$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9e9a00e-aef9-48c7-88f3-d63013d1afa8.roa File: e9e9a00e-aef9-48c7-88f3-d63013d1afa8.roa (raw, json) Hash identifier: wcWi5CfgpaERnBPJzaHdQvM6bCxjgLNdihPI2zQqAHY= Subject key identifier: E6:DE:13:D5:9A:BB:F4:AF:C4:F2:A4:F7:07:9E:73:82:FD:C0:54:4F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 391339FB9896BF40428C73C6B1EFB0AFC44A3AFF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9e9a00e-aef9-48c7-88f3-d63013d1afa8.roa Signing time: Tue 21 Jan 2025 00:00:00 +0000 ROA not before: Tue 21 Jan 2025 00:00:00 +0000 ROA not after: Tue 25 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 96.0.104.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:13:39:fb:98:96:bf:40:42:8c:73:c6:b1:ef:b0:af:c4:4a:3a:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 21 00:00:00 2025 GMT Not After : Feb 25 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:78:8a:e4:a0:a0:b4:69:77:27:36:0d:f0:c9: 27:62:3b:9d:7a:d9:43:70:de:25:3e:bc:f3:5c:8a: 89:7f:55:d7:f2:84:52:e6:35:de:1a:ac:a6:2c:e5: 4b:b4:99:53:e3:46:f0:03:fb:aa:d2:89:90:ba:1e: 82:36:94:bb:1d:6a:ed:e4:e5:61:26:20:5d:a3:eb: 74:38:04:c2:76:34:72:6e:22:4f:d2:01:55:69:86: 20:70:5d:c9:54:86:cf:c1:b8:0a:a5:86:14:b9:a8: 2d:4a:ec:7d:74:f2:42:ab:10:ab:ff:70:80:1b:6b: 66:4b:6e:61:ca:af:7a:cc:28:98:58:09:b1:d8:1f: 2f:7f:21:ce:f1:85:27:cf:5d:05:80:74:a0:1a:69: c0:b6:3b:b8:6c:8b:2f:04:a2:7f:86:46:03:96:84: 59:3d:f4:05:e0:58:73:3d:e4:ae:74:7b:63:32:1c: c9:7b:8b:22:c6:c7:a6:76:77:70:d9:5a:fd:84:ad: a8:c1:61:72:82:c9:c5:60:3c:61:52:24:d2:8b:bc: 28:9e:d5:96:3f:1a:ee:e7:86:91:87:19:73:3e:b1: 09:ac:47:2c:f7:ed:3d:37:6e:07:02:23:ff:d9:c2: 88:b1:f7:c6:8e:c6:d8:be:1d:36:6c:6d:59:d9:59: 6b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:DE:13:D5:9A:BB:F4:AF:C4:F2:A4:F7:07:9E:73:82:FD:C0:54:4F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9e9a00e-aef9-48c7-88f3-d63013d1afa8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.104.0/22 Signature Algorithm: sha256WithRSAEncryption 5c:7f:38:48:41:36:1e:ea:d4:5c:ea:dc:c4:d5:89:81:38:53: 6f:b3:d7:d1:15:bb:2d:9d:54:89:e1:f7:66:f7:a1:1c:23:94: be:c0:45:b6:05:b1:7a:84:4d:9e:50:c6:c9:88:a1:70:df:b1: 4e:d6:b7:94:ab:0b:bb:e5:6b:6b:34:cc:98:db:75:d1:0e:b5: b7:6d:6e:75:5d:49:37:dd:ca:4a:ae:7b:9c:45:69:43:1d:9c: 60:3f:97:c2:ac:04:e1:09:87:c3:e3:fc:db:6f:f9:fc:59:e6: 67:23:a2:01:6a:06:09:ea:47:0e:e7:91:f8:c9:3b:45:13:63: 67:de:b3:41:42:f0:ca:cf:49:af:81:15:80:3e:29:85:1f:89: ea:e2:9c:7a:24:84:92:05:e4:d3:5c:33:c6:ca:ba:7a:46:7a: 0f:d5:e7:76:16:2f:3b:7e:96:51:23:aa:33:16:38:14:ea:be: 41:61:34:2d:fa:26:fd:6c:23:8c:a9:17:f1:b7:db:63:51:c2: b2:16:60:27:37:65:b4:57:af:11:b4:2f:ea:0c:ac:82:52:3e: 54:ea:49:fc:37:8e:d5:2b:c8:ef:3b:f3:d1:40:f6:9e:d6:ff: 13:06:4c:3a:78:a8:ff:62:ff:c2:8d:88:d3:9d:d4:8b:01:19: 40:95:c8:df -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUORM5+5iWv0BCjHPGse+wr8RKOv8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTIxMDAwMDAwWhcNMjUwMjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNmJmZGY3YTFjODU1NzcxNmFhMzY0ZjM0NDc5ODFkZDM0 NjIxNjY1YzFjMjhhOWU4NTJlMzUzODJmOGI3ZWY3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCNeIrkoKC0aXcnNg3wySdiO5162UNw3iU+vPNciol/Vdfy hFLmNd4arKYs5Uu0mVPjRvAD+6rSiZC6HoI2lLsdau3k5WEmIF2j63Q4BMJ2NHJu Ik/SAVVphiBwXclUhs/BuAqlhhS5qC1K7H108kKrEKv/cIAba2ZLbmHKr3rMKJhY CbHYHy9/Ic7xhSfPXQWAdKAaacC2O7hsiy8Eon+GRgOWhFk99AXgWHM95K50e2My HMl7iyLGx6Z2d3DZWv2ErajBYXKCycVgPGFSJNKLvCie1ZY/Gu7nhpGHGXM+sQms Ryz37T03bgcCI//Zwoix98aOxti+HTZsbVnZWWt7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5t4T1Zq79K/E8qT3B55zgv3AVE8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U5ZTlhMDBlLWFlZjktNDhjNy04OGYzLWQ2MzAxM2QxYWZhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJgAGgwDQYJKoZIhvcNAQELBQADggEBAFx/OEhBNh7q1Fzq3MTViYE4U2+z 19EVuy2dVInh92b3oRwjlL7ARbYFsXqETZ5QxsmIoXDfsU7Wt5SrC7vla2s0zJjb ddEOtbdtbnVdSTfdykque5xFaUMdnGA/l8KsBOEJh8Pj/Ntv+fxZ5mcjogFqBgnq Rw7nkfjJO0UTY2fes0FC8MrPSa+BFYA+KYUfierinHokhJIF5NNcM8bKunpGeg/V 53YWLzt+llEjqjMWOBTqvkFhNC36Jv1sI4ypF/G322NRwrIWYCc3ZbRXrxG0L+oM rIJSPlTqSfw3jtUryO8789FA9p7W/xMGTDp4qP9i/8KNiNOd1IsBGUCVyN8= -----END CERTIFICATE-----Generated at Wed Feb 5 10:01:37 2025 by rpki-client