$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58b42984-22be-4af1-8da5-6fa235d1029c.roa File: 58b42984-22be-4af1-8da5-6fa235d1029c.roa (raw, json) Hash identifier: q9+cONWBPa2htBR2VS5zELrUtNH1CKORnOY6q0y83JE= Subject key identifier: FB:76:8B:63:0D:5E:B5:38:68:CF:2F:7F:83:D5:4C:60:4C:1A:FE:6F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 642C6FAC40B813BE1489AB16ACF90AF5ACB7B3C0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58b42984-22be-4af1-8da5-6fa235d1029c.roa Signing time: Mon 20 Jan 2025 00:00:00 +0000 ROA not before: Mon 20 Jan 2025 00:00:00 +0000 ROA not after: Mon 24 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 104.153.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:2c:6f:ac:40:b8:13:be:14:89:ab:16:ac:f9:0a:f5:ac:b7:b3:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 20 00:00:00 2025 GMT Not After : Feb 24 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:99:44:ea:28:25:17:3d:d3:14:5e:68:3d:78: 64:01:69:23:ea:06:88:dd:50:7c:bf:44:53:a6:35: 85:68:08:e1:0c:3c:95:6b:43:18:e7:a1:ca:ef:14: 88:f3:16:10:c7:01:c8:62:f8:1b:cb:ba:28:65:0c: d7:2f:1f:05:cb:d6:70:60:7e:c8:46:2f:0d:24:24: de:47:57:f0:9e:2c:4d:b8:34:16:00:b2:18:c2:35: 8e:c2:e3:40:59:54:64:f0:cc:e3:d8:07:6b:73:fa: 15:75:7b:f7:6c:30:ac:8c:18:40:97:9a:08:7c:fd: a4:9d:11:3d:94:71:51:72:98:6e:ac:95:0a:c0:b4: dd:f9:26:81:13:d7:7a:36:8e:4d:ad:82:8b:39:10: 7c:2d:2f:92:2f:16:4c:db:1c:1c:36:84:70:f0:27: 11:e3:0b:79:9f:1b:63:6b:2a:1c:80:ad:3c:12:59: bd:00:af:fc:ba:e2:99:25:66:98:46:79:fb:50:b7: cf:76:b7:f0:c3:02:3d:4a:cb:36:50:12:48:ff:c4: 99:f8:3d:35:74:04:55:04:09:c8:8c:10:f0:c8:5c: bb:eb:38:2f:d0:7f:b1:5d:58:9e:0f:af:95:e2:cd: 1e:d5:85:09:31:01:51:89:4d:66:22:b0:bd:97:1a: d4:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:76:8B:63:0D:5E:B5:38:68:CF:2F:7F:83:D5:4C:60:4C:1A:FE:6F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58b42984-22be-4af1-8da5-6fa235d1029c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.153.118.0/24 Signature Algorithm: sha256WithRSAEncryption 21:cf:57:a5:66:9d:00:09:69:2d:5e:c5:f6:fb:c0:7b:ce:5c: fe:80:be:5c:5d:30:63:31:b1:69:4f:a0:48:bd:ad:8b:15:b2: e3:7d:9a:bb:3e:86:6c:d7:19:45:ef:e6:64:ec:ee:94:36:e0: 76:db:2d:b9:1d:2a:9d:10:85:47:c4:54:b2:6a:24:f0:df:d3: 21:80:53:ed:96:62:30:ce:25:b7:c5:86:47:fd:4b:66:a2:9a: 22:52:d9:32:f5:7d:12:ee:3e:20:3c:90:f1:82:78:e7:81:ba: 4e:b1:f6:6d:53:d3:cb:fe:60:11:87:50:5d:b1:e2:3c:6f:48: d9:87:7f:fc:4d:c8:fb:b3:12:af:77:2c:72:92:24:de:7b:58: 6f:ce:59:b9:81:70:a9:05:0c:8f:04:8d:14:04:f9:2c:1f:7a: d3:de:e0:20:40:da:67:8e:8d:52:31:23:43:c5:23:74:61:14: 3a:cf:cb:f9:b1:ad:57:83:bb:65:39:1d:e3:cc:fe:50:2e:10: 85:4c:a9:49:dc:29:84:26:22:67:2a:f0:95:59:03:ea:9d:6b: e9:a5:f8:0a:be:0a:63:f8:74:c8:b7:d5:17:4b:ea:ac:9f:c4: 9b:1a:04:58:f0:a9:ec:c8:09:8b:23:ce:46:c1:a0:13:73:08: c0:94:e6:fa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZCxvrEC4E74UiasWrPkK9ay3s8AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTIwMDAwMDAwWhcNMjUwMjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5OGI0ZWVlMjdlMjcyNTIxZTNiNGZmNzg3YzcxNDI2MTU2 MWM2NzdlMTRhYTMzNjVmNzdmZTQ4MjcwMmE1NTE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClmUTqKCUXPdMUXmg9eGQBaSPqBojdUHy/RFOmNYVoCOEM PJVrQxjnocrvFIjzFhDHAchi+BvLuihlDNcvHwXL1nBgfshGLw0kJN5HV/CeLE24 NBYAshjCNY7C40BZVGTwzOPYB2tz+hV1e/dsMKyMGECXmgh8/aSdET2UcVFymG6s lQrAtN35JoET13o2jk2tgos5EHwtL5IvFkzbHBw2hHDwJxHjC3mfG2NrKhyArTwS Wb0Ar/y64pklZphGeftQt892t/DDAj1KyzZQEkj/xJn4PTV0BFUECciMEPDIXLvr OC/Qf7FdWJ4Pr5XizR7VhQkxAVGJTWYisL2XGtTXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+3aLYw1etThozy9/g9VMYEwa/m8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU4YjQyOTg0LTIyYmUtNGFmMS04ZGE1LTZmYTIzNWQxMDI5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABomXYwDQYJKoZIhvcNAQELBQADggEBACHPV6VmnQAJaS1exfb7wHvOXP6A vlxdMGMxsWlPoEi9rYsVsuN9mrs+hmzXGUXv5mTs7pQ24HbbLbkdKp0QhUfEVLJq JPDf0yGAU+2WYjDOJbfFhkf9S2aimiJS2TL1fRLuPiA8kPGCeOeBuk6x9m1T08v+ YBGHUF2x4jxvSNmHf/xNyPuzEq93LHKSJN57WG/OWbmBcKkFDI8EjRQE+SwfetPe 4CBA2meOjVIxI0PFI3RhFDrPy/mxrVeDu2U5HePM/lAuEIVMqUncKYQmImcq8JVZ A+qda+ml+Aq+CmP4dMi31RdL6qyfxJsaBFjwqezICYsjzkbBoBNzCMCU5vo= -----END CERTIFICATE-----Generated at Wed Feb 5 09:53:47 2025 by rpki-client