:c9:7c:ed: 00:33:c4:31:10:de:dc:20:d0:ed:e0:1a:16:86:e5: 64:5c:cb:51:0b:bb:8e:57:e8:95:7c:ae:fb:a7:da: 84:89:45:05:ec:ee:40:ee:2f:12:db:97:a8:07:7f: bc:25:8c:03:3a:79:fd:a0:55:e5:21:51:03:82:e7: 23:0d:4a:e9:4d:81:11:c0:1d:0f:ca:1c:24:70:15: d2:16:44:db:f9:1b:8e:6b:8e:09:6f:20:13:d8:35: 37:4d:68:29:63:70:94:c0:2f:5f:3f:24:2e:ee:be: 26:56:b7:46:3c:d3:87:7c:74:84:10:12:f3:e8:8e: 79:28:1d:c9:f7:c6:8a:82:ba:54:a7:50:54:7b:33: 18:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:16:2F:86:C8:F8:80:8E:D6:3F:40:0B:C4:CE:7B:05:AE:9E:AA:9F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d9499c0-c507-4e26-9055-7e0de6b69d27.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.102.0/24 Signature Algorithm: sha256WithRSAEncryption 22:60:78:05:fe:49:30:33:38:6f:98:a0:28:6b:ed:90:10:2b: 21:e8:97:7e:a6:7a:bd:25:5b:6e:fc:fc:1d:e6:e3:af:40:59: bc:2b:7c:a8:7c:73:20:59:ac:f8:28:57:d0:e4:b7:3f:28:99: 5a:af:53:7d:b3:f0:ec:bb:fc:9d:0f:c4:b9:dd:f0:92:bf:6f: 9c:a8:7d:36:9a:85:64:e9:f6:3d:a5:33:8d:13:8f:0a:7a:fb: 6f:fd:ba:aa:05:ee:5b:99:45:53:7b:69:79:2d:4f:d6:51:d0: 1b:7a:50:fd:74:8c:5c:4b:c5:d4:60:c8:da:71:83:28:ef:b8: 35:60:43:67:a1:05:49:43:38:dd:2e:af:3b:ed:97:02:e6:be: 5a:64:f2:c6:e4:84:72:56:3b:7d:83:5f:f4:63:53:16:30:21: 69:ab:89:c4:0c:65:2a:bb:4f:7f:87:8d:b7:67:f4:e0:c3:ae: 17:a4:b1:9f:86:c9:fc:27:ec:70:0b:ab:c4:7b:63:7e:c3:b3: d1:03:92:fc:c6:62:4d:f0:ba:0e:88:79:f3:fc:b2:62:75:8c: c8:a6:e2:b6:8c:8b:b0:76:66:36:6e:9d:65:90:ea:fe:2c:79: 12:6a:bb:74:83:a5:5f:64:42:b0:85:6f:62:23:61:14:23:bb: 16:78:4c:bf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFRYwdZzf00J2IdjtDfI1CFh87QAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjExMDAwMDAwWhcNMjUwMzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMDNhYjg3YjY3YzFhZjNkOWE1NmNlYTUzYmNiYjkzZTEz OTM4YTkzMTczYjg2YmU4ZWMwZTBiMjgxMWI0ZWU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZVspzUigFBJIkYEKd2MMNM3Ws2rh3wJrgj9wb2wJqs6z8 Mr10YzL9Yr8oMshGBFUBGYNEBfCn6IOKYAx7e5JGvwBDa8Ny0A5yL9WKN2gby0cL DHE7UBCXRWZlhL/RgTvZktocGc4kZbLhlbr27LCvdhEO/sl87QAzxDEQ3twg0O3g GhaG5WRcy1ELu45X6JV8rvun2oSJRQXs7kDuLxLbl6gHf7wljAM6ef2gVeUhUQOC 5yMNSulNgRHAHQ/KHCRwFdIWRNv5G45rjglvIBPYNTdNaCljcJTAL18/JC7uviZW t0Y804d8dIQQEvPojnkoHcn3xoqCulSnUFR7Mxh3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwxYvhsj4gI7WP0ALxM57Ba6eqp8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRkOTQ5OWMwLWM1MDctNGUyNi05MDU1LTdlMGRlNmI2OWQyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/GYwDQYJKoZIhvcNAQELBQADggEBACJgeAX+STAzOG+YoChr7ZAQKyHo l36mer0lW278/B3m469AWbwrfKh8cyBZrPgoV9Dktz8omVqvU32z8Oy7/J0PxLnd 8JK/b5yofTaahWTp9j2lM40Tjwp6+2/9uqoF7luZRVN7aXktT9ZR0Bt6UP10jFxL xdRgyNpxgyjvuDVgQ2ehBUlDON0urzvtlwLmvlpk8sbkhHJWO32DX/RjUxYwIWmr icQMZSq7T3+Hjbdn9ODDrheksZ+Gyfwn7HALq8R7Y37Ds9EDkvzGYk3wug6IefP8 smJ1jMim4raMi7B2ZjZunWWQ6v4seRJqu3SDpV9kQrCFb2IjYRQjuxZ4TL8= -----END CERTIFICATE-----Generated at Sun Feb 16 15:18:53 2025 by rpki-client