$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/71686793-835a-45ec-ab49-31bec463864e.roa File: 71686793-835a-45ec-ab49-31bec463864e.roa (raw, json) Hash identifier: tc8QZ9tpQoJ8yW1mixcagnehfDVHBPYbF+mq3VRkm4I= Subject key identifier: 4D:C6:EE:DF:64:53:46:B7:A7:15:8A:13:82:2D:00:9C:B2:EE:49:0E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: D3F1A14B8A77AC323B39DE9770A7AAAB8F84A3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/71686793-835a-45ec-ab49-31bec463864e.roa Signing time: Tue 21 Jan 2025 00:00:00 +0000 ROA not before: Tue 21 Jan 2025 00:00:00 +0000 ROA not after: Tue 25 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.199.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: d3:f1:a1:4b:8a:77:ac:32:3b:39:de:97:70:a7:aa:ab:8f:84:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 21 00:00:00 2025 GMT Not After : Feb 25 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:dd:71:94:1a:ab:55:e6:03:3f:d4:64:5d:fa: 2e:5b:ee:1a:e7:2e:ed:b5:5a:b8:69:0f:66:9b:b7: c2:51:59:01:e0:ee:5c:89:26:5a:f5:47:af:98:ba: 29:95:f6:91:4c:8c:1e:71:33:27:76:08:17:e7:ec: bc:be:c2:89:cb:bc:8c:41:75:f2:a3:64:d0:25:73: dd:fb:ef:c2:eb:73:09:b1:c7:21:82:30:ff:50:d8: 86:57:30:9b:67:7e:31:33:ec:1a:c2:bc:d5:1e:79: 9a:b9:71:f7:22:86:6a:67:b4:b0:c0:9c:9c:1a:2a: e4:b6:f4:80:e7:f8:29:d0:67:51:0b:0c:38:b3:ec: 83:7f:14:22:d1:e5:d6:41:63:03:fe:5d:62:8e:5e: 2c:fa:8a:e8:95:49:4a:ca:ed:a1:69:ea:71:b9:83: c9:7b:b8:a4:16:25:ed:e6:c8:e8:de:df:b2:90:87: 85:95:e0:57:fd:51:23:a3:1b:2d:2d:44:5a:74:50: 19:29:b0:ad:86:46:32:7f:5b:65:d4:b7:79:22:0f: b5:ae:5c:3b:a0:62:73:9d:e3:6c:83:a3:71:58:66: 07:5f:2b:b7:18:a0:a6:d9:ad:a5:e8:e3:f4:e8:b0: cc:20:1d:bd:7c:1b:26:92:14:a3:98:3c:32:fe:09: d8:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:C6:EE:DF:64:53:46:B7:A7:15:8A:13:82:2D:00:9C:B2:EE:49:0E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/71686793-835a-45ec-ab49-31bec463864e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.199.0.0/16 Signature Algorithm: sha256WithRSAEncryption d2:97:68:9f:7a:47:12:50:ab:6a:ab:ec:d1:b8:a7:d2:48:03: 51:8a:36:a6:67:b6:63:f7:ab:c5:62:97:91:57:52:78:3a:c8: d1:9b:5b:f7:7a:28:69:b5:38:25:e6:95:8e:db:c1:f6:ec:af: dd:36:6e:ca:bc:15:12:ad:d4:e3:26:26:00:a2:5e:06:c1:62: 51:5a:c6:cf:11:d6:d9:f0:df:07:2f:86:b7:37:34:d6:45:60: 91:44:58:c9:bf:87:ea:53:72:de:50:cf:6b:ad:e9:42:f7:44: d8:1a:2d:11:16:77:2c:fd:9e:68:8d:8e:fc:b2:49:95:c1:87: 27:ff:78:e7:ab:d6:b5:49:28:47:88:99:33:40:52:2c:9d:b2: 00:05:ad:68:73:ae:af:ad:db:e0:c3:75:99:3f:d6:93:1e:6d: a7:6d:c9:a0:da:ea:30:58:9b:77:a8:cb:bd:ac:e3:f5:2d:4a: 26:f2:22:1b:be:2e:1d:28:02:1b:18:3d:97:68:50:0d:58:ba: 22:7c:54:59:f4:5f:c1:92:f9:81:6a:90:ea:0f:bd:cf:35:f3: 0d:94:75:ab:7f:92:aa:46:ac:89:84:46:0d:80:ed:c8:ed:69: 65:6d:0d:8e:aa:87:ac:da:fe:52:61:ef:79:07:dc:6c:89:ac: ec:1c:cd:43 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUANPxoUuKd6wyOznel3CnqquPhKMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTIxMDAwMDAwWhcNMjUwMjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZjIzM2VjNDZkMTFjZWYxMzI0ZTEwNzgzM2FkYzc3YTVh YzlkNGM4YjM0MjJlZjBlYTE2MzhkMjAyZjhjNzIyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCc3XGUGqtV5gM/1GRd+i5b7hrnLu21WrhpD2abt8JRWQHg 7lyJJlr1R6+YuimV9pFMjB5xMyd2CBfn7Ly+wonLvIxBdfKjZNAlc93778Lrcwmx xyGCMP9Q2IZXMJtnfjEz7BrCvNUeeZq5cfcihmpntLDAnJwaKuS29IDn+CnQZ1EL DDiz7IN/FCLR5dZBYwP+XWKOXiz6iuiVSUrK7aFp6nG5g8l7uKQWJe3myOje37KQ h4WV4Ff9USOjGy0tRFp0UBkpsK2GRjJ/W2XUt3kiD7WuXDugYnOd42yDo3FYZgdf K7cYoKbZraXo4/TosMwgHb18GyaSFKOYPDL+CdhTAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUTcbu32RTRrenFYoTgi0AnLLuSQ4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcxNjg2NzkzLTgzNWEtNDVlYy1hYjQ5LTMxYmVjNDYzODY0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4xzANBgkqhkiG9w0BAQsFAAOCAQEA0pdon3pHElCraqvs0bin0kgDUYo2 pme2Y/erxWKXkVdSeDrI0Ztb93ooabU4JeaVjtvB9uyv3TZuyrwVEq3U4yYmAKJe BsFiUVrGzxHW2fDfBy+Gtzc01kVgkURYyb+H6lNy3lDPa63pQvdE2BotERZ3LP2e aI2O/LJJlcGHJ/9456vWtUkoR4iZM0BSLJ2yAAWtaHOur63b4MN1mT/Wkx5tp23J oNrqMFibd6jLvazj9S1KJvIiG74uHSgCGxg9l2hQDVi6InxUWfRfwZL5gWqQ6g+9 zzXzDZR1q3+SqkasiYRGDYDtyO1pZW0NjqqHrNr+UmHveQfcbIms7BzNQw== -----END CERTIFICATE-----Generated at Sun Feb 16 15:27:45 2025 by rpki-client