$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ead37bf2-7aaf-49af-a2fa-0d2fe92a200f.roa File: ead37bf2-7aaf-49af-a2fa-0d2fe92a200f.roa (raw, json) Hash identifier: UiONHcWVSLuVKq6rpKAW8wr4SxciBavnk/WbLKCHXx8= Subject key identifier: EF:6A:4A:5E:7E:3A:ED:F7:81:4F:DC:93:1D:9F:12:56:FE:66:69:CB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6955F28C16C9B327769E8EDA31D017DB6D619D45 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ead37bf2-7aaf-49af-a2fa-0d2fe92a200f.roa Signing time: Mon 10 Feb 2025 00:00:00 +0000 ROA not before: Mon 10 Feb 2025 00:00:00 +0000 ROA not after: Mon 17 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.224.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:55:f2:8c:16:c9:b3:27:76:9e:8e:da:31:d0:17:db:6d:61:9d:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 10 00:00:00 2025 GMT Not After : Mar 17 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c1:fc:e9:93:bc:69:7c:e9:25:47:7b:85:c1: e3:4c:34:65:ca:eb:46:53:c8:50:11:4a:59:25:10: bb:0c:4a:0a:40:25:b0:aa:4a:11:46:87:09:53:99: 03:1b:14:3e:02:70:59:11:61:ce:0a:05:10:c2:a5: bb:34:37:23:53:96:82:43:9b:c5:bf:47:ad:28:56: d8:92:a1:61:88:4f:ca:c3:be:74:26:4f:77:eb:fa: 38:1c:e9:55:b6:e7:9f:29:b4:27:73:ca:a9:a0:cc: 33:57:fb:61:f4:c4:88:c8:30:72:62:5c:3a:db:4c: c8:c9:fc:a3:0f:36:8b:fe:b5:3c:9c:e8:68:d9:27: 54:d3:21:22:ff:b8:d5:3b:eb:60:8d:08:cb:d2:00: 16:b4:47:64:c7:e5:28:bc:28:5b:39:00:06:cf:ca: a7:c2:ed:c5:9f:37:39:52:39:24:62:ba:ce:a7:3c: 4d:fe:07:22:de:f3:33:88:e9:d2:2c:52:b9:fb:d8: 7f:c2:ba:58:3e:d9:d8:56:a4:f5:29:60:2b:85:76: 7e:47:a9:ec:ed:42:58:cd:a2:28:d8:96:09:50:cf: 0a:c5:7b:7a:66:6f:32:3e:db:41:c1:03:e3:f4:38: 6d:21:ef:9f:36:e7:77:3c:39:c5:8a:f6:c1:82:de: 9a:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:6A:4A:5E:7E:3A:ED:F7:81:4F:DC:93:1D:9F:12:56:FE:66:69:CB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ead37bf2-7aaf-49af-a2fa-0d2fe92a200f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.224.0.0/16 Signature Algorithm: sha256WithRSAEncryption 73:58:2c:15:6b:21:a8:fb:13:3d:61:53:02:fd:a9:18:01:35: ed:87:7a:66:70:00:47:c7:51:72:50:08:5e:e8:cd:15:21:ff: c5:01:c4:83:a2:fc:2e:32:e7:03:2b:8a:54:0e:2b:4e:f8:d1: 39:0e:43:5a:a7:e7:21:ec:e2:5b:f0:53:c6:a3:e6:a0:ce:f3: 90:fe:dd:2c:cd:3a:70:36:13:55:57:9a:cd:45:3d:4a:cd:11: 99:a6:73:21:92:b1:89:8b:e1:17:9e:4d:e5:e3:a7:79:f7:54: 2c:4b:17:e0:40:df:62:61:99:5a:39:22:2c:fc:5e:f2:35:c2: d6:a4:c2:0d:fd:79:88:95:e8:09:44:2c:10:bd:38:05:c4:3b: f3:36:1c:a3:c8:5e:90:2b:1a:76:49:49:48:77:06:c6:71:f0: da:71:d5:86:8f:f4:ea:01:f1:a9:39:be:29:1b:ff:f1:44:bd: e9:1e:e0:a6:11:b8:6b:b9:8e:51:88:b9:b8:3a:7b:ba:5a:31: 1b:5c:67:9f:1a:09:ad:66:42:e1:20:a0:36:0d:b3:5c:0a:80: be:47:c5:06:79:15:97:8e:62:d4:b0:ee:d2:a3:2b:dc:f4:39: df:6c:7c:16:07:3e:e0:98:25:4f:37:8a:63:82:de:15:44:14: e2:87:a5:ea -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUaVXyjBbJsyd2no7aMdAX221hnUUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjEwMDAwMDAwWhcNMjUwMzE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkY2FkNzVhMGQzOTdiYWM4YjZiZDNhNWYzNTBkMzVmYTk0 NTRkOTU3MDQ3MzAxNDI3OGI4OTNjMjJlNDhlN2Q3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPwfzpk7xpfOklR3uFweNMNGXK60ZTyFARSlklELsMSgpA JbCqShFGhwlTmQMbFD4CcFkRYc4KBRDCpbs0NyNTloJDm8W/R60oVtiSoWGIT8rD vnQmT3fr+jgc6VW2558ptCdzyqmgzDNX+2H0xIjIMHJiXDrbTMjJ/KMPNov+tTyc 6GjZJ1TTISL/uNU762CNCMvSABa0R2TH5Si8KFs5AAbPyqfC7cWfNzlSOSRius6n PE3+ByLe8zOI6dIsUrn72H/Culg+2dhWpPUpYCuFdn5HqeztQljNoijYlglQzwrF e3pmbzI+20HBA+P0OG0h758253c8OcWK9sGC3prbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU72pKXn467feBT9yTHZ8SVv5macswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VhZDM3YmYyLTdhYWYtNDlhZi1hMmZhLTBkMmZlOTJhMjAwZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAP4DANBgkqhkiG9w0BAQsFAAOCAQEAc1gsFWshqPsTPWFTAv2pGAE17Yd6 ZnAAR8dRclAIXujNFSH/xQHEg6L8LjLnAyuKVA4rTvjROQ5DWqfnIeziW/BTxqPm oM7zkP7dLM06cDYTVVeazUU9Ss0RmaZzIZKxiYvhF55N5eOnefdULEsX4EDfYmGZ WjkiLPxe8jXC1qTCDf15iJXoCUQsEL04BcQ78zYco8hekCsadklJSHcGxnHw2nHV ho/06gHxqTm+KRv/8US96R7gphG4a7mOUYi5uDp7uloxG1xnnxoJrWZC4SCgNg2z XAqAvkfFBnkVl45i1LDu0qMr3PQ532x8Fgc+4JglTzeKY4LeFUQU4oel6g== -----END CERTIFICATE-----Generated at Sun Feb 16 15:30:41 2025 by rpki-client