$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/35df84bd-f85e-41cd-99b1-3f7a9ebb1480.roa File: 35df84bd-f85e-41cd-99b1-3f7a9ebb1480.roa (raw, json) Hash identifier: J6x5k9KRHU3j4Kw9L8GrL0+4OPXnZaBJc9qgtVWUxzA= Subject key identifier: 13:1E:10:C4:89:6E:37:7F:A6:62:A6:28:4A:DC:8F:9A:8C:21:1B:CA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3EC1E55011546A528B859619D9CC1442FC012018 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/35df84bd-f85e-41cd-99b1-3f7a9ebb1480.roa Signing time: Tue 04 Feb 2025 00:00:00 +0000 ROA not before: Tue 04 Feb 2025 00:00:00 +0000 ROA not after: Tue 11 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f1f:4800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:c1:e5:50:11:54:6a:52:8b:85:96:19:d9:cc:14:42:fc:01:20:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 4 00:00:00 2025 GMT Not After : Mar 11 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:53:a1:fd:fa:15:44:fe:4d:fd:79:4b:fa:f7: ef:fd:bd:c2:15:fa:8f:af:b6:3c:91:2f:7d:30:9c: 32:73:4c:02:63:38:42:e2:fa:7f:37:65:d5:b7:d2: 14:25:fc:5d:97:e8:4a:89:01:9f:e3:62:27:e1:b2: b0:4f:df:f4:64:de:1f:65:31:7d:63:50:bd:83:bb: 91:ac:ac:b6:c9:7c:33:dd:5a:b1:99:0f:cc:dd:44: 9d:00:0b:d9:01:e5:56:cb:8d:cf:f9:9b:c5:76:d2: 6d:ce:7e:28:fc:ec:29:17:cf:06:f3:f3:2b:c0:05: 8d:3b:fa:85:c1:9f:6d:e1:2b:dc:1d:4f:db:f0:34: df:98:db:9d:bd:fe:08:04:90:a5:68:ea:cd:2a:17: 59:45:8f:63:76:ff:a6:f7:7d:ad:4a:cc:33:02:e4: c9:70:a3:da:6f:36:02:5d:f2:60:56:8a:01:c2:c1: 30:6e:82:fa:e5:ef:0e:1d:ed:ca:3f:f9:90:16:8d: c7:8e:b0:de:c4:f6:2f:86:86:1e:03:f0:3f:ad:2c: f7:87:33:92:82:bc:b8:3a:43:01:df:09:44:e7:9b: 1c:ec:af:b3:ca:ed:48:91:b6:d5:98:06:c4:4e:fb: fd:c5:87:d1:70:d8:fd:6f:bf:4f:46:6f:6b:d3:d0: ae:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:1E:10:C4:89:6E:37:7F:A6:62:A6:28:4A:DC:8F:9A:8C:21:1B:CA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/35df84bd-f85e-41cd-99b1-3f7a9ebb1480.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1f:4800::/37 Signature Algorithm: sha256WithRSAEncryption 86:29:9c:9a:84:39:cd:51:c0:e4:a3:c9:df:16:18:99:ad:33: 69:35:ea:16:19:ac:f7:34:bf:d1:2e:17:1f:b7:ad:3d:a1:5d: 8b:8a:0b:2d:cc:a3:35:69:8a:fe:29:d0:c8:14:3c:64:e3:ed: b1:37:a4:18:8a:24:1f:ae:47:92:0e:02:f2:e4:a3:97:cf:78: d8:bc:34:b1:6a:7d:9a:b6:d2:0d:45:b5:bc:42:62:43:a4:35: 82:7b:6d:1c:a2:a4:7a:72:e6:a1:40:3e:c7:62:45:1e:e1:93: 52:89:c8:31:c2:ba:9d:3d:ed:bb:ee:e7:1e:d1:6d:3d:9e:79: 6f:29:a9:b9:ec:03:44:37:59:1f:5c:94:10:b2:30:2e:14:6f: 40:fb:5a:53:a9:8f:a7:c2:8c:7e:bd:d3:bf:90:3e:25:ef:69: 15:7f:c5:ec:ea:bd:0e:da:fc:6e:26:fb:bb:df:95:fc:05:2e: 5a:85:fc:c6:25:a5:b9:81:b0:66:74:62:23:7a:9a:db:78:b6: 90:ca:9e:42:d9:b8:ab:eb:45:50:7f:fb:49:5b:46:f4:45:58: b5:e8:4b:c7:82:3f:27:db:b6:dc:89:e4:b1:e7:31:28:4f:56: 4a:ca:cc:01:00:b0:2a:51:e2:f9:01:cf:26:20:e8:9b:52:33: b7:87:d3:04 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUPsHlUBFUalKLhZYZ2cwUQvwBIBgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjA0MDAwMDAwWhcNMjUwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0BjZTBkYmZiOTc0YjNkNTJkNzNkZGYzNmVhMjAwYzcyZDVm Zjc5NDFmMzhmOTM5OTBmMzhlNTYxNDM3NGI4OGRjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1U6H9+hVE/k39eUv69+/9vcIV+o+vtjyRL30wnDJzTAJj OELi+n83ZdW30hQl/F2X6EqJAZ/jYifhsrBP3/Rk3h9lMX1jUL2Du5GsrLbJfDPd WrGZD8zdRJ0AC9kB5VbLjc/5m8V20m3Ofij87CkXzwbz8yvABY07+oXBn23hK9wd T9vwNN+Y2529/ggEkKVo6s0qF1lFj2N2/6b3fa1KzDMC5Mlwo9pvNgJd8mBWigHC wTBugvrl7w4d7co/+ZAWjceOsN7E9i+Ghh4D8D+tLPeHM5KCvLg6QwHfCUTnmxzs r7PK7UiRttWYBsRO+/3Fh9Fw2P1vv09Gb2vT0K69AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUEx4QxIluN3+mYqYoStyPmowhG8owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1ZGY4NGJkLWY4NWUtNDFjZC05OWIxLTNmN2E5ZWJiMTQ4MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8fSDANBgkqhkiG9w0BAQsFAAOCAQEAhimcmoQ5zVHA5KPJ3xYYma0z aTXqFhms9zS/0S4XH7etPaFdi4oLLcyjNWmK/inQyBQ8ZOPtsTekGIokH65Hkg4C 8uSjl8942Lw0sWp9mrbSDUW1vEJiQ6Q1gnttHKKkenLmoUA+x2JFHuGTUonIMcK6 nT3tu+7nHtFtPZ55bympuewDRDdZH1yUELIwLhRvQPtaU6mPp8KMfr3Tv5A+Je9p FX/F7Oq9Dtr8bib7u9+V/AUuWoX8xiWluYGwZnRiI3qa23i2kMqeQtm4q+tFUH/7 SVtG9EVYtehLx4I/J9u23InksecxKE9WSsrMAQCwKlHi+QHPJiDom1Izt4fTBA== -----END CERTIFICATE-----Generated at Wed Feb 5 09:47:45 2025 by rpki-client