$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ef35af6-a704-4311-b43f-c62b39327200.roa File: 5ef35af6-a704-4311-b43f-c62b39327200.roa (raw, json) Hash identifier: fFPb3qM9pcpnT/emjooIsb47fkoC+LFvsZRuIVXGE64= Subject key identifier: 29:D7:22:3C:BB:E0:77:E0:2A:08:DF:F7:64:98:C8:CA:1D:0D:A5:59 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 201B646EA8E645833F92E7B5CDE6AC3B9F2C6A69 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ef35af6-a704-4311-b43f-c62b39327200.roa Signing time: Tue 21 Jan 2025 00:00:00 +0000 ROA not before: Tue 21 Jan 2025 00:00:00 +0000 ROA not after: Tue 25 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.105.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:1b:64:6e:a8:e6:45:83:3f:92:e7:b5:cd:e6:ac:3b:9f:2c:6a:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 21 00:00:00 2025 GMT Not After : Feb 25 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:00:95:1f:eb:48:67:6f:5d:64:cd:78:89:34: 83:e0:b5:d9:f0:f7:ce:1e:ac:99:88:b2:81:26:5c: e6:e9:06:9a:32:b5:e4:6a:1c:2e:8b:b1:cb:27:8f: 27:5e:1e:c2:30:a3:a6:1d:ae:08:ac:b4:6c:28:41: 8c:65:08:59:5a:ac:c2:03:54:dc:48:a1:c7:27:59: 9e:ec:6a:4d:1b:05:5c:7c:d6:51:e1:1f:02:cd:2a: 04:53:f3:92:d7:b4:5b:fa:d8:12:db:42:4b:e8:ee: 10:b4:63:89:44:a8:41:e1:38:a0:bf:f2:d0:fc:69: 0a:07:93:6d:b1:ae:4d:e4:be:9e:c2:96:22:fd:a3: 02:57:3d:62:0d:3c:7f:f5:f0:d7:e3:9d:4c:79:e3: 72:57:47:6a:a7:26:eb:ee:11:e1:9b:73:a5:bb:2a: c9:9d:56:a8:51:ab:ac:0b:bb:e7:c8:f1:f9:af:aa: 90:ba:d4:03:f7:00:5d:ea:82:23:ee:e0:d7:72:ef: cf:2a:03:ad:2d:8a:97:f4:f0:80:7c:49:bb:04:b0: 66:4d:bf:9f:6c:06:60:06:8b:5c:6f:1e:3c:2a:24: f7:91:10:31:fb:9d:15:cd:f9:22:9d:b0:9d:99:41: 52:97:ee:50:f1:40:33:bc:bb:24:aa:7d:e8:17:b3: 88:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:D7:22:3C:BB:E0:77:E0:2A:08:DF:F7:64:98:C8:CA:1D:0D:A5:59 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ef35af6-a704-4311-b43f-c62b39327200.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.105.128.0/18 Signature Algorithm: sha256WithRSAEncryption 2d:5c:e2:4b:f0:9a:b4:5e:8c:2d:25:90:38:75:f7:f4:65:d1: 27:11:2b:80:bc:64:88:f2:91:2f:5f:4c:21:4b:7b:42:01:7d: 76:9e:8f:b7:73:bb:4a:48:4e:50:b6:8e:ef:5c:3b:46:cd:17: 01:f8:28:15:c1:f8:88:70:4a:b6:f9:fe:3e:3e:e5:89:5f:4c: c9:ea:b4:f5:23:ff:91:7f:1b:f3:6b:70:c2:3c:37:09:da:d5: ea:4e:04:3b:60:31:31:4d:90:11:cb:ac:6b:3b:7f:61:95:7b: 69:42:2d:18:c2:94:65:a0:bd:1d:51:03:c1:d8:2f:12:46:51: 6c:1e:4e:b5:c8:39:79:17:20:c4:a9:84:b0:72:c7:3e:4a:de: 02:7f:69:f6:eb:86:6c:55:cf:3e:28:c7:b7:50:e1:e5:26:d9: 33:8e:11:56:c3:56:b6:84:77:a8:99:17:23:db:5b:ba:fd:2d: 46:e9:59:78:cb:ca:2e:61:16:57:ea:41:ea:ef:57:d2:6d:ed: 3e:a6:ea:c3:a3:1b:05:ce:c1:d6:77:0c:3d:44:a5:b2:03:6a: 6c:1a:14:f2:e3:21:59:2b:a1:60:6d:e9:9c:b8:21:99:06:9a: a1:a2:2b:7b:bc:d9:4c:31:d2:af:2b:50:b5:a1:d6:86:52:44: de:9e:64:4b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIBtkbqjmRYM/kue1zeasO58samkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTIxMDAwMDAwWhcNMjUwMjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NDVjZmIxZDNhMGRkYTQ4NDdiOGZiMWUxYTc4N2Y1NjQw MGVlYjg5ZGE4ZGUwNmU1NDU3NDJjMWU1MjFlYjdmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVAJUf60hnb11kzXiJNIPgtdnw984erJmIsoEmXObpBpoy teRqHC6LscsnjydeHsIwo6YdrgistGwoQYxlCFlarMIDVNxIoccnWZ7sak0bBVx8 1lHhHwLNKgRT85LXtFv62BLbQkvo7hC0Y4lEqEHhOKC/8tD8aQoHk22xrk3kvp7C liL9owJXPWINPH/18NfjnUx543JXR2qnJuvuEeGbc6W7KsmdVqhRq6wLu+fI8fmv qpC61AP3AF3qgiPu4Ndy788qA60tipf08IB8SbsEsGZNv59sBmAGi1xvHjwqJPeR EDH7nRXN+SKdsJ2ZQVKX7lDxQDO8uySqfegXs4j3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKdciPLvgd+AqCN/3ZJjIyh0NpVkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVlZjM1YWY2LWE3MDQtNDMxMS1iNDNmLWM2MmIzOTMyNzIwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZjaYAwDQYJKoZIhvcNAQELBQADggEBAC1c4kvwmrRejC0lkDh19/Rl0ScR K4C8ZIjykS9fTCFLe0IBfXaej7dzu0pITlC2ju9cO0bNFwH4KBXB+IhwSrb5/j4+ 5YlfTMnqtPUj/5F/G/NrcMI8Nwna1epOBDtgMTFNkBHLrGs7f2GVe2lCLRjClGWg vR1RA8HYLxJGUWweTrXIOXkXIMSphLByxz5K3gJ/afbrhmxVzz4ox7dQ4eUm2TOO EVbDVraEd6iZFyPbW7r9LUbpWXjLyi5hFlfqQervV9Jt7T6m6sOjGwXOwdZ3DD1E pbIDamwaFPLjIVkroWBt6Zy4IZkGmqGiK3u82Uwx0q8rULWh1oZSRN6eZEs= -----END CERTIFICATE-----Generated at Sun Feb 16 15:39:59 2025 by rpki-client