$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/972b83eb-d496-42ce-9c01-8ffb21ac19d1.roa File: 972b83eb-d496-42ce-9c01-8ffb21ac19d1.roa (raw, json) Hash identifier: vOFCPOAeN9SFXME2akMYKd/MM3z45+k2/xCrIBabLHU= Subject key identifier: C9:63:16:51:2E:87:8A:F5:7F:CA:E7:78:45:3C:EC:EF:0D:F5:3B:F4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7A1E67A115C0AC97D44F2120CE19B2444D20246C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/972b83eb-d496-42ce-9c01-8ffb21ac19d1.roa Signing time: Tue 11 Feb 2025 00:00:00 +0000 ROA not before: Tue 11 Feb 2025 00:00:00 +0000 ROA not after: Tue 18 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.239.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:1e:67:a1:15:c0:ac:97:d4:4f:21:20:ce:19:b2:44:4d:20:24:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 11 00:00:00 2025 GMT Not After : Mar 18 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:7c:0b:54:89:5a:83:12:39:dc:9f:1d:b4:7b: 2d:e0:fd:5b:9d:d4:00:65:7d:af:05:e8:fb:c2:58: ff:dc:dd:60:21:d3:d2:95:6e:c3:d0:1c:2b:2e:4d: 16:14:fd:9f:c1:7c:89:6e:63:3d:27:aa:67:17:ba: 7a:0d:26:8f:b1:26:6a:79:34:88:ba:56:e9:40:2c: 25:50:db:e9:e8:39:2c:0a:9c:8e:81:49:21:0f:33: ad:1d:7b:64:68:57:1d:f9:b8:13:ec:96:e8:b6:8d: 65:5e:08:1e:7d:85:6a:23:b5:ad:bc:15:2b:db:c9: 0c:85:e9:b2:40:55:2f:a9:ac:21:86:9d:f6:d8:64: 81:bb:1f:81:9f:8b:81:c1:7a:ab:00:a1:89:9c:16: 2d:1b:60:18:64:9b:d8:19:2b:e4:44:1a:02:bb:0b: 56:c7:45:fe:73:05:75:f0:f9:8b:f6:6e:2c:db:a4: 49:3e:c6:b9:cb:24:66:96:8d:12:5b:d9:63:62:e4: c5:18:1f:ce:49:eb:6c:2e:c8:93:db:45:96:f0:a8: 74:f8:79:fc:e3:fd:5e:f9:ea:3d:d9:9b:b6:20:2c: 55:1b:88:c3:95:ed:c5:66:e0:ca:f3:41:8a:35:de: aa:1e:f4:4e:b1:af:46:9b:e4:22:ec:61:1e:f0:f3: b7:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:63:16:51:2E:87:8A:F5:7F:CA:E7:78:45:3C:EC:EF:0D:F5:3B:F4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/972b83eb-d496-42ce-9c01-8ffb21ac19d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.239.0.0/16 Signature Algorithm: sha256WithRSAEncryption 29:95:a7:d2:7c:53:92:b3:43:a7:a9:ab:b8:5a:27:ef:1c:ab: 14:c4:cd:7c:a4:5e:c6:ae:5a:fc:ee:22:55:8f:f0:43:a9:54: 07:eb:89:59:9e:13:61:87:ec:02:39:55:3c:f6:a9:4d:d3:00: 7a:f8:6c:e3:d3:4a:80:81:08:d7:e2:71:74:84:b7:4c:74:a0: cb:28:1a:02:bb:48:d2:b5:71:0a:cd:91:0c:59:b7:43:76:64: fd:3d:1a:3d:60:82:a4:c1:f1:a0:f9:c0:38:e4:37:56:41:0c: 2c:b1:20:70:90:c6:77:88:a8:e5:7a:d5:fa:02:be:b4:76:1f: c9:cd:d5:c8:48:1c:99:c9:30:9c:cc:40:32:58:c7:58:82:11: 04:16:b1:45:c9:e9:17:17:b2:da:46:bf:df:c0:a3:2c:c0:b0: 4e:3b:b0:22:e9:6a:9b:f6:4a:df:f7:9c:9f:0f:b0:0a:08:97: 01:3c:cf:88:f1:c6:32:f4:c2:57:a5:bc:cd:06:34:15:52:b0: 44:bf:57:a2:1c:41:8c:15:55:71:dc:d2:88:85:3b:1d:9f:ec: 26:8f:ee:63:92:28:f2:3e:c2:c1:7d:1b:35:d4:fb:d2:36:08: 50:99:f2:3e:41:22:4d:93:db:00:e5:d8:c8:48:b4:71:a8:ef: db:4a:57:ba -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUeh5noRXArJfUTyEgzhmyRE0gJGwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjExMDAwMDAwWhcNMjUwMzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZjE3YzJkYWZkZDE4ZTljOTkxZDBlNzhjNjFiZGU2MjE3 NjM4NjUxZDUxYjU5YzVkMjI0MDQxYjZhYmMwZjYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgfAtUiVqDEjncnx20ey3g/Vud1ABlfa8F6PvCWP/c3WAh 09KVbsPQHCsuTRYU/Z/BfIluYz0nqmcXunoNJo+xJmp5NIi6VulALCVQ2+noOSwK nI6BSSEPM60de2RoVx35uBPslui2jWVeCB59hWojta28FSvbyQyF6bJAVS+prCGG nfbYZIG7H4Gfi4HBeqsAoYmcFi0bYBhkm9gZK+REGgK7C1bHRf5zBXXw+Yv2bizb pEk+xrnLJGaWjRJb2WNi5MUYH85J62wuyJPbRZbwqHT4efzj/V756j3Zm7YgLFUb iMOV7cVm4MrzQYo13qoe9E6xr0ab5CLsYR7w87drAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUyWMWUS6HivV/yud4RTzs7w31O/QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk3MmI4M2ViLWQ0OTYtNDJjZS05YzAxLThmZmIyMWFjMTlkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAo7zANBgkqhkiG9w0BAQsFAAOCAQEAKZWn0nxTkrNDp6mruFon7xyrFMTN fKRexq5a/O4iVY/wQ6lUB+uJWZ4TYYfsAjlVPPapTdMAevhs49NKgIEI1+JxdIS3 THSgyygaArtI0rVxCs2RDFm3Q3Zk/T0aPWCCpMHxoPnAOOQ3VkEMLLEgcJDGd4io 5XrV+gK+tHYfyc3VyEgcmckwnMxAMljHWIIRBBaxRcnpFxey2ka/38CjLMCwTjuw Iulqm/ZK3/ecnw+wCgiXATzPiPHGMvTCV6W8zQY0FVKwRL9XohxBjBVVcdzSiIU7 HZ/sJo/uY5Io8j7CwX0bNdT70jYIUJnyPkEiTZPbAOXYyEi0cajv20pXug== -----END CERTIFICATE-----Generated at Sun Feb 16 15:05:06 2025 by rpki-client