$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da395588-d89b-4035-b834-7552c1e5a259.roa File: da395588-d89b-4035-b834-7552c1e5a259.roa (raw, json) Hash identifier: 2r3B0dnxZPPwgnPdsw9RlT99SmjlbHyrEfem0H4L2pY= Subject key identifier: 28:31:29:4E:2A:0C:0B:03:A5:DB:28:7D:19:EA:98:84:E2:28:B4:88 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 35D737BC0DF09B482F48C628C783D2C39F9479FF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da395588-d89b-4035-b834-7552c1e5a259.roa Signing time: Wed 12 Feb 2025 00:00:00 +0000 ROA not before: Wed 12 Feb 2025 00:00:00 +0000 ROA not after: Wed 19 Mar 2025 23:59:59 +0000 asID: 8987 IP address blocks: 76.223.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:d7:37:bc:0d:f0:9b:48:2f:48:c6:28:c7:83:d2:c3:9f:94:79:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 12 00:00:00 2025 GMT Not After : Mar 19 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:d0:c9:c0:f7:e6:2c:63:ce:91:27:4c:55:08: 40:74:fc:41:d2:e1:0a:d8:91:b6:46:35:e9:c2:d3: 64:82:e1:7d:39:cb:b0:dd:de:1b:7f:aa:4c:67:c2: 7f:b6:19:a3:30:2a:2a:58:e8:63:40:a8:16:75:d7: 10:81:a3:d8:6a:40:14:8f:35:ef:bb:80:57:5f:1c: 29:87:d3:d7:84:0b:82:41:f4:fe:67:19:72:2b:73: 14:01:d8:bc:25:9c:5a:4d:6f:4b:26:ff:ae:d1:93: 77:32:61:b9:bd:70:a3:3a:5a:e6:c7:b2:36:6f:2d: 1a:30:bf:a2:26:fa:9b:e0:23:2d:d4:3e:85:82:e4: 6b:89:2f:24:a0:63:79:c8:d8:d2:51:27:95:d9:23: f4:5e:2c:10:52:e0:7d:8c:12:27:5a:c7:c0:1f:d8: 95:0c:75:0b:65:2c:ad:e6:30:1a:31:4a:42:be:39: c2:32:e4:b6:02:4f:93:1f:57:50:7e:24:37:a3:13: c4:55:6f:fb:4e:c3:d1:70:8c:62:39:32:14:72:af: 5e:bb:55:cb:8a:79:88:3d:bf:93:81:1b:53:64:d0: 2f:87:1a:f3:f0:1a:86:be:ae:7a:aa:60:ab:e6:e4: 7b:c3:9f:f8:84:1a:c9:54:68:90:2b:9a:6b:60:f6: d8:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:31:29:4E:2A:0C:0B:03:A5:DB:28:7D:19:EA:98:84:E2:28:B4:88 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da395588-d89b-4035-b834-7552c1e5a259.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.168.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:75:73:78:71:3d:85:f5:a9:fc:42:bf:43:a5:0e:0e:5e:d9: e6:67:fe:77:42:87:74:6d:30:0f:8e:94:bf:1a:e7:8d:96:e8: db:94:38:03:f9:78:6b:e2:f7:77:ed:78:ab:12:80:2f:54:e3: 72:ef:a3:00:7f:68:2a:a7:79:f0:48:8a:89:b4:e3:76:60:9e: c0:03:b0:e1:e8:89:40:1d:16:2e:60:f9:21:fb:7a:1b:4c:fb: 29:28:70:b7:da:18:b2:62:39:3d:ba:db:d6:4f:80:bc:5b:43: 86:df:7d:7e:ec:87:dd:10:31:70:06:5d:19:fb:cd:1c:00:90: b9:31:fe:24:a9:15:6a:26:f9:25:ba:04:dc:a9:50:9f:39:08: 79:d2:0e:d1:72:01:b7:7d:a2:af:18:bb:1b:3f:61:97:6b:69: 9e:f0:20:2f:45:81:61:5b:8c:a8:11:16:b0:5c:9d:ca:5a:a5: f8:a5:8c:0e:f0:f8:15:96:35:54:19:bd:8f:67:d9:23:1f:b5: 2b:fa:d0:1a:d9:af:e8:70:f3:4a:ab:2f:53:9c:53:79:da:ac: fe:ef:9e:b6:19:57:94:4e:c4:51:a0:b2:13:cb:a7:44:b6:20: a3:72:bb:58:7a:7b:57:fd:01:65:f1:4f:a6:3d:29:e3:7c:07: 5d:2d:e9:35 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNdc3vA3wm0gvSMYox4PSw5+Uef8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjEyMDAwMDAwWhcNMjUwMzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YjJlYzFkZTMzYzExYTkyZmFhMDBhZjlkOTQyYzhkYzlj YjQ3N2RhOGE3OTUyNzk5YjA0MzFkOTFhMGE2YjgzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCD0MnA9+YsY86RJ0xVCEB0/EHS4QrYkbZGNenC02SC4X05 y7Dd3ht/qkxnwn+2GaMwKipY6GNAqBZ11xCBo9hqQBSPNe+7gFdfHCmH09eEC4JB 9P5nGXIrcxQB2LwlnFpNb0sm/67Rk3cyYbm9cKM6WubHsjZvLRowv6Im+pvgIy3U PoWC5GuJLySgY3nI2NJRJ5XZI/ReLBBS4H2MEidax8Af2JUMdQtlLK3mMBoxSkK+ OcIy5LYCT5MfV1B+JDejE8RVb/tOw9FwjGI5MhRyr167VcuKeYg9v5OBG1Nk0C+H GvPwGoa+rnqqYKvm5HvDn/iEGslUaJArmmtg9tjnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKDEpTioMCwOl2yh9GeqYhOIotIgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RhMzk1NTg4LWQ4OWItNDAzNS1iODM0LTc1NTJjMWU1YTI1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM36gwDQYJKoZIhvcNAQELBQADggEBAAx1c3hxPYX1qfxCv0OlDg5e2eZn /ndCh3RtMA+OlL8a542W6NuUOAP5eGvi93fteKsSgC9U43LvowB/aCqnefBIiom0 43ZgnsADsOHoiUAdFi5g+SH7ehtM+ykocLfaGLJiOT2629ZPgLxbQ4bffX7sh90Q MXAGXRn7zRwAkLkx/iSpFWom+SW6BNypUJ85CHnSDtFyAbd9oq8Yuxs/YZdraZ7w IC9FgWFbjKgRFrBcncpapfiljA7w+BWWNVQZvY9n2SMftSv60BrZr+hw80qrL1Oc U3narP7vnrYZV5ROxFGgshPLp0S2IKNyu1h6e1f9AWXxT6Y9KeN8B10t6TU= -----END CERTIFICATE-----Generated at Sun Feb 16 06:08:48 2025 by rpki-client