$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eee3b190-4e8e-4367-82e8-8998a84c6de8.roa File: eee3b190-4e8e-4367-82e8-8998a84c6de8.roa (raw, json) Hash identifier: 6TVfmr6oJfJHKmHBR4KdxoPmyYLnycYvZwDtXHdNnKg= Subject key identifier: 9D:26:5F:27:51:A2:CD:9B:0D:AD:84:3A:99:B8:D0:28:CA:B8:E3:69 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3FB2C1EF198E400278F818673D7BD5C7D308787C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eee3b190-4e8e-4367-82e8-8998a84c6de8.roa Signing time: Tue 28 Jan 2025 00:00:00 +0000 ROA not before: Tue 28 Jan 2025 00:00:00 +0000 ROA not after: Tue 04 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 184.72.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:b2:c1:ef:19:8e:40:02:78:f8:18:67:3d:7b:d5:c7:d3:08:78:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 28 00:00:00 2025 GMT Not After : Mar 4 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:a4:da:f6:fd:66:30:1a:37:99:fd:e4:35:8b: c0:96:a8:7a:4c:37:6a:29:e5:f2:84:7e:01:ac:05: 9d:aa:38:3c:0e:a5:34:1b:46:d5:47:d3:8a:1a:3a: 60:47:70:8b:32:a2:e8:b8:a6:d2:88:b0:8b:54:c0: 95:7a:84:8c:49:fc:b7:07:1d:d9:b1:1b:8c:98:9c: 0b:31:d3:38:72:63:e2:79:4d:ac:2f:5e:6d:db:4e: 74:a2:9f:14:40:af:f6:db:61:96:3f:13:00:f0:82: 9f:7d:3f:80:73:d5:0c:10:02:66:45:20:4f:d7:6a: 21:75:ff:f7:f4:56:e5:b6:c7:96:cc:17:14:c1:99: 9c:a9:9a:89:31:0e:53:81:10:73:2e:ff:6d:14:4d: 6c:bb:47:24:5c:25:ec:82:d2:0e:d4:17:45:fa:43: 0a:ed:23:d6:12:b5:7f:45:55:87:d4:c3:cf:75:be: d3:78:9c:69:d8:f4:ed:ac:21:ae:70:87:cf:f4:d1: 7b:bc:69:38:9e:6e:6c:3f:b0:84:be:bf:af:47:4c: ac:73:f7:50:1b:f4:39:55:0b:f7:b1:ec:b3:3b:b2: 98:7b:3e:04:a5:3b:e0:56:04:99:0a:e0:77:11:8b: 51:17:41:e4:fd:98:61:69:c3:20:d3:cd:82:6d:a1: 95:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:26:5F:27:51:A2:CD:9B:0D:AD:84:3A:99:B8:D0:28:CA:B8:E3:69 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eee3b190-4e8e-4367-82e8-8998a84c6de8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.72.64.0/20 Signature Algorithm: sha256WithRSAEncryption c6:2e:e2:98:54:f8:e4:33:30:62:b5:10:7f:26:45:e2:f8:f3: df:46:7c:9a:f3:30:23:7d:4f:0e:84:80:1a:44:04:50:73:22: 9c:e5:83:89:6e:48:dd:c4:83:b6:b5:80:a0:27:77:74:ed:f9: f5:0b:c4:2c:66:51:e0:e4:4c:b6:55:bc:05:a0:75:09:b1:2a: 4e:c8:ee:40:76:0c:3c:25:14:d2:f4:d6:35:90:87:df:ce:06: db:f8:ca:75:cc:73:4a:7a:fd:ef:b5:6e:c3:7a:6b:b2:14:9c: 6d:b5:0b:4b:78:e1:1b:bd:a0:21:0d:d0:d8:de:26:3c:f9:1c: 6f:75:f9:80:e8:69:78:26:6f:e2:fc:58:b6:44:20:ab:2d:f2: 6a:df:f0:ac:b3:c2:09:2f:89:9c:99:6a:7d:78:77:c2:81:ca: 98:73:db:f1:06:ed:c3:64:b5:02:db:d1:a2:21:eb:27:da:f6: de:63:f2:f4:a5:fe:83:e0:19:bd:fe:e6:9b:c5:80:96:35:93: 1c:0b:be:17:21:88:ab:3f:fb:6d:8c:c5:fe:b4:06:f3:43:62: 0f:d7:29:09:0b:f9:a1:e6:b5:7a:8d:77:d2:df:a2:b5:5d:22: 75:2e:ad:0d:78:a8:77:e1:e7:17:69:6c:40:47:6d:44:d8:d8: 9d:06:4f:f4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUP7LB7xmOQAJ4+BhnPXvVx9MIeHwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTI4MDAwMDAwWhcNMjUwMzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YTVjYmE3NTE1MGE4N2FjYjYxYTljNmVmMzExMjg5MTVk YWUwZGQwYjk5ZDAyM2NjODEyNTVjOTllOWVhYmM5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDvpNr2/WYwGjeZ/eQ1i8CWqHpMN2op5fKEfgGsBZ2qODwO pTQbRtVH04oaOmBHcIsyoui4ptKIsItUwJV6hIxJ/LcHHdmxG4yYnAsx0zhyY+J5 TawvXm3bTnSinxRAr/bbYZY/EwDwgp99P4Bz1QwQAmZFIE/XaiF1//f0VuW2x5bM FxTBmZypmokxDlOBEHMu/20UTWy7RyRcJeyC0g7UF0X6QwrtI9YStX9FVYfUw891 vtN4nGnY9O2sIa5wh8/00Xu8aTiebmw/sIS+v69HTKxz91Ab9DlVC/ex7LM7sph7 PgSlO+BWBJkK4HcRi1EXQeT9mGFpwyDTzYJtoZWBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnSZfJ1GizZsNrYQ6mbjQKMq442kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VlZTNiMTkwLTRlOGUtNDM2Ny04MmU4LTg5OThhODRjNmRlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAS4SEAwDQYJKoZIhvcNAQELBQADggEBAMYu4phU+OQzMGK1EH8mReL4899G fJrzMCN9Tw6EgBpEBFBzIpzlg4luSN3Eg7a1gKAnd3Tt+fULxCxmUeDkTLZVvAWg dQmxKk7I7kB2DDwlFNL01jWQh9/OBtv4ynXMc0p6/e+1bsN6a7IUnG21C0t44Ru9 oCEN0NjeJjz5HG91+YDoaXgmb+L8WLZEIKst8mrf8KyzwgkviZyZan14d8KByphz 2/EG7cNktQLb0aIh6yfa9t5j8vSl/oPgGb3+5pvFgJY1kxwLvhchiKs/+22Mxf60 BvNDYg/XKQkL+aHmtXqNd9LforVdInUurQ14qHfh5xdpbEBHbUTY2J0GT/Q= -----END CERTIFICATE-----Generated at Wed Feb 5 10:00:47 2025 by rpki-client