$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2bdfb52-3c99-4bc0-9cee-2768dc39c10c.roa File: f2bdfb52-3c99-4bc0-9cee-2768dc39c10c.roa (raw, json) Hash identifier: Ihd/OBOL5/BI5w7Lpfmadfps3qqmlk7PCU4WQAGWZGw= Subject key identifier: 62:85:3D:A8:24:EA:00:F6:45:BE:D3:F1:4B:DE:AC:FF:0B:12:CA:E9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5488A619FEFB2C6702EE9061661F55F22666998D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2bdfb52-3c99-4bc0-9cee-2768dc39c10c.roa Signing time: Fri 07 Feb 2025 00:00:00 +0000 ROA not before: Fri 07 Feb 2025 00:00:00 +0000 ROA not after: Fri 14 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.151.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:88:a6:19:fe:fb:2c:67:02:ee:90:61:66:1f:55:f2:26:66:99:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 7 00:00:00 2025 GMT Not After : Mar 14 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:35:8b:45:41:71:59:ff:f8:1a:1e:e6:b9:a9: 11:c5:7f:96:f9:78:4e:b8:99:09:b7:7b:11:2f:7e: 26:65:a7:bd:eb:d9:6e:ef:94:37:97:6c:5f:a5:bf: 42:82:14:15:00:cb:d0:30:d2:81:38:66:50:dc:08: f8:35:04:6e:6f:22:72:37:30:2f:bf:ab:99:bd:d6: 84:b6:b5:de:12:d5:e3:0a:82:aa:42:db:68:fb:de: 65:79:6c:38:5e:4e:db:00:57:af:81:be:bd:43:1f: 60:c7:92:91:2a:40:f2:dc:0a:2a:00:c6:d8:cd:83: 61:46:30:0a:1a:e8:53:8c:ec:17:41:a8:a3:75:b5: da:c6:fa:66:b9:1a:65:72:4a:79:a7:7f:11:58:3f: 5f:e0:3d:02:ff:ee:be:45:7d:79:ec:5c:99:fd:7a: 2d:97:31:e2:41:07:71:24:79:0f:e6:6f:ea:b2:0a: fe:46:2b:99:f8:3e:24:f8:53:c9:1a:1f:02:8e:1a: ef:ce:19:54:1c:a1:b2:4c:7c:11:f8:71:1d:1a:19: 80:06:f7:0e:21:69:a9:e1:80:7c:f4:c2:e4:6f:af: 46:a1:20:49:8f:c6:73:4c:88:fd:31:00:5d:08:8d: 11:27:b4:64:20:88:7b:cd:52:97:64:08:fb:9a:3c: 22:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:85:3D:A8:24:EA:00:F6:45:BE:D3:F1:4B:DE:AC:FF:0B:12:CA:E9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2bdfb52-3c99-4bc0-9cee-2768dc39c10c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.151.0.0/16 Signature Algorithm: sha256WithRSAEncryption 77:c4:82:d3:5b:c0:4f:04:46:9e:90:3f:07:fa:8c:d3:0f:25: 02:ac:37:ac:f0:1f:ff:14:89:07:21:ff:53:4b:49:a3:c2:eb: 5a:41:f8:75:84:ac:ce:6d:74:0f:89:d8:72:aa:36:62:84:fe: 28:51:26:60:29:c5:c9:13:b3:a6:76:09:62:3f:5d:ac:43:30: a1:f4:d4:f1:c6:3f:7a:3d:17:c2:b6:8b:91:10:80:59:42:bc: 63:a9:00:71:0c:71:99:84:80:dd:b1:63:02:a9:b1:4b:93:44: f6:a2:5a:b4:8e:28:85:a3:b6:01:74:50:31:84:78:0c:60:bc: 15:24:56:9c:cc:16:81:93:c7:ce:40:98:0e:0b:35:4d:e8:c5: 72:35:c6:b7:d4:3f:79:09:35:e1:96:0a:c0:fe:f5:d9:d4:db: 53:a6:cd:f6:a5:1a:0d:51:ec:70:c5:ac:51:94:0d:7a:e9:5c: 5a:33:44:f5:45:c5:ef:50:fa:04:43:8b:bf:d5:0b:f4:bf:c8: 6a:b9:aa:75:a4:f5:11:74:bf:69:c0:26:f6:57:e5:32:09:e1: bf:1f:81:3c:57:e7:12:12:15:8b:36:f4:d3:39:50:be:1a:57: d7:d3:5e:d6:38:4b:76:42:e2:65:17:62:22:69:b2:19:47:79: f5:7f:07:0b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUVIimGf77LGcC7pBhZh9V8iZmmY0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjA3MDAwMDAwWhcNMjUwMzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZWJhNDNmMmMzOGUzMTdjYTQyOTk1YTM5YmIwNzAxNDEy N2U3YzE5NmQwN2ZjMTJlMTdjZmY2NTE2YjkyZGZiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnNYtFQXFZ//gaHua5qRHFf5b5eE64mQm3exEvfiZlp73r 2W7vlDeXbF+lv0KCFBUAy9Aw0oE4ZlDcCPg1BG5vInI3MC+/q5m91oS2td4S1eMK gqpC22j73mV5bDheTtsAV6+Bvr1DH2DHkpEqQPLcCioAxtjNg2FGMAoa6FOM7BdB qKN1tdrG+ma5GmVySnmnfxFYP1/gPQL/7r5FfXnsXJn9ei2XMeJBB3EkeQ/mb+qy Cv5GK5n4PiT4U8kaHwKOGu/OGVQcobJMfBH4cR0aGYAG9w4haanhgHz0wuRvr0ah IEmPxnNMiP0xAF0IjREntGQgiHvNUpdkCPuaPCLBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUYoU9qCTqAPZFvtPxS96s/wsSyukwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyYmRmYjUyLTNjOTktNGJjMC05Y2VlLTI3NjhkYzM5YzEwYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQlzANBgkqhkiG9w0BAQsFAAOCAQEAd8SC01vATwRGnpA/B/qM0w8lAqw3 rPAf/xSJByH/U0tJo8LrWkH4dYSszm10D4nYcqo2YoT+KFEmYCnFyROzpnYJYj9d rEMwofTU8cY/ej0XwraLkRCAWUK8Y6kAcQxxmYSA3bFjAqmxS5NE9qJatI4ohaO2 AXRQMYR4DGC8FSRWnMwWgZPHzkCYDgs1TejFcjXGt9Q/eQk14ZYKwP712dTbU6bN 9qUaDVHscMWsUZQNeulcWjNE9UXF71D6BEOLv9UL9L/IarmqdaT1EXS/acAm9lfl Mgnhvx+BPFfnEhIVizb00zlQvhpX19Ne1jhLdkLiZRdiImmyGUd59X8HCw== -----END CERTIFICATE-----Generated at Sun Feb 16 15:19:08 2025 by rpki-client