$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75d3c24e-bab6-4a1e-bc0d-905737818427.roa File: 75d3c24e-bab6-4a1e-bc0d-905737818427.roa (raw, json) Hash identifier: mb/lqTWWvBzqoZSeC3u9T24X9d1Fvr9UEFm+aJ9ceTs= Subject key identifier: 0E:56:65:78:30:97:B2:5A:E6:D8:CF:9A:C6:18:4B:CA:EA:E0:71:C2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 592035D44275FA54F84366289ACA3517A6DE797F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75d3c24e-bab6-4a1e-bc0d-905737818427.roa Signing time: Mon 13 Jan 2025 00:00:00 +0000 ROA not before: Mon 13 Jan 2025 00:00:00 +0000 ROA not after: Mon 17 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 204.236.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:20:35:d4:42:75:fa:54:f8:43:66:28:9a:ca:35:17:a6:de:79:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 13 00:00:00 2025 GMT Not After : Feb 17 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:42:74:1d:7b:4a:b6:3b:55:3d:9e:cf:48:fb: ab:b3:d5:ef:f3:84:0e:c3:a9:90:51:5e:9c:53:59: 88:ab:b4:2e:4e:48:56:58:7c:bc:5c:d0:93:6e:ad: 5d:45:21:19:22:6f:d1:88:23:47:8e:6c:4a:f5:5d: 48:40:e9:35:34:8d:41:57:d0:68:8a:f6:05:f8:0e: 3e:22:38:e5:3a:9c:74:49:b5:d7:cf:ff:57:bd:0b: 73:a2:65:b2:66:7f:c4:37:60:70:15:c2:ce:2f:52: bf:90:d9:a9:43:c6:63:8b:e1:5e:db:43:15:8e:41: 54:b1:76:68:d2:40:28:c2:55:2c:9e:ef:4d:ba:4e: 18:a1:e7:c0:90:15:26:05:5b:44:1b:c7:a9:6c:45: 5a:42:e2:f3:e3:2a:be:56:d0:d0:4f:f2:1e:7c:71: 25:53:78:3b:61:66:3f:d4:81:ee:57:c6:17:57:76: 1a:df:e5:9c:5d:be:5c:a9:4f:51:08:26:30:6a:3e: 11:aa:c8:63:f8:82:00:4d:1f:96:18:ef:0d:3e:73: 4a:06:ee:f6:7f:60:f2:cd:e6:3b:5f:f7:c1:72:e2: cd:6b:e0:0a:4a:01:72:35:c5:b8:d8:c1:92:41:e3: a0:79:9d:c8:34:fe:3b:bf:b5:27:89:4f:7d:c2:74: 8e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:56:65:78:30:97:B2:5A:E6:D8:CF:9A:C6:18:4B:CA:EA:E0:71:C2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75d3c24e-bab6-4a1e-bc0d-905737818427.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.224.0/20 Signature Algorithm: sha256WithRSAEncryption 7b:9a:f9:29:8b:c8:48:ed:9d:af:70:d2:95:1f:89:e0:e6:d5: 4e:db:45:bd:e9:cf:58:4a:85:9d:ce:75:43:46:c4:80:5b:96: 14:61:ab:58:dd:1e:9e:4b:67:46:39:20:c6:6c:af:06:cd:61: d0:ce:43:c2:ad:14:34:6c:00:8a:e7:79:0f:af:41:35:a9:96: a8:b3:1e:7f:ce:54:db:ca:8a:c2:0e:90:cc:5f:54:b2:6a:f3: 40:c8:39:30:48:ec:51:f8:33:82:bb:bf:60:a4:83:55:a2:8d: f6:0e:f3:b5:7f:83:40:34:8d:66:69:e6:86:0d:6c:14:4c:75: 7b:7b:cd:f9:25:e7:c1:92:fb:c5:5b:2c:5c:2a:65:d2:c6:09: c2:4b:be:db:fd:a2:ba:03:6a:38:49:a0:2f:af:c8:50:b4:77: 63:b3:f7:a9:5d:c1:76:a3:4a:7e:97:e5:3b:c8:c4:75:53:5f: 68:22:79:0e:a7:53:59:9e:96:fd:9f:c3:f7:95:1b:82:5e:50: c9:eb:a8:a3:7e:81:3c:f6:09:d8:b6:9c:91:01:e9:ce:dc:4e: c5:4b:2a:0f:d1:7d:b6:1a:e8:ba:eb:5d:12:a7:c9:59:dc:46: 32:c8:1c:b9:b8:f4:45:11:e2:89:86:8b:2c:73:86:d8:6a:b0: 2b:bd:f2:fe -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWSA11EJ1+lT4Q2Yomso1F6beeX8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTEzMDAwMDAwWhcNMjUwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNGM4Y2IyYzY1MDhlMTUzMDk4YmViZGNmZTU4YjkwYWI2 MzEzOTRmZDc4MTMzMDQ0OTZiNDNlYzdiZTNlYTMwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7QnQde0q2O1U9ns9I+6uz1e/zhA7DqZBRXpxTWYirtC5O SFZYfLxc0JNurV1FIRkib9GII0eObEr1XUhA6TU0jUFX0GiK9gX4Dj4iOOU6nHRJ tdfP/1e9C3OiZbJmf8Q3YHAVws4vUr+Q2alDxmOL4V7bQxWOQVSxdmjSQCjCVSye 7026Thih58CQFSYFW0Qbx6lsRVpC4vPjKr5W0NBP8h58cSVTeDthZj/Uge5XxhdX dhrf5ZxdvlypT1EIJjBqPhGqyGP4ggBNH5YY7w0+c0oG7vZ/YPLN5jtf98Fy4s1r 4ApKAXI1xbjYwZJB46B5ncg0/ju/tSeJT33CdI6HAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDlZleDCXslrm2M+axhhLyurgccIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc1ZDNjMjRlLWJhYjYtNGExZS1iYzBkLTkwNTczNzgxODQyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATM7OAwDQYJKoZIhvcNAQELBQADggEBAHua+SmLyEjtna9w0pUfieDm1U7b Rb3pz1hKhZ3OdUNGxIBblhRhq1jdHp5LZ0Y5IMZsrwbNYdDOQ8KtFDRsAIrneQ+v QTWplqizHn/OVNvKisIOkMxfVLJq80DIOTBI7FH4M4K7v2Ckg1WijfYO87V/g0A0 jWZp5oYNbBRMdXt7zfkl58GS+8VbLFwqZdLGCcJLvtv9oroDajhJoC+vyFC0d2Oz 96ldwXajSn6X5TvIxHVTX2gieQ6nU1melv2fw/eVG4JeUMnrqKN+gTz2Cdi2nJEB 6c7cTsVLKg/RfbYa6LrrXRKnyVncRjLIHLm49EUR4omGiyxzhthqsCu98v4= -----END CERTIFICATE-----Generated at Wed Feb 5 09:56:47 2025 by rpki-client