$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d79f801b-3499-4a1e-bd4a-c93dc95bbbab.roa File: d79f801b-3499-4a1e-bd4a-c93dc95bbbab.roa (raw, json) Hash identifier: z4J24TuVaq/j7o7kZLwVEAQHrRxFUjpx5/LUTQn0uiQ= Subject key identifier: 7D:05:98:54:73:5A:A9:9D:22:90:64:12:D5:A2:7D:E0:11:AD:7A:33 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2EA8FD665ED9760423E10A5C23FB27903EFD2297 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d79f801b-3499-4a1e-bd4a-c93dc95bbbab.roa Signing time: Fri 07 Feb 2025 00:00:00 +0000 ROA not before: Fri 07 Feb 2025 00:00:00 +0000 ROA not after: Fri 14 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.107.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:a8:fd:66:5e:d9:76:04:23:e1:0a:5c:23:fb:27:90:3e:fd:22:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 7 00:00:00 2025 GMT Not After : Mar 14 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ad:4d:2e:99:fd:9a:dd:dd:05:d8:87:b2:77: c1:29:39:4c:57:d7:d9:76:f7:c1:fe:fb:8b:bd:50: 36:6b:bf:16:31:6d:d5:fb:6a:69:20:b6:b4:77:94: 0e:56:d4:ae:a3:fe:28:37:1b:38:41:74:a2:fd:1e: 6b:6a:cc:8c:c7:89:72:4b:d3:1c:98:53:61:6c:ae: 8f:a9:ba:46:18:6d:0d:fb:be:00:21:55:2e:51:ae: 04:29:75:07:f6:79:49:c3:72:40:5e:d5:93:08:ab: 0c:b3:6e:61:92:2f:02:96:f1:91:ff:69:87:6a:00: cb:9e:44:db:a9:ca:03:0c:33:d5:4d:64:97:c8:14: 05:6f:f6:fc:6c:17:c3:1f:99:cb:ed:4a:8b:11:18: 1e:b1:5d:de:82:01:de:d2:07:da:bc:97:53:c5:7b: e1:53:f7:ee:61:4c:5d:7d:5d:fc:ce:da:3a:b1:ab: d6:5e:34:1e:46:39:58:1f:16:d6:7b:87:f3:64:a6: 92:11:2d:11:6d:a0:30:43:9b:f9:1b:06:10:45:03: bb:88:44:47:31:29:f9:01:f4:a4:62:cc:d2:db:fd: c4:f1:b8:63:d7:de:b3:8b:4b:96:1f:22:a9:68:c5: 0f:04:7e:96:5a:0c:6e:14:21:1e:b5:81:39:2f:f3: de:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:05:98:54:73:5A:A9:9D:22:90:64:12:D5:A2:7D:E0:11:AD:7A:33 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d79f801b-3499-4a1e-bd4a-c93dc95bbbab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.107.0.0/16 Signature Algorithm: sha256WithRSAEncryption 67:c1:58:97:01:40:2c:6c:aa:09:a1:6b:11:12:07:9f:7a:bd: 46:87:ac:77:37:d7:06:e7:5e:81:10:36:a8:52:1a:24:ba:8d: 19:be:7f:0c:e0:cb:4e:58:a6:47:71:80:7e:e0:0b:e0:28:e9: 4c:f0:06:d2:a9:7a:49:6d:07:ba:0b:aa:57:f1:5d:a6:62:7e: 60:54:11:52:77:9a:13:5e:93:e5:2e:77:21:3c:dc:dd:51:56: e0:e2:6d:76:c8:29:ad:b9:48:51:e7:27:38:a8:77:9f:9a:64: 8f:09:7a:93:60:84:1c:b4:88:e4:28:cc:d1:d8:e4:26:a3:4a: 68:23:a8:89:bf:a0:8d:7d:8c:68:b8:a0:a0:1f:88:d2:82:49: e9:8b:50:db:9e:f3:bb:f4:a2:7c:8d:a0:f2:f3:6b:2d:ed:f4: 52:d3:7d:c0:a6:dc:ef:59:8e:31:8f:e9:4b:94:0b:13:eb:6e: a2:cc:1a:8e:01:15:64:b3:44:5c:6c:e7:2e:8a:d1:3a:4d:58: a8:6f:c9:37:e8:81:53:f7:35:36:84:0b:b6:c1:2e:0f:6b:79: d7:ca:21:5d:d4:1c:ba:cd:34:d9:fd:59:74:6b:f5:d4:fb:a3: 93:d8:4e:f2:05:f4:da:e0:76:b5:2d:8c:34:95:ab:94:90:e6: bf:92:4d:7c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULqj9Zl7ZdgQj4QpcI/snkD79IpcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjA3MDAwMDAwWhcNMjUwMzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNjk5Yjg4MTQyM2U2MzIxNWQzZGM4NjUyYmE5OTA0Yjg5 ZGY3Y2Q3ZTgwMTBiYTU1NGIwZWNiMTdlZTVjODNiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMrU0umf2a3d0F2Ieyd8EpOUxX19l298H++4u9UDZrvxYx bdX7amkgtrR3lA5W1K6j/ig3GzhBdKL9HmtqzIzHiXJL0xyYU2Fsro+pukYYbQ37 vgAhVS5RrgQpdQf2eUnDckBe1ZMIqwyzbmGSLwKW8ZH/aYdqAMueRNupygMMM9VN ZJfIFAVv9vxsF8MfmcvtSosRGB6xXd6CAd7SB9q8l1PFe+FT9+5hTF19XfzO2jqx q9ZeNB5GOVgfFtZ7h/NkppIRLRFtoDBDm/kbBhBFA7uIREcxKfkB9KRizNLb/cTx uGPX3rOLS5YfIqloxQ8EfpZaDG4UIR61gTkv897nAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUfQWYVHNaqZ0ikGQS1aJ94BGtejMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q3OWY4MDFiLTM0OTktNGExZS1iZDRhLWM5M2RjOTViYmJhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQazANBgkqhkiG9w0BAQsFAAOCAQEAZ8FYlwFALGyqCaFrERIHn3q9Roes dzfXBudegRA2qFIaJLqNGb5/DODLTlimR3GAfuAL4CjpTPAG0ql6SW0HuguqV/Fd pmJ+YFQRUneaE16T5S53ITzc3VFW4OJtdsgprblIUecnOKh3n5pkjwl6k2CEHLSI 5CjM0djkJqNKaCOoib+gjX2MaLigoB+I0oJJ6YtQ257zu/SifI2g8vNrLe30UtN9 wKbc71mOMY/pS5QLE+tuoswajgEVZLNEXGznLorROk1YqG/JN+iBU/c1NoQLtsEu D2t518ohXdQcus002f1ZdGv11Pujk9hO8gX02uB2tS2MNJWrlJDmv5JNfA== -----END CERTIFICATE-----Generated at Sun Feb 16 15:24:02 2025 by rpki-client