$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a1e648bb-cfc9-4252-8342-da6740732696.roa File: a1e648bb-cfc9-4252-8342-da6740732696.roa (raw, json) Hash identifier: jHLgewGq8pC9JVs0gB5BYmj72CTWglHqDOrhGv4Xncc= Subject key identifier: E4:01:81:03:5A:EA:3C:05:81:AC:38:87:DF:72:DE:16:54:FA:92:0B Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 25443601598ED9DCBD126CF255BEC354A9B1177F Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a1e648bb-cfc9-4252-8342-da6740732696.roa Signing time: Tue 28 Jan 2025 00:00:00 +0000 ROA not before: Tue 28 Jan 2025 00:00:00 +0000 ROA not after: Tue 04 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:44:36:01:59:8e:d9:dc:bd:12:6c:f2:55:be:c3:54:a9:b1:17:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Jan 28 00:00:00 2025 GMT Not After : Mar 4 23:59:59 2025 GMT Subject: CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:07:96:92:f2:00:6a:43:b7:b9:98:ed:cb:d2: 8f:63:3a:1d:1a:bc:8a:ec:1b:d4:0b:4f:51:ca:0b: d6:4d:8d:6c:35:63:f5:5c:4f:8d:c3:38:99:c8:cc: df:74:cd:7e:db:79:f0:6c:a4:c9:5c:3c:2e:26:38: 44:16:8a:36:8c:8e:74:b2:80:5a:b9:25:c9:49:7c: ab:0d:21:18:77:73:4e:a6:6d:cf:e6:d2:f1:90:d2: ea:7b:93:fe:62:fa:50:24:c0:88:72:a2:7e:d5:ca: f2:39:97:68:e0:ac:53:d5:df:f3:c7:02:09:34:dd: 36:9c:e1:59:60:a1:ee:a5:8c:1d:6c:ee:9c:ee:61: e5:9e:00:a2:b2:2a:6d:f6:0c:ed:22:f8:3e:4c:00: 37:f8:63:3e:db:b7:65:5e:db:13:fa:3f:4d:60:16: 9e:91:1d:9b:52:c0:a2:a4:52:9c:89:a3:86:f5:ac: 44:e6:4d:39:df:e3:c5:1c:62:94:9e:88:1d:86:fc: 95:74:91:e5:17:ff:10:4c:d4:9c:b3:7f:61:f9:41: ac:83:4c:96:a1:3e:7d:97:73:85:89:69:94:d4:9e: f1:4e:7c:8c:66:50:3c:21:cd:f3:93:95:01:92:43: 9f:78:6d:ce:30:8d:61:23:bb:3b:60:34:40:b3:02: 28:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:01:81:03:5A:EA:3C:05:81:AC:38:87:DF:72:DE:16:54:FA:92:0B X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a1e648bb-cfc9-4252-8342-da6740732696.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.240.0/22 Signature Algorithm: sha256WithRSAEncryption 63:7a:57:ee:69:29:cd:14:16:65:36:73:66:31:fe:cf:e9:03: 5b:53:f2:22:e0:30:17:6b:00:f9:f2:b5:46:86:b3:86:c8:72: 6e:d1:fb:67:1b:dd:28:c6:9d:0e:d7:c2:c1:31:ec:2d:14:74: 4c:d3:7f:c5:3f:33:31:78:be:e7:04:a7:7c:ca:e6:95:96:49: e7:5c:39:22:9f:b0:90:bf:ec:e1:81:5f:27:ad:37:04:83:22: 2a:81:13:fd:6d:40:49:39:81:cf:b8:a0:55:e0:6a:12:da:af: d5:02:59:dd:e9:b6:0c:a9:6b:67:d0:83:f0:40:94:94:f9:fa: d3:3b:6e:93:97:68:46:48:34:c1:9e:b3:fa:ff:7b:a3:c1:fa: cd:21:ef:d1:66:9f:dc:6f:bf:74:aa:c4:8d:02:4e:e1:35:ed: 4d:e9:64:59:76:e8:99:1d:e8:51:13:71:3c:95:85:7b:82:96: f2:61:89:ab:48:de:23:86:09:38:e6:46:48:2e:6f:f5:ac:c7: 32:a6:96:c3:fc:3e:50:c0:91:0c:f5:74:81:09:5d:3c:69:9d: 58:51:95:90:62:5a:cf:11:b3:80:e8:54:3c:7a:3a:5d:f6:4c: 4b:07:b7:21:18:cf:db:36:e5:e1:a1:29:5e:ba:54:90:ed:4c: eb:fe:d0:a8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJUQ2AVmO2dy9EmzyVb7DVKmxF38wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwMTI4MDAwMDAwWhcNMjUwMzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzN2QxOTI2ZGQxNGIxY2ZlYjUwOWYxMDI0OWY5YTA0MmJk ZWE1YzllNzI2NTQyN2VjNzhkMWMzMmNkNDIzOTRjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHB5aS8gBqQ7e5mO3L0o9jOh0avIrsG9QLT1HKC9ZNjWw1 Y/VcT43DOJnIzN90zX7befBspMlcPC4mOEQWijaMjnSygFq5JclJfKsNIRh3c06m bc/m0vGQ0up7k/5i+lAkwIhyon7VyvI5l2jgrFPV3/PHAgk03Tac4Vlgoe6ljB1s 7pzuYeWeAKKyKm32DO0i+D5MADf4Yz7bt2Ve2xP6P01gFp6RHZtSwKKkUpyJo4b1 rETmTTnf48UcYpSeiB2G/JV0keUX/xBM1Jyzf2H5QayDTJahPn2Xc4WJaZTUnvFO fIxmUDwhzfOTlQGSQ594bc4wjWEjuztgNECzAih1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5AGBA1rqPAWBrDiH33LeFlT6kgswHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2ExZTY0OGJiLWNmYzktNDI1Mi04MzQyLWRhNjc0MDczMjY5Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALN+/AwDQYJKoZIhvcNAQELBQADggEBAGN6V+5pKc0UFmU2c2Yx/s/pA1tT 8iLgMBdrAPnytUaGs4bIcm7R+2cb3SjGnQ7XwsEx7C0UdEzTf8U/MzF4vucEp3zK 5pWWSedcOSKfsJC/7OGBXyetNwSDIiqBE/1tQEk5gc+4oFXgahLar9UCWd3ptgyp a2fQg/BAlJT5+tM7bpOXaEZINMGes/r/e6PB+s0h79Fmn9xvv3SqxI0CTuE17U3p ZFl26Jkd6FETcTyVhXuClvJhiatI3iOGCTjmRkgub/WsxzKmlsP8PlDAkQz1dIEJ XTxpnVhRlZBiWs8Rs4DoVDx6Ol32TEsHtyEYz9s25eGhKV66VJDtTOv+0Kg= -----END CERTIFICATE-----Generated at Sun Feb 16 15:54:49 2025 by rpki-client