$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/729ab11e-9cbe-4674-8c5d-07685ac2683b.roa File: 729ab11e-9cbe-4674-8c5d-07685ac2683b.roa (raw, json) Hash identifier: LBr3AtVAF1mLi26iJLSWpn6NMEC9AD9moym2KHujXHE= Subject key identifier: BB:85:0C:BC:0E:E9:52:DE:9D:D8:97:EC:8C:DB:A4:FC:29:A3:9C:AD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7E563FDEDB7592E8A35BB86ACF4CB01AF08B3636 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/729ab11e-9cbe-4674-8c5d-07685ac2683b.roa Signing time: Fri 24 Jan 2025 00:00:00 +0000 ROA not before: Fri 24 Jan 2025 00:00:00 +0000 ROA not after: Fri 28 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 96.0.84.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:56:3f:de:db:75:92:e8:a3:5b:b8:6a:cf:4c:b0:1a:f0:8b:36:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 24 00:00:00 2025 GMT Not After : Feb 28 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:71:ff:97:51:1f:55:c3:66:4a:d9:9e:88:f4: d2:0c:70:eb:2e:97:b8:ee:59:21:5f:9f:99:72:39: 8b:b1:d8:88:4c:6d:77:cb:4c:a8:05:e8:5d:f5:4f: 2c:05:93:eb:9e:da:02:11:a0:d2:26:4d:d4:45:1e: 44:cc:41:d6:99:d8:dd:7d:d4:a7:29:5e:a5:eb:21: f7:73:4d:fc:52:79:43:90:a3:57:3b:27:1c:90:a5: 2b:79:5b:6e:e2:8f:85:d8:8a:cd:39:78:19:24:e3: f8:a4:a2:aa:9e:fa:61:0a:37:93:c3:b0:1c:e9:b9: dd:8c:7e:f1:7b:20:0d:96:bf:29:d7:19:8f:cb:b8: d6:75:2b:c2:3c:12:66:75:76:c3:ba:c0:5d:28:83: f5:01:9b:f5:2d:99:7b:d9:64:bd:78:3a:c3:9a:55: 00:86:37:54:51:02:81:1e:c8:2a:b0:27:24:cb:f1: 88:26:bb:41:64:c0:47:b3:f8:bd:f2:7d:90:15:4b: e3:bd:f7:1f:79:3c:e3:f4:cb:88:cf:18:a0:4f:fa: bd:81:e2:f3:a5:3f:c7:9f:5b:d3:98:d5:a4:6e:2e: ef:3f:99:b8:29:f0:66:72:28:db:c4:52:36:90:20: 4e:2b:fa:65:b2:e4:da:ae:01:81:2b:c7:ef:31:bc: 13:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:85:0C:BC:0E:E9:52:DE:9D:D8:97:EC:8C:DB:A4:FC:29:A3:9C:AD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/729ab11e-9cbe-4674-8c5d-07685ac2683b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.84.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:e0:fd:5a:f5:21:7a:5f:e2:1a:58:f4:ba:e3:cd:73:7c:03: d8:d2:7a:55:97:41:42:2d:f9:53:c4:27:43:ca:87:83:7e:a2: 04:c0:9f:e8:68:2a:08:b5:41:de:d8:1c:b4:64:ab:0b:0d:9f: 05:83:db:df:cf:e3:09:13:fc:de:5f:59:f0:d7:de:af:68:53: 34:f9:7b:da:f6:ba:ce:aa:40:38:69:35:8d:17:f1:b2:77:26: 48:b9:3d:05:34:88:63:61:74:7a:e5:94:3b:14:20:98:4a:29: 1f:bc:69:29:24:61:c6:31:d4:b2:3e:d3:f7:3b:14:da:3e:a1: c0:e4:9f:b1:ac:60:4e:df:fb:2d:c6:c1:db:b4:96:50:34:61: ed:38:8d:2e:08:6f:86:ab:e1:37:36:87:b1:35:34:9c:7f:7a: c4:23:0d:cb:25:27:69:44:97:90:c2:44:cf:f1:43:ee:4b:21: d4:46:c8:e8:e7:bb:57:0b:8b:ca:97:4e:ea:54:4a:3a:f6:dd: d8:32:05:66:8e:dd:81:16:8b:90:4d:3a:e0:c9:86:b0:10:b4: 24:fa:8f:79:14:76:e6:f5:88:55:5e:e4:f1:39:37:b3:17:c1: ee:f9:8f:ab:3d:62:c1:65:01:ca:31:fa:57:b6:82:da:be:fe: e4:4a:da:8b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUflY/3tt1kuijW7hqz0ywGvCLNjYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTI0MDAwMDAwWhcNMjUwMjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NGQ1MDhlZGJiOWFiNThiYjE3OGUwYzA2YTAwMTIyY2Fm ZGRkOGYyNzE5MTQ3YzA2NzRkYjE1OGNlZDBmMmJmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbcf+XUR9Vw2ZK2Z6I9NIMcOsul7juWSFfn5lyOYux2IhM bXfLTKgF6F31TywFk+ue2gIRoNImTdRFHkTMQdaZ2N191KcpXqXrIfdzTfxSeUOQ o1c7JxyQpSt5W27ij4XYis05eBkk4/ikoqqe+mEKN5PDsBzpud2MfvF7IA2WvynX GY/LuNZ1K8I8EmZ1dsO6wF0og/UBm/UtmXvZZL14OsOaVQCGN1RRAoEeyCqwJyTL 8Ygmu0FkwEez+L3yfZAVS+O99x95POP0y4jPGKBP+r2B4vOlP8efW9OY1aRuLu8/ mbgp8GZyKNvEUjaQIE4r+mWy5NquAYErx+8xvBP1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUu4UMvA7pUt6d2JfsjNuk/CmjnK0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcyOWFiMTFlLTljYmUtNDY3NC04YzVkLTA3Njg1YWMyNjgzYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJgAFQwDQYJKoZIhvcNAQELBQADggEBAE3g/Vr1IXpf4hpY9LrjzXN8A9jS elWXQUIt+VPEJ0PKh4N+ogTAn+hoKgi1Qd7YHLRkqwsNnwWD29/P4wkT/N5fWfDX 3q9oUzT5e9r2us6qQDhpNY0X8bJ3Jki5PQU0iGNhdHrllDsUIJhKKR+8aSkkYcYx 1LI+0/c7FNo+ocDkn7GsYE7f+y3Gwdu0llA0Ye04jS4Ib4ar4Tc2h7E1NJx/esQj DcslJ2lEl5DCRM/xQ+5LIdRGyOjnu1cLi8qXTupUSjr23dgyBWaO3YEWi5BNOuDJ hrAQtCT6j3kUdub1iFVe5PE5N7MXwe75j6s9YsFlAcox+le2gtq+/uRK2os= -----END CERTIFICATE-----Generated at Wed Feb 5 09:38:41 2025 by rpki-client