$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a1b30fd3-2d79-49fc-98d4-3015577eaba9.roa File: a1b30fd3-2d79-49fc-98d4-3015577eaba9.roa (raw, json) Hash identifier: FdOR5upfC7xEm3gbStRFBqD/KDvcVVmW+Him4pbFhAo= Subject key identifier: 33:D1:12:53:17:12:E8:5C:9C:38:7A:BE:92:4D:6D:5D:FF:4F:61:F8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 498D9FD98C6B2969DFEE7E59951D41AB6A3536C1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a1b30fd3-2d79-49fc-98d4-3015577eaba9.roa Signing time: Mon 13 Jan 2025 00:00:00 +0000 ROA not before: Mon 13 Jan 2025 00:00:00 +0000 ROA not after: Mon 17 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 204.236.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:8d:9f:d9:8c:6b:29:69:df:ee:7e:59:95:1d:41:ab:6a:35:36:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 13 00:00:00 2025 GMT Not After : Feb 17 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1a:84:9d:e6:05:29:e4:5f:00:88:1f:31:8c: a4:56:43:04:00:8f:5e:c6:6a:89:48:9f:ed:a0:50: 51:ec:57:91:b7:ff:26:ed:aa:b4:31:d0:86:e5:81: a3:94:fd:d6:ed:f7:43:3e:50:63:bd:9d:88:c8:c2: 51:dc:88:9a:d3:b3:c8:fb:02:ab:08:9e:4e:78:e8: f1:df:a0:df:c3:c1:3c:56:20:f3:24:4e:97:ea:97: 18:e4:93:4e:d9:34:5f:a3:ef:38:7c:c6:07:a3:da: 69:3f:2f:0b:1f:fb:b3:45:37:6e:a5:df:a6:b2:91: 55:bf:4e:12:8f:9a:76:ee:ac:e1:b4:d2:3a:d7:1e: d5:06:c2:ea:8d:6b:80:b2:3b:0c:68:dc:7d:f0:81: 06:79:f3:99:c9:4b:06:1d:57:cd:2c:92:6a:b5:55: d6:4a:6a:d2:11:53:79:3e:3e:57:50:c9:c7:67:e9: 6c:89:07:79:a6:7d:57:16:6e:c7:9b:72:09:64:47: 29:da:72:0f:9f:12:72:ac:24:62:36:e7:b2:f8:73: f3:a1:d0:02:a9:b5:ea:7e:e8:82:0a:b8:62:8f:4d: 65:36:cf:51:be:30:96:ef:0d:c2:45:b1:f3:ad:1d: 09:43:aa:c3:82:1a:e6:48:6f:1b:e0:8d:ca:34:ae: 75:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:D1:12:53:17:12:E8:5C:9C:38:7A:BE:92:4D:6D:5D:FF:4F:61:F8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a1b30fd3-2d79-49fc-98d4-3015577eaba9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.217.0/24 Signature Algorithm: sha256WithRSAEncryption a9:05:2f:39:69:17:3c:62:d1:34:25:1a:1f:37:3b:b1:1b:ea: 54:31:b1:76:97:a2:67:ab:1e:46:d9:c5:b6:d3:78:8d:12:c0: 0c:97:c1:bd:9c:22:f8:e6:48:6c:e0:2f:d1:9f:2f:15:b3:4c: db:d9:92:fa:3c:6b:2e:51:6f:23:ad:dd:f3:66:7c:2a:28:01: ff:6a:f7:cc:52:cf:4d:5f:c1:cd:6c:3c:78:b8:34:5c:c8:8a: 87:93:b2:85:ff:4f:1d:da:19:9e:f6:c7:8f:6d:aa:a6:59:51: 2e:3b:fa:a3:b1:5b:4e:4b:33:4a:36:9f:f4:de:96:a1:9d:53: 74:a3:aa:e5:ab:33:15:26:0e:35:97:b8:99:9c:a1:93:c5:c9: ef:0c:65:d4:48:d6:83:ff:84:d6:63:5c:5a:89:4b:5c:1e:61: fa:81:13:6b:42:ff:35:d2:6b:fd:86:c6:7b:35:65:42:98:07: 44:09:00:a8:f6:57:88:73:09:00:e2:6f:c3:c0:7c:25:39:da: 64:84:97:e0:26:22:e6:9d:20:fc:96:37:68:8a:73:bf:7a:d7: 4d:08:d1:80:b7:2c:5a:39:9e:78:b0:a0:33:3c:0e:01:fd:4c: 7e:25:82:8a:92:0a:7d:66:6f:6a:c3:35:92:9c:03:5f:c2:f8: 2c:a6:17:8f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSY2f2YxrKWnf7n5ZlR1Bq2o1NsEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTEzMDAwMDAwWhcNMjUwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MDJhMmVlZjVhOWRjNDE1NWM1MjZjMmU5MGFlNmE2Njgy ZjMyNWY0MjJjNTg0YzhlZjZkNGU0NGQ0OThmMDI3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkGoSd5gUp5F8AiB8xjKRWQwQAj17GaolIn+2gUFHsV5G3 /ybtqrQx0IblgaOU/dbt90M+UGO9nYjIwlHciJrTs8j7AqsInk546PHfoN/DwTxW IPMkTpfqlxjkk07ZNF+j7zh8xgej2mk/Lwsf+7NFN26l36aykVW/ThKPmnburOG0 0jrXHtUGwuqNa4CyOwxo3H3wgQZ585nJSwYdV80skmq1VdZKatIRU3k+PldQycdn 6WyJB3mmfVcWbsebcglkRynacg+fEnKsJGI257L4c/Oh0AKptep+6IIKuGKPTWU2 z1G+MJbvDcJFsfOtHQlDqsOCGuZIbxvgjco0rnXrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUM9ESUxcS6FycOHq+kk1tXf9PYfgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ExYjMwZmQzLTJkNzktNDlmYy05OGQ0LTMwMTU1NzdlYWJhOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADM7NkwDQYJKoZIhvcNAQELBQADggEBAKkFLzlpFzxi0TQlGh83O7Eb6lQx sXaXomerHkbZxbbTeI0SwAyXwb2cIvjmSGzgL9GfLxWzTNvZkvo8ay5RbyOt3fNm fCooAf9q98xSz01fwc1sPHi4NFzIioeTsoX/Tx3aGZ72x49tqqZZUS47+qOxW05L M0o2n/TelqGdU3SjquWrMxUmDjWXuJmcoZPFye8MZdRI1oP/hNZjXFqJS1weYfqB E2tC/zXSa/2Gxns1ZUKYB0QJAKj2V4hzCQDib8PAfCU52mSEl+AmIuadIPyWN2iK c796100I0YC3LFo5nniwoDM8DgH9TH4lgoqSCn1mb2rDNZKcA1/C+CymF48= -----END CERTIFICATE-----Generated at Wed Feb 5 10:01:31 2025 by rpki-client