$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af447631-2ee0-48e3-99c1-aabf4304ee15.roa File: af447631-2ee0-48e3-99c1-aabf4304ee15.roa (raw, json) Hash identifier: FGTrGKiKPERjgqEwU8z1ESBTanHe9+pV2GH4rYcSQjI= Subject key identifier: 5E:4B:BC:C2:87:F5:23:4A:90:16:DC:B5:39:49:4C:8B:15:41:B3:26 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 31DA65E7342AF5B51F82E51590E524E65F9D9F1A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af447631-2ee0-48e3-99c1-aabf4304ee15.roa Signing time: Mon 13 Jan 2025 00:00:00 +0000 ROA not before: Mon 13 Jan 2025 00:00:00 +0000 ROA not after: Mon 17 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 107.20.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:da:65:e7:34:2a:f5:b5:1f:82:e5:15:90:e5:24:e6:5f:9d:9f:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 13 00:00:00 2025 GMT Not After : Feb 17 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ce:96:13:7b:e5:c0:43:e7:1d:27:ba:c5:d6: 1b:fd:75:ba:b8:14:c7:f4:75:a9:bf:98:25:bb:ef: 76:0f:c4:1d:ba:7b:ae:7f:88:8b:4b:3c:85:2d:2e: f8:16:28:dd:76:82:fc:4f:2a:39:3d:c4:5c:b2:21: 05:61:0f:e5:b8:9c:68:be:5d:bd:bb:21:eb:05:3a: 5b:f8:fd:dd:9b:37:a0:06:4c:39:3e:50:ac:2e:fb: e9:f9:20:43:63:75:8c:df:ad:66:28:ea:6b:ff:64: a8:26:33:5c:bb:0a:36:2a:1f:d5:2d:c2:7a:07:c2: b8:81:fb:2e:4b:68:2d:c8:12:69:4c:3f:1a:33:18: 84:45:53:36:8a:c2:66:19:a8:93:4c:a0:8e:5a:a0: 8d:94:37:0b:97:d5:e1:2a:aa:a5:90:83:a9:1a:fc: 11:e1:3f:a9:ae:93:67:a2:89:e4:ba:bf:6a:b4:f9: 97:38:4c:9b:e2:3b:9f:eb:30:8b:3a:dc:63:08:e6: 9a:46:cd:15:ed:b1:af:d9:a8:0a:27:de:8f:61:fe: 57:d0:05:85:aa:6d:a6:2e:13:30:f1:c0:28:f2:03: 49:ee:7a:42:7e:b2:38:fd:3c:95:f3:a7:2e:0f:ab: f9:4d:6d:ad:b2:f0:38:33:88:ec:85:20:48:8b:99: 4f:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:4B:BC:C2:87:F5:23:4A:90:16:DC:B5:39:49:4C:8B:15:41:B3:26 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af447631-2ee0-48e3-99c1-aabf4304ee15.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.20.144.0/20 Signature Algorithm: sha256WithRSAEncryption c6:52:f1:5d:15:32:cf:d1:cb:ae:bf:ed:8a:19:9f:23:69:37: e7:c3:7d:26:d3:ef:0f:9c:dd:86:97:6c:2f:5c:8b:3c:2b:61: 5c:a7:a4:f2:fa:1f:b4:76:72:61:a5:01:64:ac:22:e7:c1:4d: 16:bc:b6:40:80:90:84:69:7f:2f:a5:92:9e:71:b2:8b:c2:b3: 5a:0c:a5:04:25:65:07:a1:67:16:d6:5c:ff:9d:2c:de:42:6a: 89:a1:e2:22:f6:ae:a9:da:a0:dc:83:fd:1c:18:bb:0f:5c:5a: 34:2a:67:f5:e7:4f:b7:9e:2b:61:10:97:af:54:e3:dc:05:f2: 14:fb:b3:47:a4:f4:86:07:66:0e:d9:2c:0a:08:75:c8:78:79: cc:5b:6a:2b:bb:38:c4:c5:6e:70:1e:a5:85:89:27:1e:7d:f2: 68:f9:11:00:bb:8c:1c:8f:fe:5d:f8:24:de:41:bc:19:63:93: 8c:b2:3d:ce:2a:8d:a0:77:65:b7:59:46:87:43:1b:84:15:a0: a7:02:64:c0:38:40:e3:96:5a:70:c0:db:8d:50:8e:8b:44:15: 1c:43:8f:52:a9:96:68:3d:6b:3a:3d:e4:87:b2:7f:8a:b6:c7: 7c:e7:11:58:d3:5a:96:9b:45:1e:d8:2a:c7:e1:ad:ed:6e:86: ff:2a:1c:e4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMdpl5zQq9bUfguUVkOUk5l+dnxowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTEzMDAwMDAwWhcNMjUwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMGZiMDUwZGNjNDc4ZDRmNWRiNzBjODlmOWVkMjFiYzhi OTYyM2MzZDg5N2Q5ZTY1N2VmN2U2ZGFjZDMwMGYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNzpYTe+XAQ+cdJ7rF1hv9dbq4FMf0dam/mCW773YPxB26 e65/iItLPIUtLvgWKN12gvxPKjk9xFyyIQVhD+W4nGi+Xb27IesFOlv4/d2bN6AG TDk+UKwu++n5IENjdYzfrWYo6mv/ZKgmM1y7CjYqH9UtwnoHwriB+y5LaC3IEmlM PxozGIRFUzaKwmYZqJNMoI5aoI2UNwuX1eEqqqWQg6ka/BHhP6muk2eiieS6v2q0 +Zc4TJviO5/rMIs63GMI5ppGzRXtsa/ZqAon3o9h/lfQBYWqbaYuEzDxwCjyA0nu ekJ+sjj9PJXzpy4Pq/lNba2y8DgziOyFIEiLmU9HAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXku8wof1I0qQFty1OUlMixVBsyYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FmNDQ3NjMxLTJlZTAtNDhlMy05OWMxLWFhYmY0MzA0ZWUxNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARrFJAwDQYJKoZIhvcNAQELBQADggEBAMZS8V0VMs/Ry66/7YoZnyNpN+fD fSbT7w+c3YaXbC9cizwrYVynpPL6H7R2cmGlAWSsIufBTRa8tkCAkIRpfy+lkp5x sovCs1oMpQQlZQehZxbWXP+dLN5Caomh4iL2rqnaoNyD/RwYuw9cWjQqZ/XnT7ee K2EQl69U49wF8hT7s0ek9IYHZg7ZLAoIdch4ecxbaiu7OMTFbnAepYWJJx598mj5 EQC7jByP/l34JN5BvBljk4yyPc4qjaB3ZbdZRodDG4QVoKcCZMA4QOOWWnDA241Q jotEFRxDj1Kplmg9azo95Ieyf4q2x3znEVjTWpabRR7YKsfhre1uhv8qHOQ= -----END CERTIFICATE-----Generated at Wed Feb 5 09:40:32 2025 by rpki-client