$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/953c69de-561a-4b58-b97f-351e4f067bef.roa File: 953c69de-561a-4b58-b97f-351e4f067bef.roa (raw, json) Hash identifier: dFDjDex6L3rZG0XT44M/wL3BQXCSKQPCNR8kVXqWlP8= Subject key identifier: AE:B4:D8:6C:1A:3A:77:78:F3:19:87:AE:5A:6C:DC:96:FA:EB:1A:45 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 36E248B68A8BEF9105470E638EA5759BE487FC8F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/953c69de-561a-4b58-b97f-351e4f067bef.roa Signing time: Fri 24 Jan 2025 00:00:00 +0000 ROA not before: Fri 24 Jan 2025 00:00:00 +0000 ROA not after: Fri 28 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:e2:48:b6:8a:8b:ef:91:05:47:0e:63:8e:a5:75:9b:e4:87:fc:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 24 00:00:00 2025 GMT Not After : Feb 28 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:31:ec:ff:26:88:cd:55:2c:b0:bc:f6:50:2d: d8:a1:72:e2:7e:4b:e3:c4:13:fb:12:31:22:55:8a: bd:a4:15:1c:62:b9:06:bf:d9:29:ac:bd:b8:41:cb: 14:96:4f:35:04:0e:88:63:12:61:1f:e4:4a:35:42: b1:06:4c:8b:d9:de:10:fe:f6:d6:74:17:9d:c8:f6: b4:d3:b6:e3:18:43:e3:4b:9b:71:8f:e8:d6:26:15: c5:6c:f6:05:f7:09:7a:b8:fe:df:99:db:98:3d:67: 4a:45:26:64:2a:1e:9a:5e:86:e8:d6:c1:99:7f:34: 29:f3:59:4e:ca:b6:de:b2:ba:05:cc:1f:9f:55:7c: 4b:51:5c:c4:01:6e:d7:cc:28:e3:70:73:c3:47:33: 35:1a:c4:de:56:96:85:01:6e:68:2d:c3:ad:91:2f: 44:aa:90:c5:46:bf:07:32:c6:cc:83:59:e9:be:b0: 64:94:94:8c:29:3c:3f:3a:66:da:e3:fb:98:59:70: 27:ff:a4:89:10:c3:4b:b3:f4:4e:34:37:95:9b:d5: 99:12:0c:81:eb:c1:45:93:fa:43:8a:6c:7d:35:62: 3c:d6:97:39:f9:36:09:51:fc:ac:03:76:3d:ed:1c: 54:19:d0:3e:30:a8:2f:ac:69:fe:e2:1d:1e:48:05: ac:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:B4:D8:6C:1A:3A:77:78:F3:19:87:AE:5A:6C:DC:96:FA:EB:1A:45 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/953c69de-561a-4b58-b97f-351e4f067bef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.160.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:60:57:a9:0f:df:90:71:cb:4d:72:73:1c:5e:77:8d:c0:c5: d8:13:ad:42:25:c3:61:99:b3:90:c4:c8:2f:2d:70:1b:f3:a0: d4:12:16:e4:d7:1a:bf:13:ed:be:ac:f5:a1:89:05:b2:a2:d7: 95:d9:1c:b7:53:f4:b7:20:bd:7f:4d:f2:91:b2:0f:07:82:c6: 48:fe:f7:c8:56:5f:f1:0e:5e:a2:0c:d8:e1:aa:f6:60:81:63: 54:bd:35:66:50:0c:46:be:fb:20:2d:6a:99:8e:9d:50:b3:d8: c1:0a:85:e6:0c:06:ba:61:9c:36:2e:0d:3e:95:ac:dc:84:26: 31:6e:7d:63:3d:47:95:4d:8f:56:39:b6:74:31:67:7a:bc:44: 6b:b2:1e:09:fb:29:93:4f:7f:d8:3c:8f:0e:fb:d3:a4:e3:e7: 86:d9:a1:c8:be:ce:26:ed:53:9e:ba:b6:38:56:29:88:6e:3f: a9:67:96:bd:ae:e5:d9:0e:5d:61:ac:7a:fd:f1:f7:be:09:a1: c9:f8:7c:db:ec:6f:69:73:5d:86:94:01:0f:41:a3:59:ec:8c: 5f:30:9c:79:2a:be:61:fc:31:a1:26:a1:23:01:4e:63:9a:d9: 0b:de:45:73:93:a8:de:df:85:23:92:27:fc:e5:b5:d7:68:25: cd:f2:9d:bc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNuJItoqL75EFRw5jjqV1m+SH/I8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTI0MDAwMDAwWhcNMjUwMjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZDA2NmFlODViZjU4YzAwNzQ0NzU4YWEzZmMxMzU2ZDM3 OTU1YjI4YjcwZTY2NDdkNmU0NGFjNzFmOGU0OWU3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMMez/JojNVSywvPZQLdihcuJ+S+PEE/sSMSJVir2kFRxi uQa/2SmsvbhByxSWTzUEDohjEmEf5Eo1QrEGTIvZ3hD+9tZ0F53I9rTTtuMYQ+NL m3GP6NYmFcVs9gX3CXq4/t+Z25g9Z0pFJmQqHppehujWwZl/NCnzWU7Ktt6yugXM H59VfEtRXMQBbtfMKONwc8NHMzUaxN5WloUBbmgtw62RL0SqkMVGvwcyxsyDWem+ sGSUlIwpPD86Ztrj+5hZcCf/pIkQw0uz9E40N5Wb1ZkSDIHrwUWT+kOKbH01YjzW lzn5NglR/KwDdj3tHFQZ0D4wqC+saf7iHR5IBaw/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrrTYbBo6d3jzGYeuWmzclvrrGkUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk1M2M2OWRlLTU2MWEtNGI1OC1iOTdmLTM1MWU0ZjA2N2JlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTaAwDQYJKoZIhvcNAQELBQADggEBAGtgV6kP35Bxy01ycxxed43AxdgT rUIlw2GZs5DEyC8tcBvzoNQSFuTXGr8T7b6s9aGJBbKi15XZHLdT9LcgvX9N8pGy DweCxkj+98hWX/EOXqIM2OGq9mCBY1S9NWZQDEa++yAtapmOnVCz2MEKheYMBrph nDYuDT6VrNyEJjFufWM9R5VNj1Y5tnQxZ3q8RGuyHgn7KZNPf9g8jw7706Tj54bZ oci+zibtU566tjhWKYhuP6lnlr2u5dkOXWGsev3x974Jocn4fNvsb2lzXYaUAQ9B o1nsjF8wnHkqvmH8MaEmoSMBTmOa2QveRXOTqN7fhSOSJ/zltddoJc3ynbw= -----END CERTIFICATE-----Generated at Sun Feb 16 15:04:25 2025 by rpki-client