$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d947157d-70fb-4555-9dd2-32db83e4633c.roa File: d947157d-70fb-4555-9dd2-32db83e4633c.roa (raw, json) Hash identifier: jRYYDdQcdo8/YkY1nmVFGyDVwNVniCiyCeCXCOykqtY= Subject key identifier: FD:1B:B3:1B:30:4E:E6:9E:4C:10:67:5F:E3:F5:16:53:17:1E:20:BE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1B0CED4D7C4021D8CAEDE145030750A4ABBFB884 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d947157d-70fb-4555-9dd2-32db83e4633c.roa Signing time: Fri 24 Jan 2025 00:00:00 +0000 ROA not before: Fri 24 Jan 2025 00:00:00 +0000 ROA not after: Fri 28 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 63.246.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:0c:ed:4d:7c:40:21:d8:ca:ed:e1:45:03:07:50:a4:ab:bf:b8:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 24 00:00:00 2025 GMT Not After : Feb 28 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:23:76:62:64:11:1a:ad:9a:d8:a6:72:e3:fb: 1e:0d:cb:41:9a:4d:80:fe:eb:47:66:68:70:09:7c: 7a:d0:2b:e2:9f:ce:52:bf:c6:ff:65:6f:42:fc:f8: 25:8e:cb:33:6f:ed:96:22:3e:22:b7:7d:fc:c8:b0: 65:2f:fb:7e:dd:16:d6:ab:40:d0:48:e2:2d:5c:32: b8:4c:90:fd:fd:fd:26:bd:0d:ec:02:ce:19:26:4e: 88:3e:83:d0:76:f2:09:a8:8e:d9:36:ee:35:be:79: 96:a1:5b:6e:bc:58:ad:44:87:08:f5:bf:bc:45:25: a7:2c:39:13:8c:3a:96:ac:61:2d:fc:17:e3:98:94: de:9a:87:17:0c:80:08:44:8d:33:91:82:b7:8f:b1: 94:9a:6b:75:94:8b:ae:21:11:aa:86:e1:ba:85:a7: 51:84:c4:68:8a:81:be:30:05:4a:87:24:2b:8c:9a: 06:57:9c:14:7f:11:c8:95:e0:df:08:99:e2:fd:92: 97:74:20:1f:92:09:a9:8e:3f:6c:30:85:49:0f:60: 30:87:1d:28:cd:16:5b:1b:df:2f:e5:94:75:8b:2c: 3e:a9:77:50:bb:c6:63:ab:f8:0e:66:db:4e:33:5f: 5d:a4:fc:85:7c:49:f4:41:94:0e:cd:c0:06:3c:d1: b2:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:1B:B3:1B:30:4E:E6:9E:4C:10:67:5F:E3:F5:16:53:17:1E:20:BE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d947157d-70fb-4555-9dd2-32db83e4633c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 63.246.119.0/24 Signature Algorithm: sha256WithRSAEncryption 24:54:43:79:70:e9:cd:68:14:92:89:1a:ad:81:42:e9:d1:96: 26:aa:4b:c4:79:d2:e3:21:10:20:f7:ba:1d:68:14:e5:6e:5a: 6f:d9:88:91:a1:c3:f2:12:41:bd:24:08:4f:bc:df:54:cb:f8: 5c:1a:d0:12:7a:ee:c3:71:c6:d5:c7:f5:22:85:0f:c3:b5:fa: e8:43:8d:5a:49:cd:d8:d8:bd:94:36:53:5b:1d:4f:55:44:ea: f4:fc:b7:ab:a1:3e:d5:4c:03:24:44:ec:90:fa:08:ab:dc:8d: b2:62:ff:c7:87:56:bb:9e:df:b3:73:0b:c0:0f:af:04:65:6d: db:57:a3:bd:ad:8c:6a:ad:20:28:4d:d9:9f:fa:d7:77:5e:7e: cb:ba:f6:ee:d0:0c:d4:10:47:c0:59:a2:28:bb:f0:22:67:9e: 61:6a:d6:10:87:57:1b:68:af:08:e7:18:57:70:e3:fc:96:03: ed:87:12:2b:61:bd:a3:76:d4:db:69:93:33:bc:b2:0e:51:08: a6:f8:a7:7f:b4:1e:9f:37:27:7b:f1:c3:20:db:c6:03:23:b0: 26:51:19:54:8a:f9:9a:47:7a:42:e4:3f:63:fa:cb:4d:52:00: e1:c8:64:a5:45:d2:e2:df:ed:35:db:eb:2c:50:8c:61:86:0c: 76:09:7c:d6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGwztTXxAIdjK7eFFAwdQpKu/uIQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTI0MDAwMDAwWhcNMjUwMjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZmY3YzlmMTQyM2U4ZmQzNDE2MjI2NmExOTJhNjkxMjk0 YWJkZmE1ZTNmY2Q0ZjQ1OWIyMDM4NDRiZjQ5NzYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDI3ZiZBEarZrYpnLj+x4Ny0GaTYD+60dmaHAJfHrQK+Kf zlK/xv9lb0L8+CWOyzNv7ZYiPiK3ffzIsGUv+37dFtarQNBI4i1cMrhMkP39/Sa9 DewCzhkmTog+g9B28gmojtk27jW+eZahW268WK1Ehwj1v7xFJacsOROMOpasYS38 F+OYlN6ahxcMgAhEjTORgrePsZSaa3WUi64hEaqG4bqFp1GExGiKgb4wBUqHJCuM mgZXnBR/EciV4N8ImeL9kpd0IB+SCamOP2wwhUkPYDCHHSjNFlsb3y/llHWLLD6p d1C7xmOr+A5m204zX12k/IV8SfRBlA7NwAY80bI5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/RuzGzBO5p5MEGdf4/UWUxceIL4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q5NDcxNTdkLTcwZmItNDU1NS05ZGQyLTMyZGI4M2U0NjMzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA/9ncwDQYJKoZIhvcNAQELBQADggEBACRUQ3lw6c1oFJKJGq2BQunRliaq S8R50uMhECD3uh1oFOVuWm/ZiJGhw/ISQb0kCE+831TL+Fwa0BJ67sNxxtXH9SKF D8O1+uhDjVpJzdjYvZQ2U1sdT1VE6vT8t6uhPtVMAyRE7JD6CKvcjbJi/8eHVrue 37NzC8APrwRlbdtXo72tjGqtIChN2Z/613defsu69u7QDNQQR8BZoii78CJnnmFq 1hCHVxtorwjnGFdw4/yWA+2HEithvaN21NtpkzO8sg5RCKb4p3+0Hp83J3vxwyDb xgMjsCZRGVSK+ZpHekLkP2P6y01SAOHIZKVF0uLf7TXb6yxQjGGGDHYJfNY= -----END CERTIFICATE-----Generated at Sun Feb 16 15:06:59 2025 by rpki-client