$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c23a83e6-32c4-43b4-9986-8f3da063223c.roa File: c23a83e6-32c4-43b4-9986-8f3da063223c.roa (raw, json) Hash identifier: ZRjxjRldbj8SAq1ZA7XvQy9sy5367fansyVVBwGThcQ= Subject key identifier: 0E:3C:6D:5B:FF:30:14:47:2A:36:F3:98:09:59:05:9A:7D:69:AD:48 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0CD4F70D68B9A3976C4D9393216C0AA74221E570 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c23a83e6-32c4-43b4-9986-8f3da063223c.roa Signing time: Mon 13 Jan 2025 00:00:00 +0000 ROA not before: Mon 13 Jan 2025 00:00:00 +0000 ROA not after: Mon 17 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 204.236.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:d4:f7:0d:68:b9:a3:97:6c:4d:93:93:21:6c:0a:a7:42:21:e5:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 13 00:00:00 2025 GMT Not After : Feb 17 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a2:97:f5:1d:5e:e1:af:2d:90:12:54:ea:4e: bc:01:50:99:5b:57:92:1c:6f:cf:f1:da:07:b4:e7: d5:b4:43:9d:69:64:24:db:cb:14:d4:14:a4:ce:76: df:d8:41:da:8a:8f:36:87:79:19:8c:5f:55:5f:4d: 43:62:86:79:71:30:e9:9e:9c:4d:f0:97:d0:c0:aa: 57:dd:ec:35:c0:7f:eb:34:6c:dd:db:51:2e:13:14: eb:b5:e1:8c:14:cc:bc:75:ab:1c:85:0d:fb:59:0a: 6f:4a:f5:84:e4:e9:c1:ec:9a:aa:8f:3e:c1:6d:9f: 02:a0:ad:f2:cf:1a:a0:59:67:ad:71:1d:8b:41:9c: 53:b4:69:f6:f7:22:41:64:c7:0f:cf:6c:65:87:71: 70:a3:a7:93:cd:6f:91:3d:3a:1a:d6:7a:e7:bd:ba: 62:71:b9:ff:5b:51:41:a4:bd:bb:15:73:6e:1a:08: 8d:42:b9:cf:43:f1:4d:fc:6e:c0:a6:9d:83:d6:93: 2b:7c:b5:3a:0e:55:77:95:e8:1a:24:0f:8b:15:16: a8:5f:84:a9:fb:6a:c3:79:ad:f8:b7:23:05:9a:49: c6:56:7e:b0:f9:36:b7:10:e0:b2:b4:fc:ec:23:03: 51:94:82:6c:81:1a:cc:c9:c3:05:29:cb:24:af:b0: 0e:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:3C:6D:5B:FF:30:14:47:2A:36:F3:98:09:59:05:9A:7D:69:AD:48 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c23a83e6-32c4-43b4-9986-8f3da063223c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.192.0/20 Signature Algorithm: sha256WithRSAEncryption d1:79:0b:63:47:43:38:11:0d:98:57:34:ee:ee:2d:4c:84:6c: c6:44:6f:7c:1c:9b:dd:86:b1:53:08:39:07:9e:4f:a1:c8:fa: a4:bf:3f:8f:ce:62:8d:60:7a:f8:f0:ec:fa:a8:8c:cb:aa:ee: 88:89:f4:4b:76:d3:9d:45:c0:26:82:ba:fe:51:3c:94:83:5c: fd:d5:f7:c8:7a:18:38:0a:f8:98:94:ab:a1:38:8a:44:c2:ba: b4:55:9a:3b:c4:6f:79:ac:bd:a8:4f:85:d3:17:2b:5e:83:a7: b3:f8:f1:d6:57:ce:28:2b:b1:40:24:4f:35:be:12:4b:17:92: 61:fa:6f:bd:03:2b:20:60:32:c0:3e:2a:87:ab:a4:e5:05:68: 50:6a:d2:8b:0a:2e:66:19:4e:ef:dd:05:9a:9e:c1:c5:6a:2b: 0c:1e:d4:5c:31:64:d2:f4:5e:eb:32:5d:9c:00:5a:55:d3:4f: 5d:18:5e:23:7c:c4:d2:64:89:23:94:83:6e:50:44:b4:a1:bc: 50:80:d6:8e:1d:74:b9:30:d7:11:53:dd:9f:23:80:dc:8a:ab: 29:42:2b:97:d9:63:7d:2f:0f:18:f3:4f:26:0f:0f:12:b3:0f: 0e:a2:72:cf:89:35:b3:7e:11:dc:99:b2:e4:92:94:81:04:13: 1d:22:ae:e0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDNT3DWi5o5dsTZOTIWwKp0Ih5XAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTEzMDAwMDAwWhcNMjUwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZTg2N2E4YjY3YzBjM2QyYjIzZWIwNTQwNTliZDYzODYz YTQxMzhiYjI4ZGEwYzg0MTZiMjg0MDUyMjExMmRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0opf1HV7hry2QElTqTrwBUJlbV5Icb8/x2ge059W0Q51p ZCTbyxTUFKTOdt/YQdqKjzaHeRmMX1VfTUNihnlxMOmenE3wl9DAqlfd7DXAf+s0 bN3bUS4TFOu14YwUzLx1qxyFDftZCm9K9YTk6cHsmqqPPsFtnwKgrfLPGqBZZ61x HYtBnFO0afb3IkFkxw/PbGWHcXCjp5PNb5E9OhrWeue9umJxuf9bUUGkvbsVc24a CI1Cuc9D8U38bsCmnYPWkyt8tToOVXeV6BokD4sVFqhfhKn7asN5rfi3IwWaScZW frD5NrcQ4LK0/OwjA1GUgmyBGszJwwUpyySvsA7pAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDjxtW/8wFEcqNvOYCVkFmn1prUgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyM2E4M2U2LTMyYzQtNDNiNC05OTg2LThmM2RhMDYzMjIzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATM7MAwDQYJKoZIhvcNAQELBQADggEBANF5C2NHQzgRDZhXNO7uLUyEbMZE b3wcm92GsVMIOQeeT6HI+qS/P4/OYo1gevjw7PqojMuq7oiJ9Et2051FwCaCuv5R PJSDXP3V98h6GDgK+JiUq6E4ikTCurRVmjvEb3msvahPhdMXK16Dp7P48dZXzigr sUAkTzW+EksXkmH6b70DKyBgMsA+KoerpOUFaFBq0osKLmYZTu/dBZqewcVqKwwe 1FwxZNL0XusyXZwAWlXTT10YXiN8xNJkiSOUg25QRLShvFCA1o4ddLkw1xFT3Z8j gNyKqylCK5fZY30vDxjzTyYPDxKzDw6ics+JNbN+EdyZsuSSlIEEEx0iruA= -----END CERTIFICATE-----Generated at Wed Feb 5 09:55:06 2025 by rpki-client