$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba71b3f3-cdf6-4786-89eb-629b258ad834.roa File: ba71b3f3-cdf6-4786-89eb-629b258ad834.roa (raw, json) Hash identifier: nBQEQpfB2IeqYgu8qghIcBNqctgPNTjCiL1KR6LWXLI= Subject key identifier: 6D:27:C0:5E:D0:51:B8:DD:83:EE:D1:AC:81:58:01:E2:B1:88:E7:7A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 67DEBE5553A28C0CCEA7020F113B45967B0A3F24 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba71b3f3-cdf6-4786-89eb-629b258ad834.roa Signing time: Mon 17 Feb 2025 15:11:23 +0000 ROA not before: Mon 17 Feb 2025 15:11:23 +0000 ROA not after: Mon 24 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 141.242.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:de:be:55:53:a2:8c:0c:ce:a7:02:0f:11:3b:45:96:7b:0a:3f:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 17 15:11:23 2025 GMT Not After : Mar 24 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:59:24:a8:40:3b:41:cf:a1:a4:84:a7:f3:6f: bb:66:c0:f3:70:7a:73:6c:6f:c0:9f:75:3a:4f:a3: 1d:6b:b9:14:db:37:78:6f:24:4d:d4:76:9a:5d:51: 95:eb:8f:54:79:44:f2:21:d3:e9:aa:d3:7f:e8:e1: 31:92:86:38:9c:db:51:c3:36:b7:6d:7b:bc:b4:25: df:c2:04:fe:b0:4f:9a:d2:28:ba:79:ff:38:00:db: 52:04:f8:ec:ec:da:7a:1d:e8:9c:ff:cf:ae:94:31: f2:4b:3f:19:aa:3a:c4:e4:c5:48:97:1f:35:8f:bb: ad:01:01:5f:4b:d3:2e:5d:93:71:57:a9:87:b7:8d: 27:fa:d9:47:c6:14:ef:64:1d:39:da:82:68:b9:ff: 8e:c1:b2:70:d9:1d:a2:46:33:30:1e:19:ae:a4:cd: 31:9a:1a:f6:e0:bb:95:58:ca:ad:98:25:8c:58:ee: d2:85:4d:14:c0:85:19:b3:35:cf:c5:b7:b9:12:2e: a8:44:d5:04:d2:b5:31:fc:2a:59:b4:a3:08:9c:73: 2d:69:7b:86:a5:92:41:bc:97:dc:55:1e:e7:40:63: 51:e1:e6:c6:6f:fb:a8:f9:bf:e0:1d:2b:a5:8f:41: 0b:18:d3:f1:4c:03:30:69:de:1a:61:73:1e:52:cb: 8f:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:27:C0:5E:D0:51:B8:DD:83:EE:D1:AC:81:58:01:E2:B1:88:E7:7A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba71b3f3-cdf6-4786-89eb-629b258ad834.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.242.0.0/16 Signature Algorithm: sha256WithRSAEncryption 82:60:8c:67:30:b5:d0:5a:aa:79:fa:86:bb:01:2b:5f:32:3e: e1:47:a8:8d:04:97:d8:3d:c2:5d:13:4e:5a:06:7d:46:ea:4f: 07:75:fe:cd:94:e8:b6:c0:f3:bc:d5:17:ac:16:59:b4:68:d4: cf:52:af:c6:f1:75:3f:d8:dc:93:f7:12:30:5a:c8:6a:a7:2a: 8a:e1:df:3e:3a:f2:a3:5e:13:10:7c:30:12:29:cf:71:45:de: 4b:d7:7e:ff:e4:4c:22:41:b5:14:19:2f:2c:ed:cd:0a:31:95: b3:f4:7b:a4:8d:45:e6:e4:48:e9:51:c5:bb:87:82:e1:13:d6: dd:e0:07:89:05:92:b3:5e:10:4c:86:16:62:27:0d:10:d1:3e: dc:d7:b0:7b:86:6d:29:0e:0b:25:2c:08:9c:79:c7:87:e5:ab: 4f:09:ba:9f:e6:c0:15:0d:6f:3a:3e:b0:0e:64:fd:86:06:b7: ef:b6:8f:36:ac:a3:83:cf:10:58:f3:13:1a:0c:a6:60:f5:4f: 92:77:7a:1d:ce:a1:20:e8:be:03:91:8a:d4:dd:8f:4b:03:fe: 8c:ce:95:9a:d4:5a:06:66:6d:6c:c8:be:c2:05:c2:84:52:d8: f5:d6:30:38:d2:d5:59:92:89:31:8f:e4:6c:d0:d5:b5:94:fa: 72:94:d6:2e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZ96+VVOijAzOpwIPETtFlnsKPyQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjE3MTUxMTIzWhcNMjUwMzI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3N2JhMWU2NjhlMTQ0NDhlYmZlNzBhYjc3YjA4ZDVkMWNk NWIxM2NjZWFiOGZjZmU5MzIxZjAwMWE0YjMwOTNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyWSSoQDtBz6GkhKfzb7tmwPNwenNsb8CfdTpPox1ruRTb N3hvJE3UdppdUZXrj1R5RPIh0+mq03/o4TGShjic21HDNrdte7y0Jd/CBP6wT5rS KLp5/zgA21IE+Ozs2nod6Jz/z66UMfJLPxmqOsTkxUiXHzWPu60BAV9L0y5dk3FX qYe3jSf62UfGFO9kHTnagmi5/47BsnDZHaJGMzAeGa6kzTGaGvbgu5VYyq2YJYxY 7tKFTRTAhRmzNc/Ft7kSLqhE1QTStTH8Klm0owiccy1pe4alkkG8l9xVHudAY1Hh 5sZv+6j5v+AdK6WPQQsY0/FMAzBp3hphcx5Sy4/RAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUbSfAXtBRuN2D7tGsgVgB4rGI53owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhNzFiM2YzLWNkZjYtNDc4Ni04OWViLTYyOWIyNThhZDgzNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCN8jANBgkqhkiG9w0BAQsFAAOCAQEAgmCMZzC10FqqefqGuwErXzI+4Ueo jQSX2D3CXRNOWgZ9RupPB3X+zZTotsDzvNUXrBZZtGjUz1KvxvF1P9jck/cSMFrI aqcqiuHfPjryo14TEHwwEinPcUXeS9d+/+RMIkG1FBkvLO3NCjGVs/R7pI1F5uRI 6VHFu4eC4RPW3eAHiQWSs14QTIYWYicNENE+3Newe4ZtKQ4LJSwInHnHh+WrTwm6 n+bAFQ1vOj6wDmT9hga377aPNqyjg88QWPMTGgymYPVPknd6Hc6hIOi+A5GK1N2P SwP+jM6VmtRaBmZtbMi+wgXChFLY9dYwONLVWZKJMY/kbNDVtZT6cpTWLg== -----END CERTIFICATE-----Generated at Thu Mar 13 23:47:08 2025 by rpki-client