$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ad2ce398-5390-4868-bef4-c81c5f39ec07.roa File: ad2ce398-5390-4868-bef4-c81c5f39ec07.roa (raw, json) Hash identifier: gY9LxlBB/Fr6I/iJGzyrjwTF9MSwZyzinp1Q4htTrCg= Subject key identifier: AE:26:F2:63:3A:9C:2B:01:6D:3F:80:87:5E:91:06:94:11:34:0C:44 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2FC6B48A4F57E5E3E26EFC1D46CA6F9DA0B8A910 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ad2ce398-5390-4868-bef4-c81c5f39ec07.roa Signing time: Fri 07 Feb 2025 00:00:00 +0000 ROA not before: Fri 07 Feb 2025 00:00:00 +0000 ROA not after: Fri 14 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 5.60.104.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:c6:b4:8a:4f:57:e5:e3:e2:6e:fc:1d:46:ca:6f:9d:a0:b8:a9:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 7 00:00:00 2025 GMT Not After : Mar 14 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:08:00:29:7c:4c:c3:89:17:52:2c:74:f6:3c: 2a:e5:35:25:63:0f:49:64:bc:9c:b3:00:26:67:19: de:f7:8e:a6:d8:72:52:41:70:69:32:43:94:db:4a: 3d:a4:76:95:78:18:60:28:15:c0:10:b6:10:3b:14: fd:b6:b6:31:98:17:1a:df:05:0d:f3:a5:06:1d:dc: 4d:3e:fa:e1:56:88:cd:db:f7:03:e9:f9:31:bb:91: 06:59:c3:fd:b9:36:5b:dd:b9:84:94:ed:03:c2:f6: 45:a6:f8:6b:34:25:24:4e:34:e9:0b:f9:47:aa:d5: 70:54:1e:a1:dd:af:41:45:cd:14:dc:7f:ea:bf:8b: 2b:20:f3:90:7c:98:a0:e0:06:62:19:06:d6:e2:73: c4:9c:5b:69:07:ad:98:b6:84:3b:61:c3:55:61:a3: eb:db:14:a4:a9:4b:fd:1c:57:64:a3:28:9c:62:21: 65:d4:95:4b:95:c9:cd:d0:0e:8e:7c:50:29:86:5f: e2:c1:c6:c7:7d:68:9c:8a:d3:1f:4a:b3:93:35:d7: 9d:8d:89:f8:f9:fe:0d:16:24:e9:8a:99:07:05:61: 15:73:06:ee:d8:8b:c9:40:8f:b5:35:31:91:38:a1: 59:e1:15:8d:81:d6:f9:d8:49:aa:e4:9b:4e:d7:f3: 72:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:26:F2:63:3A:9C:2B:01:6D:3F:80:87:5E:91:06:94:11:34:0C:44 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ad2ce398-5390-4868-bef4-c81c5f39ec07.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.60.104.0/22 Signature Algorithm: sha256WithRSAEncryption 00:62:60:62:8a:92:f2:85:72:d3:1a:4c:48:28:c1:2b:0f:97: 0b:c6:81:51:91:00:0d:67:1c:16:24:50:99:65:71:de:73:c5: 9f:9e:33:6a:ce:1b:6c:28:a8:14:e6:e2:1b:e1:d1:47:12:94: 37:2f:66:05:0c:63:fd:b5:a6:4d:dd:cb:71:80:d3:88:9f:0c: c0:00:e8:06:b9:78:11:1d:56:f1:67:d5:e0:ce:b4:70:58:a5: 8b:dd:5a:c6:a0:fa:c2:0a:9d:49:3f:3f:a4:72:c7:e4:74:33: c4:75:d5:ad:97:ed:56:dc:ca:6e:04:16:20:c3:f6:88:69:b3: 14:84:16:a2:dc:ee:1b:86:1e:76:ce:0b:99:9d:d3:29:82:b6: be:15:b5:1a:6c:eb:ab:59:7b:50:d4:99:34:85:64:c0:a2:30: ee:a9:3f:2e:04:83:a5:4b:db:81:be:54:98:bf:4a:7d:c8:ac: 64:44:93:08:11:9d:f6:70:63:c2:58:fc:ca:d4:2d:51:56:8b: c3:97:6e:f5:66:13:b9:88:24:5b:88:4e:a8:00:8f:01:27:e4: 0b:49:f1:7e:9c:92:85:5c:63:1a:4a:8b:92:45:c9:df:86:4e: 57:d6:ab:5a:93:98:5c:93:88:af:ec:75:39:f6:66:3a:70:8c: 70:6f:d4:fe -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUL8a0ik9X5ePibvwdRspvnaC4qRAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjA3MDAwMDAwWhcNMjUwMzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NmNlYzJjMTQwM2RjMjFmZTViOTk4Y2MwNTBiZDVlYmQz MzEyZDFlODNkNjA5MDNiYjU0NWI3YWM2NzVmZGExMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCNCAApfEzDiRdSLHT2PCrlNSVjD0lkvJyzACZnGd73jqbY clJBcGkyQ5TbSj2kdpV4GGAoFcAQthA7FP22tjGYFxrfBQ3zpQYd3E0++uFWiM3b 9wPp+TG7kQZZw/25NlvduYSU7QPC9kWm+Gs0JSRONOkL+Ueq1XBUHqHdr0FFzRTc f+q/iysg85B8mKDgBmIZBtbic8ScW2kHrZi2hDthw1Vho+vbFKSpS/0cV2SjKJxi IWXUlUuVyc3QDo58UCmGX+LBxsd9aJyK0x9Ks5M1152Nifj5/g0WJOmKmQcFYRVz Bu7Yi8lAj7U1MZE4oVnhFY2B1vnYSarkm07X83IrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUribyYzqcKwFtP4CHXpEGlBE0DEQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FkMmNlMzk4LTUzOTAtNDg2OC1iZWY0LWM4MWM1ZjM5ZWMwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIFPGgwDQYJKoZIhvcNAQELBQADggEBAABiYGKKkvKFctMaTEgowSsPlwvG gVGRAA1nHBYkUJllcd5zxZ+eM2rOG2woqBTm4hvh0UcSlDcvZgUMY/21pk3dy3GA 04ifDMAA6Aa5eBEdVvFn1eDOtHBYpYvdWsag+sIKnUk/P6Ryx+R0M8R11a2X7Vbc ym4EFiDD9ohpsxSEFqLc7huGHnbOC5md0ymCtr4VtRps66tZe1DUmTSFZMCiMO6p Py4Eg6VL24G+VJi/Sn3IrGREkwgRnfZwY8JY/MrULVFWi8OXbvVmE7mIJFuITqgA jwEn5AtJ8X6ckoVcYxpKi5JFyd+GTlfWq1qTmFyTiK/sdTn2ZjpwjHBv1P4= -----END CERTIFICATE-----Generated at Sun Feb 16 15:55:31 2025 by rpki-client