$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a97b80c-8fcc-44bf-9103-e6c5a4525950.roa File: 9a97b80c-8fcc-44bf-9103-e6c5a4525950.roa (raw, json) Hash identifier: HJMVkyb08r4RNpwwkaIODoDK67bQHTXgveuwuv9wZzo= Subject key identifier: 2B:CA:D9:50:73:0F:5E:9C:44:11:ED:42:69:DE:E2:A8:41:7C:14:A0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2B5C4733E5BF14ED256E6DF69F1D6F736A39C369 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a97b80c-8fcc-44bf-9103-e6c5a4525950.roa Signing time: Mon 13 Jan 2025 00:00:00 +0000 ROA not before: Mon 13 Jan 2025 00:00:00 +0000 ROA not after: Mon 17 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 161.193.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:5c:47:33:e5:bf:14:ed:25:6e:6d:f6:9f:1d:6f:73:6a:39:c3:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 13 00:00:00 2025 GMT Not After : Feb 17 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:80:f1:36:d7:b3:16:89:86:43:a1:76:38:2d:e6: e9:b7:1b:25:f2:52:e2:5e:0d:42:bb:3f:57:d7:2e: f4:1f:6b:f9:8c:03:a4:72:6d:a7:36:2e:3a:f5:44: eb:7d:2f:e2:61:b3:76:c7:4d:90:9d:7d:00:e1:40: 36:79:8f:e8:fb:a6:c6:a7:a2:09:0d:e4:5e:5d:b6: 05:b9:e8:27:6b:40:9f:c8:af:c6:4d:7e:27:11:1e: 88:f7:43:5f:cc:16:8f:41:ce:70:2b:b2:b4:bc:66: 2a:da:9c:d4:75:f4:6b:87:7a:4e:03:a9:c3:a9:89: 08:d4:8e:fe:44:e4:ee:17:b1:d4:7b:1c:07:34:e9: 45:f4:e7:ef:b9:97:d4:5a:43:8d:53:77:03:59:ce: ef:26:a8:c9:57:29:7b:0f:42:54:f0:44:2d:27:a4: 76:13:ec:9f:6c:27:b5:58:a2:1e:04:b9:2a:73:f0: d0:e9:99:93:18:2f:d0:a9:9a:f6:f8:e9:90:61:10: 02:38:af:57:21:2b:29:ff:99:9d:cd:6c:5a:4d:c5: 10:7d:56:d8:b7:27:a7:38:35:c5:c4:e7:76:69:b3: 13:68:98:f8:77:4d:e6:cf:0f:89:3f:62:e3:47:68: 8e:22:6a:f7:11:d4:32:3a:98:9c:67:3a:c0:8c:b7: 3a:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:CA:D9:50:73:0F:5E:9C:44:11:ED:42:69:DE:E2:A8:41:7C:14:A0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a97b80c-8fcc-44bf-9103-e6c5a4525950.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.193.0.0/18 Signature Algorithm: sha256WithRSAEncryption 16:80:b5:72:11:a1:2d:82:ea:9b:de:9a:eb:6a:8f:2c:09:49: ac:d8:14:57:87:f9:55:84:14:7a:0c:72:db:78:35:0b:60:9d: 23:6d:3f:d8:04:a5:80:e1:ff:a0:09:ec:e5:d5:c4:ba:78:f4: e7:69:c3:c4:3c:ea:0f:af:af:ae:d5:89:34:13:ed:08:6a:6e: 31:ec:58:7e:e2:1f:cf:0c:03:0b:6d:c4:5c:84:4e:c1:f0:6d: be:95:9c:7f:96:ac:b4:2e:f2:da:bf:b0:f3:e4:b5:29:07:de: 83:86:ab:0b:34:57:2f:35:f5:33:92:fa:30:8f:c3:40:f8:51: 7d:e5:9b:36:03:7f:69:8a:f9:51:5e:ee:b3:08:4f:de:a0:e4: 5f:55:0d:16:fa:2d:89:2d:90:8c:b2:f7:c4:74:60:50:85:99: ce:cf:36:bb:c8:22:ec:c2:29:fd:5c:69:55:02:e0:da:f8:fa: 92:cf:6b:a4:71:19:f3:f8:43:b1:79:12:2e:81:47:ee:de:ea: 53:94:26:23:c2:94:3c:6f:c7:24:bd:3c:b9:14:4a:8e:18:d2: 1a:7d:94:8a:b4:31:bf:d7:43:b7:29:00:2a:31:ab:38:47:44: 66:33:1f:c8:0a:4a:b4:ad:5b:c6:79:82:32:fc:cb:74:a7:e7: fa:98:7a:04 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK1xHM+W/FO0lbm32nx1vc2o5w2kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTEzMDAwMDAwWhcNMjUwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZTNmOTE3Yjk0NGI3Nzg1OGNjNjgyNGVlOGVhZjNiOGU3 MTIyM2ZhMzIzN2NiM2E2MDZlNjZiODhjYzgyMjNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCA8TbXsxaJhkOhdjgt5um3GyXyUuJeDUK7P1fXLvQfa/mM A6Rybac2Ljr1ROt9L+Jhs3bHTZCdfQDhQDZ5j+j7psanogkN5F5dtgW56CdrQJ/I r8ZNficRHoj3Q1/MFo9BznArsrS8ZiranNR19GuHek4DqcOpiQjUjv5E5O4XsdR7 HAc06UX05++5l9RaQ41TdwNZzu8mqMlXKXsPQlTwRC0npHYT7J9sJ7VYoh4EuSpz 8NDpmZMYL9Cpmvb46ZBhEAI4r1chKyn/mZ3NbFpNxRB9Vti3J6c4NcXE53ZpsxNo mPh3TebPD4k/YuNHaI4iavcR1DI6mJxnOsCMtzrrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUK8rZUHMPXpxEEe1Cad7iqEF8FKAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlhOTdiODBjLThmY2MtNDRiZi05MTAzLWU2YzVhNDUyNTk1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAahwQAwDQYJKoZIhvcNAQELBQADggEBABaAtXIRoS2C6pvemutqjywJSazY FFeH+VWEFHoMctt4NQtgnSNtP9gEpYDh/6AJ7OXVxLp49Odpw8Q86g+vr67ViTQT 7QhqbjHsWH7iH88MAwttxFyETsHwbb6VnH+WrLQu8tq/sPPktSkH3oOGqws0Vy81 9TOS+jCPw0D4UX3lmzYDf2mK+VFe7rMIT96g5F9VDRb6LYktkIyy98R0YFCFmc7P NrvIIuzCKf1caVUC4Nr4+pLPa6RxGfP4Q7F5Ei6BR+7e6lOUJiPClDxvxyS9PLkU So4Y0hp9lIq0Mb/XQ7cpACoxqzhHRGYzH8gKSrStW8Z5gjL8y3Sn5/qYegQ= -----END CERTIFICATE-----Generated at Wed Feb 5 09:56:05 2025 by rpki-client