$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c0842d7-9731-43b2-aeaa-fff79b41c3dd.roa File: 7c0842d7-9731-43b2-aeaa-fff79b41c3dd.roa (raw, json) Hash identifier: 5eQkcP3j0lJgdnColBnHf1LSjJCAlO7q5DXu8rShstA= Subject key identifier: 67:36:32:40:42:4B:33:E2:49:A7:E6:DE:D5:35:8C:E0:17:D4:7A:F1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 154E6FA0D50D075FE0CCE90EA0D1E1226FA0A90F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c0842d7-9731-43b2-aeaa-fff79b41c3dd.roa Signing time: Tue 21 Jan 2025 00:00:00 +0000 ROA not before: Tue 21 Jan 2025 00:00:00 +0000 ROA not after: Tue 25 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 70.232.88.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:4e:6f:a0:d5:0d:07:5f:e0:cc:e9:0e:a0:d1:e1:22:6f:a0:a9:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 21 00:00:00 2025 GMT Not After : Feb 25 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:e7:d6:07:e6:71:00:3e:5f:46:16:7a:11:1a: 3c:7c:5e:29:eb:9a:39:b6:fd:90:a9:05:b7:2d:4e: 29:60:c9:07:2e:c9:ee:f3:52:75:23:99:01:c4:61: 87:de:16:f5:6a:ff:15:8e:43:77:e8:73:6b:ec:7d: ea:c7:f1:c9:c4:b3:92:31:d8:1d:5c:a4:a0:d8:1d: 68:79:85:11:74:71:b3:12:3c:e1:ac:cb:0c:0a:93: 74:95:e1:4a:46:74:27:3e:c2:eb:59:77:e9:6d:90: cf:97:9a:5e:2a:d8:96:c4:8b:9e:cf:80:6e:fc:a5: 36:79:cb:51:cc:56:9e:f7:08:e4:2a:7d:c9:1a:40: 26:59:82:c3:27:94:df:df:3f:a9:68:ec:5c:af:2c: 13:93:bc:0c:44:01:72:cc:d3:0c:1d:5b:40:00:50: 45:00:cd:5d:ef:7d:06:d4:76:fb:a7:95:04:00:d6: 7a:b7:f4:6d:c7:c3:bb:7c:81:87:78:15:2b:68:b6: 87:3a:90:31:8c:dc:f5:0f:82:81:a3:14:6a:ae:a0: 11:b0:fc:72:ed:1f:c8:e9:dd:55:94:c6:bf:a0:25: 9d:e2:a2:0a:4f:6b:1e:0d:0d:37:aa:66:82:d1:b7: 82:35:28:0c:0d:d3:57:c1:8f:9e:60:ad:a5:35:99: 25:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:36:32:40:42:4B:33:E2:49:A7:E6:DE:D5:35:8C:E0:17:D4:7A:F1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c0842d7-9731-43b2-aeaa-fff79b41c3dd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.232.88.0/22 Signature Algorithm: sha256WithRSAEncryption c9:a8:08:fb:af:f2:47:43:9e:db:92:19:16:17:ba:6b:5e:c7: f2:dd:61:79:a8:cd:0e:6f:c1:60:3d:31:5d:3f:c4:10:4d:7f: 7f:8d:d6:01:82:a4:36:c6:99:50:ca:f2:93:8f:bd:c9:13:8b: 3f:9d:1d:2b:84:9b:e9:d5:28:d8:d2:87:2e:04:47:a7:08:7d: 12:d0:6e:42:8b:4b:16:9a:d9:7f:6e:a9:fe:4a:e6:6d:03:30: 0a:d6:13:a2:c2:06:e1:42:fc:6c:e3:96:03:37:a2:70:d0:bd: 8c:27:22:a2:93:d0:83:df:22:67:fb:c2:10:0f:01:4d:88:26: 7a:02:ef:2d:54:95:fe:05:a7:30:4c:87:00:17:62:8a:91:94: db:f4:aa:0f:ba:63:17:40:da:9b:31:12:33:d7:18:5f:2f:9e: 4d:ee:ae:02:23:e1:73:88:23:4e:f4:26:2a:36:f7:03:9f:ea: a0:0d:5d:94:e1:75:97:b3:2d:c2:93:5c:8b:59:f3:fe:f5:fa: 13:65:c8:0c:ee:d4:ad:ea:fc:64:49:2f:28:8f:96:ca:47:dc: ab:77:a8:d2:b4:e4:2d:84:8c:bc:34:ac:f5:6f:61:cd:fe:92: 23:13:eb:5e:50:db:5c:1c:e4:9a:d4:37:f6:51:b1:94:15:66: 59:b9:b1:99 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFU5voNUNB1/gzOkOoNHhIm+gqQ8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTIxMDAwMDAwWhcNMjUwMjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NzJiYWQ1NzMwNjlkNjdjYTBlYzgxNTJmM2IxM2UzNjRi YmY2YWM2YWRkOTU2ODY4OTFhNDhhNGFiY2VhMWJlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDv59YH5nEAPl9GFnoRGjx8Xinrmjm2/ZCpBbctTilgyQcu ye7zUnUjmQHEYYfeFvVq/xWOQ3foc2vsferH8cnEs5Ix2B1cpKDYHWh5hRF0cbMS POGsywwKk3SV4UpGdCc+wutZd+ltkM+Xml4q2JbEi57PgG78pTZ5y1HMVp73COQq fckaQCZZgsMnlN/fP6lo7FyvLBOTvAxEAXLM0wwdW0AAUEUAzV3vfQbUdvunlQQA 1nq39G3Hw7t8gYd4FStotoc6kDGM3PUPgoGjFGquoBGw/HLtH8jp3VWUxr+gJZ3i ogpPax4NDTeqZoLRt4I1KAwN01fBj55graU1mSV/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZzYyQEJLM+JJp+be1TWM4BfUevEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdjMDg0MmQ3LTk3MzEtNDNiMi1hZWFhLWZmZjc5YjQxYzNkZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJG6FgwDQYJKoZIhvcNAQELBQADggEBAMmoCPuv8kdDntuSGRYXumtex/Ld YXmozQ5vwWA9MV0/xBBNf3+N1gGCpDbGmVDK8pOPvckTiz+dHSuEm+nVKNjShy4E R6cIfRLQbkKLSxaa2X9uqf5K5m0DMArWE6LCBuFC/GzjlgM3onDQvYwnIqKT0IPf Imf7whAPAU2IJnoC7y1Ulf4FpzBMhwAXYoqRlNv0qg+6YxdA2psxEjPXGF8vnk3u rgIj4XOII070Jio29wOf6qANXZThdZezLcKTXItZ8/71+hNlyAzu1K3q/GRJLyiP lspH3Kt3qNK05C2EjLw0rPVvYc3+kiMT615Q21wc5JrUN/ZRsZQVZlm5sZk= -----END CERTIFICATE-----Generated at Sun Feb 16 15:49:44 2025 by rpki-client