$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c512c1b-f3e3-4cc4-adf7-022feda26799.roa File: 6c512c1b-f3e3-4cc4-adf7-022feda26799.roa (raw, json) Hash identifier: LQKFclN9x7WXGh3BosH9tlh63vAAjAUrt8qNCN3+UNQ= Subject key identifier: 79:E1:45:11:D1:DC:CA:3B:EF:DB:1B:7C:4F:4B:AB:51:8C:86:C6:F7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3EAB0C0C11F3543B908356CD53DA3DEEE0913899 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c512c1b-f3e3-4cc4-adf7-022feda26799.roa Signing time: Wed 12 Feb 2025 00:00:00 +0000 ROA not before: Wed 12 Feb 2025 00:00:00 +0000 ROA not after: Wed 19 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 79.73.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:ab:0c:0c:11:f3:54:3b:90:83:56:cd:53:da:3d:ee:e0:91:38:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 12 00:00:00 2025 GMT Not After : Mar 19 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:2a:50:1f:8c:c4:dd:44:19:ad:c6:4f:ed:85: d3:f3:ed:3a:17:87:a1:b2:ea:b9:30:bb:78:df:ad: 01:8e:e8:9c:48:f5:1f:7a:4c:24:61:b6:ce:23:90: 03:c7:4a:ef:58:18:46:3c:64:25:cb:3f:b9:87:a6: f5:2e:6f:84:52:15:bb:fa:8d:bf:01:e9:63:5e:b5: cc:ab:a3:51:4c:38:bd:54:ee:30:15:0d:6a:67:24: 9a:27:17:d2:5f:c6:4b:bd:dc:a6:92:9b:8b:73:cc: ce:32:9a:af:d3:29:fd:af:df:4a:4b:d1:b2:4c:53: 86:8f:5a:4c:ab:02:37:42:eb:ed:28:75:65:8a:c4: d8:69:80:a0:e1:11:a5:e5:da:96:75:a7:6d:fe:fa: 88:6d:2f:8c:52:24:10:e1:d6:a6:39:75:00:f1:af: a8:3d:a2:5a:da:21:53:ba:1f:54:d0:0f:d0:28:a9: aa:53:e8:16:45:89:b5:0e:bd:a0:fa:10:68:f8:f5: dd:41:64:96:28:ae:fc:28:25:3f:98:d9:44:21:3d: 8c:8a:92:8e:aa:46:fd:43:4a:e9:3e:6e:06:d2:95: 93:c8:3c:2c:fd:b1:84:f5:52:3f:cd:0d:8d:5b:b5: 0a:4b:e8:a4:e4:72:cb:95:ef:ff:82:36:e0:fe:41: 07:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:E1:45:11:D1:DC:CA:3B:EF:DB:1B:7C:4F:4B:AB:51:8C:86:C6:F7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c512c1b-f3e3-4cc4-adf7-022feda26799.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.73.0.0/18 Signature Algorithm: sha256WithRSAEncryption 5d:e6:60:b2:81:37:0b:52:57:60:17:82:44:bb:01:b6:5d:54: 5e:78:70:4e:78:0f:10:1d:4c:76:b9:b0:bb:c5:7e:a5:41:b9: 3c:17:e7:e1:a9:cf:e1:4d:f0:03:5a:07:53:b4:1d:78:ff:54: f3:31:7d:25:db:0a:37:40:8d:d8:95:e6:c1:fe:88:c6:8c:0d: 56:92:6c:16:e4:f9:89:4a:f8:26:1d:ad:25:78:00:ee:d8:c1: c8:95:4f:7c:a8:6d:71:c8:80:f0:67:fa:3c:07:16:af:8c:1b: 71:16:a4:da:3a:07:32:06:36:a1:f0:24:38:ad:4a:57:27:77: 7f:4a:3b:37:07:55:32:54:b3:f8:b3:ed:97:68:2c:63:ad:dc: 16:b6:d9:ab:78:53:c0:b6:3d:e5:76:d5:f3:35:94:3b:58:83: aa:59:f4:42:32:76:80:c3:f4:f6:72:e4:cb:a9:88:17:d2:35: b2:16:9a:9a:80:da:6f:27:96:60:48:5b:bd:07:26:72:25:e9: 0f:36:69:63:54:04:68:3f:a3:f0:cc:d9:2d:52:ae:d1:2e:d7: 34:17:5c:52:11:0b:86:98:f1:f5:f5:56:28:eb:63:dc:54:32: 96:b1:c3:5b:c9:c6:ae:3f:b4:13:d8:e0:49:83:39:75:9f:20: 62:50:b1:b0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPqsMDBHzVDuQg1bNU9o97uCROJkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjEyMDAwMDAwWhcNMjUwMzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MDUwZTJkZTNhZmU4NjhlODM2M2Q5OTU3M2NmOWI2MDMy NzdhMGM2OGZjZGI0YTFkOTUyZDg5NjRiMzRhYjhlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzKlAfjMTdRBmtxk/thdPz7ToXh6Gy6rkwu3jfrQGO6JxI 9R96TCRhts4jkAPHSu9YGEY8ZCXLP7mHpvUub4RSFbv6jb8B6WNetcyro1FMOL1U 7jAVDWpnJJonF9Jfxku93KaSm4tzzM4ymq/TKf2v30pL0bJMU4aPWkyrAjdC6+0o dWWKxNhpgKDhEaXl2pZ1p23++ohtL4xSJBDh1qY5dQDxr6g9olraIVO6H1TQD9Ao qapT6BZFibUOvaD6EGj49d1BZJYorvwoJT+Y2UQhPYyKko6qRv1DSuk+bgbSlZPI PCz9sYT1Uj/NDY1btQpL6KTkcsuV7/+CNuD+QQdPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeeFFEdHcyjvv2xt8T0urUYyGxvcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZjNTEyYzFiLWYzZTMtNGNjNC1hZGY3LTAyMmZlZGEyNjc5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZPSQAwDQYJKoZIhvcNAQELBQADggEBAF3mYLKBNwtSV2AXgkS7AbZdVF54 cE54DxAdTHa5sLvFfqVBuTwX5+Gpz+FN8ANaB1O0HXj/VPMxfSXbCjdAjdiV5sH+ iMaMDVaSbBbk+YlK+CYdrSV4AO7YwciVT3yobXHIgPBn+jwHFq+MG3EWpNo6BzIG NqHwJDitSlcnd39KOzcHVTJUs/iz7ZdoLGOt3Ba22at4U8C2PeV21fM1lDtYg6pZ 9EIydoDD9PZy5MupiBfSNbIWmpqA2m8nlmBIW70HJnIl6Q82aWNUBGg/o/DM2S1S rtEu1zQXXFIRC4aY8fX1VijrY9xUMpaxw1vJxq4/tBPY4EmDOXWfIGJQsbA= -----END CERTIFICATE-----Generated at Sun Feb 16 15:17:24 2025 by rpki-client