$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8157695-92a1-4afe-9727-1baefae40e2f.roa File: b8157695-92a1-4afe-9727-1baefae40e2f.roa (raw, json) Hash identifier: x0kzxxu8NkvoFWc1gz/in8SavTM6xM42nal7VNSikoo= Subject key identifier: 36:84:67:CE:F0:77:48:F9:85:39:5A:A5:A1:07:0B:49:F0:BC:3E:65 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 452F4E3A6EF018C8F4464687704E511792996953 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8157695-92a1-4afe-9727-1baefae40e2f.roa Signing time: Tue 04 Feb 2025 00:00:00 +0000 ROA not before: Tue 04 Feb 2025 00:00:00 +0000 ROA not after: Tue 11 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 149.116.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:2f:4e:3a:6e:f0:18:c8:f4:46:46:87:70:4e:51:17:92:99:69:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 4 00:00:00 2025 GMT Not After : Mar 11 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:46:99:83:6f:38:a5:c8:e2:79:8f:80:c1:cb: 64:25:90:d0:44:7e:0a:ba:3a:4c:74:25:54:03:cb: 00:0c:8c:00:fb:ee:2a:5c:b6:29:cc:61:a0:ab:e5: 9a:b6:b2:e4:cb:55:85:0d:89:ff:ca:87:c2:4f:ed: 02:d5:36:25:6d:1c:de:c4:9f:ac:4f:d1:5d:39:f1: 22:89:06:e2:31:07:f4:67:f7:a3:19:2a:df:f8:a2: 5a:19:15:0e:12:88:ed:b8:49:43:28:0e:77:e9:c9: 09:c4:cc:55:8b:61:18:86:ca:b9:6f:d3:9a:c7:e4: cf:fb:a8:7a:d4:b3:52:41:09:d4:12:6c:b2:10:dc: 0d:c7:92:72:43:45:57:3e:fd:61:6a:6c:a9:a7:e5: d7:bb:e2:b6:56:8d:e9:d4:ff:6d:6a:3b:79:94:f9: 3a:05:c3:42:48:34:9c:44:fa:f8:97:d6:6f:9f:4c: 06:fd:1d:8f:a9:cb:48:a6:0a:e8:63:c3:6e:56:90: b9:bb:07:cd:3a:3b:3f:00:32:e7:6e:f0:9b:98:6c: 51:1a:0f:15:60:db:0b:47:0b:86:9a:b6:ea:58:de: 7a:f6:54:bc:d9:bd:4c:ff:73:df:3b:77:c4:58:2b: b1:47:7b:06:68:4c:bc:51:26:39:28:c8:a5:cc:92: 82:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:84:67:CE:F0:77:48:F9:85:39:5A:A5:A1:07:0B:49:F0:BC:3E:65 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8157695-92a1-4afe-9727-1baefae40e2f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 149.116.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2f:ac:7c:1c:d5:92:15:3a:17:da:5d:e7:c3:22:2f:5c:c0:bc: f0:29:45:6a:c9:8b:1a:e2:e9:7e:9b:32:64:34:01:68:91:1d: 97:e4:26:9d:40:ec:cd:60:3e:55:43:32:87:7a:b0:f7:f0:70: 9e:72:a8:b0:61:fb:06:e4:e9:48:58:64:d7:e9:b5:e3:e4:23: f5:86:48:b9:a0:6c:e1:bf:87:ce:d2:55:b7:0e:ee:94:9d:69: 66:63:75:8e:0b:40:16:4a:fd:60:4f:f5:6c:47:b5:46:f5:27: c1:3f:85:42:fc:e9:57:89:88:e3:92:9d:d9:94:7d:6d:e4:96: 6b:2b:7e:4f:bb:d0:68:8d:bc:b5:b0:34:c8:de:52:1a:68:bf: 8c:d9:ea:13:94:b7:c2:f3:03:e0:4c:c2:01:78:15:55:f9:19: c1:cb:c9:b5:ca:ed:5a:09:01:b6:57:77:a8:72:a7:89:58:50: 1d:22:e5:81:b2:1f:66:b6:1b:c9:62:ca:bf:fe:c9:7b:7b:e7: a5:2b:74:b1:c3:73:40:ee:6b:fa:aa:b6:c6:6e:7d:8c:24:6f: 72:3c:61:9c:fb:ca:4d:71:4f:45:ac:79:32:91:8d:04:07:c9: 16:4a:9e:d2:b9:a3:25:ad:50:20:32:5d:bd:20:f7:cd:e3:ce: 9e:bb:b4:34 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURS9OOm7wGMj0RkaHcE5RF5KZaVMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjA0MDAwMDAwWhcNMjUwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NDZkYzZhZGI5NGQ4ZWRmNDU0OWQ2NjcxMjRhM2FkODM3 M2ZjNjMwNzk2M2I0YjkzYjJmMjE4YzhhMzBlYjljMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoRpmDbzilyOJ5j4DBy2QlkNBEfgq6Okx0JVQDywAMjAD7 7ipctinMYaCr5Zq2suTLVYUNif/Kh8JP7QLVNiVtHN7En6xP0V058SKJBuIxB/Rn 96MZKt/4oloZFQ4SiO24SUMoDnfpyQnEzFWLYRiGyrlv05rH5M/7qHrUs1JBCdQS bLIQ3A3HknJDRVc+/WFqbKmn5de74rZWjenU/21qO3mU+ToFw0JINJxE+viX1m+f TAb9HY+py0imCuhjw25WkLm7B806Oz8AMudu8JuYbFEaDxVg2wtHC4aatupY3nr2 VLzZvUz/c987d8RYK7FHewZoTLxRJjkoyKXMkoJbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUNoRnzvB3SPmFOVqloQcLSfC8PmUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I4MTU3Njk1LTkyYTEtNGFmZS05NzI3LTFiYWVmYWU0MGUyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCVdDANBgkqhkiG9w0BAQsFAAOCAQEAL6x8HNWSFToX2l3nwyIvXMC88ClF asmLGuLpfpsyZDQBaJEdl+QmnUDszWA+VUMyh3qw9/BwnnKosGH7BuTpSFhk1+m1 4+Qj9YZIuaBs4b+HztJVtw7ulJ1pZmN1jgtAFkr9YE/1bEe1RvUnwT+FQvzpV4mI 45Kd2ZR9beSWayt+T7vQaI28tbA0yN5SGmi/jNnqE5S3wvMD4EzCAXgVVfkZwcvJ tcrtWgkBtld3qHKniVhQHSLlgbIfZrYbyWLKv/7Je3vnpSt0scNzQO5r+qq2xm59 jCRvcjxhnPvKTXFPRax5MpGNBAfJFkqe0rmjJa1QIDJdvSD3zePOnru0NA== -----END CERTIFICATE-----Generated at Sun Feb 16 15:48:18 2025 by rpki-client