$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a4b5f5e-bd93-4b3d-ab14-989a0514f037.roa File: 2a4b5f5e-bd93-4b3d-ab14-989a0514f037.roa (raw, json) Hash identifier: XrtZHL862ud+Rj9rRA1G6rouUrMWjzDL3eMT4Y9zgBA= Subject key identifier: 6E:CA:60:BE:AE:1A:A4:8F:75:82:59:CF:28:CA:FA:A2:44:B9:EB:95 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4AAA45DBB897119C2B00D7C6AF61D449586D9B85 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a4b5f5e-bd93-4b3d-ab14-989a0514f037.roa Signing time: Mon 03 Feb 2025 00:00:00 +0000 ROA not before: Mon 03 Feb 2025 00:00:00 +0000 ROA not after: Mon 10 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f00:8010::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:aa:45:db:b8:97:11:9c:2b:00:d7:c6:af:61:d4:49:58:6d:9b:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 3 00:00:00 2025 GMT Not After : Mar 10 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:32:45:4d:7f:c8:58:39:bc:60:67:10:46:52: b0:4f:70:17:a1:5e:36:60:e4:82:c0:1b:62:04:58: 29:94:75:70:af:33:08:83:c7:b4:13:e4:b5:21:3c: 52:98:25:84:f4:56:b1:8d:69:c4:70:52:35:fe:17: 48:d5:ff:47:4a:cc:dd:c4:33:b5:6c:b7:71:c2:c6: ce:8d:ad:8b:e2:30:ca:2f:92:91:1d:16:34:ff:8f: bb:5f:11:7d:5b:02:02:e5:3e:6f:a0:19:db:c8:bb: 54:eb:19:69:20:7a:c7:22:a2:f2:85:d4:c5:46:30: 1a:f4:0a:c5:06:0a:4c:4e:f4:38:9f:2d:85:84:b7: 41:72:39:de:4d:6e:c8:63:c3:e1:48:b5:a5:9e:a7: ea:c6:44:e1:ed:e0:11:83:ea:ec:e9:83:4d:69:7e: 88:b0:fd:60:00:14:f0:b2:20:fb:85:55:fc:f3:f2: 7e:1a:c9:eb:da:4f:36:f8:11:e0:de:b3:d1:4a:c8: 94:c6:2b:d9:59:dc:bf:c7:34:ea:73:dd:63:98:b4: bb:8b:64:65:8d:63:af:c1:d5:80:32:58:fa:59:86: 45:04:6c:45:24:66:5b:f5:24:c7:64:22:2c:e3:0f: 22:c1:db:b6:33:35:9c:e9:ce:e6:69:60:95:33:21: ee:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:CA:60:BE:AE:1A:A4:8F:75:82:59:CF:28:CA:FA:A2:44:B9:EB:95 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a4b5f5e-bd93-4b3d-ab14-989a0514f037.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:8010::/48 Signature Algorithm: sha256WithRSAEncryption 7f:26:48:8a:27:a7:1c:4d:c3:c0:d9:b0:2a:48:87:01:3d:1a: 09:3a:01:9b:d5:f8:81:e7:91:1a:3f:db:56:5f:70:f6:a6:d9: 1e:f5:2b:d0:bd:15:67:87:44:bf:b8:e3:25:b2:b4:7d:3c:ae: 4c:8a:05:32:c2:21:16:a3:6d:92:90:cc:ce:3c:25:53:ea:f3: 72:f2:0b:bc:99:d2:be:84:62:64:e1:82:7f:b6:e4:83:72:48: 8c:84:9f:39:2d:c6:d9:dd:c7:63:fd:2a:18:f5:6f:58:67:06: c3:7a:9e:5f:c0:a1:60:02:89:e2:4b:c3:8d:37:c4:7c:a8:d8: 65:71:74:4a:60:25:6f:9c:d3:2e:f8:13:7e:c8:44:27:ef:89: ae:af:83:86:fa:58:d3:88:4d:30:5a:98:45:e2:91:d7:ac:34: e2:67:0f:63:24:bf:b8:79:04:f5:50:50:90:96:56:55:12:9e: 85:d4:dd:21:a5:e5:3b:f8:50:95:66:f1:ae:bb:e9:2f:21:57: d6:df:d9:2f:19:87:f4:53:fe:24:00:90:59:db:00:06:50:10: eb:09:8b:5a:b0:e5:92:00:71:ba:ad:87:ca:82:0b:ac:6d:e8: 06:bc:a9:9e:13:42:62:a5:a5:49:69:c5:5d:1b:74:f8:ae:3c: d1:d8:d9:18 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSqpF27iXEZwrANfGr2HUSVhtm4UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjAzMDAwMDAwWhcNMjUwMzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MWNiNDFjOTY2MGU3ZGExYzk0NzI1NDZkYWQ3NzhiODJi ZGM3ZjFlYTUxZTkzMmQzYjBmN2ZmZDJmMTAzNGFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDsMkVNf8hYObxgZxBGUrBPcBehXjZg5ILAG2IEWCmUdXCv MwiDx7QT5LUhPFKYJYT0VrGNacRwUjX+F0jV/0dKzN3EM7Vst3HCxs6NrYviMMov kpEdFjT/j7tfEX1bAgLlPm+gGdvIu1TrGWkgesciovKF1MVGMBr0CsUGCkxO9Dif LYWEt0FyOd5Nbshjw+FItaWep+rGROHt4BGD6uzpg01pfoiw/WAAFPCyIPuFVfzz 8n4ayevaTzb4EeDes9FKyJTGK9lZ3L/HNOpz3WOYtLuLZGWNY6/B1YAyWPpZhkUE bEUkZlv1JMdkIizjDyLB27YzNZzpzuZpYJUzIe6bAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUbspgvq4apI91glnPKMr6okS565UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJhNGI1ZjVlLWJkOTMtNGIzZC1hYjE0LTk4OWEwNTE0ZjAzNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AgBAwDQYJKoZIhvcNAQELBQADggEBAH8mSIonpxxNw8DZsCpIhwE9 Ggk6AZvV+IHnkRo/21ZfcPam2R71K9C9FWeHRL+44yWytH08rkyKBTLCIRajbZKQ zM48JVPq83LyC7yZ0r6EYmThgn+25INySIyEnzktxtndx2P9Khj1b1hnBsN6nl/A oWACieJLw403xHyo2GVxdEpgJW+c0y74E37IRCfvia6vg4b6WNOITTBamEXikdes NOJnD2Mkv7h5BPVQUJCWVlUSnoXU3SGl5Tv4UJVm8a676S8hV9bf2S8Zh/RT/iQA kFnbAAZQEOsJi1qw5ZIAcbqth8qCC6xt6Aa8qZ4TQmKlpUlpxV0bdPiuPNHY2Rg= -----END CERTIFICATE-----Generated at Wed Feb 5 09:37:24 2025 by rpki-client