$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b5a85156-56d9-44fe-b845-5494537aa440.roa File: b5a85156-56d9-44fe-b845-5494537aa440.roa (raw, json) Hash identifier: f57DUUiBpccLQuyxvp+p7x0V2S0UOoMXD8cX1gC97u0= Subject key identifier: 75:C6:61:98:EC:9F:8F:B2:E3:ED:A7:CB:02:B8:C7:F1:E0:90:A5:30 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 494D73EF53868DE6436266B68487890DDA4BDAFC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b5a85156-56d9-44fe-b845-5494537aa440.roa Signing time: Tue 21 Jan 2025 00:00:00 +0000 ROA not before: Tue 21 Jan 2025 00:00:00 +0000 ROA not after: Tue 25 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:4d:73:ef:53:86:8d:e6:43:62:66:b6:84:87:89:0d:da:4b:da:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 21 00:00:00 2025 GMT Not After : Feb 25 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a7:6c:15:ed:d2:bf:c0:07:89:0f:91:d2:f2: 42:b4:2d:56:f5:67:38:39:d1:ab:94:bc:33:0c:47: 93:13:6a:52:db:7b:b0:2e:8e:aa:a7:dd:6a:e2:8b: 6e:14:3c:4c:0e:e9:db:95:aa:79:fd:dc:44:1e:f8: f7:d9:c5:b1:1d:76:50:fa:37:c5:89:c9:2e:e4:c8: 4d:01:8e:3f:7c:ac:7e:76:5f:22:fe:0c:d0:75:1d: 62:68:14:e5:fd:f5:1a:b3:2b:72:72:2d:5e:ca:38: c4:b9:4d:ec:da:76:1a:81:7e:84:ac:ff:02:73:97: ff:d6:f5:b9:ef:a0:7f:01:d0:5d:4c:c6:7f:a2:3c: 32:f8:ba:30:58:fc:ac:58:ac:ca:88:27:71:e2:bf: 0f:94:4a:6a:bb:0e:51:4f:29:5b:66:c8:5f:7c:5f: ee:3c:9f:01:ec:5b:09:7c:dc:7e:f1:1f:c6:4a:84: fb:34:03:1a:7b:48:b3:6b:9c:64:81:b5:29:28:43: 86:96:95:e2:2c:1b:8a:82:3f:87:b2:27:3c:6b:22: c5:1a:f6:d1:6a:84:ae:39:e6:8d:ab:57:8d:2d:65: 5c:e7:78:aa:be:be:e0:ae:04:3d:c8:e2:07:75:01: 28:be:e5:38:39:47:5a:91:2e:b3:00:e4:b7:1e:8a: 87:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:C6:61:98:EC:9F:8F:B2:E3:ED:A7:CB:02:B8:C7:F1:E0:90:A5:30 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b5a85156-56d9-44fe-b845-5494537aa440.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.234.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:60:03:73:dc:5f:b1:3e:a5:98:ef:c2:e7:31:77:75:09:c3: e2:9c:d7:ab:01:7a:0a:d9:9c:11:ad:74:c8:f4:45:f3:e6:df: 02:51:c0:4e:7a:16:2a:9f:5a:3e:65:33:30:67:d3:dd:6c:a0: 2c:80:fd:02:c2:e5:60:b0:dd:03:dc:4d:b1:0b:71:e4:74:d9: dd:8f:f0:da:f1:cb:74:22:9e:8a:93:80:c0:3b:b3:d5:94:a5: 79:c7:74:68:44:fb:4a:1a:e1:3f:e2:cf:00:af:71:5d:e9:13: fb:18:0c:92:5d:d6:d9:d9:f2:55:a5:0a:8a:e3:4a:05:25:72: e6:a2:96:b0:9d:5a:46:df:1b:69:18:d8:6b:d1:f9:8e:46:88: b9:d8:5a:6d:dc:96:88:ab:ca:9d:7c:72:24:8e:ec:83:db:4d: 77:63:e8:d7:5c:01:01:db:e4:07:ce:ab:81:8d:8a:9b:e8:19: d4:20:8c:4c:11:c7:20:6d:46:d3:94:04:4e:02:c7:90:33:f3: 7a:e7:f9:be:31:68:70:c2:29:19:30:df:99:42:73:2d:42:52: 24:44:22:78:08:2a:15:51:ac:fe:7d:e1:64:73:d6:fb:65:d1: 86:24:be:58:6a:e9:5a:3e:f2:d1:da:34:1f:d2:0c:44:eb:33: 87:69:f5:4a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSU1z71OGjeZDYma2hIeJDdpL2vwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTIxMDAwMDAwWhcNMjUwMjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNGQyY2Q2MzFhOWY5NWYwOTVjNzE4NzA1MThiZjY3NzA2 YmRlN2Y4MzBjYjA1NDQyMjM3ZGUyZTk3ZGM2NjM3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClp2wV7dK/wAeJD5HS8kK0LVb1Zzg50auUvDMMR5MTalLb e7Aujqqn3Wrii24UPEwO6duVqnn93EQe+PfZxbEddlD6N8WJyS7kyE0Bjj98rH52 XyL+DNB1HWJoFOX99RqzK3JyLV7KOMS5TezadhqBfoSs/wJzl//W9bnvoH8B0F1M xn+iPDL4ujBY/KxYrMqIJ3Hivw+USmq7DlFPKVtmyF98X+48nwHsWwl83H7xH8ZK hPs0Axp7SLNrnGSBtSkoQ4aWleIsG4qCP4eyJzxrIsUa9tFqhK455o2rV40tZVzn eKq+vuCuBD3I4gd1ASi+5Tg5R1qRLrMA5LceioczAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdcZhmOyfj7Lj7afLArjH8eCQpTAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I1YTg1MTU2LTU2ZDktNDRmZS1iODQ1LTU0OTQ1MzdhYTQ0MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTeowDQYJKoZIhvcNAQELBQADggEBAJ5gA3PcX7E+pZjvwucxd3UJw+Kc 16sBegrZnBGtdMj0RfPm3wJRwE56FiqfWj5lMzBn091soCyA/QLC5WCw3QPcTbEL ceR02d2P8Nrxy3QinoqTgMA7s9WUpXnHdGhE+0oa4T/izwCvcV3pE/sYDJJd1tnZ 8lWlCorjSgUlcuailrCdWkbfG2kY2GvR+Y5GiLnYWm3cloiryp18ciSO7IPbTXdj 6NdcAQHb5AfOq4GNipvoGdQgjEwRxyBtRtOUBE4Cx5Az83rn+b4xaHDCKRkw35lC cy1CUiREIngIKhVRrP594WRz1vtl0YYkvlhq6Vo+8tHaNB/SDETrM4dp9Uo= -----END CERTIFICATE-----Generated at Sun Feb 16 15:32:42 2025 by rpki-client