$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5b1eae43-0942-4239-94c6-a530231bc334.roa File: 5b1eae43-0942-4239-94c6-a530231bc334.roa (raw, json) Hash identifier: 6qOWfl79f3vmQQlVwccfbPC1fZsjRNWQLx9/L8WTdUk= Subject key identifier: 0E:10:07:39:82:AB:EF:1D:D7:B9:E9:AE:CE:E6:B9:6E:B5:F4:EE:62 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 44F238071EA2AB401EBC8028A4FB8C7187BE665B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5b1eae43-0942-4239-94c6-a530231bc334.roa Signing time: Tue 28 Jan 2025 00:00:00 +0000 ROA not before: Tue 28 Jan 2025 00:00:00 +0000 ROA not after: Tue 04 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.152.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:f2:38:07:1e:a2:ab:40:1e:bc:80:28:a4:fb:8c:71:87:be:66:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 28 00:00:00 2025 GMT Not After : Mar 4 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:4b:6a:e0:54:11:bb:b0:5d:1d:ba:7f:c0:43: 1d:8d:cb:ae:45:ca:3d:93:9c:03:6e:b0:50:6b:0e: 7e:1c:ab:a5:3f:ec:d7:f8:d5:c6:ad:f2:8c:f3:2d: f9:50:9c:4e:f8:44:bd:7b:e3:18:cf:09:a4:c0:0a: 2e:1c:98:0d:a7:26:24:13:b7:d2:c2:72:b8:b8:9f: 40:d9:34:16:97:54:64:2b:8e:67:9c:78:36:6d:df: 28:b4:2a:ca:c6:74:97:37:84:2b:e8:17:c9:12:e3: 31:93:cc:d8:d2:14:2e:75:47:d4:d9:fd:79:52:c8: 9e:67:cc:c4:ca:1e:67:fc:e5:a3:1c:a6:58:ab:aa: db:d9:dc:63:02:27:f2:a7:13:3d:df:77:a5:10:ff: 29:3c:ff:95:6f:2d:96:c7:40:3c:6c:74:a3:41:aa: d6:61:4e:b3:cd:59:bd:69:be:b7:e6:c9:54:cf:31: 05:d2:40:55:f4:76:96:3b:c9:7c:75:85:a1:83:d9: 0b:5d:d9:7e:12:4c:b5:84:0e:9e:5e:cf:60:93:3b: 20:2a:75:f5:de:3d:5f:59:b1:eb:30:af:37:b9:3c: 4a:e9:3a:22:74:2e:33:f2:e4:b9:d5:f3:82:3c:ad: f5:6f:61:7e:5a:7e:2c:e0:05:62:85:45:63:c0:bc: 73:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:10:07:39:82:AB:EF:1D:D7:B9:E9:AE:CE:E6:B9:6E:B5:F4:EE:62 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5b1eae43-0942-4239-94c6-a530231bc334.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.152.0.0/16 Signature Algorithm: sha256WithRSAEncryption 55:73:f1:f0:39:2b:d0:68:ec:86:65:e6:c0:02:53:09:7f:58: a3:a0:2f:16:ac:2b:e0:42:99:42:02:a6:3c:04:7a:8f:f8:8c: 43:91:3d:3d:00:9b:f2:3e:d5:d0:a7:a8:ee:83:27:44:bc:5a: b9:52:2c:01:27:8a:5b:04:33:8b:92:54:d4:27:3a:c3:2c:4c: a1:85:82:84:53:26:82:b8:b9:eb:58:ca:3b:f2:3b:5b:69:6a: 51:8b:69:96:a2:9b:ea:27:00:24:51:cc:99:91:e1:4b:2c:f3: 72:1e:9e:71:f8:a6:eb:d4:12:fa:f7:34:e1:a0:60:b4:e4:51: 48:1a:6b:e2:55:68:3f:3e:ce:b4:61:74:26:49:fc:a1:2a:f2: 06:a3:8a:48:6a:d5:96:ee:aa:79:49:fb:c3:24:2b:29:3f:e1: 8c:da:10:a1:27:a2:05:9d:bb:d8:6f:58:6e:de:67:ce:25:82: 6a:2b:18:0d:8b:07:fb:83:41:fa:3b:a6:da:da:95:82:36:e5: 87:0c:33:8b:22:bf:ef:64:3d:c5:7f:45:36:c7:d8:b1:df:97: f6:e6:8a:9d:f8:6d:bd:9a:1a:29:a8:3c:74:d7:b5:ab:eb:00: b9:e6:7e:6e:3e:21:ba:ab:0b:76:ef:c3:f2:6f:c5:0f:48:68: af:42:42:25 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURPI4Bx6iq0AevIAopPuMcYe+ZlswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTI4MDAwMDAwWhcNMjUwMzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZTYzMThhZTRiZTQ2MmYyYjA1NzQ4ZWFmYzFhMDBiN2Yy YTdlNjQ0ZDY2MWVmN2RmNjkyMjUyZTY4N2U0MTU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnS2rgVBG7sF0dun/AQx2Ny65Fyj2TnANusFBrDn4cq6U/ 7Nf41cat8ozzLflQnE74RL174xjPCaTACi4cmA2nJiQTt9LCcri4n0DZNBaXVGQr jmeceDZt3yi0KsrGdJc3hCvoF8kS4zGTzNjSFC51R9TZ/XlSyJ5nzMTKHmf85aMc plirqtvZ3GMCJ/KnEz3fd6UQ/yk8/5VvLZbHQDxsdKNBqtZhTrPNWb1pvrfmyVTP MQXSQFX0dpY7yXx1haGD2Qtd2X4STLWEDp5ez2CTOyAqdfXePV9Zseswrze5PErp OiJ0LjPy5LnV84I8rfVvYX5afizgBWKFRWPAvHOXAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUDhAHOYKr7x3Xuemuzua5brX07mIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzViMWVhZTQzLTA5NDItNDIzOS05NGM2LWE1MzAyMzFiYzMzNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwANmDANBgkqhkiG9w0BAQsFAAOCAQEAVXPx8Dkr0GjshmXmwAJTCX9Yo6Av Fqwr4EKZQgKmPAR6j/iMQ5E9PQCb8j7V0Keo7oMnRLxauVIsASeKWwQzi5JU1Cc6 wyxMoYWChFMmgri561jKO/I7W2lqUYtplqKb6icAJFHMmZHhSyzzch6ecfim69QS +vc04aBgtORRSBpr4lVoPz7OtGF0Jkn8oSryBqOKSGrVlu6qeUn7wyQrKT/hjNoQ oSeiBZ272G9Ybt5nziWCaisYDYsH+4NB+jum2tqVgjblhwwziyK/72Q9xX9FNsfY sd+X9uaKnfhtvZoaKag8dNe1q+sAueZ+bj4huqsLdu/D8m/FD0hor0JCJQ== -----END CERTIFICATE-----Generated at Sun Feb 16 15:33:01 2025 by rpki-client