$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/69549ba5-c1f8-482f-82a0-e16ec59c5474.roa File: 69549ba5-c1f8-482f-82a0-e16ec59c5474.roa (raw, json) Hash identifier: L6QO9BarDItZKE2FrCNWk4PtF+MogvIN17662/0CxeM= Subject key identifier: 11:B2:7A:55:E9:22:5B:2E:F3:80:8A:F3:D6:49:66:D8:1B:59:11:30 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5CB52CF4BC9B8168B9C8B3C163F0660DE2D648C6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/69549ba5-c1f8-482f-82a0-e16ec59c5474.roa Signing time: Tue 28 Jan 2025 00:00:00 +0000 ROA not before: Tue 28 Jan 2025 00:00:00 +0000 ROA not after: Tue 04 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 136.18.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:b5:2c:f4:bc:9b:81:68:b9:c8:b3:c1:63:f0:66:0d:e2:d6:48:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 28 00:00:00 2025 GMT Not After : Mar 4 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d6:41:e5:64:e0:ce:72:20:1d:fc:b2:b5:65: f6:a5:3f:72:eb:02:4f:51:7b:e8:62:58:5e:1e:e6: af:9b:32:37:17:3f:80:38:4f:6a:8b:7d:3d:92:5d: db:d5:da:d6:01:28:6b:94:aa:d0:81:15:35:52:d0: bb:94:ed:c7:a5:4a:e4:a9:1d:66:20:9a:2a:d9:4d: dc:9a:9d:89:6a:f3:79:84:0a:38:92:ba:bf:23:0d: eb:89:de:2d:73:af:a4:09:1c:29:63:c7:74:c8:5f: ea:aa:de:41:13:7e:b9:cb:ad:85:db:3a:40:d2:d0: 51:43:67:cd:39:77:db:23:88:e7:a7:63:fe:e0:28: 78:c1:49:d7:e9:50:6b:47:a5:4b:02:72:b4:b4:ec: 79:bf:8d:3f:b8:1f:38:d6:b7:6d:1b:2e:a3:79:c3: d0:2d:0f:b2:a1:1f:95:9b:21:bf:5e:18:31:73:e5: 61:56:07:92:a1:74:db:f2:39:84:1f:3c:a4:7b:43: fa:38:d8:e7:ed:a0:75:39:5e:72:2d:39:aa:6c:6e: f0:83:7e:a3:8d:fa:b8:71:00:da:3a:24:e6:2b:ef: 6e:2e:c5:c1:b0:96:9d:67:14:57:ab:c9:8a:f6:34: 92:bf:2c:6b:60:86:fc:65:47:ad:40:8b:a3:94:83: ae:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:B2:7A:55:E9:22:5B:2E:F3:80:8A:F3:D6:49:66:D8:1B:59:11:30 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/69549ba5-c1f8-482f-82a0-e16ec59c5474.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.136.0/24 Signature Algorithm: sha256WithRSAEncryption 55:e4:03:15:27:77:c3:e8:b7:c1:1b:55:1d:a0:79:53:a2:bf: 26:d6:2c:d8:f8:50:c5:fb:e0:c9:74:d7:dc:03:6c:c3:d2:dd: 0c:7a:63:56:68:41:3a:f7:15:aa:e2:18:40:06:0f:5d:12:b2: 5c:a4:b8:ef:6a:5c:ba:4f:0c:1c:b2:49:a9:73:82:21:6f:3c: 63:24:66:fd:14:9f:8f:6d:3a:a4:dc:af:fe:25:5e:13:8b:1a: 4c:af:25:f2:5d:69:10:5e:2d:c2:9f:74:ca:2e:18:8e:08:87: 55:a7:d5:2d:53:db:24:55:af:4e:11:96:a7:a9:9d:f8:84:9c: 19:88:c5:3f:1d:14:17:a9:aa:5e:3a:c9:e7:97:5d:cd:85:15: 73:dd:ad:e4:5a:1a:5b:44:51:bf:5a:81:7d:39:90:53:2d:af: 4e:b9:02:e2:0a:95:55:8c:04:4e:1c:e6:c0:cb:f2:d7:d3:45: 0e:61:fb:7c:6f:61:e6:c4:e7:df:c6:a6:1d:21:39:bc:20:2d: 36:4a:33:07:48:34:be:cc:a1:7f:a3:39:19:e6:1f:0f:4b:34: 78:a4:58:62:0e:58:c9:ee:98:13:0a:a2:0d:3e:4f:b0:e6:66: 3d:46:b0:27:44:a6:7e:3f:35:ed:f6:8c:b5:dd:2a:5f:a2:e0: 84:22:2e:a6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXLUs9LybgWi5yLPBY/BmDeLWSMYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTI4MDAwMDAwWhcNMjUwMzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOTdkOWExZjU0YmYxM2E2MTQ1ZDZlYzg1ZDU0MWI2ZWNi M2IzZGQyMDJmYzlkYTI0NWIwM2Q3Mjg1MzM1OGRjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCt1kHlZODOciAd/LK1ZfalP3LrAk9Re+hiWF4e5q+bMjcX P4A4T2qLfT2SXdvV2tYBKGuUqtCBFTVS0LuU7celSuSpHWYgmirZTdyanYlq83mE CjiSur8jDeuJ3i1zr6QJHCljx3TIX+qq3kETfrnLrYXbOkDS0FFDZ805d9sjiOen Y/7gKHjBSdfpUGtHpUsCcrS07Hm/jT+4HzjWt20bLqN5w9AtD7KhH5WbIb9eGDFz 5WFWB5KhdNvyOYQfPKR7Q/o42OftoHU5XnItOapsbvCDfqON+rhxANo6JOYr724u xcGwlp1nFFeryYr2NJK/LGtghvxlR61Ai6OUg67lAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEbJ6VekiWy7zgIrz1klm2BtZETAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY5NTQ5YmE1LWMxZjgtNDgyZi04MmEwLWUxNmVjNTljNTQ3NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACIEogwDQYJKoZIhvcNAQELBQADggEBAFXkAxUnd8Pot8EbVR2geVOivybW LNj4UMX74Ml019wDbMPS3Qx6Y1ZoQTr3FariGEAGD10SslykuO9qXLpPDByySalz giFvPGMkZv0Un49tOqTcr/4lXhOLGkyvJfJdaRBeLcKfdMouGI4Ih1Wn1S1T2yRV r04RlqepnfiEnBmIxT8dFBepql46yeeXXc2FFXPdreRaGltEUb9agX05kFMtr065 AuIKlVWMBE4c5sDL8tfTRQ5h+3xvYebE59/Gph0hObwgLTZKMwdINL7MoX+jORnm Hw9LNHikWGIOWMnumBMKog0+T7DmZj1GsCdEpn4/Ne32jLXdKl+i4IQiLqY= -----END CERTIFICATE-----Generated at Wed Feb 5 09:40:01 2025 by rpki-client