$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/929a3b2b-92c7-45f2-905b-1ffb4708fcf7.roa File: 929a3b2b-92c7-45f2-905b-1ffb4708fcf7.roa (raw, json) Hash identifier: ohrSjGwgitJMAPDd3dN1t2OhkE5EVw2FF5W73Y4MmI0= Subject key identifier: 68:0F:1F:3E:3B:4C:B2:DA:C5:BB:82:C4:5B:A6:9B:FD:BA:6D:63:49 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 03DC82AA1C93CCA8C6776458F74AE681CD24D6AC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/929a3b2b-92c7-45f2-905b-1ffb4708fcf7.roa Signing time: Tue 21 Jan 2025 00:00:00 +0000 ROA not before: Tue 21 Jan 2025 00:00:00 +0000 ROA not after: Tue 25 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.249.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:dc:82:aa:1c:93:cc:a8:c6:77:64:58:f7:4a:e6:81:cd:24:d6:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 21 00:00:00 2025 GMT Not After : Feb 25 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:60:b7:59:8d:99:75:32:81:dd:79:13:dd:0b: 84:4d:41:d8:f7:42:cc:bb:67:2f:4d:d4:fe:7f:b2: a6:97:cf:af:3c:49:39:db:04:a7:f5:64:ac:81:a1: 8d:63:f5:ff:5d:7d:62:10:c1:93:b0:53:7f:d8:25: 83:57:00:73:80:20:f2:89:ba:7c:72:b6:58:2e:c6: 1b:b4:57:65:87:18:96:72:02:a3:a2:53:1a:f6:44: c2:c5:36:d8:d2:58:b0:14:fb:dc:5d:90:3e:d7:9f: 58:a6:66:a9:28:88:4a:d8:36:7c:15:aa:a6:d3:89: de:a9:92:31:5b:5e:a6:23:36:6b:78:ea:d5:30:be: f9:16:75:85:b2:c1:86:96:75:5b:45:6f:b4:4a:ed: 4f:62:da:2a:60:8d:b0:64:28:1a:00:91:e5:89:ca: d7:70:4c:a2:e6:89:e5:ca:10:48:9a:c9:35:d4:b4: f4:f6:b0:59:7e:1e:75:55:a3:59:dd:be:7f:3d:5f: 8f:50:5c:a3:d4:06:7e:95:35:81:f6:a7:9a:83:eb: a5:63:c9:9d:15:67:4b:eb:d9:ec:3b:8f:a8:45:ab: 92:f7:4f:b2:82:c3:42:b1:13:ed:99:b7:24:9b:26: b9:24:fd:35:56:31:1c:d4:64:04:89:99:c1:70:5d: 1e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:0F:1F:3E:3B:4C:B2:DA:C5:BB:82:C4:5B:A6:9B:FD:BA:6D:63:49 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/929a3b2b-92c7-45f2-905b-1ffb4708fcf7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.249.0.0/16 Signature Algorithm: sha256WithRSAEncryption aa:67:8f:a4:61:34:ff:96:f0:73:12:31:fc:cd:5b:18:45:4c: a9:cc:65:5c:f7:49:69:0e:6f:2a:bb:b5:e1:3f:05:7a:e8:61: 8a:71:84:81:4d:aa:17:d4:06:e8:f2:4c:fa:8b:6d:15:61:b2: 61:0d:e8:d4:86:cf:1a:40:41:61:d7:fe:0a:f2:99:8c:5a:b2: 09:93:84:cc:ee:87:aa:f0:5c:81:d8:f4:68:21:a7:c4:e4:28: 09:b9:7f:1f:59:85:a6:9e:87:f1:cb:b9:df:ed:e6:af:37:30: 73:2a:e5:bc:f7:d7:33:9d:4b:21:3a:5f:bc:d0:d3:dc:85:1d: 74:a8:3b:c6:0b:d7:02:c3:0f:49:cc:f2:5c:59:9f:02:c8:28: e4:cf:23:34:18:03:b2:b7:02:0b:b6:79:67:71:71:22:e3:94: fe:ab:f4:9d:2f:e0:c2:41:e0:e3:4a:fd:22:41:bf:dd:d1:0e: 4f:d7:01:7c:a2:ae:76:0d:55:9d:59:69:72:bf:c2:79:28:0c: ed:86:63:62:de:8d:f0:03:9e:27:d5:1d:2f:b4:d9:5b:8b:0b: 36:96:c9:68:1d:22:31:60:b7:35:00:88:1b:2f:ed:40:db:70: a5:d9:ad:c7:08:31:93:62:6f:5a:da:bc:58:92:30:63:e9:25: 05:c9:e1:95 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUA9yCqhyTzKjGd2RY90rmgc0k1qwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTIxMDAwMDAwWhcNMjUwMjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlOWRhOTE5Nzc5YWFiZTRmOWM5YWRhOTU0YzhlZDk1ZTM4 YzUzMjZlNDczZWNkNTg2N2VmYWUwZWYwNjhlMzc2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjYLdZjZl1MoHdeRPdC4RNQdj3Qsy7Zy9N1P5/sqaXz688 STnbBKf1ZKyBoY1j9f9dfWIQwZOwU3/YJYNXAHOAIPKJunxytlguxhu0V2WHGJZy AqOiUxr2RMLFNtjSWLAU+9xdkD7Xn1imZqkoiErYNnwVqqbTid6pkjFbXqYjNmt4 6tUwvvkWdYWywYaWdVtFb7RK7U9i2ipgjbBkKBoAkeWJytdwTKLmieXKEEiayTXU tPT2sFl+HnVVo1ndvn89X49QXKPUBn6VNYH2p5qD66VjyZ0VZ0vr2ew7j6hFq5L3 T7KCw0KxE+2ZtySbJrkk/TVWMRzUZASJmcFwXR7zAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUaA8fPjtMstrFu4LEW6ab/bptY0kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkyOWEzYjJiLTkyYzctNDVmMi05MDViLTFmZmI0NzA4ZmNmNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4+TANBgkqhkiG9w0BAQsFAAOCAQEAqmePpGE0/5bwcxIx/M1bGEVMqcxl XPdJaQ5vKru14T8FeuhhinGEgU2qF9QG6PJM+ottFWGyYQ3o1IbPGkBBYdf+CvKZ jFqyCZOEzO6HqvBcgdj0aCGnxOQoCbl/H1mFpp6H8cu53+3mrzcwcyrlvPfXM51L ITpfvNDT3IUddKg7xgvXAsMPSczyXFmfAsgo5M8jNBgDsrcCC7Z5Z3FxIuOU/qv0 nS/gwkHg40r9IkG/3dEOT9cBfKKudg1VnVlpcr/CeSgM7YZjYt6N8AOeJ9UdL7TZ W4sLNpbJaB0iMWC3NQCIGy/tQNtwpdmtxwgxk2JvWtq8WJIwY+klBcnhlQ== -----END CERTIFICATE-----Generated at Sun Feb 16 15:04:25 2025 by rpki-client