$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/707b5de7-4469-4150-b167-4708f1391d71.roa File: 707b5de7-4469-4150-b167-4708f1391d71.roa (raw, json) Hash identifier: PABWx75TMU54FPhLa9gLBVWLQX8S484gv6Yfzf0/PPo= Subject key identifier: 48:0B:36:74:E1:9F:1C:AF:C9:2C:50:0B:89:D5:41:3D:F9:30:43:DC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 768CA94840BAD11E36769C2F20AC8F941361DECB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/707b5de7-4469-4150-b167-4708f1391d71.roa Signing time: Tue 11 Feb 2025 00:00:00 +0000 ROA not before: Tue 11 Feb 2025 00:00:00 +0000 ROA not after: Tue 18 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 158.254.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:8c:a9:48:40:ba:d1:1e:36:76:9c:2f:20:ac:8f:94:13:61:de:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 11 00:00:00 2025 GMT Not After : Mar 18 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e1:b7:bd:a9:26:55:88:c6:f8:0e:1d:d4:e5: fa:79:9b:47:c5:0f:9f:19:30:da:e7:f2:08:5c:50: 8d:e3:ce:48:d3:56:86:d9:35:6e:07:b4:6f:f7:47: 91:9d:27:a9:72:56:af:7f:83:cf:84:54:25:1f:00: 18:f8:99:cd:39:77:79:48:32:49:25:95:2f:f9:f6: 04:51:bd:42:76:70:65:42:14:a4:d8:6e:8b:e9:71: cd:ad:1b:52:d5:ab:0c:b3:a7:2d:01:29:b1:f2:48: ad:5f:e1:77:b9:95:87:11:d3:c4:1e:c5:9a:6a:61: 23:b5:58:1b:07:8f:54:d6:68:1f:e4:98:b4:71:ef: ea:75:a3:67:4e:75:03:a3:8c:3c:55:2c:ed:72:7e: 88:86:62:57:26:92:2e:d4:81:07:bd:99:27:00:f9: ec:3a:5a:5e:73:1d:96:a6:65:29:19:d1:cb:8d:df: fd:d8:21:74:8a:3c:ef:b5:49:db:f0:44:8f:4f:e0: bd:49:3c:6a:57:b4:ba:3d:62:00:0b:fb:a0:d5:95: 33:b6:a0:28:cf:0e:de:2d:23:d2:53:b6:ef:de:23: c3:86:41:6d:45:af:4f:b1:f1:20:7d:1b:de:77:22: b6:f4:aa:05:b9:98:57:3f:27:00:af:9a:de:0a:2f: b9:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:0B:36:74:E1:9F:1C:AF:C9:2C:50:0B:89:D5:41:3D:F9:30:43:DC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/707b5de7-4469-4150-b167-4708f1391d71.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.254.0.0/16 Signature Algorithm: sha256WithRSAEncryption 70:6f:8f:57:74:54:b0:ce:50:e1:22:78:d1:c7:16:46:06:9e: 85:5b:67:10:9a:4e:45:23:bd:a5:e6:cb:08:45:33:dd:7e:be: b1:67:68:88:e6:a6:c9:f4:79:95:7f:15:fc:31:43:92:1f:4e: d0:03:55:22:2f:ea:3a:67:7f:8b:13:3f:37:16:a5:2b:18:15: fb:1a:5b:ba:37:bb:7f:cf:b6:e7:e3:3e:f0:97:a4:69:c1:e3: a9:40:4f:cb:5f:30:29:98:16:b8:93:e2:47:3e:0c:60:7c:da: e3:59:15:79:39:5b:25:2a:1b:51:3f:38:8c:35:74:e6:d1:97: f0:c2:25:f9:85:42:cc:c9:c7:6b:ba:db:58:d5:50:c8:69:dc: 6d:b5:90:4b:93:6c:1e:2f:49:56:06:60:87:42:fa:15:77:29: 2e:e6:49:3c:f3:f4:d5:4a:f1:6d:26:54:0b:15:85:97:d2:19: 0b:09:01:9e:ef:33:4d:d7:f8:ac:17:b5:e6:2d:85:bd:ba:06: 2c:fc:a3:20:af:06:a7:61:88:ac:38:ea:ee:d7:98:4f:b8:3f: 5b:2a:72:97:6e:88:52:1c:e1:3b:9a:17:cc:85:33:a6:68:22: 45:2c:d1:37:66:ef:e7:ce:38:63:d8:af:3b:fd:59:e6:67:c8: cf:e5:a0:58 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdoypSEC60R42dpwvIKyPlBNh3sswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjExMDAwMDAwWhcNMjUwMzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZjFlOGY0YzY1MGQ4NjRhOTEyYWRhZDhkZjQ3MzhhMDA1 NjRhNjliZWRkZTBlMDVhN2ZhYWFmMmMwN2M1OGFkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCx4be9qSZViMb4Dh3U5fp5m0fFD58ZMNrn8ghcUI3jzkjT VobZNW4HtG/3R5GdJ6lyVq9/g8+EVCUfABj4mc05d3lIMkkllS/59gRRvUJ2cGVC FKTYbovpcc2tG1LVqwyzpy0BKbHySK1f4Xe5lYcR08QexZpqYSO1WBsHj1TWaB/k mLRx7+p1o2dOdQOjjDxVLO1yfoiGYlcmki7UgQe9mScA+ew6Wl5zHZamZSkZ0cuN 3/3YIXSKPO+1SdvwRI9P4L1JPGpXtLo9YgAL+6DVlTO2oCjPDt4tI9JTtu/eI8OG QW1Fr0+x8SB9G953Irb0qgW5mFc/JwCvmt4KL7nNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUSAs2dOGfHK/JLFALidVBPfkwQ9wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcwN2I1ZGU3LTQ0NjktNDE1MC1iMTY3LTQ3MDhmMTM5MWQ3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCe/jANBgkqhkiG9w0BAQsFAAOCAQEAcG+PV3RUsM5Q4SJ40ccWRgaehVtn EJpORSO9pebLCEUz3X6+sWdoiOamyfR5lX8V/DFDkh9O0ANVIi/qOmd/ixM/Nxal KxgV+xpbuje7f8+25+M+8JekacHjqUBPy18wKZgWuJPiRz4MYHza41kVeTlbJSob UT84jDV05tGX8MIl+YVCzMnHa7rbWNVQyGncbbWQS5NsHi9JVgZgh0L6FXcpLuZJ PPP01UrxbSZUCxWFl9IZCwkBnu8zTdf4rBe15i2FvboGLPyjIK8Gp2GIrDjq7teY T7g/Wypyl26IUhzhO5oXzIUzpmgiRSzRN2bv5844Y9ivO/1Z5mfIz+WgWA== -----END CERTIFICATE-----Generated at Sun Feb 16 15:31:44 2025 by rpki-client