$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c7c07ee-0917-41f8-997b-d5253ad56cb3.roa File: 7c7c07ee-0917-41f8-997b-d5253ad56cb3.roa (raw, json) Hash identifier: DAxNXhsfynF/p9f2GcdlXTP5k6U0p3x/jYU352uZsAY= Subject key identifier: 81:BC:DE:CB:C1:B9:F1:68:3D:A1:8B:2E:01:93:92:07:5B:42:F4:DB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 479C62D2E807AA49243C0C92F3CD1F313006E030 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c7c07ee-0917-41f8-997b-d5253ad56cb3.roa Signing time: Fri 14 Feb 2025 00:10:23 +0000 ROA not before: Fri 14 Feb 2025 00:10:23 +0000 ROA not after: Fri 21 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 137.160.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:9c:62:d2:e8:07:aa:49:24:3c:0c:92:f3:cd:1f:31:30:06:e0:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 14 00:10:23 2025 GMT Not After : Mar 21 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:bf:90:bf:77:ec:22:06:f9:06:c6:44:06:16: fb:71:fd:f6:35:f6:11:75:9a:dd:36:2f:40:97:d3: 49:4c:5f:7f:77:e3:ec:a8:77:16:f3:68:0d:01:70: e8:30:bb:e0:a8:db:29:36:23:2c:f3:51:12:aa:cd: b5:3b:f5:fb:74:1b:82:b3:66:68:b0:53:dd:a7:0e: b6:d6:89:f5:a4:4b:66:65:8e:2f:d0:37:7e:4a:e8: 74:02:32:9b:0f:c5:bb:0d:e5:ec:22:68:23:db:25: 68:29:d8:f7:8e:24:d9:dc:f9:01:ba:00:1e:10:26: 9d:6a:59:3d:5d:e9:05:05:21:f8:16:91:d0:64:0f: d5:38:25:31:74:66:aa:47:e3:b7:9c:9d:40:97:7c: 01:55:5d:0a:80:18:c7:d9:47:88:d3:af:84:03:9d: b4:05:86:57:60:2d:59:7c:d9:95:32:52:93:b0:9a: 05:30:41:fd:58:76:58:69:df:31:71:84:ec:00:14: a1:07:ee:d2:7e:65:75:f1:91:d1:58:f9:f4:2b:45: ee:0b:b7:95:2a:47:16:ae:a3:d6:fb:c1:3f:68:59: b6:1f:7c:47:ec:f2:2b:0c:15:e8:0b:0d:95:c5:50: ff:2f:26:6d:a6:cf:4e:98:20:be:75:f7:f1:c0:3d: 99:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:BC:DE:CB:C1:B9:F1:68:3D:A1:8B:2E:01:93:92:07:5B:42:F4:DB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c7c07ee-0917-41f8-997b-d5253ad56cb3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 137.160.0.0/16 Signature Algorithm: sha256WithRSAEncryption 01:e4:d6:b3:08:28:33:67:29:8d:06:f4:ff:b7:7f:7b:ec:57: 46:18:75:2d:25:bd:56:af:b7:c3:af:0b:c3:7c:88:d1:b9:4c: 75:fa:d6:d1:de:94:9e:29:2a:66:38:15:28:90:c2:16:f6:d0: db:66:6d:46:ac:4e:03:78:35:89:43:18:2e:7c:7a:85:05:45: b4:5a:96:0d:a1:ca:0b:24:8c:25:e9:2d:1d:f6:24:8e:d0:5a: 8a:91:f2:fb:b1:df:5b:2a:cb:6b:b7:7a:dd:73:25:7f:ff:85: 15:d3:52:c3:fe:43:03:0b:48:ed:3a:4f:af:47:f0:46:8d:b3: 19:27:33:9e:9d:5e:48:da:0d:88:87:2c:1a:c2:5c:de:da:23: f5:86:21:fc:6a:db:7b:16:26:8c:bc:44:a2:b3:e3:48:c7:d1: da:46:b0:9f:a2:46:43:c4:49:d1:25:8e:72:9c:a8:0e:6e:ff: 2c:d5:a8:30:09:84:f1:af:ad:0e:0c:fb:c0:08:53:af:12:62: 23:f5:60:9b:cf:0b:75:43:39:a4:bd:b0:90:e4:6b:6f:cb:de: 13:9b:4b:4b:ce:d6:34:ff:62:de:67:20:b3:d0:c7:ce:98:eb: bc:0e:ed:db:a6:0b:67:6e:86:ad:69:5c:11:78:2a:ef:7a:e1: b5:4e:a6:a3 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUR5xi0ugHqkkkPAyS880fMTAG4DAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjE0MDAxMDIzWhcNMjUwMzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZDk5NjgwNjlmNzMzMDk5MTljNGI4OGQ3N2UzOWU3MGEx YTNiMmYxYmY5NmEzYTAzZmExOTczMWZiYmMwMGJiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVv5C/d+wiBvkGxkQGFvtx/fY19hF1mt02L0CX00lMX393 4+yodxbzaA0BcOgwu+Co2yk2IyzzURKqzbU79ft0G4KzZmiwU92nDrbWifWkS2Zl ji/QN35K6HQCMpsPxbsN5ewiaCPbJWgp2PeOJNnc+QG6AB4QJp1qWT1d6QUFIfgW kdBkD9U4JTF0ZqpH47ecnUCXfAFVXQqAGMfZR4jTr4QDnbQFhldgLVl82ZUyUpOw mgUwQf1Ydlhp3zFxhOwAFKEH7tJ+ZXXxkdFY+fQrRe4Lt5UqRxauo9b7wT9oWbYf fEfs8isMFegLDZXFUP8vJm2mz06YIL519/HAPZkrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUgbzey8G58Wg9oYsuAZOSB1tC9NswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdjN2MwN2VlLTA5MTctNDFmOC05OTdiLWQ1MjUzYWQ1NmNiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCJoDANBgkqhkiG9w0BAQsFAAOCAQEAAeTWswgoM2cpjQb0/7d/e+xXRhh1 LSW9Vq+3w68Lw3yI0blMdfrW0d6UnikqZjgVKJDCFvbQ22ZtRqxOA3g1iUMYLnx6 hQVFtFqWDaHKCySMJektHfYkjtBaipHy+7HfWyrLa7d63XMlf/+FFdNSw/5DAwtI 7TpPr0fwRo2zGScznp1eSNoNiIcsGsJc3toj9YYh/GrbexYmjLxEorPjSMfR2kaw n6JGQ8RJ0SWOcpyoDm7/LNWoMAmE8a+tDgz7wAhTrxJiI/Vgm88LdUM5pL2wkORr b8veE5tLS87WNP9i3mcgs9DHzpjrvA7t26YLZ26GrWlcEXgq73rhtU6mow== -----END CERTIFICATE-----Generated at Sun Feb 16 15:51:46 2025 by rpki-client