$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17b3367e-14d3-4563-905d-3011f25b813c.roa File: 17b3367e-14d3-4563-905d-3011f25b813c.roa (raw, json) Hash identifier: +6zSOti9mAy1hYhAFyiY7dSLYiXWix5SfxnbxAkE93k= Subject key identifier: 80:5B:14:E0:3E:80:7B:F0:35:5E:E3:8F:D2:B0:86:6E:0D:B4:D1:F3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5BDA15F8FAAFF0F70154EFAFCCDDAA2C65EEA559 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17b3367e-14d3-4563-905d-3011f25b813c.roa Signing time: Tue 04 Feb 2025 00:00:00 +0000 ROA not before: Tue 04 Feb 2025 00:00:00 +0000 ROA not after: Tue 11 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f69:80c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:da:15:f8:fa:af:f0:f7:01:54:ef:af:cc:dd:aa:2c:65:ee:a5:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 4 00:00:00 2025 GMT Not After : Mar 11 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:99:c1:d0:d4:96:a1:2f:c5:82:03:d4:ba:69: e6:d6:00:01:ae:07:8e:9a:b2:cf:44:2f:d0:5d:c9: 9f:03:06:3f:24:06:8e:ab:41:0d:00:30:ef:50:8c: 3e:88:f6:0c:c2:24:3b:73:e2:09:ad:7b:ca:8b:ce: fe:4e:28:2d:ca:92:8a:1e:30:4d:32:8c:3e:e3:c2: 18:e9:26:9c:42:14:a2:4a:e5:75:d6:da:46:e1:34: 7b:d8:3c:e6:4d:da:af:8d:1e:3c:4b:7a:17:8a:6c: 16:e3:02:34:c5:32:ca:83:60:4c:9a:3e:4d:0b:c8: 52:84:8e:87:5f:93:97:20:b2:12:3e:ba:54:c2:de: fc:6c:04:03:4b:bb:02:44:5d:3c:af:4b:48:4e:bf: b6:3a:df:8d:b0:b9:c4:36:dc:71:64:39:4a:38:61: ec:1f:dc:1d:c0:5d:9e:c7:a0:8c:20:45:9a:ef:46: 37:28:a6:2e:18:a5:cd:c0:ed:bb:01:93:50:07:1f: 87:ad:fc:8b:81:70:69:d0:d0:52:b9:5a:53:3e:e4: a9:85:b8:18:ff:49:ec:75:f7:41:9d:c6:10:7f:c5: 44:a7:e4:3b:bd:41:32:ad:1c:4c:78:e3:a6:b1:90: 9c:2a:a5:b7:51:d0:83:79:7b:f3:3c:c3:e8:8a:e5: e1:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:5B:14:E0:3E:80:7B:F0:35:5E:E3:8F:D2:B0:86:6E:0D:B4:D1:F3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17b3367e-14d3-4563-905d-3011f25b813c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f69:80c0::/46 Signature Algorithm: sha256WithRSAEncryption 2e:a3:4d:1a:4a:02:cd:47:56:2c:59:c7:6a:a9:ec:51:09:8b: c8:3d:a8:9e:6e:33:67:22:38:9c:c0:14:78:3a:76:f7:f7:03: 82:98:f0:47:e0:a0:0b:d2:8f:de:68:db:3c:ae:b3:27:7b:ca: d5:e8:9e:2a:5d:c0:60:00:ac:fe:18:a2:1d:6b:ff:b7:32:29: 89:fb:9f:5e:7d:e1:77:c8:18:f7:c3:46:a2:52:1d:2c:cb:e9: 53:f8:50:a5:21:b9:1b:a0:6b:86:a9:2f:a2:9f:8d:d6:c3:96: 01:72:11:73:0e:c9:47:2f:9b:94:5b:39:93:2e:2b:1c:56:32: 62:4c:e6:a6:b3:e0:f6:30:46:71:23:7d:6f:a3:a6:ce:c6:a1: 8c:42:aa:b4:f7:30:a8:b0:28:60:dd:f7:ab:c6:ec:4d:ca:5e: a2:9b:aa:8a:94:92:67:fd:b4:a2:24:35:a5:a6:40:a6:af:64: 1b:b2:0c:e7:f2:e5:93:43:84:c2:de:0b:32:24:73:18:7b:f8: ef:dd:17:12:7e:ae:39:36:27:d5:b7:ec:2d:bc:c8:12:1c:c4: 44:c3:1b:54:ef:e5:09:da:b6:a5:f5:d7:c8:ee:1a:2b:d6:37: 87:64:54:70:83:2e:48:19:61:21:f5:6e:69:3e:22:b4:59:80: 1a:96:77:90 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUW9oV+Pqv8PcBVO+vzN2qLGXupVkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjA0MDAwMDAwWhcNMjUwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0A0N2JmNmQ1ZGUwN2ZjMTViODU3OGY1N2VmMjQ0NTM2NmMw NTQxNTgyOTJlYTAxMzk5ZDg1NTU3NmIyNDNmYTJmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSmcHQ1JahL8WCA9S6aebWAAGuB46ass9EL9BdyZ8DBj8k Bo6rQQ0AMO9QjD6I9gzCJDtz4gmte8qLzv5OKC3KkooeME0yjD7jwhjpJpxCFKJK 5XXW2kbhNHvYPOZN2q+NHjxLeheKbBbjAjTFMsqDYEyaPk0LyFKEjodfk5cgshI+ ulTC3vxsBANLuwJEXTyvS0hOv7Y6342wucQ23HFkOUo4Yewf3B3AXZ7HoIwgRZrv Rjcopi4Ypc3A7bsBk1AHH4et/IuBcGnQ0FK5WlM+5KmFuBj/Sex190GdxhB/xUSn 5Du9QTKtHEx446axkJwqpbdR0IN5e/M8w+iK5eGTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUgFsU4D6Ae/A1XuOP0rCGbg200fMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE3YjMzNjdlLTE0ZDMtNDU2My05MDVkLTMwMTFmMjViODEzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB9pgMAwDQYJKoZIhvcNAQELBQADggEBAC6jTRpKAs1HVixZx2qp7FEJ i8g9qJ5uM2ciOJzAFHg6dvf3A4KY8EfgoAvSj95o2zyusyd7ytXonipdwGAArP4Y oh1r/7cyKYn7n1594XfIGPfDRqJSHSzL6VP4UKUhuRuga4apL6KfjdbDlgFyEXMO yUcvm5RbOZMuKxxWMmJM5qaz4PYwRnEjfW+jps7GoYxCqrT3MKiwKGDd96vG7E3K XqKbqoqUkmf9tKIkNaWmQKavZBuyDOfy5ZNDhMLeCzIkcxh7+O/dFxJ+rjk2J9W3 7C28yBIcxETDG1Tv5QnatqX118juGivWN4dkVHCDLkgZYSH1bmk+IrRZgBqWd5A= -----END CERTIFICATE-----Generated at Wed Feb 5 09:53:43 2025 by rpki-client