$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d7cb979-c125-4840-893a-6f3570fa019a.roa File: 6d7cb979-c125-4840-893a-6f3570fa019a.roa (raw, json) Hash identifier: krPhiZQEPmyOJFOsDinoUc25IcjY2IPP4WGef16nKgM= Subject key identifier: EA:A7:7A:58:8C:30:49:8F:F2:39:45:24:CE:24:28:F3:6E:79:77:B1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 22BFA1481342F4A1EA05DD5FABD4B9A04C513BD9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d7cb979-c125-4840-893a-6f3570fa019a.roa Signing time: Fri 07 Feb 2025 00:00:00 +0000 ROA not before: Fri 07 Feb 2025 00:00:00 +0000 ROA not after: Fri 14 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.32.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:bf:a1:48:13:42:f4:a1:ea:05:dd:5f:ab:d4:b9:a0:4c:51:3b:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 7 00:00:00 2025 GMT Not After : Mar 14 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:87:05:55:17:2d:14:44:26:a0:77:a2:ca:8e: b5:6e:64:57:f9:8d:58:53:9a:dd:a8:06:d5:5e:1c: 34:7d:bc:d2:85:d7:92:9a:f3:be:5a:82:1b:d4:ec: c5:b8:56:73:d2:a5:02:a1:8c:1e:77:61:29:92:3f: c4:f1:40:46:30:b7:15:58:92:e0:2d:2a:ab:dd:bf: a9:8e:0b:84:8c:3c:0f:a9:19:52:fb:31:10:e8:0b: ea:b7:41:24:fc:9f:c7:ae:9c:d8:5d:a3:ec:8c:b9: 0c:82:12:bf:27:26:99:86:8d:53:23:83:6b:38:7e: 77:a1:fd:22:28:5d:f9:52:de:06:7b:7d:bc:79:15: 74:1a:51:0f:af:ae:af:dd:3d:f5:d3:4c:63:51:c9: e7:7b:0b:b9:6c:ea:e7:dc:3f:9a:07:55:3a:6c:51: 0f:d5:bb:1c:33:7d:91:88:f7:8f:31:c4:ff:61:0e: f6:1b:ef:67:b6:d5:61:a1:58:3a:a5:d6:94:2f:7f: 90:a0:32:ea:05:90:b2:8e:b1:cd:ae:1a:8a:b8:27: 74:51:33:04:fb:7b:72:93:3f:a6:0d:62:31:06:75: d5:bb:bc:7f:8b:0c:ed:06:45:66:9b:18:a7:d4:ac: 70:9b:f1:8e:4a:14:cd:e7:76:b1:7b:b2:90:5c:a3: 25:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:A7:7A:58:8C:30:49:8F:F2:39:45:24:CE:24:28:F3:6E:79:77:B1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d7cb979-c125-4840-893a-6f3570fa019a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.32.0.0/16 Signature Algorithm: sha256WithRSAEncryption 19:0a:c9:4b:8f:39:5a:bf:a0:b4:c2:06:ef:0b:5f:ab:4c:7e: c1:f1:22:1e:0a:4c:c7:b0:70:4f:aa:36:2d:7b:a5:b5:e4:7c: bb:43:16:af:61:a6:64:d7:80:ef:e9:3b:42:03:95:3c:7a:97: c2:fa:a3:2a:71:e6:90:5e:90:84:6f:fa:9e:1a:79:f7:16:a4: 1f:7f:e7:11:22:67:86:05:df:3f:d9:41:72:7f:89:60:94:97: 7a:9d:96:ed:4d:ea:a0:b0:8c:2c:8e:7d:be:96:d6:14:25:94: 5d:40:87:c5:a1:8d:8a:9a:9c:8a:12:49:62:65:c9:6f:4b:e9: 58:d2:68:9c:26:7c:a0:a6:52:7c:e5:23:6a:31:91:bb:2a:13: 8e:db:f4:ac:c1:34:c7:a4:82:66:48:57:78:48:92:49:40:97: 26:76:66:1b:fd:74:42:e7:bf:9c:f7:ab:22:0f:1d:80:6d:5b: 1b:c6:2a:7b:87:4c:c3:23:7d:34:67:9f:38:7b:05:42:e1:c8: 5f:22:8f:d1:51:3d:ef:55:c9:c4:5b:b8:b7:71:06:f2:c2:14: 19:99:a0:22:f0:b1:2a:2f:0d:6f:17:e5:56:95:9a:f2:9d:1a: 1c:0a:e9:36:23:8d:13:32:7a:a7:0f:40:1b:7f:8a:a4:c1:bc: 55:d4:99:2f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIr+hSBNC9KHqBd1fq9S5oExRO9kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjA3MDAwMDAwWhcNMjUwMzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNWI5OWQzN2VkOGZjNTljYTVhY2U0NDEzYzkzYTQ2NjEw MTlkODkyODlkMTAzYTlmODNlMzI2ZDRmMmU2MDg5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDvhwVVFy0URCagd6LKjrVuZFf5jVhTmt2oBtVeHDR9vNKF 15Ka875aghvU7MW4VnPSpQKhjB53YSmSP8TxQEYwtxVYkuAtKqvdv6mOC4SMPA+p GVL7MRDoC+q3QST8n8eunNhdo+yMuQyCEr8nJpmGjVMjg2s4fneh/SIoXflS3gZ7 fbx5FXQaUQ+vrq/dPfXTTGNRyed7C7ls6ufcP5oHVTpsUQ/VuxwzfZGI948xxP9h DvYb72e21WGhWDql1pQvf5CgMuoFkLKOsc2uGoq4J3RRMwT7e3KTP6YNYjEGddW7 vH+LDO0GRWabGKfUrHCb8Y5KFM3ndrF7spBcoyVnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU6qd6WIwwSY/yOUUkziQo8255d7EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZkN2NiOTc5LWMxMjUtNDg0MC04OTNhLTZmMzU3MGZhMDE5YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoIDANBgkqhkiG9w0BAQsFAAOCAQEAGQrJS485Wr+gtMIG7wtfq0x+wfEi HgpMx7BwT6o2LXulteR8u0MWr2GmZNeA7+k7QgOVPHqXwvqjKnHmkF6QhG/6nhp5 9xakH3/nESJnhgXfP9lBcn+JYJSXep2W7U3qoLCMLI59vpbWFCWUXUCHxaGNipqc ihJJYmXJb0vpWNJonCZ8oKZSfOUjajGRuyoTjtv0rME0x6SCZkhXeEiSSUCXJnZm G/10Que/nPerIg8dgG1bG8Yqe4dMwyN9NGefOHsFQuHIXyKP0VE971XJxFu4t3EG 8sIUGZmgIvCxKi8NbxflVpWa8p0aHArpNiONEzJ6pw9AG3+KpMG8VdSZLw== -----END CERTIFICATE-----Generated at Sun Feb 16 15:04:20 2025 by rpki-client