$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2fc25c4-cbcb-41d6-abb1-81a32332c760.roa File: f2fc25c4-cbcb-41d6-abb1-81a32332c760.roa (raw, json) Hash identifier: +lODfaDBA/IYqmDFoz55LGeuQW6L2qXxicC6zNs24cE= Subject key identifier: 47:60:DB:C3:90:5C:EB:BB:79:E8:82:22:62:19:1C:EC:E7:63:29:02 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2BD19C53A47F0A397A8CB756AA3B1B4F1583C6E0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2fc25c4-cbcb-41d6-abb1-81a32332c760.roa Signing time: Mon 10 Feb 2025 00:00:00 +0000 ROA not before: Mon 10 Feb 2025 00:00:00 +0000 ROA not after: Mon 17 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 147.106.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:d1:9c:53:a4:7f:0a:39:7a:8c:b7:56:aa:3b:1b:4f:15:83:c6:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 10 00:00:00 2025 GMT Not After : Mar 17 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:de:53:3b:26:05:84:a5:52:72:4b:e3:e1:9b: 63:f0:2b:94:42:41:29:fd:04:a0:7d:25:7c:c9:96: c3:d4:27:a4:31:d0:e3:0b:45:4f:cd:8d:ed:f0:2b: 80:45:61:4d:20:f8:cd:d7:a2:33:aa:b3:9d:5b:2e: 56:37:71:ff:af:d3:7b:0e:c6:ff:c2:d4:32:bb:a3: cc:7a:70:3e:5d:50:0d:66:00:1c:da:25:6e:23:59: a2:85:87:2f:1b:d6:82:b8:0c:05:0b:52:43:b4:77: 60:cc:75:71:a4:61:b4:36:9c:2f:fb:3c:31:88:ac: 50:14:9d:d1:db:bd:c7:2b:96:0f:54:e0:30:26:b9: 4b:4f:a8:9a:0f:c7:3d:8f:97:1c:09:6f:0d:17:ec: 58:16:41:a8:1c:93:5a:74:1a:55:ae:2a:68:79:f9: 28:fa:26:be:fd:de:3a:75:11:e8:8e:1a:05:29:9b: 8e:54:61:85:b2:7e:dc:4a:c9:fc:99:75:02:cd:ce: 8c:9d:cf:ec:29:d9:28:38:24:bc:d7:9b:0c:08:fd: 20:10:e8:81:77:8e:cc:3b:10:0a:0a:00:ae:75:03: d2:86:fd:82:23:c7:fe:71:4d:6d:46:8e:f0:e6:85: 67:57:ae:d8:86:37:d6:34:25:3f:cc:33:3d:fe:da: 4f:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:60:DB:C3:90:5C:EB:BB:79:E8:82:22:62:19:1C:EC:E7:63:29:02 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2fc25c4-cbcb-41d6-abb1-81a32332c760.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.106.64.0/18 Signature Algorithm: sha256WithRSAEncryption d6:1f:7b:bb:1c:87:d5:15:32:48:55:d8:93:bc:e6:2e:33:35: 2c:92:c5:5b:fa:bb:b0:67:0d:c3:6b:8a:42:75:34:5c:74:68: ef:7f:a4:f9:48:93:9c:fb:51:92:d6:52:14:0b:39:2f:0a:99: b5:e9:b9:72:5a:a6:21:4d:c1:5b:b7:cb:a3:b5:b3:9d:4a:d0: 89:d9:24:c2:6d:24:39:ef:1e:da:b7:e7:45:95:53:ec:45:2b: 5d:78:65:e8:74:2a:22:fb:cf:95:86:64:a8:76:eb:d9:b9:45: 8a:23:e8:18:b0:c5:c3:d6:1c:4b:79:7f:14:4d:ce:e6:0f:c0: 7d:61:fb:65:b3:30:ba:f2:a9:d5:93:e6:5a:34:ff:fe:86:a7: f6:a4:b4:80:e3:9f:6d:71:5b:e3:09:3a:37:8d:9f:08:9d:17: 40:db:0c:2d:bd:2a:68:a2:47:ac:07:ec:b3:30:85:41:fa:73: 38:79:a9:a6:0a:77:04:43:ca:67:97:c3:0f:dd:0c:33:5b:47: 1d:b1:c4:9c:2b:6c:c8:93:b3:0a:dd:fd:e7:0d:a8:98:a3:1a: 12:93:8d:6d:47:06:27:71:b4:96:78:90:6d:41:ac:f8:e6:01: 1f:96:7d:29:b7:bf:51:8c:b2:97:e4:24:ea:28:af:02:a2:20: 05:f5:30:dc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK9GcU6R/Cjl6jLdWqjsbTxWDxuAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjEwMDAwMDAwWhcNMjUwMzE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNDQ1ZjZmNjk1NDA1ZjVmZjNkMTM5NTVhYjhhN2E4NTgz Mzk5MTJiM2FhOTIzZWJkYWM4MDNiYTRhNGQ3ZTRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCt3lM7JgWEpVJyS+Phm2PwK5RCQSn9BKB9JXzJlsPUJ6Qx 0OMLRU/Nje3wK4BFYU0g+M3XojOqs51bLlY3cf+v03sOxv/C1DK7o8x6cD5dUA1m ABzaJW4jWaKFhy8b1oK4DAULUkO0d2DMdXGkYbQ2nC/7PDGIrFAUndHbvccrlg9U 4DAmuUtPqJoPxz2PlxwJbw0X7FgWQagck1p0GlWuKmh5+Sj6Jr793jp1EeiOGgUp m45UYYWyftxKyfyZdQLNzoydz+wp2Sg4JLzXmwwI/SAQ6IF3jsw7EAoKAK51A9KG /YIjx/5xTW1GjvDmhWdXrtiGN9Y0JT/MMz3+2k/XAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUR2Dbw5Bc67t56IIiYhkc7OdjKQIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyZmMyNWM0LWNiY2ItNDFkNi1hYmIxLTgxYTMyMzMyYzc2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAaTakAwDQYJKoZIhvcNAQELBQADggEBANYfe7sch9UVMkhV2JO85i4zNSyS xVv6u7BnDcNrikJ1NFx0aO9/pPlIk5z7UZLWUhQLOS8KmbXpuXJapiFNwVu3y6O1 s51K0InZJMJtJDnvHtq350WVU+xFK114Zeh0KiL7z5WGZKh269m5RYoj6BiwxcPW HEt5fxRNzuYPwH1h+2WzMLryqdWT5lo0//6Gp/aktIDjn21xW+MJOjeNnwidF0Db DC29KmiiR6wH7LMwhUH6czh5qaYKdwRDymeXww/dDDNbRx2xxJwrbMiTswrd/ecN qJijGhKTjW1HBidxtJZ4kG1BrPjmAR+WfSm3v1GMspfkJOoorwKiIAX1MNw= -----END CERTIFICATE-----Generated at Sun Feb 16 15:13:15 2025 by rpki-client