$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0aba60b-aaf0-4d0c-ba8e-e61e702347bb.roa File: e0aba60b-aaf0-4d0c-ba8e-e61e702347bb.roa (raw, json) Hash identifier: zv8kYAaZGJB3H9H0VPWpSDc1f9P+AwS+fwWNtaFjlg4= Subject key identifier: D9:8D:A4:D0:F9:3C:83:A6:98:8F:C6:64:5D:8F:BB:DF:03:F7:01:3E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 23E823FDAA45A451B8FD01AE051E4B7D70749EC0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0aba60b-aaf0-4d0c-ba8e-e61e702347bb.roa Signing time: Sat 25 Jan 2025 00:00:00 +0000 ROA not before: Sat 25 Jan 2025 00:00:00 +0000 ROA not after: Sat 01 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.192.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:e8:23:fd:aa:45:a4:51:b8:fd:01:ae:05:1e:4b:7d:70:74:9e:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 25 00:00:00 2025 GMT Not After : Mar 1 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:58:68:c0:13:a1:4c:ad:36:b3:4d:cf:24:a8: 66:a5:97:e6:c4:42:61:97:b7:c8:1f:a8:3e:20:b5: 7e:86:49:8c:db:6c:1d:49:d0:b1:02:62:2d:ca:c4: b5:55:6c:17:e5:18:d0:85:83:78:06:25:08:d6:8d: d3:54:5d:09:87:f8:b8:b5:dc:5c:60:b2:33:12:b5: 69:a8:de:c8:80:9f:31:2d:98:c7:89:c8:d5:98:af: 7a:9d:ec:63:f5:ec:f5:88:ac:b4:76:ee:de:2e:24: 54:ad:f4:d9:f5:1a:da:06:ec:20:c9:4f:e8:a1:ce: 99:49:a8:39:a0:e0:e9:57:31:97:7e:6b:ba:8a:0f: 68:5e:20:f2:d7:b5:a5:cc:b6:1f:13:d4:68:2c:8c: 6e:88:1b:bd:40:ba:4f:50:16:9d:c1:6e:e5:35:85: b2:be:91:b9:6d:43:cc:05:87:db:e6:e4:e8:b2:c7: ce:d5:44:e2:9f:51:22:39:a8:fc:d4:9a:b8:e9:1c: ac:83:23:0e:77:ee:b9:e7:2a:97:d2:ad:a3:d8:ca: 07:44:9e:8b:cf:a8:69:69:37:59:88:fd:f5:65:9a: 0e:21:1f:c3:67:e0:65:61:92:5f:05:a2:d5:ac:f6: f0:74:3e:07:80:a4:28:59:6c:e3:92:e9:a5:6e:be: 81:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:8D:A4:D0:F9:3C:83:A6:98:8F:C6:64:5D:8F:BB:DF:03:F7:01:3E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0aba60b-aaf0-4d0c-ba8e-e61e702347bb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.192.0.0/16 Signature Algorithm: sha256WithRSAEncryption 93:e7:a5:f9:f9:2f:da:a0:1e:93:3c:1b:2f:1a:69:08:05:71: b3:d2:14:4a:ee:ca:68:cf:97:25:78:00:84:0c:82:f6:ef:3f: 4b:07:d7:47:0d:93:02:86:9c:f5:53:a1:f9:55:6c:ba:15:6e: 36:21:87:fd:74:ce:30:44:ef:01:a0:19:e4:24:8f:49:6c:3e: f0:31:4e:80:ce:b6:30:31:9c:c3:68:f1:3d:d4:2a:a9:76:89: ce:0f:ae:7b:ea:e5:29:4e:d4:82:14:4c:67:e8:ff:84:ae:8f: 9a:ae:3d:f7:76:ca:71:a2:94:bd:63:d8:35:0e:7d:2f:49:67: f3:6a:84:41:a3:6b:67:74:f8:d1:3e:12:1c:9c:56:1c:97:36: c4:bb:0f:1a:c7:bb:1c:2a:cf:30:d8:06:59:42:44:a3:aa:b4: e7:a8:58:4b:d7:51:08:fb:34:e7:3d:a8:d5:1a:c8:c9:3b:7d: c4:fd:6e:fe:18:d5:92:80:4e:40:1c:2b:0a:a3:5b:a9:25:85: c7:f9:0e:68:32:dc:69:f9:57:eb:a2:dd:bf:bb:ce:42:98:ec: a5:78:37:74:1c:57:b2:36:5b:f6:38:69:9c:ad:b7:a4:e2:9c: ca:ef:b0:9f:36:94:f0:18:74:69:7b:e0:60:99:5d:be:c6:ae: d4:ac:76:90 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUI+gj/apFpFG4/QGuBR5LfXB0nsAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTI1MDAwMDAwWhcNMjUwMzAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMGZlMDU2MTY4Njk0OTFkOTk3OWE4NzYyM2UwNDlhYTdi MzgzMjY4MmQzODk2NGI3MTFmYTA1Yjk0MzAyYzdjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdWGjAE6FMrTazTc8kqGall+bEQmGXt8gfqD4gtX6GSYzb bB1J0LECYi3KxLVVbBflGNCFg3gGJQjWjdNUXQmH+Li13FxgsjMStWmo3siAnzEt mMeJyNWYr3qd7GP17PWIrLR27t4uJFSt9Nn1GtoG7CDJT+ihzplJqDmg4OlXMZd+ a7qKD2heIPLXtaXMth8T1GgsjG6IG71Auk9QFp3BbuU1hbK+kbltQ8wFh9vm5Oiy x87VROKfUSI5qPzUmrjpHKyDIw537rnnKpfSraPYygdEnovPqGlpN1mI/fVlmg4h H8Nn4GVhkl8FotWs9vB0PgeApChZbOOS6aVuvoF5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU2Y2k0Pk8g6aYj8ZkXY+73wP3AT4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UwYWJhNjBiLWFhZjAtNGQwYy1iYThlLWU2MWU3MDIzNDdiYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQwDANBgkqhkiG9w0BAQsFAAOCAQEAk+el+fkv2qAekzwbLxppCAVxs9IU Su7KaM+XJXgAhAyC9u8/SwfXRw2TAoac9VOh+VVsuhVuNiGH/XTOMETvAaAZ5CSP SWw+8DFOgM62MDGcw2jxPdQqqXaJzg+ue+rlKU7UghRMZ+j/hK6Pmq4993bKcaKU vWPYNQ59L0ln82qEQaNrZ3T40T4SHJxWHJc2xLsPGse7HCrPMNgGWUJEo6q056hY S9dRCPs05z2o1RrIyTt9xP1u/hjVkoBOQBwrCqNbqSWFx/kOaDLcaflX66Ldv7vO QpjspXg3dBxXsjZb9jhpnK23pOKcyu+wnzaU8Bh0aXvgYJldvsau1Kx2kA== -----END CERTIFICATE-----Generated at Sun Feb 16 15:13:28 2025 by rpki-client