$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1d2c06d-5355-465b-8d51-dfef82b5d000.roa File: c1d2c06d-5355-465b-8d51-dfef82b5d000.roa (raw, json) Hash identifier: 5lHP9JMLSssa0gT7F+NtUISHDYwwR3lITo1ga0J2l50= Subject key identifier: 07:71:93:F1:CD:CB:1A:E3:1E:A2:2A:35:55:28:E3:7C:79:A3:44:D6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 650EBE1A5ECF0D6C08DA8E9BEF27A7D1A79623DC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1d2c06d-5355-465b-8d51-dfef82b5d000.roa Signing time: Tue 11 Feb 2025 00:00:00 +0000 ROA not before: Tue 11 Feb 2025 00:00:00 +0000 ROA not after: Tue 18 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 161.99.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:0e:be:1a:5e:cf:0d:6c:08:da:8e:9b:ef:27:a7:d1:a7:96:23:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 11 00:00:00 2025 GMT Not After : Mar 18 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:1c:bd:c2:a7:73:83:81:0b:36:0a:25:d1:92: 8f:ef:ef:01:61:ec:af:c7:f4:3e:a1:e2:99:a2:92: f9:35:90:27:93:37:32:ac:a1:7c:be:1f:07:59:b4: ec:9d:80:66:6c:c7:c9:5e:7b:e7:0b:ec:30:a0:20: 26:2b:92:79:50:b2:ff:bc:da:00:72:e5:1b:cc:66: 72:e2:4c:3c:45:bc:54:a1:f5:36:d1:24:82:9c:c1: d1:66:4a:c7:e9:2a:4e:74:42:0c:ee:c7:2b:70:79: 85:2e:b4:f0:0a:f0:25:ef:a2:1e:a7:d2:dc:42:1a: f0:c6:cc:e8:eb:b7:7a:e6:57:e2:a5:4f:53:44:7e: 5e:04:8f:62:5d:5c:26:e6:6c:b1:7e:d9:c7:d3:d1: 71:94:11:c6:c6:ed:b9:22:e2:77:63:6b:6c:76:34: f5:66:d2:42:aa:60:02:d0:43:08:1d:e1:81:4a:85: 45:c9:8b:41:24:34:b3:2e:89:95:ca:51:99:5b:44: d0:e7:6c:3d:00:40:70:24:6a:a1:39:25:d9:e1:43: 9e:9e:c8:25:22:5b:29:6c:6f:41:72:b4:fc:3e:7a: b3:c0:ec:6c:51:d0:96:9b:9f:18:cb:c4:8c:ba:56: 78:5e:ca:3c:c8:7f:3c:ff:d0:98:56:cc:aa:a3:0d: 34:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:71:93:F1:CD:CB:1A:E3:1E:A2:2A:35:55:28:E3:7C:79:A3:44:D6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1d2c06d-5355-465b-8d51-dfef82b5d000.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.99.128.0/17 Signature Algorithm: sha256WithRSAEncryption 87:8c:24:84:e4:e9:99:d3:2a:dd:27:c3:c5:37:b6:96:52:d2: 19:77:03:88:34:02:bf:89:3d:dc:c7:8f:dd:f0:c2:4f:4d:77: 86:03:7d:10:ed:89:04:9e:3c:3b:84:ac:9b:6e:83:63:a7:6a: 2e:d9:63:be:37:76:10:5b:ad:57:17:24:9b:d5:82:d5:5e:f1: f2:cf:34:d3:54:c1:2f:60:c3:d7:9e:94:c1:21:2b:1b:d2:98: 28:f9:e4:0e:b6:a3:69:29:80:81:38:cd:58:8b:c6:d0:3c:57: 4f:ee:45:26:0c:20:68:bf:58:9c:c0:b7:ab:2a:ca:e1:3a:9d: 16:c1:6c:8e:06:0d:92:da:07:a1:93:4a:58:96:90:2c:c4:c4: b4:85:08:25:eb:d1:b5:5c:fc:29:ef:31:33:e5:11:d2:24:7d: a4:8e:e3:f7:cb:bd:fd:31:2c:d1:4a:0f:e8:b0:d3:0c:50:d7: c6:ae:18:23:ca:6b:0a:39:0c:a8:ed:75:2f:a6:a4:b9:f7:8b: 9c:e4:ad:14:bf:9c:e7:43:48:26:ef:0c:c2:c0:ff:61:2d:92: 99:23:fd:5d:84:66:b0:31:57:4d:20:8a:c8:bc:bf:47:b5:ed: f4:19:a1:09:37:6c:3a:9d:8a:90:d7:b3:15:c8:b7:33:85:42: 08:15:8b:82 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZQ6+Gl7PDWwI2o6b7yen0aeWI9wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjExMDAwMDAwWhcNMjUwMzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMTNiZTU0N2M2MjA5NDc0OWUxNTllNTQ4YWZkODBmM2U0 NWQ3YzYyM2RjMzc1Y2U1OTBiYzJjNjAwZjE2MmU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLHL3Cp3ODgQs2CiXRko/v7wFh7K/H9D6h4pmikvk1kCeT NzKsoXy+HwdZtOydgGZsx8lee+cL7DCgICYrknlQsv+82gBy5RvMZnLiTDxFvFSh 9TbRJIKcwdFmSsfpKk50QgzuxytweYUutPAK8CXvoh6n0txCGvDGzOjrt3rmV+Kl T1NEfl4Ej2JdXCbmbLF+2cfT0XGUEcbG7bki4ndja2x2NPVm0kKqYALQQwgd4YFK hUXJi0EkNLMuiZXKUZlbRNDnbD0AQHAkaqE5JdnhQ56eyCUiWylsb0FytPw+erPA 7GxR0JabnxjLxIy6VnheyjzIfzz/0JhWzKqjDTQlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUB3GT8c3LGuMeoio1VSjjfHmjRNYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MxZDJjMDZkLTUzNTUtNDY1Yi04ZDUxLWRmZWY4MmI1ZDAwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAehY4AwDQYJKoZIhvcNAQELBQADggEBAIeMJITk6ZnTKt0nw8U3tpZS0hl3 A4g0Ar+JPdzHj93wwk9Nd4YDfRDtiQSePDuErJtug2Onai7ZY743dhBbrVcXJJvV gtVe8fLPNNNUwS9gw9eelMEhKxvSmCj55A62o2kpgIE4zViLxtA8V0/uRSYMIGi/ WJzAt6sqyuE6nRbBbI4GDZLaB6GTSliWkCzExLSFCCXr0bVc/CnvMTPlEdIkfaSO 4/fLvf0xLNFKD+iw0wxQ18auGCPKawo5DKjtdS+mpLn3i5zkrRS/nOdDSCbvDMLA /2Etkpkj/V2EZrAxV00gisi8v0e17fQZoQk3bDqdipDXsxXItzOFQggVi4I= -----END CERTIFICATE-----Generated at Sun Feb 16 15:31:06 2025 by rpki-client