$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/adf81dfa-321d-42a4-a1e7-eefec7d0a384.roa File: adf81dfa-321d-42a4-a1e7-eefec7d0a384.roa (raw, json) Hash identifier: uQXlUXkpJmOUF+OKY8xBlKmFELnhn2tRk8NL0kKgeig= Subject key identifier: 10:D4:3C:69:0C:4A:17:0B:EF:21:D3:D1:74:7A:73:48:00:13:63:E3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2EE0C8CA742378CD751C375561556327F7720FA0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/adf81dfa-321d-42a4-a1e7-eefec7d0a384.roa Signing time: Fri 07 Feb 2025 00:00:00 +0000 ROA not before: Fri 07 Feb 2025 00:00:00 +0000 ROA not after: Fri 14 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 5.60.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:e0:c8:ca:74:23:78:cd:75:1c:37:55:61:55:63:27:f7:72:0f:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 7 00:00:00 2025 GMT Not After : Mar 14 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:56:5f:28:66:32:37:c4:25:62:97:6c:25:00: d6:08:c2:84:51:60:aa:61:19:b8:2f:e3:6d:7e:ae: bf:72:fa:b0:0d:be:4a:ad:2d:b5:c6:6d:1a:31:44: d2:87:bd:dd:98:65:2c:98:e8:b6:17:94:6e:a5:6c: 2c:94:4f:db:f0:dc:b0:78:86:64:d9:8e:80:84:94: 3e:52:f1:ce:c2:4e:37:f9:ed:b4:70:ff:64:75:cd: 3e:32:ac:c4:12:60:d2:68:e2:d6:91:9d:db:15:48: 9b:cd:4f:3c:5f:f8:7e:2d:1d:b6:44:67:63:49:b8: 41:db:31:3c:ef:32:af:75:3d:fd:e3:11:df:c9:36: 65:9b:25:d6:d0:cd:f8:37:01:58:bf:76:ce:ce:05: 88:5a:bd:c6:8f:b2:d6:23:a5:81:14:90:b4:28:2a: 98:85:bc:c1:cd:60:09:ef:00:dc:72:5a:86:a6:f8: f9:0b:5c:de:e1:d3:a8:7e:a3:33:8d:81:23:dc:03: b0:e8:04:e0:56:d0:dc:cd:bd:77:42:e3:06:86:a8: 4b:d3:f1:9a:5a:46:92:2a:99:28:ec:95:ba:fc:e3: 7b:47:e1:9b:2f:c6:1b:f6:7c:9b:bd:7a:e4:88:91: e2:18:7c:bb:41:fb:10:38:98:65:d2:8d:76:b7:54: 16:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:D4:3C:69:0C:4A:17:0B:EF:21:D3:D1:74:7A:73:48:00:13:63:E3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/adf81dfa-321d-42a4-a1e7-eefec7d0a384.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.60.0.0/16 Signature Algorithm: sha256WithRSAEncryption 97:c0:94:c3:32:00:d9:ce:e8:61:0e:91:f3:ed:d1:01:d8:50: d9:8e:e0:d9:ca:84:b3:f2:06:bd:25:ab:c0:38:ce:93:74:84: 0c:db:70:47:8b:40:05:85:ff:a1:41:04:cd:6b:1b:38:05:02: 4d:8b:ea:99:41:40:1c:f6:e8:ca:7b:2b:9d:95:c0:d1:e3:6c: ba:93:40:8d:47:bb:44:84:2c:ea:c2:95:61:2d:b1:d1:8e:01: f1:8a:88:f1:4e:24:17:8a:e1:98:77:4a:8c:d8:7f:9d:30:42: 5d:01:cb:9e:1d:39:6a:92:1b:eb:28:d8:88:85:90:a0:41:3b: fe:55:e1:ab:bb:f1:1b:1f:21:a5:3d:de:17:e4:6f:97:e6:04: 7b:da:4e:68:58:0b:e2:5d:4a:7c:20:1e:73:94:57:bb:7c:f2: 91:18:65:8f:0f:8e:10:6d:a6:f1:0b:69:d2:20:7b:9e:ad:fb: 3f:1c:73:78:44:1c:8a:12:fc:2f:d8:ec:11:fb:26:26:29:9a: 57:cd:9c:4c:18:2e:11:d6:11:71:bf:34:d2:82:fa:75:a4:fe: 23:71:53:be:5e:95:fc:86:20:4e:b6:cf:fc:75:10:e1:4d:16: d4:41:06:fa:4e:24:b7:99:91:e4:23:2c:67:c9:3f:27:91:a5: d6:ea:d7:4c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULuDIynQjeM11HDdVYVVjJ/dyD6AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjA3MDAwMDAwWhcNMjUwMzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMjI2YTk3MjM1OWYxYzQxNmI1ODYwODM5MzVjYmU4YjY5 MjFiODJmZDk2MDBiYTU3MTUwOWY0YzQyZWQwNWMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDhVl8oZjI3xCVil2wlANYIwoRRYKphGbgv421+rr9y+rAN vkqtLbXGbRoxRNKHvd2YZSyY6LYXlG6lbCyUT9vw3LB4hmTZjoCElD5S8c7CTjf5 7bRw/2R1zT4yrMQSYNJo4taRndsVSJvNTzxf+H4tHbZEZ2NJuEHbMTzvMq91Pf3j Ed/JNmWbJdbQzfg3AVi/ds7OBYhavcaPstYjpYEUkLQoKpiFvMHNYAnvANxyWoam +PkLXN7h06h+ozONgSPcA7DoBOBW0NzNvXdC4waGqEvT8ZpaRpIqmSjslbr843tH 4Zsvxhv2fJu9euSIkeIYfLtB+xA4mGXSjXa3VBZjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUENQ8aQxKFwvvIdPRdHpzSAATY+MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FkZjgxZGZhLTMyMWQtNDJhNC1hMWU3LWVlZmVjN2QwYTM4NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAFPDANBgkqhkiG9w0BAQsFAAOCAQEAl8CUwzIA2c7oYQ6R8+3RAdhQ2Y7g 2cqEs/IGvSWrwDjOk3SEDNtwR4tABYX/oUEEzWsbOAUCTYvqmUFAHPboynsrnZXA 0eNsupNAjUe7RIQs6sKVYS2x0Y4B8YqI8U4kF4rhmHdKjNh/nTBCXQHLnh05apIb 6yjYiIWQoEE7/lXhq7vxGx8hpT3eF+Rvl+YEe9pOaFgL4l1KfCAec5RXu3zykRhl jw+OEG2m8Qtp0iB7nq37PxxzeEQcihL8L9jsEfsmJimaV82cTBguEdYRcb800oL6 daT+I3FTvl6V/IYgTrbP/HUQ4U0W1EEG+k4kt5mR5CMsZ8k/J5Gl1urXTA== -----END CERTIFICATE-----Generated at Sun Feb 16 15:21:00 2025 by rpki-client