$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4fee6d78-1728-44bd-b799-ca975927c66a.roa File: 4fee6d78-1728-44bd-b799-ca975927c66a.roa (raw, json) Hash identifier: Rxwwz9YoVN20mTMF6225N9E7v8xNAfXBxnYFlugTDPQ= Subject key identifier: 87:92:5F:C3:8A:E2:8B:B2:4E:95:D8:2F:EA:54:FF:AF:2F:8B:7C:B0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 63661594C7F38B7A69EE3F39E659D7406F84F9F6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4fee6d78-1728-44bd-b799-ca975927c66a.roa Signing time: Tue 21 Jan 2025 00:00:00 +0000 ROA not before: Tue 21 Jan 2025 00:00:00 +0000 ROA not after: Tue 25 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.186.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:66:15:94:c7:f3:8b:7a:69:ee:3f:39:e6:59:d7:40:6f:84:f9:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 21 00:00:00 2025 GMT Not After : Feb 25 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:74:3d:47:1c:f9:a5:61:c5:3a:8f:a5:53:a6: 58:e4:27:7c:fd:1d:9c:2f:23:f5:ff:60:55:b5:e8: d7:97:cb:05:43:63:70:9b:ed:be:6d:25:ae:c5:e3: a8:fe:9e:39:ef:d8:ae:23:81:46:52:fe:b2:23:49: 02:e3:49:df:73:f1:a5:01:7e:41:6d:0e:e7:b9:da: 47:52:3a:83:da:2f:88:30:33:37:fa:32:62:f8:29: 06:d1:07:42:58:9b:93:4d:41:8f:af:53:e4:05:8d: ac:cc:91:05:50:28:32:55:29:be:f2:79:b9:23:6c: 4a:d3:8d:11:43:5f:62:cb:77:bc:e3:16:99:7f:6a: 03:3f:e0:02:40:21:3f:60:65:76:54:16:a6:4f:c4: 63:ff:ef:47:ec:d5:84:28:a7:55:b1:76:b5:e5:c8: c1:93:5c:81:c3:86:9a:ae:b4:2d:3b:07:2b:2c:f9: c7:de:2f:e9:5a:46:e8:97:75:bf:a2:bd:be:71:0a: 39:03:52:81:3c:97:12:94:65:93:c6:aa:2e:66:58: 17:9d:bb:36:73:63:34:29:62:7b:a0:21:8f:07:67: 68:5d:ca:12:3a:69:42:2d:89:f2:e8:95:f7:c0:ed: 30:72:ed:90:85:29:1a:45:57:53:79:de:54:df:d9: 57:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:92:5F:C3:8A:E2:8B:B2:4E:95:D8:2F:EA:54:FF:AF:2F:8B:7C:B0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4fee6d78-1728-44bd-b799-ca975927c66a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.186.0.0/16 Signature Algorithm: sha256WithRSAEncryption 26:1e:5f:a8:23:56:c2:0b:0b:c6:4d:ca:b1:5e:11:39:1d:a1: 1c:65:60:dd:4b:52:17:ad:ba:f2:86:35:39:53:e3:14:bc:84: 80:e7:10:8c:e4:19:10:17:76:36:6d:f4:ad:5a:0f:1e:1d:1f: e1:e0:46:9d:03:71:65:62:28:93:c7:62:98:a2:40:44:83:82: 38:39:be:53:c6:b2:d5:8c:d9:58:da:42:cc:bc:2a:c8:40:09: 70:22:a5:aa:01:28:6e:0b:f3:52:4a:20:c3:68:ea:13:ee:65: bc:44:a5:49:d1:73:cc:71:6b:e3:ff:01:da:ef:a0:12:1d:b5: a6:a8:83:ed:98:0c:fc:5b:80:f4:b8:17:cc:b7:c9:b3:f9:27: d5:9f:45:57:f8:e0:8f:d5:34:80:c1:eb:8d:3c:a8:e0:5b:1b: c9:ba:a6:4a:34:3c:aa:2c:e6:c9:ae:85:ed:94:ee:da:62:4e: 51:0b:55:cc:72:45:57:c9:f5:fb:6c:2a:0d:13:ce:bd:e0:13: c0:4f:27:cb:53:fb:22:e0:2e:1b:ef:bc:49:1e:5d:df:b6:3f: f5:1c:83:f0:70:61:18:df:1a:c8:4f:04:57:1e:ab:4e:19:13: cf:be:58:06:42:63:ad:0b:6d:c7:12:bd:23:b2:ba:db:67:34: ae:ef:62:1f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUY2YVlMfzi3pp7j855lnXQG+E+fYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTIxMDAwMDAwWhcNMjUwMjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MWNkMzhiZTAwZmY1MGQ3ODY0MWM4MjhkYTdmNTdlMWE1 MDZhYTU3YzllYWVjOTQ0N2U2ODI4NTY2NjY1MTEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCLdD1HHPmlYcU6j6VTpljkJ3z9HZwvI/X/YFW16NeXywVD Y3Cb7b5tJa7F46j+njnv2K4jgUZS/rIjSQLjSd9z8aUBfkFtDue52kdSOoPaL4gw Mzf6MmL4KQbRB0JYm5NNQY+vU+QFjazMkQVQKDJVKb7yebkjbErTjRFDX2LLd7zj Fpl/agM/4AJAIT9gZXZUFqZPxGP/70fs1YQop1WxdrXlyMGTXIHDhpqutC07Byss +cfeL+laRuiXdb+ivb5xCjkDUoE8lxKUZZPGqi5mWBeduzZzYzQpYnugIY8HZ2hd yhI6aUItifLolffA7TBy7ZCFKRpFV1N53lTf2VfnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUh5Jfw4rii7JOldgv6lT/ry+LfLAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRmZWU2ZDc4LTE3MjgtNDRiZC1iNzk5LWNhOTc1OTI3YzY2YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4ujANBgkqhkiG9w0BAQsFAAOCAQEAJh5fqCNWwgsLxk3KsV4ROR2hHGVg 3UtSF6268oY1OVPjFLyEgOcQjOQZEBd2Nm30rVoPHh0f4eBGnQNxZWIok8dimKJA RIOCODm+U8ay1YzZWNpCzLwqyEAJcCKlqgEobgvzUkogw2jqE+5lvESlSdFzzHFr 4/8B2u+gEh21pqiD7ZgM/FuA9LgXzLfJs/kn1Z9FV/jgj9U0gMHrjTyo4Fsbybqm SjQ8qizmya6F7ZTu2mJOUQtVzHJFV8n1+2wqDRPOveATwE8ny1P7IuAuG++8SR5d 37Y/9RyD8HBhGN8ayE8EVx6rThkTz75YBkJjrQttxxK9I7K622c0ru9iHw== -----END CERTIFICATE-----Generated at Sun Feb 16 15:38:40 2025 by rpki-client