$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2717a4f-7cc2-4214-8f42-104140f0415e.roa File: c2717a4f-7cc2-4214-8f42-104140f0415e.roa (raw, json) Hash identifier: RmSyzzR+H8BTHe6Czb0P4bV372fRbRlpHWtLhogpYsI= Subject key identifier: BD:11:13:5C:8A:43:5E:C3:83:87:2F:36:F7:02:CB:07:A4:D0:AE:24 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 516E6AD56EF515B6EC0AB4502C9799B40CB7F133 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2717a4f-7cc2-4214-8f42-104140f0415e.roa Signing time: Wed 22 Jan 2025 00:00:00 +0000 ROA not before: Wed 22 Jan 2025 00:00:00 +0000 ROA not after: Wed 26 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 138.128.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:6e:6a:d5:6e:f5:15:b6:ec:0a:b4:50:2c:97:99:b4:0c:b7:f1:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 22 00:00:00 2025 GMT Not After : Feb 26 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:de:e5:b8:1d:26:0f:aa:2e:f5:14:c9:93:cf: a7:dd:c5:8a:32:c3:a6:54:71:7e:02:95:8a:95:f3: c4:5e:3f:a2:31:69:47:03:da:56:93:53:29:a0:4a: 9c:27:00:64:06:57:eb:cd:f1:e3:b8:0b:0b:63:31: 8c:2c:3a:56:b3:e0:f3:f0:ea:e8:5f:1c:71:68:9b: 82:0b:55:af:f1:58:52:d0:2e:94:2e:b0:8a:00:66: 87:cf:1e:aa:b3:5c:20:97:8b:4b:e8:8c:c3:e3:80: bf:4f:46:53:71:18:53:43:7e:cf:c1:10:77:5c:7d: 5a:66:0e:cb:4f:13:ae:6d:e4:75:4f:c8:1d:e5:df: b1:cb:1b:61:47:5d:cc:3e:28:63:51:21:13:70:3b: 6d:d9:2e:fe:b2:51:7a:8c:81:f1:62:af:6c:5c:9d: 37:1d:e8:6a:e8:1f:da:cb:a0:e5:a2:43:30:c1:10: 70:de:f3:9b:21:3b:70:99:03:54:5c:38:58:04:29: 25:08:2b:c8:c4:19:4a:34:70:61:07:0a:8b:0d:29: 1e:2e:66:37:80:bc:20:b7:d0:87:ea:fe:ed:55:16: 4d:ce:6a:72:98:e4:4f:f4:b0:6a:0c:e8:71:ce:e8: 57:8e:e5:4e:3f:c9:a1:c8:5e:cb:5d:b7:bd:4d:38: 2a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:11:13:5C:8A:43:5E:C3:83:87:2F:36:F7:02:CB:07:A4:D0:AE:24 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2717a4f-7cc2-4214-8f42-104140f0415e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.128.0.0/17 Signature Algorithm: sha256WithRSAEncryption 47:60:3d:a8:ff:c7:ea:b1:ed:ba:7c:dc:81:91:48:72:4a:2f: aa:56:56:02:91:0e:ab:97:f9:7a:45:f2:5f:68:9e:77:a8:20: a0:4c:29:88:87:ae:c6:d2:89:3e:93:d9:54:c0:29:5f:38:9c: f1:53:60:93:38:4b:64:ab:44:d5:5f:f1:67:b9:fd:1b:aa:5a: 07:29:94:e1:2a:3a:5a:83:3b:9f:1c:fe:37:44:00:c4:1f:31: 6e:5a:b6:1e:8a:c6:4c:5e:47:fe:cd:5b:89:31:15:c5:c5:e0: b4:66:7b:13:ed:f9:9c:63:ea:fa:55:7f:21:b9:de:73:f6:08: 9d:ae:04:2d:09:1e:b4:5d:b4:fa:12:81:30:e6:48:34:d3:b5: f8:3a:ba:86:b8:7e:43:58:cb:48:a3:ef:e6:55:7c:d4:b1:9e: da:22:1b:35:06:1b:53:ec:f1:2d:ff:07:e8:b8:fe:fd:26:38: 5c:d3:9f:4c:36:19:23:04:11:74:56:e3:07:bf:10:eb:97:a8: e8:93:f2:3d:81:f1:98:22:f6:52:bd:79:70:5f:ce:b9:1c:9f: cb:af:ce:7d:7d:21:a9:52:ea:7d:5e:39:16:c0:b6:f6:7c:d5: bb:81:5a:c2:fd:5d:c1:55:a4:0c:3d:f1:06:b6:55:cb:80:b2: a1:34:bf:d8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUW5q1W71FbbsCrRQLJeZtAy38TMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTIyMDAwMDAwWhcNMjUwMjI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZGJjMmRlZDY0ZTAzMDJkYTEwYzkyODIyYWFiMjk5NGU5 OTZjZmY0MzM0YmE5MmM5MGE4ZjU4ODIwODc4ZDY5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDX3uW4HSYPqi71FMmTz6fdxYoyw6ZUcX4ClYqV88ReP6Ix aUcD2laTUymgSpwnAGQGV+vN8eO4CwtjMYwsOlaz4PPw6uhfHHFom4ILVa/xWFLQ LpQusIoAZofPHqqzXCCXi0vojMPjgL9PRlNxGFNDfs/BEHdcfVpmDstPE65t5HVP yB3l37HLG2FHXcw+KGNRIRNwO23ZLv6yUXqMgfFir2xcnTcd6GroH9rLoOWiQzDB EHDe85shO3CZA1RcOFgEKSUIK8jEGUo0cGEHCosNKR4uZjeAvCC30Ifq/u1VFk3O anKY5E/0sGoM6HHO6FeO5U4/yaHIXstdt71NOCplAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvRETXIpDXsODhy829wLLB6TQriQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyNzE3YTRmLTdjYzItNDIxNC04ZjQyLTEwNDE0MGYwNDE1ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAeKgAAwDQYJKoZIhvcNAQELBQADggEBAEdgPaj/x+qx7bp83IGRSHJKL6pW VgKRDquX+XpF8l9onneoIKBMKYiHrsbSiT6T2VTAKV84nPFTYJM4S2SrRNVf8We5 /RuqWgcplOEqOlqDO58c/jdEAMQfMW5ath6KxkxeR/7NW4kxFcXF4LRmexPt+Zxj 6vpVfyG53nP2CJ2uBC0JHrRdtPoSgTDmSDTTtfg6uoa4fkNYy0ij7+ZVfNSxntoi GzUGG1Ps8S3/B+i4/v0mOFzTn0w2GSMEEXRW4we/EOuXqOiT8j2B8Zgi9lK9eXBf zrkcn8uvzn19IalS6n1eORbAtvZ81buBWsL9XcFVpAw98Qa2VcuAsqE0v9g= -----END CERTIFICATE-----Generated at Sun Feb 16 15:33:02 2025 by rpki-client