$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ff10bcf-a0d1-4f40-b79c-d84b07d3c7bd.roa File: 2ff10bcf-a0d1-4f40-b79c-d84b07d3c7bd.roa (raw, json) Hash identifier: TcnPuwCgqHnRv3l2vLLAhXNO750jeY5BYVdoRdP5Vrc= Subject key identifier: 60:59:2C:F2:7B:97:19:51:5D:B5:BC:8E:E9:D9:87:08:35:9E:4D:D3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 33AE077BD057B841F30C071865B930C805258FC2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ff10bcf-a0d1-4f40-b79c-d84b07d3c7bd.roa Signing time: Tue 21 Jan 2025 00:00:00 +0000 ROA not before: Tue 21 Jan 2025 00:00:00 +0000 ROA not after: Tue 25 Feb 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ff0:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 11 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:ae:07:7b:d0:57:b8:41:f3:0c:07:18:65:b9:30:c8:05:25:8f:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 21 00:00:00 2025 GMT Not After : Feb 25 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:1b:29:b2:74:00:e3:a8:e9:44:76:29:a7:eb: 6a:a5:a5:ae:7b:7d:65:e3:25:2d:2f:12:de:de:31: 5d:7a:a3:e2:20:a0:fb:d0:fd:03:c9:af:e2:67:32: 44:14:7a:bf:37:fc:35:b6:64:b4:67:6f:89:b6:bb: 2d:10:67:06:d9:5d:06:40:5a:3d:00:cb:41:1c:48: 1e:74:5a:1c:67:b5:d0:9b:b1:09:d4:de:ec:11:49: 8c:c0:b4:45:ae:5c:f7:91:4b:4c:5b:1c:ee:8d:7d: 79:27:30:17:53:88:99:9b:d4:9e:d6:18:7e:4f:df: e0:2b:42:4a:c6:f8:7c:e7:8e:2a:ad:35:ed:80:dc: 90:9d:15:b2:98:a8:62:cd:7e:1e:03:1d:1c:b1:50: 02:77:ff:ae:ce:0e:2c:42:59:ee:5a:6e:29:3f:4f: 46:c9:ea:ef:54:d0:5a:4b:ca:d8:91:dc:ff:7d:ec: 27:79:59:33:57:10:d4:d4:10:00:72:1a:90:ab:79: e0:17:49:ce:bd:09:39:fc:e6:f3:a9:d7:ce:55:01: 95:cd:51:ad:9a:c9:61:64:51:59:c8:14:9e:5d:ab: 6b:a4:dd:8a:3f:b3:36:8d:7e:b1:64:d7:2a:93:61: 32:9a:5e:d9:b9:bc:6a:45:02:ae:a4:cb:e4:e9:dd: 1d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:59:2C:F2:7B:97:19:51:5D:B5:BC:8E:E9:D9:87:08:35:9E:4D:D3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ff10bcf-a0d1-4f40-b79c-d84b07d3c7bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff0:5000::/40 Signature Algorithm: sha256WithRSAEncryption d8:f6:fe:51:01:8b:24:3b:db:f1:06:07:e2:93:89:3e:04:40: ad:46:f3:a6:34:ac:ef:60:20:5c:de:81:4b:a7:be:02:a2:be: dd:91:f8:fc:07:8c:bd:07:4d:6f:49:6c:d3:81:c1:df:c6:ae: 6e:21:e8:df:c1:1a:3a:a1:2b:5f:d4:2d:e3:be:49:2a:18:a0: 65:e2:d9:5e:a4:64:7b:d8:d7:fc:8d:77:0c:bb:4f:e7:44:15: 73:18:0e:55:87:89:8b:33:a6:4f:3c:87:0d:2b:3e:fe:29:31: 17:9a:99:28:e6:1c:4f:3d:ef:a7:c0:08:76:42:7b:a5:30:78: bf:e6:bb:3f:19:38:8f:e9:a6:17:90:96:72:ef:50:c2:b1:ab: 94:53:ce:75:07:90:82:fb:78:e8:7c:1a:cd:28:88:40:ea:12: d2:d9:3a:13:8a:21:4a:99:27:cf:2c:bd:c4:97:cc:28:8f:6a: 2f:02:be:35:eb:63:8d:af:97:6f:97:f0:1d:8a:df:06:cd:53: d4:57:11:99:73:6d:ca:b6:6d:35:85:d3:e4:e8:8c:3a:f0:38: 01:f5:6e:26:f8:60:9a:13:f1:ca:7a:99:25:08:d3:03:b0:99: 6f:2a:95:5f:5d:89:87:2c:65:be:bb:3f:3b:e6:1b:a6:3b:18: 33:25:25:3e -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUM64He9BXuEHzDAcYZbkwyAUlj8IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTIxMDAwMDAwWhcNMjUwMjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNWQ5ZGMwYjg1ZDQyZTg1MjFiOTllMTY5NjdjNzBlMDNl OTQ2ODRlODZkYjg3NDIzY2NiYjM4ZWUxZWI1ZTdmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDqGymydADjqOlEdimn62qlpa57fWXjJS0vEt7eMV16o+Ig oPvQ/QPJr+JnMkQUer83/DW2ZLRnb4m2uy0QZwbZXQZAWj0Ay0EcSB50WhxntdCb sQnU3uwRSYzAtEWuXPeRS0xbHO6NfXknMBdTiJmb1J7WGH5P3+ArQkrG+Hznjiqt Ne2A3JCdFbKYqGLNfh4DHRyxUAJ3/67ODixCWe5abik/T0bJ6u9U0FpLytiR3P99 7Cd5WTNXENTUEAByGpCreeAXSc69CTn85vOp185VAZXNUa2ayWFkUVnIFJ5dq2uk 3Yo/szaNfrFk1yqTYTKaXtm5vGpFAq6ky+Tp3R0LAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUYFks8nuXGVFdtbyO6dmHCDWeTdMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJmZjEwYmNmLWEwZDEtNGY0MC1iNzljLWQ4NGIwN2QzYzdiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/wUDANBgkqhkiG9w0BAQsFAAOCAQEA2Pb+UQGLJDvb8QYH4pOJPgRA rUbzpjSs72AgXN6BS6e+AqK+3ZH4/AeMvQdNb0ls04HB38aubiHo38EaOqErX9Qt 475JKhigZeLZXqRke9jX/I13DLtP50QVcxgOVYeJizOmTzyHDSs+/ikxF5qZKOYc Tz3vp8AIdkJ7pTB4v+a7Pxk4j+mmF5CWcu9QwrGrlFPOdQeQgvt46HwazSiIQOoS 0tk6E4ohSpknzyy9xJfMKI9qLwK+Netjja+Xb5fwHYrfBs1T1FcRmXNtyrZtNYXT 5OiMOvA4AfVuJvhgmhPxynqZJQjTA7CZbyqVX12Jhyxlvrs/O+YbpjsYMyUlPg== -----END CERTIFICATE-----Generated at Mon Feb 10 15:49:03 2025 by rpki-client