$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79a3066d-ab33-44e5-b364-14423e757820.roa File: 79a3066d-ab33-44e5-b364-14423e757820.roa (raw, json) Hash identifier: +GMbeRjRcWXOJRsGD9/SJceeNBgo62uED9RaL7I3iKQ= Subject key identifier: A2:39:3F:2E:43:3A:68:12:7C:8B:83:3E:74:45:52:07:FC:74:D6:FA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4293242C1458EFEFF6AA8E3C8AF7F419EF66889B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79a3066d-ab33-44e5-b364-14423e757820.roa Signing time: Fri 24 Jan 2025 00:00:00 +0000 ROA not before: Fri 24 Jan 2025 00:00:00 +0000 ROA not after: Fri 28 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:93:24:2c:14:58:ef:ef:f6:aa:8e:3c:8a:f7:f4:19:ef:66:88:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 24 00:00:00 2025 GMT Not After : Feb 28 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a6:45:7b:a5:a8:e1:90:d1:66:21:bd:06:f0: 71:e5:73:03:47:0a:23:18:c9:64:f4:4d:c8:b5:bd: 81:ae:b4:03:ad:1d:10:93:6c:d1:e7:c7:38:d1:d6: 26:76:71:ae:6f:5e:b2:40:0c:0a:9e:91:8f:d7:c9: 0c:e6:46:23:1b:5e:53:d9:7b:3d:ec:60:39:e3:ae: 75:55:b9:d1:96:44:b7:d1:71:83:a1:08:f2:3a:7b: bc:68:82:0a:bc:d0:d6:52:56:dd:d2:fd:82:ea:0d: aa:2e:7a:e8:6d:c9:b0:9f:6c:c8:22:f8:4e:50:c7: 55:4a:fb:46:e0:83:bf:8a:9f:66:fa:18:74:e1:90: 37:a7:3b:ff:0c:25:c8:ab:c6:48:f7:4b:48:cb:29: 31:a6:08:16:97:91:b6:51:be:10:57:a7:e6:d0:11: 0a:57:7f:3c:18:7d:dd:6f:58:c0:ed:a8:42:36:38: 1b:8a:c9:28:21:b1:d2:d4:65:a3:02:a4:4c:2a:3e: 94:a4:a6:1a:5b:7a:f0:e8:cd:5a:05:5b:e2:62:75: 9e:24:5c:e5:41:ec:f8:82:a0:ad:c4:66:d1:a5:fa: 61:05:1e:c1:2f:dc:a9:13:4d:ea:3b:42:21:c0:35: dd:69:49:ba:92:2f:97:ca:f7:e4:c4:b8:9a:61:2f: 22:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:39:3F:2E:43:3A:68:12:7C:8B:83:3E:74:45:52:07:FC:74:D6:FA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79a3066d-ab33-44e5-b364-14423e757820.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.245.0/24 Signature Algorithm: sha256WithRSAEncryption c6:81:37:30:eb:2c:85:ee:8e:56:fa:ad:0a:2f:ab:55:08:60: 8f:9a:15:78:55:22:2a:9f:af:fa:7a:4a:d1:93:de:c7:7b:c0: 52:66:cd:7b:d6:91:61:48:b2:5f:0f:18:d0:fb:4b:f9:8a:68: 20:49:e2:8e:69:41:19:b4:a8:1c:5e:38:ae:eb:cc:a0:b2:50: 85:e4:e5:b0:d6:01:80:62:fd:ed:5d:f6:22:b0:77:3f:bb:3f: bc:77:12:15:74:54:e8:ef:1e:27:43:f7:28:a5:92:de:d0:ea: 14:e5:45:90:b2:66:ab:63:b6:af:15:38:99:39:51:0b:34:1f: de:d2:55:6a:1a:47:b9:5b:7b:aa:cd:1c:87:35:96:f1:48:dc: 3c:bc:90:8c:1f:46:5f:62:15:a1:0b:16:14:7e:d8:9e:a7:80: b5:8b:72:46:fb:0a:2b:d3:fa:e3:a7:8f:70:7f:17:dd:b0:ed: f4:38:b6:f7:db:51:20:20:8b:34:be:5c:a9:54:a3:ce:ad:62: 8e:79:40:a2:29:f8:bb:3e:8a:7b:c4:7e:78:4a:b3:3c:d8:70: 5e:59:6a:96:11:b4:d7:6a:37:98:7c:24:d1:2f:aa:fc:0f:e4: c2:f7:2f:84:bd:78:ee:6b:78:89:93:fb:22:6b:88:9f:63:cc: cc:d0:d8:40 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQpMkLBRY7+/2qo48ivf0Ge9miJswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTI0MDAwMDAwWhcNMjUwMjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MTM5NGMxYTEzZGM2NmUxMzFmZmY0ODVhYjdmODU5YzI5 ZTExNDJjZGI1NDgxMTg4MDJhMGVhNTQzMDc2ODA5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClpkV7pajhkNFmIb0G8HHlcwNHCiMYyWT0Tci1vYGutAOt HRCTbNHnxzjR1iZ2ca5vXrJADAqekY/XyQzmRiMbXlPZez3sYDnjrnVVudGWRLfR cYOhCPI6e7xoggq80NZSVt3S/YLqDaoueuhtybCfbMgi+E5Qx1VK+0bgg7+Kn2b6 GHThkDenO/8MJcirxkj3S0jLKTGmCBaXkbZRvhBXp+bQEQpXfzwYfd1vWMDtqEI2 OBuKySghsdLUZaMCpEwqPpSkphpbevDozVoFW+JidZ4kXOVB7PiCoK3EZtGl+mEF HsEv3KkTTeo7QiHANd1pSbqSL5fK9+TEuJphLyKRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUojk/LkM6aBJ8i4M+dEVSB/x01vowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc5YTMwNjZkLWFiMzMtNDRlNS1iMzY0LTE0NDIzZTc1NzgyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTfUwDQYJKoZIhvcNAQELBQADggEBAMaBNzDrLIXujlb6rQovq1UIYI+a FXhVIiqfr/p6StGT3sd7wFJmzXvWkWFIsl8PGND7S/mKaCBJ4o5pQRm0qBxeOK7r zKCyUIXk5bDWAYBi/e1d9iKwdz+7P7x3EhV0VOjvHidD9yilkt7Q6hTlRZCyZqtj tq8VOJk5UQs0H97SVWoaR7lbe6rNHIc1lvFI3Dy8kIwfRl9iFaELFhR+2J6ngLWL ckb7CivT+uOnj3B/F92w7fQ4tvfbUSAgizS+XKlUo86tYo55QKIp+Ls+invEfnhK szzYcF5ZapYRtNdqN5h8JNEvqvwP5ML3L4S9eO5reImT+yJriJ9jzMzQ2EA= -----END CERTIFICATE-----Generated at Sun Feb 16 15:15:25 2025 by rpki-client