$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5307b426-3578-4099-8905-82473e6dd0a6.roa File: 5307b426-3578-4099-8905-82473e6dd0a6.roa (raw, json) Hash identifier: JUHIzrzLq67zXb7IUMLejr5LsCEcyCdjLMpFDkyUWJ8= Subject key identifier: 7A:46:9B:CD:FA:B0:71:EA:DF:50:24:1A:16:0B:25:F8:FC:23:20:7C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5480E89740441BC012AC608AE66599233C8BE9FF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5307b426-3578-4099-8905-82473e6dd0a6.roa Signing time: Mon 27 Jan 2025 00:00:00 +0000 ROA not before: Mon 27 Jan 2025 00:00:00 +0000 ROA not after: Mon 03 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 206.72.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:80:e8:97:40:44:1b:c0:12:ac:60:8a:e6:65:99:23:3c:8b:e9:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 27 00:00:00 2025 GMT Not After : Mar 3 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:53:d3:f9:12:6a:25:f2:17:90:90:4c:f4:d6: 25:6b:fb:4e:f5:8b:42:0b:4d:78:da:20:a9:53:70: 69:c7:a2:24:db:7d:84:4b:e2:57:a2:d0:ab:2f:cf: bb:e3:ab:97:19:70:b2:ea:a3:8c:1b:91:ee:44:26: 55:32:36:62:22:8d:ae:b3:93:1f:7a:77:7e:37:d7: e4:88:f7:a2:51:c4:29:58:1e:42:21:17:6e:55:70: 99:db:dc:10:54:8b:3a:a4:77:08:65:34:2c:44:e7: 25:aa:57:2e:d2:45:d1:e5:42:a3:e0:6f:64:25:8c: 17:fc:1b:13:b5:b4:24:fe:20:4d:be:11:5f:15:17: c6:d7:a3:df:19:6f:c6:61:90:db:46:bd:04:14:d1: 3f:61:92:7a:fd:9b:24:be:21:cb:04:07:7f:d7:ff: 38:9f:75:77:b4:b9:7f:c1:6b:76:95:aa:0d:0d:8a: b7:df:03:bc:9d:cb:8c:25:83:05:77:6b:93:0a:53: 91:b7:d1:4e:7c:07:21:37:f2:11:e5:f3:40:8f:07: 18:c1:63:48:14:3f:7a:a9:c8:9c:81:9b:9b:8e:61: 02:52:62:57:47:6f:16:e1:8c:18:b5:dd:41:e4:b0: 6d:a0:b6:b6:67:4e:98:78:b5:96:78:f2:5a:81:3b: 34:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:46:9B:CD:FA:B0:71:EA:DF:50:24:1A:16:0B:25:F8:FC:23:20:7C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5307b426-3578-4099-8905-82473e6dd0a6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 206.72.209.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:37:fd:85:2d:0e:63:25:0e:35:f5:52:b4:41:67:26:bf:5c: 50:0a:15:70:e8:92:11:c1:11:d9:56:2f:1e:27:9a:e8:44:c2: 8f:5a:fe:0f:f8:ba:cc:b4:66:8b:ba:8a:e0:8a:f7:7d:35:96: d4:2c:16:c7:ef:b0:04:d9:b7:63:a2:70:e1:8e:2a:57:29:8c: 00:f3:f4:fe:98:d0:7a:44:ae:ea:a5:fb:9f:c9:be:55:ed:bc: ad:2b:88:af:32:a3:67:e8:d9:db:2a:29:b9:b6:4d:ad:a5:97: 63:dd:e7:20:65:1e:86:9e:de:4f:69:46:ff:3c:18:f8:e1:6a: 2b:43:d0:25:97:ce:94:44:5f:4e:be:1e:62:43:48:fa:6e:c6: bc:4a:1a:93:33:e8:07:fa:02:e1:8c:28:20:6e:59:57:cd:4a: 80:8a:cf:57:b2:ea:ad:07:d8:95:fe:de:0d:3c:46:5a:70:57: df:b0:a8:fc:cb:ba:3f:86:cd:00:21:08:72:b4:57:5e:9a:e9: 2c:da:52:07:d3:39:f3:59:7e:db:ec:14:60:09:6b:ee:99:a2: 0e:06:d0:b9:d7:e9:30:82:da:4b:0d:0a:e0:d9:ec:d1:95:0e: 63:f1:6e:31:ed:d4:a4:02:ad:5b:5d:6e:f6:40:6b:24:81:70: 00:56:10:c3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVIDol0BEG8ASrGCK5mWZIzyL6f8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTI3MDAwMDAwWhcNMjUwMzAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNjQ0ODVkZWFmMDBiMGFkNjE5YTY1NDU1MWE2ODJmZjA5 ZjExZDkxYzU0ZTQ4ZDFmZmE5YjE3NWE4YjcyNGQ4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnU9P5Emol8heQkEz01iVr+071i0ILTXjaIKlTcGnHoiTb fYRL4lei0Ksvz7vjq5cZcLLqo4wbke5EJlUyNmIija6zkx96d3431+SI96JRxClY HkIhF25VcJnb3BBUizqkdwhlNCxE5yWqVy7SRdHlQqPgb2QljBf8GxO1tCT+IE2+ EV8VF8bXo98Zb8ZhkNtGvQQU0T9hknr9myS+IcsEB3/X/zifdXe0uX/Ba3aVqg0N irffA7ydy4wlgwV3a5MKU5G30U58ByE38hHl80CPBxjBY0gUP3qpyJyBm5uOYQJS YldHbxbhjBi13UHksG2gtrZnTph4tZZ48lqBOzTzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUekabzfqwcerfUCQaFgsl+PwjIHwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzMDdiNDI2LTM1NzgtNDA5OS04OTA1LTgyNDczZTZkZDBhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADOSNEwDQYJKoZIhvcNAQELBQADggEBAA83/YUtDmMlDjX1UrRBZya/XFAK FXDokhHBEdlWLx4nmuhEwo9a/g/4usy0Zou6iuCK9301ltQsFsfvsATZt2OicOGO KlcpjADz9P6Y0HpEruql+5/JvlXtvK0riK8yo2fo2dsqKbm2Ta2ll2Pd5yBlHoae 3k9pRv88GPjhaitD0CWXzpREX06+HmJDSPpuxrxKGpMz6Af6AuGMKCBuWVfNSoCK z1ey6q0H2JX+3g08RlpwV9+wqPzLuj+GzQAhCHK0V16a6SzaUgfTOfNZftvsFGAJ a+6Zog4G0LnX6TCC2ksNCuDZ7NGVDmPxbjHt1KQCrVtdbvZAaySBcABWEMM= -----END CERTIFICATE-----Generated at Sun Feb 16 15:33:58 2025 by rpki-client