$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5764c5f6-9fe6-46c5-b1a0-268cd76692f2.roa File: 5764c5f6-9fe6-46c5-b1a0-268cd76692f2.roa (raw, json) Hash identifier: 2VfZxC6aSSah9TgETNTt06585LDGmQTmdSCDwB0Wul4= Subject key identifier: 4A:D2:89:5C:54:1A:0B:76:FC:FD:77:A9:86:07:8B:D2:6F:CD:0D:3B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 040D36ECF9CF7EAD050725F7DA85AFCAEA6743D9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5764c5f6-9fe6-46c5-b1a0-268cd76692f2.roa Signing time: Wed 12 Feb 2025 00:00:00 +0000 ROA not before: Wed 12 Feb 2025 00:00:00 +0000 ROA not after: Wed 19 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 153.42.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:0d:36:ec:f9:cf:7e:ad:05:07:25:f7:da:85:af:ca:ea:67:43:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 12 00:00:00 2025 GMT Not After : Mar 19 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:53:eb:30:c2:24:a4:13:ad:09:f6:95:14:50: 12:9a:7b:9a:bc:1b:9a:5f:27:5f:49:5c:2e:94:86: 17:ec:cd:39:99:01:46:fe:ee:1b:49:b8:10:fd:a5: b3:f5:41:0e:b9:ed:2f:e5:30:e8:9f:11:66:d6:e3: c1:c2:3c:f1:d5:c4:4e:c0:ed:93:ac:3d:33:f5:b0: 7a:53:ac:c7:0c:b4:86:d3:a1:6d:88:b0:ea:4e:8d: 98:d0:74:5e:35:da:e2:d0:72:17:e0:3c:7f:91:85: 6d:dd:61:e5:eb:c2:e0:87:e4:d9:ec:7b:28:5f:58: f4:65:80:88:af:5e:9c:b6:e3:29:f3:ee:29:a4:5f: 8b:54:52:d8:7e:38:51:ac:b8:41:40:56:e9:83:a0: f0:d7:34:cc:46:e8:91:7f:12:9b:e7:ca:c6:3b:d7: 36:b9:98:1c:67:b2:fa:ed:16:c1:0c:d6:c4:5c:ac: c0:68:65:de:59:d1:ad:b5:b7:c8:ab:57:3e:6f:3d: 04:7c:c6:6b:f2:ef:44:41:a0:7e:fb:6b:2e:ab:fa: 0f:9a:a6:f4:54:29:d8:d5:ec:ff:83:1e:ba:cf:03: 62:9b:ff:50:bb:c7:8b:3a:ff:15:7e:50:ba:0d:47: 3a:25:66:87:8e:33:1d:12:ae:98:eb:37:dd:fe:68: 14:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:D2:89:5C:54:1A:0B:76:FC:FD:77:A9:86:07:8B:D2:6F:CD:0D:3B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5764c5f6-9fe6-46c5-b1a0-268cd76692f2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 153.42.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6f:bb:12:1a:e0:65:dc:86:94:35:f8:15:cc:e1:36:56:e6:16: f3:7b:f0:49:ce:4c:90:00:5c:05:17:37:21:6a:06:a8:49:52: 03:ff:73:4e:a6:53:d1:a6:06:84:1a:9a:a4:88:8c:65:e3:b4: 17:f8:ee:16:88:7e:df:45:2f:fd:3d:46:c6:0c:ff:82:b0:05: 49:e3:54:02:db:f4:c7:3c:61:3b:a8:e4:6b:1a:40:a5:4f:14: fa:e3:7d:41:36:6a:a3:37:22:30:6c:df:3c:61:76:bd:6b:f1: ed:32:2f:09:45:ae:16:e8:8d:26:79:70:a4:6f:24:7e:cf:5a: be:a0:6d:4b:54:f3:a2:c6:6d:01:a1:dd:4d:ea:c9:1f:2c:45: a8:a5:d6:09:99:43:64:d4:b8:6d:1e:3d:ff:fd:cd:63:60:ed: 57:61:cb:66:02:dd:65:34:93:e7:41:5a:36:4b:53:0b:ba:ca: 82:95:49:d4:80:d0:70:42:f5:95:8c:56:b3:5d:c9:64:3c:60: 2c:0e:a7:63:25:64:77:a6:5f:41:8b:99:19:9f:e2:2e:f9:d5: 04:c3:e5:0e:13:0c:ac:e3:51:69:25:02:3c:01:44:89:be:bc: 7e:ce:8b:16:8f:96:11:cb:0f:08:bd:d1:25:e0:69:73:0c:4b: 25:9d:a3:96 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBA027PnPfq0FByX32oWvyupnQ9kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjEyMDAwMDAwWhcNMjUwMzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNmNlOTUyMzY3NjM0ZTE4OGViY2RmNDM2MDcyMzNlZTU5 MmI3ZTcwMjYwMDQ1ZWE2MjcyY2E2MjRkZGFiMDRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5U+swwiSkE60J9pUUUBKae5q8G5pfJ19JXC6UhhfszTmZ AUb+7htJuBD9pbP1QQ657S/lMOifEWbW48HCPPHVxE7A7ZOsPTP1sHpTrMcMtIbT oW2IsOpOjZjQdF412uLQchfgPH+RhW3dYeXrwuCH5NnseyhfWPRlgIivXpy24ynz 7imkX4tUUth+OFGsuEFAVumDoPDXNMxG6JF/EpvnysY71za5mBxnsvrtFsEM1sRc rMBoZd5Z0a21t8irVz5vPQR8xmvy70RBoH77ay6r+g+apvRUKdjV7P+DHrrPA2Kb /1C7x4s6/xV+ULoNRzolZoeOMx0SrpjrN93+aBRFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUStKJXFQaC3b8/XephgeL0m/NDTswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU3NjRjNWY2LTlmZTYtNDZjNS1iMWEwLTI2OGNkNzY2OTJmMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCZKjANBgkqhkiG9w0BAQsFAAOCAQEAb7sSGuBl3IaUNfgVzOE2VuYW83vw Sc5MkABcBRc3IWoGqElSA/9zTqZT0aYGhBqapIiMZeO0F/juFoh+30Uv/T1Gxgz/ grAFSeNUAtv0xzxhO6jkaxpApU8U+uN9QTZqozciMGzfPGF2vWvx7TIvCUWuFuiN JnlwpG8kfs9avqBtS1TzosZtAaHdTerJHyxFqKXWCZlDZNS4bR49//3NY2DtV2HL ZgLdZTST50FaNktTC7rKgpVJ1IDQcEL1lYxWs13JZDxgLA6nYyVkd6ZfQYuZGZ/i LvnVBMPlDhMMrONRaSUCPAFEib68fs6LFo+WEcsPCL3RJeBpcwxLJZ2jlg== -----END CERTIFICATE-----Generated at Sun Feb 16 15:41:36 2025 by rpki-client