$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d552e3dc-88c8-4d6e-8825-3635c23da3fd.roa File: d552e3dc-88c8-4d6e-8825-3635c23da3fd.roa (raw, json) Hash identifier: nWe30U5/FS8GDMEGyj02In4fpSGA0h4PIqNWAbh2+2k= Subject key identifier: B9:2C:C0:3A:8E:8D:46:D4:EB:AE:32:B7:D4:B6:1F:E3:AB:FF:62:3E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 237832C5F87BCAD1E35B428AD45C109E71E68D80 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d552e3dc-88c8-4d6e-8825-3635c23da3fd.roa Signing time: Fri 24 Jan 2025 00:00:00 +0000 ROA not before: Fri 24 Jan 2025 00:00:00 +0000 ROA not after: Fri 28 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 148.154.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:78:32:c5:f8:7b:ca:d1:e3:5b:42:8a:d4:5c:10:9e:71:e6:8d:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 24 00:00:00 2025 GMT Not After : Feb 28 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0d:b6:7b:ff:cc:0d:1b:b4:15:da:df:40:c0: 0c:4e:a0:4f:db:ca:af:27:f4:15:74:37:0e:b8:9a: fc:36:c0:38:cc:94:42:c9:88:c5:7d:46:67:2d:2c: 71:68:3e:9b:81:9d:c1:8a:1a:9e:e6:50:bb:7d:61: d7:69:07:59:ec:7c:b0:bf:7f:c4:72:da:75:56:45: 5f:91:f5:01:3c:f3:51:0e:cd:b3:5c:34:32:d1:92: 02:99:23:fb:ce:09:12:76:f4:69:6e:e8:12:a0:dd: 0d:25:13:ad:68:cd:32:04:04:73:65:cf:43:68:ef: be:d7:c8:8c:ba:fb:f5:fd:0a:f8:b7:5a:3c:59:16: 16:a0:8c:3d:c6:cf:d2:28:08:ef:da:ee:c6:4f:38: 22:54:06:78:66:41:03:8b:13:60:2c:79:fb:4d:97: b7:82:0f:b3:34:2d:82:5b:9e:8c:a5:e8:47:d1:44: 78:a9:b8:a6:3f:97:e8:35:a6:5c:07:6b:ad:6b:45: 4c:e4:5f:b9:1c:20:4f:0d:46:34:90:2d:67:71:31: 92:f8:c9:34:6b:bd:7c:42:f5:9d:a6:c8:bf:67:6a: 4d:4e:00:28:c8:f2:a7:d1:14:ab:02:d2:e7:33:56: 77:ec:9b:39:94:f1:8d:2b:3e:1a:bd:dd:58:59:70: b4:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:2C:C0:3A:8E:8D:46:D4:EB:AE:32:B7:D4:B6:1F:E3:AB:FF:62:3E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d552e3dc-88c8-4d6e-8825-3635c23da3fd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 148.154.0.0/16 Signature Algorithm: sha256WithRSAEncryption 65:4d:13:10:b7:d7:6c:5d:37:e9:21:0f:5d:af:ff:b8:c0:e9: 4f:4a:f6:96:22:29:b9:60:6e:4b:17:0b:70:51:ec:57:b6:63: 03:a4:21:ec:5e:a1:70:f5:e3:ce:7e:7b:10:d1:55:35:1c:5a: 9e:7a:e1:be:68:8d:51:aa:e6:d0:74:22:0b:e2:32:5b:dc:17: 5e:b0:cb:fd:93:44:70:6c:0c:8a:ac:49:25:97:39:97:4b:ff: c6:95:ca:e8:32:ef:ea:11:cb:99:c5:45:df:5d:33:b5:b7:1a: 25:27:b4:62:d6:ec:17:62:92:4b:85:3c:fc:b8:41:da:19:a3: c5:8d:11:31:1a:95:34:b3:20:cc:89:bb:c0:8f:2c:72:cd:e8: 0d:ce:ce:05:dd:59:23:2c:de:3d:fb:f9:d3:39:18:92:05:0c: 1f:d7:cb:76:f9:56:68:a1:34:ca:b3:14:b1:17:6e:89:41:0c: 0e:6b:4e:81:a9:ad:bc:cc:5f:63:40:07:ee:de:cd:43:a7:f1: c4:d6:02:9f:91:9f:78:38:c6:b6:8d:55:46:03:3a:e7:8e:01: fd:7c:67:81:60:aa:d9:fe:62:89:5f:93:4f:09:ec:c7:7e:0e: 3f:2b:3a:41:91:d0:19:90:ad:94:20:d4:80:e7:b0:a8:92:c9: aa:b3:6b:21 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUI3gyxfh7ytHjW0KK1FwQnnHmjYAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTI0MDAwMDAwWhcNMjUwMjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNDAxYjUwZTlhOGRlOTNhNjA2MzI5MjAzM2Y1MDc2ZmIy MzJjOTM1NWQ0NTNhZjM1Mjk5ZGMyYTBlZGE3ZDg3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+DbZ7/8wNG7QV2t9AwAxOoE/byq8n9BV0Nw64mvw2wDjM lELJiMV9RmctLHFoPpuBncGKGp7mULt9YddpB1nsfLC/f8Ry2nVWRV+R9QE881EO zbNcNDLRkgKZI/vOCRJ29Glu6BKg3Q0lE61ozTIEBHNlz0No777XyIy6+/X9Cvi3 WjxZFhagjD3Gz9IoCO/a7sZPOCJUBnhmQQOLE2AseftNl7eCD7M0LYJbnoyl6EfR RHipuKY/l+g1plwHa61rRUzkX7kcIE8NRjSQLWdxMZL4yTRrvXxC9Z2myL9nak1O ACjI8qfRFKsC0uczVnfsmzmU8Y0rPhq93VhZcLQ3AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUuSzAOo6NRtTrrjK31LYf46v/Yj4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q1NTJlM2RjLTg4YzgtNGQ2ZS04ODI1LTM2MzVjMjNkYTNmZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCUmjANBgkqhkiG9w0BAQsFAAOCAQEAZU0TELfXbF036SEPXa//uMDpT0r2 liIpuWBuSxcLcFHsV7ZjA6Qh7F6hcPXjzn57ENFVNRxannrhvmiNUarm0HQiC+Iy W9wXXrDL/ZNEcGwMiqxJJZc5l0v/xpXK6DLv6hHLmcVF310ztbcaJSe0YtbsF2KS S4U8/LhB2hmjxY0RMRqVNLMgzIm7wI8scs3oDc7OBd1ZIyzePfv50zkYkgUMH9fL dvlWaKE0yrMUsRduiUEMDmtOgamtvMxfY0AH7t7NQ6fxxNYCn5GfeDjGto1VRgM6 544B/XxngWCq2f5iiV+TTwnsx34OPys6QZHQGZCtlCDUgOewqJLJqrNrIQ== -----END CERTIFICATE-----Generated at Sun Feb 16 15:16:30 2025 by rpki-client