$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a08ba7ca-e89d-4d87-8eb3-23f2061ec4f1.roa File: a08ba7ca-e89d-4d87-8eb3-23f2061ec4f1.roa (raw, json) Hash identifier: o1sTuEcdjb23UjM9dBErxMSWfgJzNLO2huT1qBSGhPM= Subject key identifier: 61:48:D4:23:7F:E4:50:97:DE:D2:06:0E:C7:B2:DF:21:48:A7:C2:D4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 77459B0839809309F2DA8888DD0C198160DB790C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a08ba7ca-e89d-4d87-8eb3-23f2061ec4f1.roa Signing time: Mon 13 Jan 2025 00:00:00 +0000 ROA not before: Mon 13 Jan 2025 00:00:00 +0000 ROA not after: Mon 17 Feb 2025 23:59:59 +0000 asID: 8987 IP address blocks: 16.64.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:45:9b:08:39:80:93:09:f2:da:88:88:dd:0c:19:81:60:db:79:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 13 00:00:00 2025 GMT Not After : Feb 17 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:07:a2:71:50:42:a4:4a:7f:e1:1b:d7:17:1b: 93:d8:82:54:00:3d:2d:9a:c1:df:de:13:53:96:07: 6a:cf:eb:8f:19:0d:83:ff:28:f5:8e:94:50:c3:bc: c5:46:1d:f9:22:03:7c:3d:c5:9b:ef:32:6a:42:f6: e0:6c:ce:8b:5c:dc:e5:08:3e:f8:7d:95:0c:8f:b9: 99:4e:8b:48:d4:c3:a0:b4:40:39:c6:82:44:94:31: 10:12:69:e3:e1:40:80:df:a5:19:c0:93:36:6f:76: 75:7b:3e:7c:4e:8d:ac:52:af:c1:96:0e:7e:94:aa: 5c:dc:38:12:69:be:85:cc:55:80:00:c3:94:98:a0: ad:51:96:1d:cd:0a:20:5b:82:d0:6d:c7:7a:c0:a6: c5:92:4b:87:a4:53:e9:08:36:4a:df:b4:bb:a9:2e: d3:c0:d9:6e:25:73:26:ac:98:eb:29:7b:b7:71:4b: 24:09:c4:75:33:ad:7d:43:86:f2:14:aa:60:0f:a6: 2a:c4:03:43:09:16:5a:33:3d:ec:96:ea:af:cb:e3: 7b:77:b5:6b:6a:bb:5d:74:3b:16:ea:33:8f:79:38: 02:7f:3c:e2:6f:5b:07:ed:1c:25:3d:65:13:76:be: b4:62:4a:f0:14:88:11:15:98:e5:75:40:9d:d5:0c: 4f:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:48:D4:23:7F:E4:50:97:DE:D2:06:0E:C7:B2:DF:21:48:A7:C2:D4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a08ba7ca-e89d-4d87-8eb3-23f2061ec4f1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.64.0.0/17 Signature Algorithm: sha256WithRSAEncryption b6:c6:ab:15:21:b4:32:26:8e:dd:ac:bb:48:87:6f:a7:6d:2b: 3a:13:f2:d5:9a:ec:81:f9:be:33:15:04:d8:79:b7:c6:06:a1: f2:0d:29:b9:e2:83:f4:74:73:65:7c:36:99:c8:bc:c4:57:9b: 21:a0:18:59:6d:0a:e0:03:b5:42:83:10:29:4a:f6:78:ed:75: 7f:1b:51:80:02:ef:56:40:a7:a7:3a:b0:bb:ee:22:ef:b6:61: 09:cf:8d:2b:14:05:df:7b:73:73:7f:5a:20:d8:0c:a2:d3:28: a2:63:c4:30:f9:a8:56:1e:f7:87:d2:a9:64:6a:ae:c4:2b:1b: 3f:5f:21:e5:02:4c:58:74:13:3e:ca:01:a9:aa:47:d3:52:90: f8:a7:cf:72:cc:35:f1:7b:d4:cb:66:1f:9e:ab:6c:6d:5a:38: 7a:e9:f0:8d:7e:36:ca:7d:02:84:a6:a0:a7:05:ea:61:d9:b8: 58:9f:cb:ee:d5:d6:14:d4:8c:8b:91:ec:63:85:09:f9:49:70: 8d:58:9d:be:d8:24:01:d5:0b:7c:71:d7:31:87:33:b8:54:9e: 6e:16:12:ae:22:c5:5f:81:85:a6:5f:c1:86:09:5f:98:03:50: 7a:68:cf:af:c4:2d:8a:25:a3:81:4d:6b:30:8c:f3:db:13:7f: 75:0f:cc:62 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUd0WbCDmAkwny2oiI3QwZgWDbeQwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTEzMDAwMDAwWhcNMjUwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MWJjYzM1NmY1MDJkNDkwNGRhMTU3MDVmYjA0YjA3ZWEy MGEzMWM1Yjc4MzJlNzliZTViZjQ1M2U3ZDk3OGRjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsB6JxUEKkSn/hG9cXG5PYglQAPS2awd/eE1OWB2rP648Z DYP/KPWOlFDDvMVGHfkiA3w9xZvvMmpC9uBszotc3OUIPvh9lQyPuZlOi0jUw6C0 QDnGgkSUMRASaePhQIDfpRnAkzZvdnV7PnxOjaxSr8GWDn6UqlzcOBJpvoXMVYAA w5SYoK1Rlh3NCiBbgtBtx3rApsWSS4ekU+kINkrftLupLtPA2W4lcyasmOspe7dx SyQJxHUzrX1DhvIUqmAPpirEA0MJFlozPeyW6q/L43t3tWtqu110OxbqM495OAJ/ POJvWwftHCU9ZRN2vrRiSvAUiBEVmOV1QJ3VDE+fAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYUjUI3/kUJfe0gYOx7LfIUinwtQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EwOGJhN2NhLWU4OWQtNGQ4Ny04ZWIzLTIzZjIwNjFlYzRmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcQQAAwDQYJKoZIhvcNAQELBQADggEBALbGqxUhtDImjt2su0iHb6dtKzoT 8tWa7IH5vjMVBNh5t8YGofINKbnig/R0c2V8NpnIvMRXmyGgGFltCuADtUKDEClK 9njtdX8bUYAC71ZAp6c6sLvuIu+2YQnPjSsUBd97c3N/WiDYDKLTKKJjxDD5qFYe 94fSqWRqrsQrGz9fIeUCTFh0Ez7KAamqR9NSkPinz3LMNfF71MtmH56rbG1aOHrp 8I1+Nsp9AoSmoKcF6mHZuFify+7V1hTUjIuR7GOFCflJcI1Ynb7YJAHVC3xx1zGH M7hUnm4WEq4ixV+BhaZfwYYJX5gDUHpoz6/ELYolo4FNazCM89sTf3UPzGI= -----END CERTIFICATE-----Generated at Wed Feb 5 16:04:26 2025 by rpki-client