$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8766e16-a2c3-4078-aa9e-504e17a360f9.roa File: c8766e16-a2c3-4078-aa9e-504e17a360f9.roa (raw, json) Hash identifier: Nn7c4obAlRzwo3W7fL9Z7RvjLpnEg5zZfLa+YskMs98= Subject key identifier: 50:BF:34:B8:F1:8F:FC:3D:66:3D:A3:45:08:A4:92:F9:F0:79:82:31 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0735257BC57B0FE98384CD55A08FF5393D845B8A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8766e16-a2c3-4078-aa9e-504e17a360f9.roa Signing time: Mon 13 Jan 2025 00:00:00 +0000 ROA not before: Mon 13 Jan 2025 00:00:00 +0000 ROA not after: Mon 17 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 161.178.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:35:25:7b:c5:7b:0f:e9:83:84:cd:55:a0:8f:f5:39:3d:84:5b:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 13 00:00:00 2025 GMT Not After : Feb 17 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d3:4b:30:53:49:b1:7b:9b:85:14:eb:7d:28: 0b:24:07:16:dc:e0:19:ff:b6:00:6e:62:02:7f:25: fd:d6:80:db:c2:b4:a2:fd:d8:1e:6f:68:22:1c:44: 26:25:b6:68:0d:0b:f8:ad:7c:65:6d:4c:05:91:97: 87:38:3a:25:f9:70:21:e1:a4:d1:9a:c8:4f:08:26: a4:2a:b3:86:8f:1d:d1:b9:c9:e0:46:e4:84:36:c9: f1:e5:87:52:55:ba:09:95:fd:c2:16:9a:5c:ec:04: cb:9d:1f:2f:c4:44:4f:4d:b5:f2:0f:ac:88:3f:63: 50:66:f1:fa:d6:87:8e:55:9a:bc:9a:d3:88:db:63: 30:a5:c6:af:be:c4:56:f8:7b:17:49:af:02:d0:8e: 97:84:49:56:25:c9:85:4f:04:f7:c5:dd:fc:11:82: 53:43:a6:b5:ee:d8:11:b9:26:be:50:22:4a:8c:b4: 97:d4:3d:df:c9:4a:74:1c:d4:b9:97:b5:5b:e4:f6: ef:6e:03:9d:19:76:d6:ed:12:72:f2:45:f9:69:60: 9e:e5:71:f2:ad:d9:24:93:0d:f8:fd:fa:a0:f0:11: 6a:7e:ac:69:bd:b3:46:b3:bf:8c:00:ff:6d:6e:06: 1f:38:12:80:72:54:c6:2f:e3:24:3d:b8:a9:17:f4: c2:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:BF:34:B8:F1:8F:FC:3D:66:3D:A3:45:08:A4:92:F9:F0:79:82:31 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8766e16-a2c3-4078-aa9e-504e17a360f9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.178.0.0/18 Signature Algorithm: sha256WithRSAEncryption 10:66:e0:22:a1:23:6c:fa:9a:df:e5:61:e5:e2:f9:a3:42:fc: 38:b1:47:e8:ca:ec:b7:ed:e6:29:19:70:da:33:83:23:2a:37: 4a:07:f9:16:58:9b:66:99:9e:fe:0c:11:08:61:30:0b:b7:b3: 78:32:41:6f:81:16:49:f9:e4:f2:83:62:7e:5a:f7:4d:dd:5a: 76:44:7f:a5:c3:c5:e6:77:9a:e1:5c:db:d5:b9:59:ac:2c:0d: bd:e4:20:2a:ce:1f:b9:94:78:c9:83:45:27:42:33:7a:b4:b9: 69:82:f8:72:db:ce:f4:8d:dc:bf:92:9a:39:5f:1b:a7:38:f6: 75:47:29:e3:f9:01:fb:f4:be:5a:23:c5:0b:2d:87:1e:f7:cc: 10:48:82:59:62:85:da:15:d0:68:c2:99:94:fd:39:ae:5e:84: f7:05:ed:53:9c:39:c8:a1:d1:f2:6e:67:3c:99:8c:35:0c:f7: 97:37:aa:f9:89:58:b6:b4:6f:f6:98:38:e0:17:fb:5d:21:62: 04:c3:d9:4f:cc:29:6b:6d:de:c0:18:88:77:81:e6:0b:1b:b8: b9:72:49:37:f2:ab:f1:7a:f4:23:97:dc:ee:0b:ff:d8:d1:8b: da:60:21:e5:17:49:90:a1:2c:56:3f:5d:55:9c:b4:cb:26:79: 17:f4:aa:ea -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBzUle8V7D+mDhM1VoI/1OT2EW4owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTEzMDAwMDAwWhcNMjUwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMTg2YjJlNzQ1MGUxZmMxMjhkYTlmY2EwZGFjOTY1MTM4 ZTc0ZmY3MGE1NjNiYjVhMTQxYTAxYjk4OWEwMTEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC300swU0mxe5uFFOt9KAskBxbc4Bn/tgBuYgJ/Jf3WgNvC tKL92B5vaCIcRCYltmgNC/itfGVtTAWRl4c4OiX5cCHhpNGayE8IJqQqs4aPHdG5 yeBG5IQ2yfHlh1JVugmV/cIWmlzsBMudHy/ERE9NtfIPrIg/Y1Bm8frWh45Vmrya 04jbYzClxq++xFb4exdJrwLQjpeESVYlyYVPBPfF3fwRglNDprXu2BG5Jr5QIkqM tJfUPd/JSnQc1LmXtVvk9u9uA50ZdtbtEnLyRflpYJ7lcfKt2SSTDfj9+qDwEWp+ rGm9s0azv4wA/21uBh84EoByVMYv4yQ9uKkX9MJVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUL80uPGP/D1mPaNFCKSS+fB5gjEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M4NzY2ZTE2LWEyYzMtNDA3OC1hYTllLTUwNGUxN2EzNjBmOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAahsgAwDQYJKoZIhvcNAQELBQADggEBABBm4CKhI2z6mt/lYeXi+aNC/Dix R+jK7Lft5ikZcNozgyMqN0oH+RZYm2aZnv4MEQhhMAu3s3gyQW+BFkn55PKDYn5a 903dWnZEf6XDxeZ3muFc29W5WawsDb3kICrOH7mUeMmDRSdCM3q0uWmC+HLbzvSN 3L+SmjlfG6c49nVHKeP5Afv0vlojxQsthx73zBBIgllihdoV0GjCmZT9Oa5ehPcF 7VOcOcih0fJuZzyZjDUM95c3qvmJWLa0b/aYOOAX+10hYgTD2U/MKWtt3sAYiHeB 5gsbuLlySTfyq/F69COX3O4L/9jRi9pgIeUXSZChLFY/XVWctMsmeRf0quo= -----END CERTIFICATE-----Generated at Wed Feb 5 09:50:50 2025 by rpki-client