$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9fc7701e-a287-47d6-a5b1-d8e702f5a9ac.roa File: 9fc7701e-a287-47d6-a5b1-d8e702f5a9ac.roa (raw, json) Hash identifier: waetZrtBxXKDhTOSpRgkxW7ci+1FFq+HXo0BA+F4lTs= Subject key identifier: 9D:7B:4A:BD:A6:6B:35:12:01:3D:EE:5F:7F:4F:1B:D4:57:DE:01:6F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1525FC2B748D09F3ED58BA83D0ACF15D42E3B90D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9fc7701e-a287-47d6-a5b1-d8e702f5a9ac.roa Signing time: Sat 15 Feb 2025 00:20:54 +0000 ROA not before: Sat 15 Feb 2025 00:20:54 +0000 ROA not after: Sat 22 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.77.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:25:fc:2b:74:8d:09:f3:ed:58:ba:83:d0:ac:f1:5d:42:e3:b9:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 15 00:20:54 2025 GMT Not After : Mar 22 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e0:67:57:8d:0b:91:2e:49:24:1e:3f:c9:82: eb:85:59:5f:8e:c7:e8:57:cc:b3:41:c0:1e:a4:cc: 64:d5:2c:dc:10:72:a1:97:99:c1:ee:87:3e:2f:ce: 9e:41:8a:26:c7:28:47:c4:19:5d:96:95:cc:84:04: 50:95:e0:ba:b3:ed:da:88:89:ca:52:b9:45:41:45: 1f:21:c5:05:d1:f4:ef:59:e7:52:c1:bb:1e:99:fb: fb:58:a1:db:aa:4c:10:5b:74:e8:9a:c8:9f:98:6b: 22:df:0e:91:8b:e0:ed:84:13:97:d6:6f:47:81:bb: b7:c1:25:23:e8:1c:39:1d:6b:94:26:14:6e:f0:cc: b2:63:7f:c1:e4:d0:38:9e:c3:b6:23:60:b2:d0:fa: ed:a3:34:13:02:71:2d:32:d5:9e:4b:c9:1e:be:a4: 04:d1:19:74:35:10:55:2c:e2:c2:67:2a:a0:fa:53: 5d:31:92:b6:f4:47:5b:b3:68:3a:9b:d5:ae:83:d9: 23:e6:8b:05:5a:e6:fc:b7:3a:46:69:69:e8:36:13: c3:f5:0e:26:91:35:7d:35:3f:86:fb:fd:ea:d1:78: 3f:61:57:5b:95:59:5b:e7:41:83:83:9f:53:12:c6: ce:19:f1:e9:19:5a:35:a2:6e:ea:64:a7:b4:29:9d: a0:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:7B:4A:BD:A6:6B:35:12:01:3D:EE:5F:7F:4F:1B:D4:57:DE:01:6F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9fc7701e-a287-47d6-a5b1-d8e702f5a9ac.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.77.0.0/16 Signature Algorithm: sha256WithRSAEncryption aa:5e:0a:25:4d:d7:c1:73:50:91:af:04:d0:6d:f6:1c:b1:e6: 00:f4:40:b2:cc:41:6f:9e:b6:24:6b:ca:ec:da:6b:5e:89:a7: ca:ce:eb:3a:1f:58:7c:a8:bf:8a:bd:5a:97:56:04:fb:3f:6a: 69:61:65:05:c2:30:3d:39:01:0b:a9:ca:1b:a5:19:29:fb:87: 35:de:18:b8:e0:5b:53:f8:25:f6:00:d9:4a:0b:dc:ef:3b:af: 07:e9:f1:2b:d0:71:a3:c9:78:01:b3:7f:45:0d:af:77:4a:32: ce:f2:46:b5:d2:83:4b:3a:a5:c0:ac:80:42:40:9e:ce:67:c5: 25:38:05:c5:a2:f4:bb:28:bf:5f:42:e5:c7:e2:cb:67:35:7c: 04:28:53:9e:db:8a:11:32:c9:ee:be:5e:2f:ed:67:07:de:0f: 67:9d:66:03:66:95:81:6b:2f:93:dc:f5:9b:b0:7a:83:18:67: 70:bb:9e:79:5a:e0:1f:7f:0a:13:a9:07:49:51:49:4a:78:52: b3:45:7e:c7:90:bc:25:d6:dd:4c:85:3a:1c:62:fd:f1:62:8d: 31:2e:63:3b:98:fb:89:8c:42:f4:9d:ed:9d:b0:e2:72:12:af: 6d:df:90:5c:1a:ae:60:fc:5e:58:88:80:0b:35:f0:4f:69:8f: 33:9b:1a:13 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFSX8K3SNCfPtWLqD0KzxXULjuQ0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjE1MDAyMDU0WhcNMjUwMzIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMWQ3OTJkNDA1ZTI0NDEzNGY0ZWFlNjc1ZGU1NTQzOTdj MWMxOTRhMjAxMDVmZTc2ZGJkMjUwYWVhZjUwNjg0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDa4GdXjQuRLkkkHj/JguuFWV+Ox+hXzLNBwB6kzGTVLNwQ cqGXmcHuhz4vzp5BiibHKEfEGV2WlcyEBFCV4Lqz7dqIicpSuUVBRR8hxQXR9O9Z 51LBux6Z+/tYoduqTBBbdOiayJ+YayLfDpGL4O2EE5fWb0eBu7fBJSPoHDkda5Qm FG7wzLJjf8Hk0Diew7YjYLLQ+u2jNBMCcS0y1Z5LyR6+pATRGXQ1EFUs4sJnKqD6 U10xkrb0R1uzaDqb1a6D2SPmiwVa5vy3OkZpaeg2E8P1DiaRNX01P4b7/erReD9h V1uVWVvnQYODn1MSxs4Z8ekZWjWibupkp7QpnaADAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUnXtKvaZrNRIBPe5ff08b1FfeAW8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlmYzc3MDFlLWEyODctNDdkNi1hNWIxLWQ4ZTcwMmY1YTlhYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQTTANBgkqhkiG9w0BAQsFAAOCAQEAql4KJU3XwXNQka8E0G32HLHmAPRA ssxBb562JGvK7NprXomnys7rOh9YfKi/ir1al1YE+z9qaWFlBcIwPTkBC6nKG6UZ KfuHNd4YuOBbU/gl9gDZSgvc7zuvB+nxK9Bxo8l4AbN/RQ2vd0oyzvJGtdKDSzql wKyAQkCezmfFJTgFxaL0uyi/X0Llx+LLZzV8BChTntuKETLJ7r5eL+1nB94PZ51m A2aVgWsvk9z1m7B6gxhncLueeVrgH38KE6kHSVFJSnhSs0V+x5C8JdbdTIU6HGL9 8WKNMS5jO5j7iYxC9J3tnbDichKvbd+QXBquYPxeWIiACzXwT2mPM5saEw== -----END CERTIFICATE-----Generated at Sun Feb 16 15:29:56 2025 by rpki-client