$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d9d5bd7-2808-4dcf-96a8-29fc3a603307.roa File: 8d9d5bd7-2808-4dcf-96a8-29fc3a603307.roa (raw, json) Hash identifier: i9eWC9NxeU012Nubim2RHSVAmrHpJEO5EJWJyUOcQn4= Subject key identifier: 4C:78:39:97:14:43:03:C6:D0:09:DC:33:C2:32:CB:87:9A:B4:BB:A2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4075EE832D35C0DC3F78B980FCFA84E1889EA732 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d9d5bd7-2808-4dcf-96a8-29fc3a603307.roa Signing time: Mon 13 Jan 2025 00:00:00 +0000 ROA not before: Mon 13 Jan 2025 00:00:00 +0000 ROA not after: Mon 17 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 174.129.44.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:75:ee:83:2d:35:c0:dc:3f:78:b9:80:fc:fa:84:e1:88:9e:a7:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 13 00:00:00 2025 GMT Not After : Feb 17 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:ea:71:4f:56:8a:dd:6f:eb:6e:65:d5:3b:2d: 1f:48:7a:31:93:06:55:91:50:27:e4:2a:0b:ec:83: b6:50:0a:5b:79:1d:f8:9b:c5:5b:4e:6c:16:ab:84: d7:1b:fa:fb:68:01:0f:dd:65:49:37:08:76:ec:27: 07:88:6e:13:80:60:2e:f5:44:fe:e8:a5:91:b7:ee: ac:11:c2:1e:a9:29:77:06:2a:04:50:4c:05:5c:03: 6c:fe:a7:52:20:ee:da:9a:be:88:4f:52:1b:c0:90: 50:be:70:98:bc:1e:3a:de:90:2b:7e:69:22:99:f1: 30:4f:5e:99:71:d1:5e:16:ed:5c:2e:d3:4f:05:8e: 20:20:4b:38:74:6f:4b:ac:db:f7:ee:1b:80:ec:89: 00:f9:fc:ff:92:3e:1a:e0:19:01:a8:9e:42:c5:77: 0c:d9:ff:2d:89:f6:e7:3c:c4:88:80:62:b1:48:a3: 82:4c:3b:6a:c0:0e:fe:b6:e7:fb:a7:67:5a:92:a9: eb:f6:78:0d:6d:10:69:00:53:46:bc:67:ff:39:56: 8a:cf:02:a5:59:3e:c5:e9:16:6b:f8:5a:5c:ae:12: a3:8b:eb:53:cc:75:8b:cf:af:98:4b:b2:0d:0a:77: de:9c:20:a6:13:6d:d2:26:40:47:87:d9:f0:76:ed: cc:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:78:39:97:14:43:03:C6:D0:09:DC:33:C2:32:CB:87:9A:B4:BB:A2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d9d5bd7-2808-4dcf-96a8-29fc3a603307.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 174.129.44.0/22 Signature Algorithm: sha256WithRSAEncryption 55:87:f9:55:ed:40:95:0a:7f:b9:4b:13:00:2a:f8:0b:71:f8: 87:62:17:8e:95:dc:35:08:ad:c6:07:d7:b2:3a:36:2c:d1:4e: 7b:59:34:1b:36:55:6f:3c:ff:cd:5f:4d:77:a5:14:aa:9c:d1: b9:67:6b:99:c3:a2:14:02:53:41:1f:fe:80:88:87:6b:c2:c3: d8:a4:76:eb:62:99:e1:b4:b1:ae:51:29:c2:1a:f1:ca:1a:d8: 88:24:25:56:b2:d7:50:70:ee:99:4a:0a:13:89:d1:91:06:4f: ed:a8:83:a7:5d:29:87:49:f0:ad:32:e8:a2:c4:49:2d:db:aa: 89:ba:84:a5:f0:48:9c:af:0f:e5:28:50:30:b8:2c:d2:ef:4d: 90:46:f8:f5:c3:49:a5:b9:63:01:b8:92:62:af:da:a4:41:b9: d2:1b:41:fb:04:08:4c:77:7d:60:4d:44:09:96:13:64:de:49: 8b:3d:52:9b:a0:99:db:e4:95:8c:d5:d4:0a:2f:73:30:4c:cc: 07:2d:81:26:cb:39:f0:52:61:32:d7:ef:cf:af:c0:16:8d:4d: 36:89:1a:b7:e5:29:83:6f:0e:be:4c:e5:75:86:e7:73:23:7d: e2:cf:ff:a8:33:f5:1a:4d:a0:74:35:b0:1e:ca:88:ba:53:22: be:90:93:f2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQHXugy01wNw/eLmA/PqE4YiepzIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTEzMDAwMDAwWhcNMjUwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MWZkNDJjNTNjYTM4ZWFjY2ExNDYzM2Q5M2RmOTUyYTg2 ZjI5NDBjZGQxYTdkNDUxOGZlNWMyODkwNzNmMzU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD56nFPVordb+tuZdU7LR9IejGTBlWRUCfkKgvsg7ZQClt5 HfibxVtObBarhNcb+vtoAQ/dZUk3CHbsJweIbhOAYC71RP7opZG37qwRwh6pKXcG KgRQTAVcA2z+p1Ig7tqavohPUhvAkFC+cJi8HjrekCt+aSKZ8TBPXplx0V4W7Vwu 008FjiAgSzh0b0us2/fuG4DsiQD5/P+SPhrgGQGonkLFdwzZ/y2J9uc8xIiAYrFI o4JMO2rADv625/unZ1qSqev2eA1tEGkAU0a8Z/85VorPAqVZPsXpFmv4WlyuEqOL 61PMdYvPr5hLsg0Kd96cIKYTbdImQEeH2fB27cy1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTHg5lxRDA8bQCdwzwjLLh5q0u6IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhkOWQ1YmQ3LTI4MDgtNGRjZi05NmE4LTI5ZmMzYTYwMzMwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKugSwwDQYJKoZIhvcNAQELBQADggEBAFWH+VXtQJUKf7lLEwAq+Atx+Idi F46V3DUIrcYH17I6NizRTntZNBs2VW88/81fTXelFKqc0blna5nDohQCU0Ef/oCI h2vCw9ikdutimeG0sa5RKcIa8coa2IgkJVay11Bw7plKChOJ0ZEGT+2og6ddKYdJ 8K0y6KLESS3bqom6hKXwSJyvD+UoUDC4LNLvTZBG+PXDSaW5YwG4kmKv2qRBudIb QfsECEx3fWBNRAmWE2TeSYs9UpugmdvklYzV1AovczBMzActgSbLOfBSYTLX78+v wBaNTTaJGrflKYNvDr5M5XWG53MjfeLP/6gz9RpNoHQ1sB7KiLpTIr6Qk/I= -----END CERTIFICATE-----Generated at Wed Feb 5 09:57:07 2025 by rpki-client