$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/677448d3-c998-4825-9df7-dd9ac11a3c19.roa File: 677448d3-c998-4825-9df7-dd9ac11a3c19.roa (raw, json) Hash identifier: bGHO+9uKi1RQSxIXnsmHnHksoyAKwwaWxNp5jda3Niw= Subject key identifier: 84:83:5A:54:8C:AF:A0:8E:57:58:CC:F2:F4:73:8A:70:2B:2A:B6:1A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7ED18288B750E43906E1F70DCB25C5246191B1C7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/677448d3-c998-4825-9df7-dd9ac11a3c19.roa Signing time: Mon 13 Jan 2025 00:00:00 +0000 ROA not before: Mon 13 Jan 2025 00:00:00 +0000 ROA not after: Mon 17 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 161.178.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:d1:82:88:b7:50:e4:39:06:e1:f7:0d:cb:25:c5:24:61:91:b1:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 13 00:00:00 2025 GMT Not After : Feb 17 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:69:c2:44:9b:9f:0d:ac:3d:f2:55:88:08:8a: ec:b8:b0:78:2d:b9:96:31:f3:d2:9c:44:7b:c3:ae: aa:ea:ca:15:b0:58:68:ac:71:54:a8:60:27:b1:15: 7b:99:69:cf:a4:ea:23:f7:24:b7:3d:e4:de:66:c3: 71:3d:8f:81:64:b4:12:da:e8:0b:86:53:f8:89:22: e1:b2:40:25:f5:e6:64:1a:99:df:81:fd:a0:75:b2: 7e:43:c2:ff:8a:ed:05:e6:96:33:51:26:fb:92:eb: 2d:2d:7a:e9:1c:1f:bf:38:83:b0:d8:21:3b:f6:51: 29:c1:30:3c:eb:b7:36:36:d0:b6:55:78:b3:1f:f2: e6:ce:0d:a7:dc:f3:6c:da:6e:e1:43:a5:b9:e1:08: 84:b1:3a:25:a5:ba:4e:19:3f:d3:bb:3c:08:ba:bb: ba:65:88:78:2c:09:bb:0a:25:40:9e:3f:4b:04:aa: 5c:fa:04:6f:cc:80:1d:e7:36:79:d8:1e:46:68:48: bf:55:b8:3b:5f:3a:9e:1e:2e:39:d4:fd:3f:ba:1e: c9:3a:00:fd:01:24:11:f0:4d:fa:05:7a:40:82:75: e0:8d:55:f2:31:e7:a4:5a:76:94:ba:32:45:1b:43: 7a:d2:e1:5b:c8:b2:c5:65:a5:fe:0c:8a:28:83:9d: 5f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:83:5A:54:8C:AF:A0:8E:57:58:CC:F2:F4:73:8A:70:2B:2A:B6:1A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/677448d3-c998-4825-9df7-dd9ac11a3c19.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.178.128.0/19 Signature Algorithm: sha256WithRSAEncryption 16:4d:25:94:91:fa:84:5a:21:c1:06:f3:6a:d2:21:aa:49:c2: e2:31:f8:19:d1:9f:a8:4f:b8:a5:31:f1:ed:6b:64:77:30:62: f5:b8:dc:46:5c:a2:ae:4e:a1:a7:c8:f8:99:5a:66:c7:82:21: 60:b2:35:d4:65:fe:c1:ed:52:c7:3a:bd:42:58:6c:b7:46:b2: 22:32:3e:b9:b3:9a:0e:eb:22:75:3a:e5:ae:0b:0b:37:ef:33: 2c:e3:5f:c6:1e:3f:b7:4b:40:57:9f:28:8c:a8:a2:0a:6e:3f: 64:48:13:dc:96:c7:74:0a:36:3e:f9:bd:17:b7:19:7d:2a:0e: 95:c3:1f:75:45:8c:6c:c4:b0:2e:ce:0c:88:d7:fa:7d:6a:d7: 30:99:bc:5b:a2:9b:18:c8:5f:e0:24:87:e8:0f:3b:d1:33:d2: e6:d5:57:18:22:f9:6c:32:f5:94:2c:2b:82:98:c1:06:ea:67: 46:13:f2:2d:b0:e5:af:4e:2d:8e:03:2d:c4:48:ed:9c:08:ef: b6:2a:4c:6b:33:4d:7d:57:fc:fe:df:99:50:8b:5f:17:78:61: 8b:59:54:45:3d:eb:82:67:18:be:61:d0:de:32:92:a7:98:53: 8a:7a:85:3e:0d:b4:df:6a:be:9e:fb:51:66:94:f6:81:25:44: f5:20:fd:ff -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUftGCiLdQ5DkG4fcNyyXFJGGRsccwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTEzMDAwMDAwWhcNMjUwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZWE3ZTc0Y2VkZTFhMGZlODU0Mzc5OTVjMzQzNzZkMmMw ODQ5MGZiYTI1N2U1ODc5MDI4NzRmYzg4ZjA1NDFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBacJEm58NrD3yVYgIiuy4sHgtuZYx89KcRHvDrqrqyhWw WGiscVSoYCexFXuZac+k6iP3JLc95N5mw3E9j4FktBLa6AuGU/iJIuGyQCX15mQa md+B/aB1sn5Dwv+K7QXmljNRJvuS6y0teukcH784g7DYITv2USnBMDzrtzY20LZV eLMf8ubODafc82zabuFDpbnhCISxOiWluk4ZP9O7PAi6u7pliHgsCbsKJUCeP0sE qlz6BG/MgB3nNnnYHkZoSL9VuDtfOp4eLjnU/T+6Hsk6AP0BJBHwTfoFekCCdeCN VfIx56RadpS6MkUbQ3rS4VvIssVlpf4MiiiDnV9DAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhINaVIyvoI5XWMzy9HOKcCsqthowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY3NzQ0OGQzLWM5OTgtNDgyNS05ZGY3LWRkOWFjMTFhM2MxOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWhsoAwDQYJKoZIhvcNAQELBQADggEBABZNJZSR+oRaIcEG82rSIapJwuIx +BnRn6hPuKUx8e1rZHcwYvW43EZcoq5OoafI+JlaZseCIWCyNdRl/sHtUsc6vUJY bLdGsiIyPrmzmg7rInU65a4LCzfvMyzjX8YeP7dLQFefKIyoogpuP2RIE9yWx3QK Nj75vRe3GX0qDpXDH3VFjGzEsC7ODIjX+n1q1zCZvFuimxjIX+Akh+gPO9Ez0ubV Vxgi+Wwy9ZQsK4KYwQbqZ0YT8i2w5a9OLY4DLcRI7ZwI77YqTGszTX1X/P7fmVCL Xxd4YYtZVEU964JnGL5h0N4ykqeYU4p6hT4NtN9qvp77UWaU9oElRPUg/f8= -----END CERTIFICATE-----Generated at Wed Feb 5 09:51:43 2025 by rpki-client