$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9296230d-b510-447f-8d60-91a5403453bc.roa File: 9296230d-b510-447f-8d60-91a5403453bc.roa (raw, json) Hash identifier: XoAJF+Q3QUB9iwwqBPxlZSHCEzVgGMq9aJF+FMSdtmM= Subject key identifier: C8:7E:F3:1D:84:93:EB:41:F3:5E:20:D1:C5:02:D6:CB:E7:1C:85:23 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1140E577504D2701CE6DFDA0E79A5035931CBB16 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9296230d-b510-447f-8d60-91a5403453bc.roa Signing time: Mon 13 Jan 2025 00:00:00 +0000 ROA not before: Mon 13 Jan 2025 00:00:00 +0000 ROA not after: Mon 17 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 107.21.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:40:e5:77:50:4d:27:01:ce:6d:fd:a0:e7:9a:50:35:93:1c:bb:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 13 00:00:00 2025 GMT Not After : Feb 17 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:95:f8:9d:69:9d:92:f5:27:4c:85:b5:a2:09: ee:20:f5:99:d2:27:60:de:8f:8f:81:b3:48:c1:64: 3c:fb:3a:2a:35:7d:5a:26:54:7e:67:25:47:e7:9b: 69:81:9e:19:6c:3c:43:36:5c:69:ee:9d:c1:2a:12: 6c:3b:f0:7a:fb:64:a3:18:da:07:12:65:b7:ce:bb: 36:b9:bd:ed:47:c7:c1:05:6f:c3:60:05:7a:3f:45: 89:bf:2c:43:0a:b5:19:54:a1:a1:0c:24:fa:fd:4d: da:d2:2b:7c:a4:83:1b:80:e9:75:75:c9:3e:d2:73: 3a:99:2b:1d:73:bf:aa:b9:d8:b5:d6:23:f4:a2:f8: 54:49:a1:62:93:79:fc:04:71:82:64:6f:fc:61:55: 48:7e:77:19:7d:42:72:55:c0:00:a0:60:04:cb:a5: 03:85:5e:51:70:d7:3d:77:64:12:4f:be:cf:58:ab: 09:f1:d9:38:c5:1b:57:8f:76:03:0f:94:b7:e6:14: 92:e8:43:21:c9:1e:9b:73:57:9c:f5:31:d8:7f:69: e2:c5:c2:b0:13:fe:8d:68:50:0a:32:7c:0c:87:27: 32:a1:31:92:cb:f4:92:56:99:13:a2:2a:3b:bd:ea: ca:7e:82:00:1f:9a:57:14:c3:c0:dd:33:18:4c:03: 7c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:7E:F3:1D:84:93:EB:41:F3:5E:20:D1:C5:02:D6:CB:E7:1C:85:23 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9296230d-b510-447f-8d60-91a5403453bc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.21.64.0/20 Signature Algorithm: sha256WithRSAEncryption 57:88:74:9b:18:00:d2:83:fc:b1:f7:69:27:24:4c:11:bc:1a: d1:c2:c6:52:9c:48:c7:1c:fa:92:03:a1:e9:6c:47:0a:0d:c1: 62:a7:18:ef:bf:d1:96:c1:ba:03:f3:69:b5:c2:e6:33:9c:1a: 5f:55:4f:d9:df:b1:b6:63:07:65:d5:0c:ba:c2:c1:26:95:43: bf:69:2b:fd:31:e1:d6:26:03:9d:ae:52:b5:5f:ca:e6:ba:1c: b9:06:bc:a1:29:58:0c:dd:f0:4c:3a:e3:f5:24:13:eb:58:49: e4:ff:5c:39:54:8a:30:b9:55:f7:ec:4d:b0:0d:10:ea:14:19: 80:f6:20:6e:2a:55:94:f4:60:81:3a:f6:fc:d2:22:44:cf:5d: 10:67:e4:c6:d8:5c:f6:f3:ed:71:94:30:45:cc:36:8a:cc:94: eb:22:e3:4b:8e:b9:76:d9:be:4e:78:35:ef:c0:f0:e0:2e:39: 6f:e1:e2:99:8a:ea:0f:cf:ea:e6:65:89:4b:5a:56:7a:50:ce: bf:db:41:de:15:2c:4b:22:02:10:cc:cb:ed:28:61:46:10:dd: be:ca:6b:6f:3a:0a:6a:d8:a0:b0:59:48:0b:cf:17:39:52:e5: 9e:5d:d8:15:91:e7:87:1b:fe:7a:5f:2d:35:80:c4:51:f6:e7: d6:65:34:88 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEUDld1BNJwHObf2g55pQNZMcuxYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTEzMDAwMDAwWhcNMjUwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3Y2Y3NDFkODdkYjM5M2Y3ODg2Y2FiZjkyMmM4OWNhYTgw N2U2ZmM4MmIzZDZiNmZmMTcxNzBlNzEzMjY3ZDA1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtlfidaZ2S9SdMhbWiCe4g9ZnSJ2Dej4+Bs0jBZDz7Oio1 fVomVH5nJUfnm2mBnhlsPEM2XGnuncEqEmw78Hr7ZKMY2gcSZbfOuza5ve1Hx8EF b8NgBXo/RYm/LEMKtRlUoaEMJPr9TdrSK3ykgxuA6XV1yT7SczqZKx1zv6q52LXW I/Si+FRJoWKTefwEcYJkb/xhVUh+dxl9QnJVwACgYATLpQOFXlFw1z13ZBJPvs9Y qwnx2TjFG1ePdgMPlLfmFJLoQyHJHptzV5z1Mdh/aeLFwrAT/o1oUAoyfAyHJzKh MZLL9JJWmROiKju96sp+ggAfmlcUw8DdMxhMA3xlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyH7zHYST60HzXiDRxQLWy+cchSMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkyOTYyMzBkLWI1MTAtNDQ3Zi04ZDYwLTkxYTU0MDM0NTNiYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARrFUAwDQYJKoZIhvcNAQELBQADggEBAFeIdJsYANKD/LH3aSckTBG8GtHC xlKcSMcc+pIDoelsRwoNwWKnGO+/0ZbBugPzabXC5jOcGl9VT9nfsbZjB2XVDLrC wSaVQ79pK/0x4dYmA52uUrVfyua6HLkGvKEpWAzd8Ew64/UkE+tYSeT/XDlUijC5 VffsTbANEOoUGYD2IG4qVZT0YIE69vzSIkTPXRBn5MbYXPbz7XGUMEXMNorMlOsi 40uOuXbZvk54Ne/A8OAuOW/h4pmK6g/P6uZliUtaVnpQzr/bQd4VLEsiAhDMy+0o YUYQ3b7Ka286CmrYoLBZSAvPFzlS5Z5d2BWR54cb/npfLTWAxFH259ZlNIg= -----END CERTIFICATE-----Generated at Wed Feb 5 09:59:02 2025 by rpki-client