$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58c78734-91d9-4994-9461-7b6172f0caa6.roa File: 58c78734-91d9-4994-9461-7b6172f0caa6.roa (raw, json) Hash identifier: wrN7VVYekqq+aNUa1BIsGjwL7fnSwdrFneS7vPKI9Pw= Subject key identifier: 40:31:44:B6:4B:85:36:5D:89:97:29:60:2A:80:10:E6:E9:E3:AE:87 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 528D6EE26050400C7F65368E6BD8C23A41BAA1B6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58c78734-91d9-4994-9461-7b6172f0caa6.roa Signing time: Mon 13 Jan 2025 00:00:00 +0000 ROA not before: Mon 13 Jan 2025 00:00:00 +0000 ROA not after: Mon 17 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 67.202.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:8d:6e:e2:60:50:40:0c:7f:65:36:8e:6b:d8:c2:3a:41:ba:a1:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 13 00:00:00 2025 GMT Not After : Feb 17 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:be:63:7f:ac:dc:73:f9:d2:14:7b:4e:37:57: 54:3d:23:00:55:de:40:4d:15:f2:74:e6:53:9a:52: c3:64:97:1a:df:c6:22:0d:0a:cd:f6:22:9c:3a:52: b3:49:6c:57:0a:ca:7f:4c:72:55:f7:2f:14:63:3d: 23:26:c4:d3:9a:5d:63:c5:bc:a0:55:cb:03:db:a7: 6b:4b:8a:46:f2:ae:aa:76:13:6e:a8:1d:96:2a:d7: b7:13:ae:45:16:b5:9c:5d:4d:d4:4b:7c:3d:46:b5: 3b:8d:1e:f5:99:7d:31:a5:88:46:e0:30:ef:3a:18: 51:86:8d:74:64:56:98:10:e8:27:72:b3:4d:6a:11: 7c:0b:3c:97:72:01:ec:3d:b6:7e:b2:43:25:9b:8d: d2:17:4c:b4:46:4a:66:9d:cc:08:5d:04:d8:ee:4f: 00:4d:de:60:e2:f5:27:15:25:f4:38:c4:28:aa:f6: d4:1c:ec:44:2c:74:29:62:fb:df:9a:04:44:77:8f: 6b:49:7c:77:66:9b:9b:19:81:71:0c:33:e1:5a:a2: a1:09:f6:cd:48:3d:fc:cb:87:3e:a5:7d:37:42:d6: cb:06:96:c9:f1:a9:f6:bb:78:de:57:09:b3:87:5b: ea:7f:07:58:74:70:7b:35:80:85:31:36:ec:a5:4b: 93:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:31:44:B6:4B:85:36:5D:89:97:29:60:2A:80:10:E6:E9:E3:AE:87 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58c78734-91d9-4994-9461-7b6172f0caa6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 67.202.0.0/18 Signature Algorithm: sha256WithRSAEncryption a8:79:20:88:4d:d8:af:60:78:ab:ea:5a:6e:03:71:93:a7:cd: ec:bd:2f:e5:9e:73:53:a3:f0:87:76:bf:4a:8d:2e:7d:5e:14: 34:35:3f:bf:4a:07:b1:56:9c:a3:98:cd:b6:18:0f:29:f9:65: 1c:63:a6:e7:ba:b9:06:83:3b:20:8c:3e:f5:df:3d:d8:39:5d: 29:1b:e3:9f:b3:9a:c4:4e:67:35:ee:b1:0d:eb:bf:94:bb:02: 4a:d4:80:dc:eb:19:c7:0d:00:eb:a2:78:33:e8:10:75:39:2c: ed:99:e3:2d:fb:4c:7d:59:67:45:0a:61:d5:32:64:43:4a:85: 02:cf:3b:48:a9:b7:fb:95:e5:e2:cf:bc:99:f9:fe:c5:a1:39: 1b:15:69:fd:f7:0e:e0:41:21:10:6d:9d:b1:11:ea:4c:61:9c: 7c:0f:72:c4:72:ac:69:44:54:50:55:02:25:72:29:de:b7:43: 51:4d:5f:8b:a3:03:58:5a:2d:05:71:3f:5d:63:94:74:94:bb: 11:3b:a3:48:97:3a:ca:03:bf:e5:dc:5a:f0:8d:01:6b:28:8a: 56:11:b7:cb:05:51:b3:2d:bf:97:38:c7:26:16:5e:12:fe:b6: 9c:7a:57:f8:d1:ba:de:62:a2:2b:f7:75:ff:ab:80:50:c2:ba: 76:48:d2:4e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUo1u4mBQQAx/ZTaOa9jCOkG6obYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTEzMDAwMDAwWhcNMjUwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2M2IyZDk5NzU4YjNmMzBjMGVmNzNhNmZlMTNlYTQ2ZjQx NTY4MDgzNTZlNTE5ODllMWFlNjQ4MDI5ODFkZDBiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCevmN/rNxz+dIUe043V1Q9IwBV3kBNFfJ05lOaUsNklxrf xiINCs32Ipw6UrNJbFcKyn9MclX3LxRjPSMmxNOaXWPFvKBVywPbp2tLikbyrqp2 E26oHZYq17cTrkUWtZxdTdRLfD1GtTuNHvWZfTGliEbgMO86GFGGjXRkVpgQ6Cdy s01qEXwLPJdyAew9tn6yQyWbjdIXTLRGSmadzAhdBNjuTwBN3mDi9ScVJfQ4xCiq 9tQc7EQsdCli+9+aBER3j2tJfHdmm5sZgXEMM+FaoqEJ9s1IPfzLhz6lfTdC1ssG lsnxqfa7eN5XCbOHW+p/B1h0cHs1gIUxNuylS5OlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQDFEtkuFNl2JlylgKoAQ5unjrocwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU4Yzc4NzM0LTkxZDktNDk5NC05NDYxLTdiNjE3MmYwY2FhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZDygAwDQYJKoZIhvcNAQELBQADggEBAKh5IIhN2K9geKvqWm4DcZOnzey9 L+Wec1Oj8Id2v0qNLn1eFDQ1P79KB7FWnKOYzbYYDyn5ZRxjpue6uQaDOyCMPvXf Pdg5XSkb45+zmsROZzXusQ3rv5S7AkrUgNzrGccNAOuieDPoEHU5LO2Z4y37TH1Z Z0UKYdUyZENKhQLPO0ipt/uV5eLPvJn5/sWhORsVaf33DuBBIRBtnbER6kxhnHwP csRyrGlEVFBVAiVyKd63Q1FNX4ujA1haLQVxP11jlHSUuxE7o0iXOsoDv+XcWvCN AWsoilYRt8sFUbMtv5c4xyYWXhL+tpx6V/jRut5ioiv3df+rgFDCunZI0k4= -----END CERTIFICATE-----Generated at Wed Feb 5 09:44:34 2025 by rpki-client