$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e5f10326-ab82-4d73-a49a-9b759e8f8f93.roa File: e5f10326-ab82-4d73-a49a-9b759e8f8f93.roa (raw, json) Hash identifier: u2LQOkDvu5qJu/qW48Os2JZdDpe3HpkjjRkSijEPkOs= Subject key identifier: 96:23:4F:80:F9:D5:17:22:08:84:9C:A3:4B:1C:1B:62:22:0A:CF:77 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4010B0B557C1579E56689086252917A6A7EA373B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e5f10326-ab82-4d73-a49a-9b759e8f8f93.roa Signing time: Tue 21 Jan 2025 00:00:00 +0000 ROA not before: Tue 21 Jan 2025 00:00:00 +0000 ROA not after: Tue 25 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 96.0.56.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:10:b0:b5:57:c1:57:9e:56:68:90:86:25:29:17:a6:a7:ea:37:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 21 00:00:00 2025 GMT Not After : Feb 25 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a9:62:92:f6:83:4b:df:5a:71:58:9e:f7:94: 24:79:13:54:e7:50:70:e4:08:66:cb:bd:3e:a7:4f: a3:6a:81:77:6b:34:34:d0:ca:ad:c4:5b:58:9a:77: a5:fd:8b:82:4d:2c:db:6a:1f:0d:c3:e5:02:92:e6: e9:1a:2c:25:f1:ad:fd:29:93:fb:e6:07:a6:12:49: 11:7f:d9:d1:bb:50:ad:ca:8e:53:e2:5f:e1:cb:62: 57:1a:34:c6:5a:8d:d2:0b:ee:b9:88:e1:5a:f4:30: f8:9f:a1:2a:bb:3c:7f:03:b6:ec:e2:96:d1:7e:89: 34:d5:0e:a2:7f:c6:37:48:67:40:b3:80:a5:1d:41: 00:67:b5:a5:29:1b:d2:8f:07:ff:c9:d8:84:5f:9b: 15:ad:67:c9:02:5b:f8:b0:d9:56:1a:ca:36:19:f3: 7a:a0:cf:a5:c5:10:da:2b:2c:50:ea:d3:c7:3d:00: c4:63:e4:54:89:f2:30:0b:16:a4:c0:3f:c0:18:a3: a1:a2:5b:12:45:6f:8c:1c:4f:0d:37:52:b3:ea:44: a3:e5:b6:2e:93:f5:4e:a2:70:7d:67:95:07:37:20: 64:57:02:cb:76:7f:c4:46:09:00:5a:4b:e9:b7:41: 7f:67:f3:07:72:1a:89:66:37:70:93:b5:26:69:e0: 34:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:23:4F:80:F9:D5:17:22:08:84:9C:A3:4B:1C:1B:62:22:0A:CF:77 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e5f10326-ab82-4d73-a49a-9b759e8f8f93.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.56.0/22 Signature Algorithm: sha256WithRSAEncryption 14:f9:20:48:70:46:4e:93:db:62:c6:9a:95:31:ef:64:22:f5: eb:8f:7c:26:47:e5:83:d6:7d:0e:50:69:18:58:0b:31:94:85: c5:36:3a:88:84:a2:d2:ef:86:75:be:1c:b9:a1:b1:67:9a:84: 58:00:8b:cb:b3:39:69:54:9f:68:38:6b:0c:d9:ef:9a:97:64: bb:c1:5d:56:c9:58:08:28:5d:73:36:80:7f:11:be:0f:ce:34: 9c:3d:17:a6:a1:e8:41:30:51:a4:24:90:62:9c:ce:1f:ed:58: a6:30:7d:51:43:85:ff:72:6a:6f:77:a6:c1:ab:ea:3d:86:c5: 32:cf:4c:84:03:c5:6e:7e:2d:3f:27:36:6a:69:00:ca:a7:3b: 64:17:7e:99:3c:d1:ce:91:01:a2:ac:34:d1:f7:9b:cb:8f:ab: 57:3b:46:19:77:7b:44:04:02:a0:ea:27:bc:a9:99:ea:15:5f: 38:3a:aa:4e:ad:08:4b:22:5c:03:65:8f:8f:64:a9:ca:72:8e: 80:d1:34:53:3d:0d:61:26:7a:d8:9f:6c:2d:8d:95:08:f7:ff: 20:80:eb:74:32:f9:b5:e0:53:2e:a9:4c:64:9c:5a:ca:fe:3f: 85:f1:66:98:e8:77:0a:c6:f9:42:39:c5:9d:f1:2c:d1:38:e4: 3d:ce:40:88 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQBCwtVfBV55WaJCGJSkXpqfqNzswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTIxMDAwMDAwWhcNMjUwMjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxM2RkYWFhZjk2NDM5NWZlNWU1M2MxYjgyYjQyNmY3NmM4 NTE1ZWY0MmUyMTIyZDBkZTM4MWM5YmJjZTE3OTlkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsqWKS9oNL31pxWJ73lCR5E1TnUHDkCGbLvT6nT6NqgXdr NDTQyq3EW1iad6X9i4JNLNtqHw3D5QKS5ukaLCXxrf0pk/vmB6YSSRF/2dG7UK3K jlPiX+HLYlcaNMZajdIL7rmI4Vr0MPifoSq7PH8DtuziltF+iTTVDqJ/xjdIZ0Cz gKUdQQBntaUpG9KPB//J2IRfmxWtZ8kCW/iw2VYayjYZ83qgz6XFENorLFDq08c9 AMRj5FSJ8jALFqTAP8AYo6GiWxJFb4wcTw03UrPqRKPlti6T9U6icH1nlQc3IGRX Ast2f8RGCQBaS+m3QX9n8wdyGolmN3CTtSZp4DR/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUliNPgPnVFyIIhJyjSxwbYiIKz3cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U1ZjEwMzI2LWFiODItNGQ3My1hNDlhLTliNzU5ZThmOGY5My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJgADgwDQYJKoZIhvcNAQELBQADggEBABT5IEhwRk6T22LGmpUx72Qi9euP fCZH5YPWfQ5QaRhYCzGUhcU2OoiEotLvhnW+HLmhsWeahFgAi8uzOWlUn2g4awzZ 75qXZLvBXVbJWAgoXXM2gH8Rvg/ONJw9F6ah6EEwUaQkkGKczh/tWKYwfVFDhf9y am93psGr6j2GxTLPTIQDxW5+LT8nNmppAMqnO2QXfpk80c6RAaKsNNH3m8uPq1c7 Rhl3e0QEAqDqJ7ypmeoVXzg6qk6tCEsiXANlj49kqcpyjoDRNFM9DWEmetifbC2N lQj3/yCA63Qy+bXgUy6pTGScWsr+P4XxZpjodwrG+UI5xZ3xLNE45D3OQIg= -----END CERTIFICATE-----Generated at Wed Feb 5 09:37:34 2025 by rpki-client