$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/82472b31-7e77-4ac9-b2af-3bfa80b720a7.roa File: 82472b31-7e77-4ac9-b2af-3bfa80b720a7.roa (raw, json) Hash identifier: 5/DLLnhSmcupJIAn3slfhEmibf6mF9DXTUVQCko7WE0= Subject key identifier: F3:A5:EF:51:A0:60:D5:AF:49:C0:6C:D1:1F:F1:AD:20:1E:BF:BF:0A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3B59069BED32DD8B215CD443E326E3E0BFDB0D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/82472b31-7e77-4ac9-b2af-3bfa80b720a7.roa Signing time: Tue 28 Jan 2025 00:00:00 +0000 ROA not before: Tue 28 Jan 2025 00:00:00 +0000 ROA not after: Tue 04 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 99.150.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:59:06:9b:ed:32:dd:8b:21:5c:d4:43:e3:26:e3:e0:bf:db:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 28 00:00:00 2025 GMT Not After : Mar 4 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:52:f6:f2:50:a9:60:71:44:75:a3:ea:39:7a: ee:71:87:dc:0e:94:3f:7c:19:be:18:52:92:d2:2c: aa:84:4e:7c:a3:6d:ec:09:49:a0:32:57:f3:ad:29: 54:8c:d5:c3:73:50:f3:ce:11:b7:5d:06:86:3c:35: 14:7a:2c:30:26:f0:5c:ad:d9:21:13:cd:f3:ac:3f: c2:4d:5d:e0:55:ea:be:86:a8:c3:97:23:4a:7c:b1: 1b:17:d5:13:7c:5f:94:e2:af:ed:bf:44:ca:37:c4: 27:91:05:a6:26:c8:df:75:04:52:3a:55:5c:1e:78: d4:c5:61:96:b8:29:be:23:7c:46:a3:90:83:39:ba: c4:eb:a6:d7:91:08:fe:1f:06:d5:63:ba:cb:cb:67: 87:95:6c:ff:a0:72:83:2a:ce:0d:59:5d:a6:aa:cb: ee:42:f1:bc:a9:9f:3b:c9:40:57:d0:96:ba:d0:b2: 52:09:e9:25:a5:0d:77:68:1e:71:9f:2e:c6:6f:b9: af:4a:cd:e3:79:4c:85:f2:d3:a3:bd:4a:13:9b:7f: 07:92:c6:49:fd:ca:66:f2:33:72:39:15:51:a5:fe: 9d:d5:07:03:e0:79:41:db:b2:92:e1:fd:2d:94:57: 3f:b5:fd:bf:ed:6d:0f:9e:ce:45:71:b8:73:ee:8a: 7a:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:A5:EF:51:A0:60:D5:AF:49:C0:6C:D1:1F:F1:AD:20:1E:BF:BF:0A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/82472b31-7e77-4ac9-b2af-3bfa80b720a7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.8.0/22 Signature Algorithm: sha256WithRSAEncryption 58:2b:0c:7d:93:a1:13:3f:30:cd:3b:50:04:6c:d3:18:c9:e6: 71:c3:94:d5:07:fd:50:31:3b:7d:a6:6e:ed:01:41:ff:1b:c7: b1:f0:28:dd:b4:ed:98:33:bb:57:ea:76:5a:7e:b1:f7:b8:c5: 0d:40:0f:6c:64:53:0d:3a:2d:8a:d0:23:e8:ac:42:f3:a0:c9: 87:5c:63:b6:62:95:fd:c5:80:59:17:b9:e6:3d:df:52:57:33: 2a:0a:be:eb:7b:62:70:c2:8c:39:92:51:67:2e:d9:6f:ea:95: 86:fb:11:9b:c5:6b:ad:ed:1d:20:9e:e0:42:5a:21:33:b2:cb: f1:d7:b3:da:61:03:5f:d6:81:be:84:ff:c9:51:4d:1d:3e:1b: b0:a1:c1:67:42:24:b9:fe:31:64:49:73:78:6f:6f:85:87:bf: 00:bc:4a:35:6d:d3:78:ba:8c:78:f1:63:5a:bb:86:6a:02:f3: 35:45:df:6d:08:db:3d:32:92:81:de:1b:81:72:c6:9d:6c:b3: 11:b4:1e:47:fb:d1:94:b9:e6:bf:c4:2e:8c:1c:14:e1:e8:37: 06:d0:a8:e5:78:7a:9d:ec:2f:a9:dc:59:9e:56:34:24:e1:22: a9:16:9c:a6:44:ba:b0:b0:1e:61:7e:5b:b7:02:9d:bb:38:76: 27:0f:d5:26 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITO1kGm+0y3YshXNRD4ybj4L/bDTANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTAxMjgwMDAwMDBaFw0yNTAzMDQyMzU5NTla MHoxSTBHBgNVBAUTQDJlNzYwYjk5Y2I4NWZhNDhmZjI3MTZhZGIyNDEzYTMzM2Yz YzE2MTgxMjQ0YzkxMDQ5ZDlmZTk4Y2UzZWUzYzQxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAKhS9vJQqWBxRHWj6jl67nGH3A6UP3wZvhhSktIsqoROfKNt 7AlJoDJX860pVIzVw3NQ884Rt10Ghjw1FHosMCbwXK3ZIRPN86w/wk1d4FXqvoao w5cjSnyxGxfVE3xflOKv7b9EyjfEJ5EFpibI33UEUjpVXB541MVhlrgpviN8RqOQ gzm6xOum15EI/h8G1WO6y8tnh5Vs/6BygyrODVldpqrL7kLxvKmfO8lAV9CWutCy UgnpJaUNd2gecZ8uxm+5r0rN43lMhfLTo71KE5t/B5LGSf3KZvIzcjkVUaX+ndUH A+B5QduykuH9LZRXP7X9v+1tD57ORXG4c+6KemsCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBTzpe9RoGDVr0nAbNEf8a0gHr+/CjAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvODI0NzJiMzEtN2U3Ny00YWM5LWIyYWYtM2JmYTgwYjcyMGE3LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmOWCDANBgkqhkiG9w0BAQsFAAOCAQEAWCsMfZOhEz8wzTtQBGzTGMnmccOU 1Qf9UDE7faZu7QFB/xvHsfAo3bTtmDO7V+p2Wn6x97jFDUAPbGRTDTotitAj6KxC 86DJh1xjtmKV/cWAWRe55j3fUlczKgq+63ticMKMOZJRZy7Zb+qVhvsRm8Vrre0d IJ7gQlohM7LL8dez2mEDX9aBvoT/yVFNHT4bsKHBZ0Ikuf4xZElzeG9vhYe/ALxK NW3TeLqMePFjWruGagLzNUXfbQjbPTKSgd4bgXLGnWyzEbQeR/vRlLnmv8QujBwU 4eg3BtCo5Xh6newvqdxZnlY0JOEiqRacpkS6sLAeYX5btwKduzh2Jw/VJg== -----END CERTIFICATE-----Generated at Wed Feb 5 09:39:18 2025 by rpki-client