$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e2ea47c-7af2-420d-8695-f2f769b2008c.roa File: 8e2ea47c-7af2-420d-8695-f2f769b2008c.roa (raw, json) Hash identifier: J4z7Z1ci/e55+48at2aKJ9Rkxpb8oX5ELNHQNE+gLVY= Subject key identifier: F4:A1:65:DC:33:BE:2F:9C:4A:96:6F:6E:A7:FC:5A:A7:BA:CA:2D:B5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1FEDFD8C2A36CD6D95E3FA2A6E32C16631061D6D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e2ea47c-7af2-420d-8695-f2f769b2008c.roa Signing time: Fri 07 Feb 2025 00:00:00 +0000 ROA not before: Fri 07 Feb 2025 00:00:00 +0000 ROA not after: Fri 14 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.245.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:ed:fd:8c:2a:36:cd:6d:95:e3:fa:2a:6e:32:c1:66:31:06:1d:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 7 00:00:00 2025 GMT Not After : Mar 14 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b4:6c:4f:e6:b5:ff:4c:4f:52:0a:41:ca:31: d1:93:c2:dc:6c:64:46:aa:3d:c7:80:3a:8d:c1:7d: 77:15:23:2b:ba:66:2b:03:46:6a:d6:a9:9a:07:84: 9e:45:3c:d8:6a:e6:ca:bb:7c:74:f7:9a:1c:6c:b3: 00:1c:45:58:da:0b:53:53:a2:c2:f2:cc:d1:53:a1: f3:26:13:c9:93:76:d0:23:ca:03:a2:4c:df:db:13: 3d:0f:f3:7b:a5:b3:8e:e8:c2:86:d5:33:cb:f2:f3: b6:6c:d8:f9:24:1e:47:9e:d2:c0:8b:2a:b3:7b:c2: 02:0f:23:f1:60:fb:85:eb:c6:6c:99:b0:b8:3f:15: 23:5a:6f:b6:82:3a:15:08:ec:85:18:a6:11:98:af: b0:a3:ca:0b:f6:df:a9:4c:20:b4:d3:4f:42:2e:2d: e1:8f:9a:39:ef:e9:c6:1f:06:ed:da:77:88:3e:0b: 01:b6:11:23:56:ec:17:fa:a0:f5:64:51:50:63:48: 09:94:91:fb:22:60:aa:30:48:cd:be:93:a6:7f:77: 27:1f:f4:a5:27:44:f3:50:03:1d:fe:9d:8d:a0:7b: 7f:e6:21:cd:eb:d0:25:48:61:a0:fc:6f:12:78:f5: 57:fb:aa:3a:b5:91:15:45:23:a3:36:5e:a5:6c:bc: 23:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:A1:65:DC:33:BE:2F:9C:4A:96:6F:6E:A7:FC:5A:A7:BA:CA:2D:B5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e2ea47c-7af2-420d-8695-f2f769b2008c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.245.0.0/16 Signature Algorithm: sha256WithRSAEncryption 04:d6:1c:40:ad:32:63:ae:df:55:34:35:4a:45:f6:db:41:30: d9:dc:e1:80:b2:a7:dc:6c:d6:0b:e4:06:3b:ae:62:81:46:31: 04:fe:25:90:d8:d5:b4:24:93:bf:45:fc:bf:f7:cc:f6:b8:06: e6:94:a2:c4:77:f9:76:05:ba:22:a8:39:45:dd:51:4f:7b:7f: ee:6d:69:d8:d8:6c:6a:4d:01:63:16:d6:3c:d3:9f:93:ca:5f: 2b:d4:7b:fa:d3:b1:67:a9:39:a1:37:79:83:39:6d:aa:cc:50: a6:dd:8d:4a:ee:ab:12:8e:b9:93:c4:7e:05:61:02:48:d7:86: 4b:a5:16:04:28:14:4e:cd:b8:b9:a9:db:c1:d7:f6:e2:53:26: b1:a6:b1:03:e8:b8:e4:a5:b3:ae:b2:93:15:6c:21:d5:59:d3: 69:c6:99:a5:9b:31:74:f8:e9:04:b0:d4:cf:ee:a1:e1:c1:20: 24:63:6f:12:47:61:3f:76:71:8d:44:f8:c0:6e:12:a2:55:76: bc:3a:28:49:93:55:a3:4a:f8:9a:35:d1:e3:d5:4a:ba:4f:7b: 8d:a1:db:fc:7f:69:e0:2e:e3:2e:ea:39:4e:8f:73:05:3c:08: 86:7b:03:98:17:55:12:c4:6f:04:aa:1a:6c:bb:6c:4c:22:67: 95:f0:bb:55 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUH+39jCo2zW2V4/oqbjLBZjEGHW0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjA3MDAwMDAwWhcNMjUwMzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlM2Y4MWJiNmJlYTJhZTgyNGQ2ZDM3Mzg4MTdkNzk0NDZm OGI1YzczNzg3MTI1MmE4NmRiYjk5MGFkYjg2MTQ1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCstGxP5rX/TE9SCkHKMdGTwtxsZEaqPceAOo3BfXcVIyu6 ZisDRmrWqZoHhJ5FPNhq5sq7fHT3mhxsswAcRVjaC1NTosLyzNFTofMmE8mTdtAj ygOiTN/bEz0P83uls47owobVM8vy87Zs2PkkHkee0sCLKrN7wgIPI/Fg+4XrxmyZ sLg/FSNab7aCOhUI7IUYphGYr7Cjygv236lMILTTT0IuLeGPmjnv6cYfBu3ad4g+ CwG2ESNW7Bf6oPVkUVBjSAmUkfsiYKowSM2+k6Z/dycf9KUnRPNQAx3+nY2ge3/m Ic3r0CVIYaD8bxJ49Vf7qjq1kRVFI6M2XqVsvCOLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU9KFl3DO+L5xKlm9up/xap7rKLbUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhlMmVhNDdjLTdhZjItNDIwZC04Njk1LWYyZjc2OWIyMDA4Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA49TANBgkqhkiG9w0BAQsFAAOCAQEABNYcQK0yY67fVTQ1SkX220Ew2dzh gLKn3GzWC+QGO65igUYxBP4lkNjVtCSTv0X8v/fM9rgG5pSixHf5dgW6Iqg5Rd1R T3t/7m1p2Nhsak0BYxbWPNOfk8pfK9R7+tOxZ6k5oTd5gzltqsxQpt2NSu6rEo65 k8R+BWECSNeGS6UWBCgUTs24uanbwdf24lMmsaaxA+i45KWzrrKTFWwh1VnTacaZ pZsxdPjpBLDUz+6h4cEgJGNvEkdhP3ZxjUT4wG4SolV2vDooSZNVo0r4mjXR49VK uk97jaHb/H9p4C7jLuo5To9zBTwIhnsDmBdVEsRvBKoabLtsTCJnlfC7VQ== -----END CERTIFICATE-----Generated at Sun Feb 16 15:23:11 2025 by rpki-client