$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4e687fa1-9b29-455d-9b8f-48a1ec23d39b.roa File: 4e687fa1-9b29-455d-9b8f-48a1ec23d39b.roa (raw, json) Hash identifier: Qf8Gc/Zl6feL3e0HmEvzRL6q6iMCDIH/WtMIwMCPoLo= Subject key identifier: F6:D2:51:42:F2:DE:14:21:72:DC:85:15:CA:A1:F4:41:5D:9B:D4:62 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 56B7FF976C83F348DC28A38677081D33F7B86308 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4e687fa1-9b29-455d-9b8f-48a1ec23d39b.roa Signing time: Sat 15 Feb 2025 00:21:12 +0000 ROA not before: Sat 15 Feb 2025 00:21:12 +0000 ROA not after: Sat 22 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.164.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:b7:ff:97:6c:83:f3:48:dc:28:a3:86:77:08:1d:33:f7:b8:63:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 15 00:21:12 2025 GMT Not After : Mar 22 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:5f:15:8f:b5:64:73:48:a1:ae:aa:ae:95:d0: d6:9c:d8:22:50:66:20:0b:d7:1d:df:ff:64:d2:17: 2c:b1:ea:e3:12:3b:2a:45:e8:c0:0d:e2:7b:5f:60: 55:ea:1d:e8:4e:35:f1:0f:93:b2:0e:84:06:ff:43: 96:17:82:43:b0:e8:26:b3:0b:86:6c:84:76:b6:15: 35:a0:da:93:7e:b3:55:3f:e7:39:c0:90:ec:cf:43: a5:75:a3:51:98:a3:d3:8b:cf:24:c0:a3:ec:3c:a0: c9:44:00:0b:d3:05:11:5b:6a:dd:bc:90:97:ec:db: a1:cf:ab:9a:bb:23:22:ab:ed:43:2f:07:0f:48:16: b2:b1:62:ab:b5:e7:45:44:c3:b9:6b:fd:87:10:c3: c5:fd:15:be:f3:71:49:10:96:63:7d:81:da:49:90: 3a:66:7b:88:94:74:d3:84:a4:f8:04:f9:82:04:11: 88:17:59:fe:67:15:a2:6a:ad:21:e6:5b:0f:af:93: 31:24:8b:e6:86:c8:3b:02:4f:90:fa:f9:da:07:de: 0b:0b:32:90:dc:ca:05:4d:0f:3d:e7:b1:13:6a:c3: 32:79:b0:82:96:23:b8:c2:e4:91:87:2e:39:4f:09: 62:82:14:84:e2:f2:77:35:ed:30:be:17:08:35:55: 1c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:D2:51:42:F2:DE:14:21:72:DC:85:15:CA:A1:F4:41:5D:9B:D4:62 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4e687fa1-9b29-455d-9b8f-48a1ec23d39b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.164.0.0/16 Signature Algorithm: sha256WithRSAEncryption 62:e7:29:ad:56:8e:7c:50:80:95:de:85:fe:51:68:16:4c:04: 35:51:0c:6e:97:88:07:23:4a:61:cf:70:a1:36:3e:5a:0e:d8: 1f:9a:0d:b2:e7:9d:d9:f5:a6:1f:20:60:83:8f:97:fc:2e:ff: e7:46:83:0b:2f:a0:38:0e:8f:73:f4:05:96:06:8b:77:74:48: 6a:e5:44:2c:ac:6e:16:9b:83:ea:e3:95:85:df:e7:a2:cd:5f: c6:ee:ce:93:db:f1:56:ca:c8:bf:10:49:25:40:e0:07:c2:8e: 91:17:ca:ac:dc:72:f2:02:1c:67:b7:48:14:64:48:d3:a3:38: 27:3f:d3:ff:03:9d:c7:76:c1:80:a0:6e:4c:de:33:aa:2b:0a: 67:79:18:52:f4:9f:f0:6e:53:5b:d2:61:2a:fb:5d:2f:31:d7: 9f:2f:17:85:0b:08:1d:15:fe:bb:5a:e0:ec:97:8d:a4:27:16: ea:ba:dc:5f:d1:92:b7:74:fc:5f:b7:5e:c4:18:90:77:bc:b4: 56:28:df:46:1d:5b:bc:de:08:c9:78:41:a5:fc:0d:75:db:b4: 9b:ec:fc:b1:c9:be:a7:03:3e:cd:c5:e1:43:40:09:0b:88:40: f0:e3:db:d4:42:0d:00:96:8a:25:b2:d6:c1:64:16:a9:7c:cc: 8c:7e:f8:2a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUVrf/l2yD80jcKKOGdwgdM/e4YwgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjE1MDAyMTEyWhcNMjUwMzIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMGU2Mjk4YTkyMDJmNWZhZWE0MjExNTAyN2JkMzNjOWIz MGFkOWE4NThhNTRiOGE3MzY3YTQyNWI5ZjUwNTIxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjXxWPtWRzSKGuqq6V0Nac2CJQZiAL1x3f/2TSFyyx6uMS OypF6MAN4ntfYFXqHehONfEPk7IOhAb/Q5YXgkOw6CazC4ZshHa2FTWg2pN+s1U/ 5znAkOzPQ6V1o1GYo9OLzyTAo+w8oMlEAAvTBRFbat28kJfs26HPq5q7IyKr7UMv Bw9IFrKxYqu150VEw7lr/YcQw8X9Fb7zcUkQlmN9gdpJkDpme4iUdNOEpPgE+YIE EYgXWf5nFaJqrSHmWw+vkzEki+aGyDsCT5D6+doH3gsLMpDcygVNDz3nsRNqwzJ5 sIKWI7jC5JGHLjlPCWKCFITi8nc17TC+Fwg1VRydAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU9tJRQvLeFCFy3IUVyqH0QV2b1GIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRlNjg3ZmExLTliMjktNDU1ZC05YjhmLTQ4YTFlYzIzZDM5Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQpDANBgkqhkiG9w0BAQsFAAOCAQEAYucprVaOfFCAld6F/lFoFkwENVEM bpeIByNKYc9woTY+Wg7YH5oNsued2fWmHyBgg4+X/C7/50aDCy+gOA6Pc/QFlgaL d3RIauVELKxuFpuD6uOVhd/nos1fxu7Ok9vxVsrIvxBJJUDgB8KOkRfKrNxy8gIc Z7dIFGRI06M4Jz/T/wOdx3bBgKBuTN4zqisKZ3kYUvSf8G5TW9JhKvtdLzHXny8X hQsIHRX+u1rg7JeNpCcW6rrcX9GSt3T8X7dexBiQd7y0VijfRh1bvN4IyXhBpfwN ddu0m+z8scm+pwM+zcXhQ0AJC4hA8OPb1EINAJaKJbLWwWQWqXzMjH74Kg== -----END CERTIFICATE-----Generated at Sun Feb 16 15:12:30 2025 by rpki-client