$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d745880d-9e6a-449c-9c99-caee7921445e.roa File: d745880d-9e6a-449c-9c99-caee7921445e.roa (raw, json) Hash identifier: oefri0i6rTuhMsdfR/AZLKrSDYEunsFLuRiSwnzYPPw= Subject key identifier: 0C:00:F9:DA:F3:2E:1B:77:37:DC:EB:73:10:0A:AA:36:26:F0:1B:97 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 389A1AE72555466D32ACE83B16CA912A054F0AED Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d745880d-9e6a-449c-9c99-caee7921445e.roa Signing time: Tue 21 Jan 2025 00:00:00 +0000 ROA not before: Tue 21 Jan 2025 00:00:00 +0000 ROA not after: Tue 25 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.0.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:9a:1a:e7:25:55:46:6d:32:ac:e8:3b:16:ca:91:2a:05:4f:0a:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 21 00:00:00 2025 GMT Not After : Feb 25 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e7:15:09:ca:86:28:0a:e5:a7:0d:ad:d2:da: 73:4e:f7:39:87:38:7c:6d:93:63:49:db:20:a0:f0: 17:13:9b:ca:5b:c7:fb:3d:19:15:ec:25:b4:41:c0: c9:32:d9:58:2a:8d:57:21:64:3f:04:b1:38:6d:b7: 03:63:cb:5e:25:32:95:34:3f:e7:9d:ef:bc:98:e3: e9:da:95:e1:6b:da:0a:3f:cb:06:70:4b:28:98:5a: 94:93:dc:13:3b:0f:a1:d7:34:66:0c:15:ca:78:49: bc:3b:21:c0:a8:b0:bb:a4:16:7d:2f:b1:7a:40:30: d5:aa:e7:df:86:e1:52:89:df:b2:4a:b5:85:a9:21: ae:b9:78:fe:b5:97:23:69:6c:37:de:22:f7:b6:1d: de:82:6d:c3:29:35:0c:da:93:a2:0b:31:71:f4:ba: e5:0b:56:e9:13:37:2a:9d:59:b9:08:3e:79:4f:20: 6d:f9:fd:62:45:ef:02:d1:d0:08:c3:d4:0e:e1:65: 37:5b:41:30:d7:28:cd:3a:ff:b7:da:ba:2d:bf:e6: 85:95:b7:65:03:76:e0:20:3c:0b:36:d0:75:88:0a: 97:0f:c7:0e:64:2d:d8:8b:40:70:00:6c:2b:e0:a2: c5:a2:48:e5:d0:7c:99:1f:11:ad:8c:31:b3:53:5c: 3a:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:00:F9:DA:F3:2E:1B:77:37:DC:EB:73:10:0A:AA:36:26:F0:1B:97 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d745880d-9e6a-449c-9c99-caee7921445e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.0.0.0/16 Signature Algorithm: sha256WithRSAEncryption 97:68:4b:b5:dc:0e:23:9e:d3:d4:b4:a8:a6:59:34:03:c6:43: f0:b4:b9:01:bf:d8:88:ec:6e:d2:9e:30:85:ff:f6:e3:cd:46: 1e:6b:c5:13:d6:70:35:d9:79:b5:71:6b:f0:12:95:fb:52:9b: 4b:a2:8d:bd:f5:db:37:29:1d:3c:a6:c9:66:68:b7:ad:f2:f5: 42:81:bc:30:3a:98:fd:8d:54:9f:84:61:4c:7d:bf:36:bd:08: b0:92:be:65:c9:e2:d6:78:7e:35:a5:02:e1:3f:3c:7b:fe:2d: 49:15:19:b5:39:e8:07:20:40:a1:b7:23:a6:7b:f3:86:71:5a: 94:de:75:a3:d5:91:a2:92:7a:66:68:6d:94:24:90:12:22:3d: c7:2a:82:79:ee:8d:0c:57:ca:1c:02:3f:64:ca:a0:d7:5a:01: 7d:4b:f3:01:b0:79:b9:e1:ea:39:ab:9c:16:dc:dc:85:63:de: e9:0f:8a:c5:df:53:39:b5:29:39:0b:7f:4c:a1:ba:94:4d:25: 3c:9b:8c:7d:82:70:48:2c:f0:84:38:1e:34:8b:0e:c3:cd:49: c2:05:60:f1:c3:8b:d7:25:5a:63:ce:ad:2b:8d:d7:2c:49:4f: 87:d6:87:cf:c9:dc:5b:e0:3e:98:f7:f5:00:67:d1:95:23:be: 50:f3:85:98 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOJoa5yVVRm0yrOg7FsqRKgVPCu0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTIxMDAwMDAwWhcNMjUwMjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOTk0MjU4ODRjZDllZmIxNzQzZDRmNGZhYjI3NDFjZTA0 ZGY0NzZjNWU2ZjBmZWY0MjkyMjU4NjQ0OGZiMjBhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDX5xUJyoYoCuWnDa3S2nNO9zmHOHxtk2NJ2yCg8BcTm8pb x/s9GRXsJbRBwMky2VgqjVchZD8EsThttwNjy14lMpU0P+ed77yY4+naleFr2go/ ywZwSyiYWpST3BM7D6HXNGYMFcp4Sbw7IcCosLukFn0vsXpAMNWq59+G4VKJ37JK tYWpIa65eP61lyNpbDfeIve2Hd6CbcMpNQzak6ILMXH0uuULVukTNyqdWbkIPnlP IG35/WJF7wLR0AjD1A7hZTdbQTDXKM06/7faui2/5oWVt2UDduAgPAs20HWICpcP xw5kLdiLQHAAbCvgosWiSOXQfJkfEa2MMbNTXDrZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUDAD52vMuG3c33OtzEAqqNibwG5cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q3NDU4ODBkLTllNmEtNDQ5Yy05Yzk5LWNhZWU3OTIxNDQ1ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2ADANBgkqhkiG9w0BAQsFAAOCAQEAl2hLtdwOI57T1LSoplk0A8ZD8LS5 Ab/YiOxu0p4whf/2481GHmvFE9ZwNdl5tXFr8BKV+1KbS6KNvfXbNykdPKbJZmi3 rfL1QoG8MDqY/Y1Un4RhTH2/Nr0IsJK+Zcni1nh+NaUC4T88e/4tSRUZtTnoByBA obcjpnvzhnFalN51o9WRopJ6ZmhtlCSQEiI9xyqCee6NDFfKHAI/ZMqg11oBfUvz AbB5ueHqOaucFtzchWPe6Q+Kxd9TObUpOQt/TKG6lE0lPJuMfYJwSCzwhDgeNIsO w81JwgVg8cOL1yVaY86tK43XLElPh9aHz8ncW+A+mPf1AGfRlSO+UPOFmA== -----END CERTIFICATE-----Generated at Sun Feb 16 15:39:53 2025 by rpki-client