$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0e9d1f91-84a2-4115-9586-c4eaba69c0b2.roa File: 0e9d1f91-84a2-4115-9586-c4eaba69c0b2.roa (raw, json) Hash identifier: ZxuDvLa2ZwlcM0j4VXWkFBbm+t9+/zA8lQ/DCLhPuO8= Subject key identifier: 17:EB:BE:95:63:74:C0:15:41:8F:00:62:8C:98:19:23:72:97:58:C2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5629CA83C635C26901627D4E0D95585655F5E83A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0e9d1f91-84a2-4115-9586-c4eaba69c0b2.roa Signing time: Tue 04 Feb 2025 00:00:00 +0000 ROA not before: Tue 04 Feb 2025 00:00:00 +0000 ROA not after: Tue 11 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f1b:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:29:ca:83:c6:35:c2:69:01:62:7d:4e:0d:95:58:56:55:f5:e8:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 4 00:00:00 2025 GMT Not After : Mar 11 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ca:c0:02:38:8f:ee:8f:3b:bd:ce:d9:b6:87: 49:0b:14:b0:bd:2c:9e:a8:ab:d0:f9:05:c8:06:c0: a6:fd:68:b7:6e:9e:82:5d:6d:1d:97:dd:9d:84:8f: c8:40:e3:ae:b4:b6:d1:99:ed:c7:32:30:95:2b:56: f5:89:7a:aa:fb:ad:3c:7d:6b:be:14:74:17:4f:42: 92:28:5d:f3:d3:02:78:67:18:0a:93:0c:8c:96:df: c4:dd:7f:25:c3:65:43:4e:b7:4e:6b:ee:08:c9:ce: 6f:5b:0c:2a:df:e4:2c:34:7f:03:38:02:42:1f:20: 97:88:db:d3:41:33:67:5a:66:ef:6c:94:60:63:0d: 02:87:f4:23:c5:df:2b:b9:8d:c2:d1:d3:4a:92:8a: 4e:c2:9d:b9:2e:ac:de:30:80:76:4a:9b:6d:b3:f0: 79:8a:db:60:fe:27:6c:23:c1:bd:51:92:d2:21:67: 32:a2:7d:32:1e:b4:dc:61:89:71:cb:b5:72:b5:2c: 50:58:9a:d4:a1:28:1e:a2:55:5b:2a:88:63:31:8c: d2:ae:3f:d4:a3:57:13:21:97:c7:b2:55:bc:a0:56: b8:50:96:c8:3d:b4:08:4a:3a:55:29:0b:ee:68:a3: 3d:ee:ce:c8:1f:f2:14:d6:4e:2b:e3:26:21:91:b6: 8e:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:EB:BE:95:63:74:C0:15:41:8F:00:62:8C:98:19:23:72:97:58:C2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0e9d1f91-84a2-4115-9586-c4eaba69c0b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1b:4000::/36 Signature Algorithm: sha256WithRSAEncryption b3:47:b7:ce:2c:0c:e6:37:06:27:21:3d:3c:99:7b:70:3e:fb: ff:38:91:da:2b:25:36:12:ac:50:51:10:cf:a8:a3:66:4a:8a: 43:91:41:5a:66:6e:89:64:07:3b:aa:db:ac:6b:cc:7e:c0:81: 02:1d:cf:2a:91:80:a2:6b:f4:87:98:58:1a:11:01:49:96:bd: 65:6e:e5:27:05:7c:87:10:83:03:07:76:99:e3:b1:33:01:26: c3:fe:9c:43:b3:c2:e6:b8:22:46:0a:87:11:e0:87:b1:f5:12: b3:3a:a1:22:03:0b:61:07:91:12:68:ef:ec:6d:aa:16:bd:ae: d5:87:a4:e3:a9:26:4a:51:d9:5c:da:b9:6a:71:d8:59:98:f2: 29:1d:be:ce:b8:24:1e:6e:14:07:e5:14:53:72:f9:64:67:14: 46:89:16:c5:60:cc:69:e6:cb:e6:bf:c5:34:80:6d:4f:04:5d: 3e:92:28:dd:8e:4b:cf:00:1d:e2:57:c7:19:7a:b9:14:78:dc: b9:bc:1d:0a:b3:d7:c2:8f:aa:f9:4c:b4:d9:7d:ff:c2:be:bc: d5:e0:a2:ac:67:8d:76:f3:c4:2f:7c:53:b5:85:33:1b:09:e1: a6:26:dd:cb:db:c5:32:cb:88:90:4f:4b:51:3b:29:76:de:f6: 98:08:2f:7f -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUVinKg8Y1wmkBYn1ODZVYVlX16DowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjA0MDAwMDAwWhcNMjUwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNDVjN2E0ZjQwMmM2NWExMGE1MDYxYTdlNzQxNmRkZjY1 MWVlNmQxYzM4NDIwYjU4NDYzYmZjZDZkNzUwZWFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIysACOI/ujzu9ztm2h0kLFLC9LJ6oq9D5BcgGwKb9aLdu noJdbR2X3Z2Ej8hA4660ttGZ7ccyMJUrVvWJeqr7rTx9a74UdBdPQpIoXfPTAnhn GAqTDIyW38TdfyXDZUNOt05r7gjJzm9bDCrf5Cw0fwM4AkIfIJeI29NBM2daZu9s lGBjDQKH9CPF3yu5jcLR00qSik7CnbkurN4wgHZKm22z8HmK22D+J2wjwb1RktIh ZzKifTIetNxhiXHLtXK1LFBYmtShKB6iVVsqiGMxjNKuP9SjVxMhl8eyVbygVrhQ lsg9tAhKOlUpC+5ooz3uzsgf8hTWTivjJiGRto7jAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUF+u+lWN0wBVBjwBijJgZI3KXWMIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBlOWQxZjkxLTg0YTItNDExNS05NTg2LWM0ZWFiYTY5YzBiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8bQDANBgkqhkiG9w0BAQsFAAOCAQEAs0e3ziwM5jcGJyE9PJl7cD77 /ziR2islNhKsUFEQz6ijZkqKQ5FBWmZuiWQHO6rbrGvMfsCBAh3PKpGAomv0h5hY GhEBSZa9ZW7lJwV8hxCDAwd2meOxMwEmw/6cQ7PC5rgiRgqHEeCHsfUSszqhIgML YQeREmjv7G2qFr2u1Yek46kmSlHZXNq5anHYWZjyKR2+zrgkHm4UB+UUU3L5ZGcU RokWxWDMaebL5r/FNIBtTwRdPpIo3Y5LzwAd4lfHGXq5FHjcubwdCrPXwo+q+Uy0 2X3/wr681eCirGeNdvPEL3xTtYUzGwnhpibdy9vFMsuIkE9LUTspdt72mAgvfw== -----END CERTIFICATE-----Generated at Wed Feb 5 09:35:55 2025 by rpki-client