$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2c2b85a-6726-4ea2-96e4-d34c1231c263.roa File: b2c2b85a-6726-4ea2-96e4-d34c1231c263.roa (raw, json) Hash identifier: sCYHZfwHo9ve99AhRYO2qGQq246txXUe9SOqemmC6tg= Subject key identifier: 9C:4E:08:02:2F:9B:64:49:75:48:04:B3:F0:24:41:3D:0C:BF:9A:44 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5AD57278343C1FA0A5C7AB4AFD60D2FB6FDE4E1A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2c2b85a-6726-4ea2-96e4-d34c1231c263.roa Signing time: Tue 21 Jan 2025 00:00:00 +0000 ROA not before: Tue 21 Jan 2025 00:00:00 +0000 ROA not after: Tue 25 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.91.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:d5:72:78:34:3c:1f:a0:a5:c7:ab:4a:fd:60:d2:fb:6f:de:4e:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 21 00:00:00 2025 GMT Not After : Feb 25 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:be:2e:d9:50:67:d6:4e:9f:ee:f2:ef:2c:d4: 76:bd:29:78:c5:9c:fc:3f:4f:d7:42:a9:40:f3:a4: 94:eb:51:f2:68:2e:77:41:7b:27:b4:85:86:2a:3a: 35:26:b8:6e:be:8a:39:70:fd:8e:30:90:15:fe:62: 55:b6:3c:6a:34:d8:86:ef:68:03:0c:ef:6c:ad:53: 75:19:4d:7c:e0:e4:eb:78:c5:4b:84:49:cc:55:e2: b6:2c:2e:a1:6d:91:97:38:2c:0e:55:1b:1e:a4:c0: 98:ef:ac:6b:3b:07:91:4c:cc:e1:34:0b:a7:fe:f5: 4c:ed:ae:16:95:58:93:b2:02:b0:97:e9:10:37:52: 35:69:ba:e2:77:21:6d:24:a0:ee:d4:f6:33:db:12: f1:8e:39:22:ee:73:4b:88:f3:d3:87:76:21:27:fa: 97:5c:6e:42:bb:47:a1:f5:f7:25:1f:3b:ec:11:1f: 80:60:56:ee:12:e6:16:a4:6d:d2:4b:0e:3c:f8:91: 6e:f2:bc:59:15:7f:3b:83:22:bb:2a:33:8e:a0:0c: 6f:26:e5:88:94:84:6c:fd:ac:f6:9e:b9:98:05:65: 86:83:12:31:54:01:eb:1b:de:ea:fb:f4:bf:4c:6a: 6b:0d:fd:67:4b:1e:05:3c:25:fa:d3:62:79:55:f0: 47:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:4E:08:02:2F:9B:64:49:75:48:04:B3:F0:24:41:3D:0C:BF:9A:44 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2c2b85a-6726-4ea2-96e4-d34c1231c263.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.91.192.0/19 Signature Algorithm: sha256WithRSAEncryption 53:6f:2e:ce:30:b3:29:11:52:6e:c4:a2:5d:02:49:a5:04:af: a7:85:4e:c7:7d:ea:55:4c:a5:40:23:9b:52:0f:6e:10:a8:a6: 0c:29:5c:d6:5d:41:b4:8f:44:aa:4e:17:55:1f:f2:6b:f3:4f: 40:f6:dc:5b:4f:7f:cf:f4:11:17:a0:e6:e9:6d:f0:ee:fe:5f: 54:dd:c8:d2:2c:91:69:3e:7f:aa:20:5e:cb:5c:73:72:a7:5a: c1:c0:3f:3d:38:b0:c8:db:2e:d8:cd:36:09:29:7b:a7:1b:41: d1:a1:4a:12:82:b6:0c:a4:ee:a9:da:7c:15:9b:e2:38:8d:53: 94:f7:72:90:9a:2e:9f:e0:25:43:78:a5:70:4c:ef:76:e2:ed: 52:59:53:73:7e:7b:85:66:d9:c1:5c:1e:7d:9c:e3:26:df:65: 99:92:77:f7:f1:4b:c7:ea:09:cd:f8:a9:99:26:4b:1d:9e:c9: 92:4d:b5:74:8c:a7:17:f8:95:57:82:5c:a7:c8:68:c3:0d:52: e5:b8:c5:1a:4d:b1:15:d3:63:7c:be:20:73:96:67:65:02:1a: 49:d1:52:7a:b5:27:78:99:86:b0:4b:6a:52:c3:a5:59:50:d5: b6:2c:d9:25:77:00:aa:25:96:de:5c:86:9b:e9:3c:31:b2:c5: c5:01:07:88 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWtVyeDQ8H6Clx6tK/WDS+2/eThowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTIxMDAwMDAwWhcNMjUwMjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YTA1ZGE1YTk2MWViYjgzOWRhMzkxMDM0YzdlOTQwNDlm OGJhYmY1MjI2ZWRiZTFlMzJlZDA3MzVjZTE2ZTU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdvi7ZUGfWTp/u8u8s1Ha9KXjFnPw/T9dCqUDzpJTrUfJo LndBeye0hYYqOjUmuG6+ijlw/Y4wkBX+YlW2PGo02IbvaAMM72ytU3UZTXzg5Ot4 xUuEScxV4rYsLqFtkZc4LA5VGx6kwJjvrGs7B5FMzOE0C6f+9UztrhaVWJOyArCX 6RA3UjVpuuJ3IW0koO7U9jPbEvGOOSLuc0uI89OHdiEn+pdcbkK7R6H19yUfO+wR H4BgVu4S5hakbdJLDjz4kW7yvFkVfzuDIrsqM46gDG8m5YiUhGz9rPaeuZgFZYaD EjFUAesb3ur79L9MamsN/WdLHgU8JfrTYnlV8EfPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnE4IAi+bZEl1SASz8CRBPQy/mkQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IyYzJiODVhLTY3MjYtNGVhMi05NmU0LWQzNGMxMjMxYzI2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVAW8AwDQYJKoZIhvcNAQELBQADggEBAFNvLs4wsykRUm7Eol0CSaUEr6eF Tsd96lVMpUAjm1IPbhCopgwpXNZdQbSPRKpOF1Uf8mvzT0D23FtPf8/0EReg5ult 8O7+X1TdyNIskWk+f6ogXstcc3KnWsHAPz04sMjbLtjNNgkpe6cbQdGhShKCtgyk 7qnafBWb4jiNU5T3cpCaLp/gJUN4pXBM73bi7VJZU3N+e4Vm2cFcHn2c4ybfZZmS d/fxS8fqCc34qZkmSx2eyZJNtXSMpxf4lVeCXKfIaMMNUuW4xRpNsRXTY3y+IHOW Z2UCGknRUnq1J3iZhrBLalLDpVlQ1bYs2SV3AKollt5chpvpPDGyxcUBB4g= -----END CERTIFICATE-----Generated at Sun Feb 16 15:27:42 2025 by rpki-client