$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/50f68e79-dceb-4d6c-b0b9-8f4eb96b81db.roa File: 50f68e79-dceb-4d6c-b0b9-8f4eb96b81db.roa (raw, json) Hash identifier: fo5LDI7IzWZAVLsBbnIV5/SiK1+FKDj4WxwalWvSm/o= Subject key identifier: 69:83:0D:34:EF:7A:DF:13:35:52:21:29:F3:E2:95:BE:4F:AE:FB:D8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6B2ACBF03C407FE30622E50BBDBBC3184CFDB315 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/50f68e79-dceb-4d6c-b0b9-8f4eb96b81db.roa Signing time: Sat 08 Feb 2025 00:00:00 +0000 ROA not before: Sat 08 Feb 2025 00:00:00 +0000 ROA not after: Sat 15 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.47.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:2a:cb:f0:3c:40:7f:e3:06:22:e5:0b:bd:bb:c3:18:4c:fd:b3:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 8 00:00:00 2025 GMT Not After : Mar 15 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:47:d5:e7:ac:54:6e:df:b0:6a:86:8d:61:93: 73:22:6d:b5:95:02:c3:53:f8:63:66:be:dc:c8:ea: 8d:93:fd:94:5f:00:6e:7a:85:a6:7f:8b:d1:e0:32: 3a:0d:86:28:5c:18:41:13:3b:88:78:1a:73:73:ad: 13:23:fe:bd:3a:96:35:9e:1f:b1:5b:75:05:31:34: f8:4b:c4:44:fa:08:66:6a:49:6d:df:6c:64:b1:8a: ca:e8:b5:b2:e1:34:23:e2:9e:5d:e0:c9:15:e3:ef: 40:68:05:c6:11:99:79:d8:15:b6:a9:b2:fe:09:50: bc:25:cc:72:ce:5b:60:8a:90:13:01:b5:49:1c:ae: f1:d6:be:59:6a:b2:2d:b1:c8:19:bd:2e:ea:ad:5f: a8:08:39:ae:32:4b:d4:ac:f9:70:dd:20:fa:84:0c: f4:e4:d9:05:83:34:59:a6:28:aa:42:f1:03:02:e0: 5e:cc:09:bc:50:70:aa:9c:1e:a0:be:0b:1d:69:4e: 9e:51:3f:ef:14:58:4a:72:ef:b5:7e:d5:e1:ba:12: 41:6b:fc:46:ed:6e:10:ea:e3:58:b2:cf:0b:1e:05: 28:87:eb:4e:7e:75:08:d3:6e:d6:b4:17:5c:01:16: de:e2:3d:7d:1a:e8:a0:c2:bd:30:8a:04:6b:d0:aa: c5:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:83:0D:34:EF:7A:DF:13:35:52:21:29:F3:E2:95:BE:4F:AE:FB:D8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/50f68e79-dceb-4d6c-b0b9-8f4eb96b81db.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.47.0.0/16 Signature Algorithm: sha256WithRSAEncryption 93:6b:87:92:b7:f7:b1:d5:ba:b7:42:c6:a3:93:c0:9d:e9:2d: 0a:b3:b6:64:5f:7c:82:3e:17:a8:81:11:31:d1:d9:50:e1:b8: 56:bc:5c:75:9c:0a:bb:a4:66:fd:0e:fa:31:1f:30:5d:21:7e: 2e:a3:37:40:5c:83:64:f0:d5:7d:02:ee:43:52:69:50:f8:56: 19:e3:a5:44:ef:85:88:50:e6:02:16:be:ce:2a:be:aa:21:10: 99:45:3b:19:17:cf:a6:8b:38:82:c5:22:60:45:18:99:18:a0: 20:e3:85:26:be:04:1c:7c:23:17:ea:bb:d8:ca:ef:32:e3:66: 02:8a:84:ef:08:e2:79:48:eb:60:84:01:f4:64:5d:db:1a:6f: 9d:83:fc:9d:9f:75:08:bd:09:5b:4e:1d:a2:56:5f:3f:c6:d3: 94:86:22:b8:69:fc:7b:fe:0b:ab:c6:d6:c3:71:05:83:9e:67: 1e:45:07:87:06:27:b1:a2:40:1e:f2:e2:86:2e:ea:7e:31:37: 21:f0:67:af:77:2d:c9:e1:5f:39:67:31:07:a3:a6:2d:dd:36: a1:14:e9:cc:e3:de:02:f7:e1:21:c4:0d:7a:79:fd:7e:20:60: 72:f4:89:2d:d5:13:66:cc:05:94:99:dd:36:17:a7:d5:25:ec: fb:ba:c7:2a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUayrL8DxAf+MGIuULvbvDGEz9sxUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjA4MDAwMDAwWhcNMjUwMzE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhOWY2MzhlM2M4MzFmODQ0M2JiNmVlYmYxMWExMjdhM2Zm ZWFkMGViZDY0YTNkYWMxYWE5N2FjMTVjNWU4ZDIwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWR9XnrFRu37Bqho1hk3MibbWVAsNT+GNmvtzI6o2T/ZRf AG56haZ/i9HgMjoNhihcGEETO4h4GnNzrRMj/r06ljWeH7FbdQUxNPhLxET6CGZq SW3fbGSxisrotbLhNCPinl3gyRXj70BoBcYRmXnYFbapsv4JULwlzHLOW2CKkBMB tUkcrvHWvllqsi2xyBm9LuqtX6gIOa4yS9Ss+XDdIPqEDPTk2QWDNFmmKKpC8QMC 4F7MCbxQcKqcHqC+Cx1pTp5RP+8UWEpy77V+1eG6EkFr/EbtbhDq41iyzwseBSiH 605+dQjTbta0F1wBFt7iPX0a6KDCvTCKBGvQqsWBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUaYMNNO963xM1UiEp8+KVvk+u+9gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUwZjY4ZTc5LWRjZWItNGQ2Yy1iMGI5LThmNGViOTZiODFkYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAjLzANBgkqhkiG9w0BAQsFAAOCAQEAk2uHkrf3sdW6t0LGo5PAnektCrO2 ZF98gj4XqIERMdHZUOG4VrxcdZwKu6Rm/Q76MR8wXSF+LqM3QFyDZPDVfQLuQ1Jp UPhWGeOlRO+FiFDmAha+ziq+qiEQmUU7GRfPpos4gsUiYEUYmRigIOOFJr4EHHwj F+q72MrvMuNmAoqE7wjieUjrYIQB9GRd2xpvnYP8nZ91CL0JW04dolZfP8bTlIYi uGn8e/4Lq8bWw3EFg55nHkUHhwYnsaJAHvLihi7qfjE3IfBnr3ctyeFfOWcxB6Om Ld02oRTpzOPeAvfhIcQNenn9fiBgcvSJLdUTZswFlJndNhen1SXs+7rHKg== -----END CERTIFICATE-----Generated at Sun Feb 16 15:44:17 2025 by rpki-client