$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac0c9bbb-60c5-4758-abc3-54032a060d3a.roa File: ac0c9bbb-60c5-4758-abc3-54032a060d3a.roa (raw, json) Hash identifier: 0e09xwOQ90TlQ1YB4KE7gJ2loN5l+aAz1Icr1/zS1xA= Subject key identifier: 46:F3:58:4B:EA:95:CD:A0:0F:BE:89:C3:52:6D:C1:F4:39:73:44:71 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 06B5A0989027C7199A41FC8537BD5D6521AC14B6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac0c9bbb-60c5-4758-abc3-54032a060d3a.roa Signing time: Sat 15 Feb 2025 00:30:18 +0000 ROA not before: Sat 15 Feb 2025 00:30:18 +0000 ROA not after: Sat 22 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 153.12.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:b5:a0:98:90:27:c7:19:9a:41:fc:85:37:bd:5d:65:21:ac:14:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 15 00:30:18 2025 GMT Not After : Mar 22 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b8:e2:db:48:29:61:fa:fa:bf:bd:fb:00:81: 93:9a:30:16:81:99:b2:f4:3e:35:1f:22:eb:c4:5d: 91:0e:ab:4c:4a:28:fd:93:b8:e1:69:aa:2e:06:4e: f9:a0:88:0f:ce:3a:da:29:0b:9b:a5:b9:e3:7d:bd: 79:3f:0d:21:8e:4f:3f:71:d5:a4:7a:f3:f6:e6:01: 83:0a:4e:91:11:d6:00:a2:09:b3:3b:53:5a:c9:1d: 34:07:f5:df:4e:5c:5b:60:37:8c:b8:43:8f:3b:ba: 52:94:f5:00:33:21:b5:61:d8:fa:54:d4:b2:30:ae: 76:e8:ff:82:4d:72:7f:fa:e3:fa:af:78:1d:27:af: b5:f6:e2:10:cf:97:40:ab:14:6a:4f:20:a2:c1:ce: b0:f2:b6:22:e7:ae:25:da:43:42:aa:86:57:c0:33: 75:e4:1a:3a:1e:ef:35:51:da:b7:c0:09:62:4c:ab: c4:7c:e4:44:fd:a2:02:b0:ad:0c:3f:3a:d2:d0:35: df:18:3f:54:d5:20:b5:5e:c5:68:96:b3:fa:ce:2b: 6d:6d:9e:72:71:b7:3c:ff:95:59:0a:16:e6:d7:83: 94:7d:97:03:b8:58:36:0f:5b:ca:be:e1:3f:11:9d: b9:5a:5f:b2:d6:4e:99:51:19:22:3c:5e:41:58:63: 39:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:F3:58:4B:EA:95:CD:A0:0F:BE:89:C3:52:6D:C1:F4:39:73:44:71 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac0c9bbb-60c5-4758-abc3-54032a060d3a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 153.12.0.0/16 Signature Algorithm: sha256WithRSAEncryption 64:8f:fc:ea:e8:04:6a:03:06:70:33:1d:d5:25:2c:7c:d5:3c: 47:20:33:7e:99:8c:a1:42:86:68:88:7b:db:c4:55:f5:95:b4: f6:72:f7:30:c8:ca:18:67:81:13:ae:57:d7:3e:a9:a9:78:f6: 62:58:7b:7a:fd:34:6c:5a:1d:6b:d8:59:55:c7:9f:4b:5b:c5: bc:5d:fe:01:49:4d:d4:1f:38:6b:9e:dc:d7:a7:4b:63:7d:b9: 58:b5:48:84:f1:0c:e5:d1:2b:d7:1c:11:04:d8:59:aa:87:57: a7:2f:64:d9:3b:7b:2c:e0:00:4b:39:e0:35:fd:78:df:3c:2d: de:ce:91:44:3a:39:11:c4:9c:8a:7d:2b:0c:48:76:45:20:5e: dd:8b:96:2e:6c:de:19:7f:41:bc:13:1b:74:f7:4b:2f:d0:97: 78:d9:a3:13:9e:da:cf:25:95:c5:31:6f:5f:a0:d1:f7:0d:ba: 94:a1:44:56:67:c1:3b:e9:54:3b:4f:b2:03:ac:58:d1:b4:74: 88:61:2f:8b:e1:4f:b0:7c:be:c5:a0:de:c1:b6:81:be:41:a4: ca:d3:5f:61:6c:74:9d:d3:10:78:ed:8c:d2:5d:d5:4e:c6:08: 72:39:4a:6a:4e:d8:41:70:16:67:24:d1:43:c6:90:d8:4c:ad: 21:fd:6c:26 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBrWgmJAnxxmaQfyFN71dZSGsFLYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjE1MDAzMDE4WhcNMjUwMzIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YmY4ZmQzNDQ0N2IxMWNiNzFkNjg3NDc3MGViMTkwMGQy OWI5YzQyNWJhNGQ3NWM0Yjc1MTMxYWIwMDQxMjc0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPuOLbSClh+vq/vfsAgZOaMBaBmbL0PjUfIuvEXZEOq0xK KP2TuOFpqi4GTvmgiA/OOtopC5ulueN9vXk/DSGOTz9x1aR68/bmAYMKTpER1gCi CbM7U1rJHTQH9d9OXFtgN4y4Q487ulKU9QAzIbVh2PpU1LIwrnbo/4JNcn/64/qv eB0nr7X24hDPl0CrFGpPIKLBzrDytiLnriXaQ0KqhlfAM3XkGjoe7zVR2rfACWJM q8R85ET9ogKwrQw/OtLQNd8YP1TVILVexWiWs/rOK21tnnJxtzz/lVkKFubXg5R9 lwO4WDYPW8q+4T8RnblaX7LWTplRGSI8XkFYYzmTAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQURvNYS+qVzaAPvonDUm3B9DlzRHEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FjMGM5YmJiLTYwYzUtNDc1OC1hYmMzLTU0MDMyYTA2MGQzYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCZDDANBgkqhkiG9w0BAQsFAAOCAQEAZI/86ugEagMGcDMd1SUsfNU8RyAz fpmMoUKGaIh728RV9ZW09nL3MMjKGGeBE65X1z6pqXj2Ylh7ev00bFoda9hZVcef S1vFvF3+AUlN1B84a57c16dLY325WLVIhPEM5dEr1xwRBNhZqodXpy9k2Tt7LOAA SzngNf143zwt3s6RRDo5EcScin0rDEh2RSBe3YuWLmzeGX9BvBMbdPdLL9CXeNmj E57azyWVxTFvX6DR9w26lKFEVmfBO+lUO0+yA6xY0bR0iGEvi+FPsHy+xaDewbaB vkGkytNfYWx0ndMQeO2M0l3VTsYIcjlKak7YQXAWZyTRQ8aQ2EytIf1sJg== -----END CERTIFICATE-----Generated at Sun Feb 16 15:34:26 2025 by rpki-client