$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/44c6fbad-1339-4ec1-b4f9-6105db85c70b.roa File: 44c6fbad-1339-4ec1-b4f9-6105db85c70b.roa (raw, json) Hash identifier: JgELUYEI8JV5/qnsoTZJQ8E9cEkk4H/WJE3RmrwrNlM= Subject key identifier: 96:56:51:84:19:C4:8D:75:B8:BB:7B:F4:ED:79:4A:49:08:F3:13:09 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6CA35F25BE90653CED5FBC5FACDD01C31416FB89 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/44c6fbad-1339-4ec1-b4f9-6105db85c70b.roa Signing time: Fri 31 Jan 2025 00:00:00 +0000 ROA not before: Fri 31 Jan 2025 00:00:00 +0000 ROA not after: Fri 07 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.220.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:a3:5f:25:be:90:65:3c:ed:5f:bc:5f:ac:dd:01:c3:14:16:fb:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jan 31 00:00:00 2025 GMT Not After : Mar 7 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7a:bc:3a:75:48:c0:9d:45:fe:9d:51:75:90: f3:0c:8b:b8:f2:99:cb:9c:1d:fa:a4:80:36:81:01: 17:93:df:9e:bf:8d:73:b4:bc:ad:90:cb:95:0f:2a: 1a:00:45:da:c9:33:96:5b:ea:f6:26:4b:cf:7a:77: 17:1c:1a:8b:ac:61:30:7b:a9:2c:31:64:fe:24:61: d1:8f:b2:cc:fe:1f:62:07:f7:62:97:e6:21:be:8b: 6e:60:73:5a:6b:c2:93:ea:ab:7f:69:a1:75:da:56: 82:1b:2c:0a:2c:c7:a7:10:9a:6b:06:dd:27:15:2a: c1:59:e9:80:7a:58:d9:00:fa:2d:68:f7:be:cb:c0: e7:8c:1a:bf:7c:1b:6d:2e:bf:a0:76:d4:23:74:73: 87:1d:92:ab:d5:d4:be:a7:bb:5f:94:6c:7b:00:7c: 16:d2:d2:69:97:e9:f3:a1:30:8e:68:b1:d3:ff:5c: 60:ae:3e:5d:94:ea:69:42:76:29:85:05:d9:91:73: 90:fd:8c:1c:df:00:7e:91:cb:68:f0:fd:fb:8b:12: 9b:7a:08:0e:40:ae:19:59:30:be:b7:55:b5:ce:ab: 2e:51:48:7a:e2:73:a0:d6:d6:0e:ae:94:b9:93:a8: 92:40:af:5b:ff:55:68:8f:9c:ab:b9:2e:bb:df:c9: 83:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:56:51:84:19:C4:8D:75:B8:BB:7B:F4:ED:79:4A:49:08:F3:13:09 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/44c6fbad-1339-4ec1-b4f9-6105db85c70b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.220.207.0/24 Signature Algorithm: sha256WithRSAEncryption 83:e1:1d:e3:5b:26:82:57:10:b6:e7:ea:99:16:a7:12:25:95: cf:fe:99:4a:43:1a:55:c6:9e:06:5c:e3:6f:d7:2a:ba:de:c4: 65:4a:2d:4d:22:3e:d8:91:a9:0c:bd:6e:8e:d0:31:a0:44:7b: 60:34:40:86:3e:1f:60:bb:2b:a8:29:63:a8:87:f8:99:7d:da: 23:ac:00:65:aa:91:1b:31:4e:01:3c:a9:31:c2:f4:8d:c7:68: 31:d5:2e:ea:96:6f:df:44:16:48:73:b2:a2:12:97:56:2a:e8: 56:be:71:ed:cb:28:ab:e2:cf:15:27:44:e0:74:79:39:67:61: 80:7a:82:4c:5c:53:70:bb:c8:7b:01:76:e3:d7:70:0e:65:4e: a5:b2:d0:2f:cc:75:9d:98:4c:96:4a:b3:a3:82:ca:ce:3c:71: ee:9a:fd:48:fe:57:ae:e9:d7:47:45:df:f9:69:60:db:ff:53: b3:13:ec:4f:96:e0:c7:89:97:ae:fa:d8:12:d5:d6:d7:de:99: b5:74:ea:10:b2:0d:32:cb:f2:35:c6:a6:fb:2b:8e:6d:59:10: e4:8e:1e:0a:16:78:9f:92:67:a1:80:c9:c7:e0:fe:55:50:63: 41:b9:ff:57:b1:a4:58:35:a3:90:9a:b0:f5:6f:2d:f4:fe:72: 84:e7:43:37 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbKNfJb6QZTztX7xfrN0BwxQW+4kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTMxMDAwMDAwWhcNMjUwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YWI0MDRmMTlmZDcxM2Y5YWZlYTVlYTBiNWFlN2M5NjBj OTRiNjBlMjQyZWIxMzBmNjZjZjE3MTdlYzg2M2Q1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEerw6dUjAnUX+nVF1kPMMi7jymcucHfqkgDaBAReT356/ jXO0vK2Qy5UPKhoARdrJM5Zb6vYmS896dxccGousYTB7qSwxZP4kYdGPssz+H2IH 92KX5iG+i25gc1prwpPqq39poXXaVoIbLAosx6cQmmsG3ScVKsFZ6YB6WNkA+i1o 977LwOeMGr98G20uv6B21CN0c4cdkqvV1L6nu1+UbHsAfBbS0mmX6fOhMI5osdP/ XGCuPl2U6mlCdimFBdmRc5D9jBzfAH6Ry2jw/fuLEpt6CA5ArhlZML63VbXOqy5R SHric6DW1g6ulLmTqJJAr1v/VWiPnKu5LrvfyYOPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUllZRhBnEjXW4u3v07XlKSQjzEwkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQ0YzZmYmFkLTEzMzktNGVjMS1iNGY5LTYxMDVkYjg1YzcwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAP3M8wDQYJKoZIhvcNAQELBQADggEBAIPhHeNbJoJXELbn6pkWpxIllc/+ mUpDGlXGngZc42/XKrrexGVKLU0iPtiRqQy9bo7QMaBEe2A0QIY+H2C7K6gpY6iH +Jl92iOsAGWqkRsxTgE8qTHC9I3HaDHVLuqWb99EFkhzsqISl1Yq6Fa+ce3LKKvi zxUnROB0eTlnYYB6gkxcU3C7yHsBduPXcA5lTqWy0C/MdZ2YTJZKs6OCys48ce6a /Uj+V67p10dF3/lpYNv/U7MT7E+W4MeJl6762BLV1tfembV06hCyDTLL8jXGpvsr jm1ZEOSOHgoWeJ+SZ6GAycfg/lVQY0G5/1expFg1o5CasPVvLfT+coTnQzc= -----END CERTIFICATE-----Generated at Sun Feb 16 15:52:21 2025 by rpki-client