$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33d00f85-2dad-40e9-ad84-05aa8de0f228.roa File: 33d00f85-2dad-40e9-ad84-05aa8de0f228.roa (raw, json) Hash identifier: vao/5t/PEs1CnrubDrCJgL4GvNmoumK123m4vX6oZH4= Subject key identifier: C5:E3:8E:39:E6:03:9B:C7:CE:EC:AC:B9:0A:39:DA:B7:CE:46:9D:85 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 49D745ED4601E6BAEAE665A73159144B8F6FACD8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33d00f85-2dad-40e9-ad84-05aa8de0f228.roa Signing time: Tue 18 Feb 2025 00:41:37 +0000 ROA not before: Tue 18 Feb 2025 00:41:37 +0000 ROA not after: Tue 25 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f1b:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:d7:45:ed:46:01:e6:ba:ea:e6:65:a7:31:59:14:4b:8f:6f:ac:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 18 00:41:37 2025 GMT Not After : Mar 25 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4e:81:ee:26:df:b1:09:fe:d2:17:52:66:d0: 4b:d4:15:4f:8e:55:00:c4:17:ce:96:fd:99:08:85: e2:01:69:3f:cd:25:7e:b5:e0:a2:88:e1:27:38:d0: 45:c6:b7:be:43:fc:30:31:f0:45:84:46:9a:8f:1e: 06:63:4e:4b:4b:9c:68:b9:5f:1a:ef:ad:b7:cf:88: c6:11:3b:7a:7a:8f:b5:18:ce:a5:63:2d:5f:ef:c8: 09:98:7d:e1:bf:16:ea:02:ba:b1:44:58:9f:d2:9e: a9:0a:fb:36:25:3a:40:fd:d1:28:a6:3e:47:da:32: 9d:b7:b7:68:e1:21:28:91:f0:ff:87:32:df:55:e7: d4:11:fc:7c:63:d4:89:5f:49:e2:80:5b:2e:f0:f5: b0:3e:f6:ec:5b:3b:da:7d:92:2f:37:99:c0:da:44: 0f:9d:88:9c:2c:87:8d:83:5d:61:b1:06:62:a2:5c: 29:db:92:44:7b:21:e2:8e:c4:c5:5c:9f:86:70:f2: 2e:ca:11:b4:0f:ab:40:46:82:0b:44:b9:c7:41:e0: e4:c3:7c:fc:a7:a7:f1:6b:9f:78:ed:64:2e:27:d2: 97:5f:44:1b:54:26:3a:6c:2e:76:66:88:64:5b:bd: df:8f:65:ee:18:63:35:6d:79:66:cf:c9:90:ea:e5: ab:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:E3:8E:39:E6:03:9B:C7:CE:EC:AC:B9:0A:39:DA:B7:CE:46:9D:85 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33d00f85-2dad-40e9-ad84-05aa8de0f228.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1b:8000::/36 Signature Algorithm: sha256WithRSAEncryption 7c:5c:47:9a:d9:70:2f:8b:75:a4:92:e0:ba:d5:fd:ae:41:c9: 76:a4:1f:60:29:0f:48:0b:35:ed:ab:99:26:1b:73:ff:4e:06: 9b:13:83:44:b8:23:0b:17:fb:f3:00:16:ee:1a:7d:ed:55:65: 5e:71:2e:20:89:09:20:97:08:7f:25:d4:46:ac:be:0d:90:82: c9:0f:94:77:fe:c2:07:c6:c6:bc:6c:09:51:0f:77:90:b6:73: f9:05:51:86:51:44:a3:e2:58:c6:2a:47:10:54:f0:02:39:b2: f2:1b:30:b4:61:3a:1c:ad:ff:33:ff:c8:20:84:a0:94:e7:f0: 9f:65:44:b5:ee:77:ba:cc:b0:58:c5:e3:dc:b2:86:5a:24:a3: 30:5b:f8:5c:b6:a7:99:38:ad:1d:90:2e:d7:ba:b5:83:c9:9f: 19:c1:31:18:8f:c5:78:2a:38:60:a3:2c:ff:8c:6d:2b:2f:7d: b5:21:3f:fd:3b:d0:cd:7d:95:e6:7f:11:c6:e5:ac:2f:8e:52: 90:d5:69:54:82:74:1a:81:3a:b1:ac:e8:fa:26:34:2d:52:c2: 9f:f5:94:32:6c:6a:e5:f9:19:e6:c2:eb:4c:9e:30:f6:98:cd: da:00:af:d1:59:5a:90:33:f1:69:6d:bd:3f:dd:8e:8e:d7:a7: d6:be:e2:e9 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUSddF7UYB5rrq5mWnMVkUS49vrNgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjE4MDA0MTM3WhcNMjUwMzI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNjg2ZmRmNzQyZjA3OWVhZGYxYjljY2Y0Zjk5ZDg3MmZm MjBmNzE0MzA4MDA5YWMxNmM3OTM5NjI5YWQ5YTJiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxToHuJt+xCf7SF1Jm0EvUFU+OVQDEF86W/ZkIheIBaT/N JX614KKI4Sc40EXGt75D/DAx8EWERpqPHgZjTktLnGi5XxrvrbfPiMYRO3p6j7UY zqVjLV/vyAmYfeG/FuoCurFEWJ/SnqkK+zYlOkD90SimPkfaMp23t2jhISiR8P+H Mt9V59QR/Hxj1IlfSeKAWy7w9bA+9uxbO9p9ki83mcDaRA+diJwsh42DXWGxBmKi XCnbkkR7IeKOxMVcn4Zw8i7KEbQPq0BGggtEucdB4OTDfPynp/Frn3jtZC4n0pdf RBtUJjpsLnZmiGRbvd+PZe4YYzVteWbPyZDq5avPAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUxeOOOeYDm8fO7Ky5Cjnat85GnYUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMzZDAwZjg1LTJkYWQtNDBlOS1hZDg0LTA1YWE4ZGUwZjIyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8bgDANBgkqhkiG9w0BAQsFAAOCAQEAfFxHmtlwL4t1pJLgutX9rkHJ dqQfYCkPSAs17auZJhtz/04GmxODRLgjCxf78wAW7hp97VVlXnEuIIkJIJcIfyXU Rqy+DZCCyQ+Ud/7CB8bGvGwJUQ93kLZz+QVRhlFEo+JYxipHEFTwAjmy8hswtGE6 HK3/M//IIISglOfwn2VEte53usywWMXj3LKGWiSjMFv4XLanmTitHZAu17q1g8mf GcExGI/FeCo4YKMs/4xtKy99tSE//TvQzX2V5n8RxuWsL45SkNVpVIJ0GoE6sazo +iY0LVLCn/WUMmxq5fkZ5sLrTJ4w9pjN2gCv0VlakDPxaW29P92Ojten1r7i6Q== -----END CERTIFICATE-----Generated at Thu Mar 13 23:35:02 2025 by rpki-client