$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0fe31bb9-5ace-471f-93b7-d1915959f61a.roa File: 0fe31bb9-5ace-471f-93b7-d1915959f61a.roa (raw, json) Hash identifier: a7hYEWpQn7H8T7L+do/2F898Y2RKZ3F9N+bl4kgV8q4= Subject key identifier: 64:54:2E:BA:92:BF:17:FA:38:D0:DF:91:7A:A4:F9:DD:D2:75:13:F8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7A72175F577745FD0194B49264E7845AA41D8D7E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0fe31bb9-5ace-471f-93b7-d1915959f61a.roa Signing time: Mon 03 Feb 2025 00:00:00 +0000 ROA not before: Mon 03 Feb 2025 00:00:00 +0000 ROA not after: Mon 10 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f61:80c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:72:17:5f:57:77:45:fd:01:94:b4:92:64:e7:84:5a:a4:1d:8d:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 3 00:00:00 2025 GMT Not After : Mar 10 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:75:53:8d:5f:80:9e:f0:d4:a2:34:43:52:0e: 54:5e:ed:4e:1b:1f:9a:29:8c:ff:69:7e:8d:94:fb: 26:5f:1f:e3:8a:3f:67:1a:1c:e8:c2:10:b5:4e:5f: 96:ff:b8:90:e4:8b:f8:78:df:1f:54:af:4b:7e:59: 86:8c:fe:d2:66:c2:01:4b:71:7a:77:c7:9d:2d:40: c1:62:67:1d:52:d8:a1:60:45:ad:ef:2b:b4:fd:37: af:5e:6a:6c:68:8b:94:e3:b6:80:40:b4:e4:bb:53: 01:81:da:72:f1:8f:86:ed:78:11:90:11:10:7c:bd: 6f:5b:c3:75:49:1c:15:d7:c8:2e:c8:56:a1:0c:d4: c1:e6:f7:1f:84:57:50:be:1d:46:97:53:33:c6:18: 72:53:da:a8:b5:2b:ef:bc:ea:27:5b:23:96:5c:d3: 3e:df:c0:a5:56:b4:e3:58:6f:8e:bb:bc:0f:b1:5f: 82:ed:db:f0:3f:ec:3d:32:c3:13:aa:10:eb:36:be: 59:f4:a8:70:66:df:68:da:bd:66:11:c9:ad:a4:3c: c2:07:24:52:f1:16:4a:18:1c:d9:44:33:0e:1d:27: a4:b2:d0:1c:7f:34:c6:a3:93:66:22:53:6d:ed:bd: fd:d2:c7:92:4f:98:23:69:bb:52:ea:71:a3:75:93: bd:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:54:2E:BA:92:BF:17:FA:38:D0:DF:91:7A:A4:F9:DD:D2:75:13:F8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0fe31bb9-5ace-471f-93b7-d1915959f61a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:80c0::/48 Signature Algorithm: sha256WithRSAEncryption 0f:7e:b9:28:05:59:72:c1:8b:7f:ed:59:44:22:c1:5c:a5:af: 80:52:82:4c:e5:1c:be:86:44:0c:8b:fc:bd:df:c7:8c:b3:0a: f3:3a:67:e5:e2:36:5d:f0:e1:c4:50:b9:0e:e7:3e:78:8b:5c: fd:d9:c5:7e:ee:b3:ff:37:05:ea:28:c4:a5:50:54:48:86:61: 21:1a:1f:80:80:b7:de:51:54:20:f6:5c:fc:39:85:c6:d8:76: 5e:0b:d3:55:c0:37:ef:c8:16:44:7c:b8:f5:55:a8:4b:d4:98: 25:76:5b:32:19:aa:87:04:7e:a4:45:9e:b8:35:02:f5:fa:ee: de:d1:ab:68:d9:68:c6:61:a9:d0:d3:eb:7d:da:8a:6f:d8:bd: 06:d6:a0:73:f8:ba:da:4e:bc:5d:a0:4f:e4:19:3a:6c:54:56: d8:bc:11:76:4a:80:8e:8c:28:9a:72:6c:46:49:ea:47:7f:ae: 3c:83:8b:dc:ac:60:45:de:3b:d9:6c:28:fa:54:e4:bc:34:92: 96:0a:e4:e1:da:e7:42:98:f6:4e:41:a6:1b:48:b8:e4:83:42: 3e:a4:20:ad:37:c6:73:3a:a3:a2:7b:10:93:35:0f:52:bb:cc: 74:9d:c6:99:fe:fe:a0:3c:58:1c:e7:33:b3:2f:15:b6:9d:10: 4e:ba:38:39 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUenIXX1d3Rf0BlLSSZOeEWqQdjX4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjAzMDAwMDAwWhcNMjUwMzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZDIzOTdmNmM4Y2JiZDZiZmM3ODRlMWZjM2I4YTUyNWI0 ZTNkZmVjNjFkYjAxNmI0N2Y1MzZiZTMyNTc4YzIyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRdVONX4Ce8NSiNENSDlRe7U4bH5opjP9pfo2U+yZfH+OK P2caHOjCELVOX5b/uJDki/h43x9Ur0t+WYaM/tJmwgFLcXp3x50tQMFiZx1S2KFg Ra3vK7T9N69eamxoi5TjtoBAtOS7UwGB2nLxj4bteBGQERB8vW9bw3VJHBXXyC7I VqEM1MHm9x+EV1C+HUaXUzPGGHJT2qi1K++86idbI5Zc0z7fwKVWtONYb467vA+x X4Lt2/A/7D0ywxOqEOs2vln0qHBm32javWYRya2kPMIHJFLxFkoYHNlEMw4dJ6Sy 0Bx/NMajk2YiU23tvf3Sx5JPmCNpu1LqcaN1k72VAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZFQuupK/F/o40N+ReqT53dJ1E/gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBmZTMxYmI5LTVhY2UtNDcxZi05M2I3LWQxOTE1OTU5ZjYxYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB9hgMAwDQYJKoZIhvcNAQELBQADggEBAA9+uSgFWXLBi3/tWUQiwVyl r4BSgkzlHL6GRAyL/L3fx4yzCvM6Z+XiNl3w4cRQuQ7nPniLXP3ZxX7us/83Beoo xKVQVEiGYSEaH4CAt95RVCD2XPw5hcbYdl4L01XAN+/IFkR8uPVVqEvUmCV2WzIZ qocEfqRFnrg1AvX67t7Rq2jZaMZhqdDT633aim/YvQbWoHP4utpOvF2gT+QZOmxU Vti8EXZKgI6MKJpybEZJ6kd/rjyDi9ysYEXeO9lsKPpU5Lw0kpYK5OHa50KY9k5B phtIuOSDQj6kIK03xnM6o6J7EJM1D1K7zHSdxpn+/qA8WBznM7MvFbadEE66ODk= -----END CERTIFICATE-----Generated at Wed Feb 5 09:51:31 2025 by rpki-client