$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ed9be880-ae2a-4318-8a4e-68b0d8002e36.roa File: ed9be880-ae2a-4318-8a4e-68b0d8002e36.roa (raw, json) Hash identifier: FzHPC4/Thcd3940ND6omGm9JYqc8lJBvGAzvtR7k1YE= Subject key identifier: EF:42:C2:70:13:BC:6D:86:F4:7C:C3:64:99:15:09:99:35:B3:CC:A3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2B82A895A30E7A11ECFF8CCD05185611CCDE7DED Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ed9be880-ae2a-4318-8a4e-68b0d8002e36.roa Signing time: Tue 11 Feb 2025 00:00:00 +0000 ROA not before: Tue 11 Feb 2025 00:00:00 +0000 ROA not after: Tue 18 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 160.223.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:82:a8:95:a3:0e:7a:11:ec:ff:8c:cd:05:18:56:11:cc:de:7d:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 11 00:00:00 2025 GMT Not After : Mar 18 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:77:5d:01:74:fe:6f:4a:f6:7f:1c:db:e4:b4: 8e:06:16:6e:fd:17:44:db:69:71:99:68:17:4d:22: 1a:bc:b4:b8:a7:0b:f7:01:7b:df:6e:4e:6a:a6:95: 93:6b:8f:99:fc:27:73:45:b5:7d:ee:31:69:f5:11: a3:6c:30:bc:35:e7:40:f7:65:bd:35:97:c0:58:12: 46:89:64:63:b5:e2:84:81:8c:57:39:a2:de:fd:a0: a1:53:72:2d:81:e3:9b:92:11:b2:0c:88:05:7e:4c: b4:b2:95:e4:f4:1a:e1:54:1c:ff:b1:ca:2c:ef:5e: b3:35:23:f1:5b:bd:a3:c8:83:11:7e:b2:76:24:ef: 7c:6f:55:05:a0:af:09:f2:76:af:b5:31:be:17:68: 49:56:a1:f1:55:4c:82:87:3c:65:71:45:3f:b0:3e: 7d:be:c5:a2:de:54:2d:84:a1:f7:13:27:81:33:61: e6:b1:29:5a:34:9c:63:9d:0d:ba:ea:96:61:2e:34: dc:8b:1d:88:da:7c:ee:51:88:f7:55:92:8c:a4:28: 5b:82:34:f7:4a:ae:e9:21:05:76:23:31:62:bd:3c: 16:91:ca:bf:7f:bf:fb:16:e9:e5:1f:52:e5:ba:a8: 23:6e:78:b3:89:99:60:e2:7b:1e:b5:51:88:cf:54: 89:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:42:C2:70:13:BC:6D:86:F4:7C:C3:64:99:15:09:99:35:B3:CC:A3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ed9be880-ae2a-4318-8a4e-68b0d8002e36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.223.128.0/19 Signature Algorithm: sha256WithRSAEncryption 0f:5b:46:1b:cd:c0:83:d0:00:20:fd:41:15:a8:39:5a:bb:fe: 67:67:8e:56:13:e0:99:8d:b3:e5:b0:28:22:29:55:fc:40:65: 64:97:f0:34:c9:28:5f:54:1b:6e:3c:10:c2:b5:ee:f3:e6:fa: 0a:dc:1b:9f:02:ce:b6:63:72:94:b0:98:a4:cc:94:bc:1d:3c: a4:71:47:a2:28:73:20:7a:49:5d:b9:fc:b0:fc:fb:b0:e6:1c: db:36:e2:23:71:d7:31:79:13:13:60:75:2f:96:7c:71:d9:dc: 97:a9:42:b8:05:12:5d:33:e2:9f:6c:6c:ea:93:76:f5:e5:7d: 9d:5d:4d:63:e8:ea:d1:69:da:d4:ef:11:68:2a:6a:41:88:0b: df:f9:35:a4:0d:7a:e4:ee:e0:3f:56:ed:1f:0d:44:9b:20:76: 21:30:62:5e:66:7e:4b:d1:99:f9:77:1b:24:9b:ce:2c:c9:29: 73:5b:7e:2b:02:8f:24:86:cf:78:98:e1:cd:5e:43:4f:0a:3e: b9:74:9b:b1:6b:7a:39:cb:40:b4:85:ac:7f:3f:dd:67:97:9c: 4d:7e:1a:ca:a2:bc:2d:36:a4:e9:2d:ab:cf:4f:1a:21:45:11: d0:a4:b8:a1:1d:89:0c:71:c2:c4:31:2d:79:e4:07:af:c1:fd: f9:a1:ce:53 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK4KolaMOehHs/4zNBRhWEczefe0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjExMDAwMDAwWhcNMjUwMzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MTZjZjM1ZjUzYThhNDA4MGVlOGQzNjE5NzRlZjVjZWZj ZDAwMDY0ZDNmMzJlMzc3NWNmMWY5OGIyY2Q5ZTg2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmd10BdP5vSvZ/HNvktI4GFm79F0TbaXGZaBdNIhq8tLin C/cBe99uTmqmlZNrj5n8J3NFtX3uMWn1EaNsMLw150D3Zb01l8BYEkaJZGO14oSB jFc5ot79oKFTci2B45uSEbIMiAV+TLSyleT0GuFUHP+xyizvXrM1I/FbvaPIgxF+ snYk73xvVQWgrwnydq+1Mb4XaElWofFVTIKHPGVxRT+wPn2+xaLeVC2EofcTJ4Ez YeaxKVo0nGOdDbrqlmEuNNyLHYjafO5RiPdVkoykKFuCNPdKrukhBXYjMWK9PBaR yr9/v/sW6eUfUuW6qCNueLOJmWDiex61UYjPVImZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU70LCcBO8bYb0fMNkmRUJmTWzzKMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VkOWJlODgwLWFlMmEtNDMxOC04YTRlLTY4YjBkODAwMmUzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWg34AwDQYJKoZIhvcNAQELBQADggEBAA9bRhvNwIPQACD9QRWoOVq7/mdn jlYT4JmNs+WwKCIpVfxAZWSX8DTJKF9UG248EMK17vPm+grcG58CzrZjcpSwmKTM lLwdPKRxR6IocyB6SV25/LD8+7DmHNs24iNx1zF5ExNgdS+WfHHZ3JepQrgFEl0z 4p9sbOqTdvXlfZ1dTWPo6tFp2tTvEWgqakGIC9/5NaQNeuTu4D9W7R8NRJsgdiEw Yl5mfkvRmfl3GySbzizJKXNbfisCjySGz3iY4c1eQ08KPrl0m7FrejnLQLSFrH8/ 3WeXnE1+GsqivC02pOktq89PGiFFEdCkuKEdiQxxwsQxLXnkB6/B/fmhzlM= -----END CERTIFICATE-----Generated at Sun Feb 16 15:26:03 2025 by rpki-client