$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/379923f6-f2ed-41a0-a0b5-3ea7a6f71c3f.roa File: 379923f6-f2ed-41a0-a0b5-3ea7a6f71c3f.roa (raw, json) Hash identifier: SagsKFponQesgsXl1UP+VjMeA3IvYU3YH01TdS5sWP4= Subject key identifier: E0:2F:E8:89:A2:83:BC:0C:51:7D:5E:1E:2F:B8:59:C3:13:F3:39:34 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 13C8467939C56F7D335485094BD250BF936243F2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/379923f6-f2ed-41a0-a0b5-3ea7a6f71c3f.roa Signing time: Tue 04 Feb 2025 00:00:00 +0000 ROA not before: Tue 04 Feb 2025 00:00:00 +0000 ROA not after: Tue 11 Mar 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ff7:5040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:c8:46:79:39:c5:6f:7d:33:54:85:09:4b:d2:50:bf:93:62:43:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 4 00:00:00 2025 GMT Not After : Mar 11 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1a:73:af:48:39:de:60:be:23:56:d8:9f:e1: 11:29:29:a8:32:9c:15:23:46:31:98:cf:ff:74:e8: 6b:6e:03:75:3b:04:38:3a:67:cb:73:49:3a:79:7c: 61:92:31:88:9c:de:6d:d7:50:ea:51:c1:23:9b:d6: 20:68:8c:52:1e:63:73:3d:98:dc:2e:af:92:a3:8b: 54:28:0c:1b:5d:09:1e:7a:d4:4b:46:51:ca:88:9e: 43:04:c7:5b:d2:38:bc:5f:48:a8:c8:d3:dc:24:b7: 2b:81:be:68:f7:e4:fa:5b:ba:37:fb:12:6b:0a:06: 7d:9f:67:54:23:8e:56:f9:7a:c0:0a:f0:33:17:de: 33:0b:b5:99:e2:d7:fe:f3:c9:6d:1d:96:d0:7c:f0: e6:9f:77:2b:f9:e2:d5:ff:9b:17:c8:66:3b:78:63: cd:5e:45:4a:93:9c:d1:d7:ee:cb:2a:3f:4e:64:18: 98:52:13:42:de:9c:d0:92:7c:47:ea:23:9e:dd:91: dd:b2:14:29:76:85:ee:2d:1b:52:47:06:84:ae:0c: b2:e1:a0:f4:f3:9b:ab:40:b1:40:90:d3:97:02:aa: 3f:c3:6f:d3:2c:58:4d:72:6c:88:5d:09:0a:2f:2c: c3:f6:bc:42:b4:05:b5:ab:2c:ae:f6:fa:b0:07:a2: 81:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:2F:E8:89:A2:83:BC:0C:51:7D:5E:1E:2F:B8:59:C3:13:F3:39:34 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/379923f6-f2ed-41a0-a0b5-3ea7a6f71c3f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff7:5040::/46 Signature Algorithm: sha256WithRSAEncryption 4f:70:d5:f3:21:21:c5:e6:3f:2e:2e:05:8d:51:bb:27:80:3b: 97:80:02:8b:4b:80:63:ed:0b:2d:39:a6:6a:94:49:1b:2d:00: 7f:de:6f:ec:a3:75:c6:fe:a4:8f:fd:af:c0:fe:ab:87:f2:9a: 87:eb:f4:e8:52:b1:19:11:1d:27:66:73:5e:e6:5e:54:53:2e: ef:09:47:42:a3:f2:c4:31:aa:61:f8:d0:62:af:6a:63:2c:f8: 6b:55:36:e4:1f:1c:34:5e:9c:03:18:14:bb:98:fd:3e:40:d4: bc:41:f0:43:97:1a:60:21:8d:f0:33:71:be:ec:fc:cc:d4:c0: b3:e6:d8:9d:3a:98:bd:62:1a:cf:9c:3c:59:25:dc:c6:e5:c3: 0d:56:d8:13:03:99:09:f2:d4:f2:a7:30:b1:8b:9f:39:8d:46: 3b:bc:45:88:8e:b7:bb:f0:6b:f9:f1:c5:b8:75:32:0c:2c:c5: 0a:95:2f:4b:10:c9:21:bb:6b:39:aa:ab:b4:bc:58:9d:1f:4d: 6b:46:17:a2:7d:94:ca:5f:5c:c1:73:6c:1b:59:c3:c1:c8:14: cf:a0:af:e7:87:9b:98:66:98:9f:0b:ec:8c:f3:af:f6:26:6a: 11:47:53:a7:6e:82:b9:3b:8b:ee:48:6d:0b:4c:2c:98:0c:b8: 13:ae:27:e4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUE8hGeTnFb30zVIUJS9JQv5NiQ/IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjA0MDAwMDAwWhcNMjUwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZjZmZWE4NDdlY2VkODI1M2Q4NTAwOTM5MGZjOWQzZjY5 YjMwODJjNmQzYmE1YWUxNTQ4NzcyOWI2MTU4ZDQyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNGnOvSDneYL4jVtif4REpKagynBUjRjGYz/906GtuA3U7 BDg6Z8tzSTp5fGGSMYic3m3XUOpRwSOb1iBojFIeY3M9mNwur5Kji1QoDBtdCR56 1EtGUcqInkMEx1vSOLxfSKjI09wktyuBvmj35Ppbujf7EmsKBn2fZ1Qjjlb5esAK 8DMX3jMLtZni1/7zyW0dltB88Oafdyv54tX/mxfIZjt4Y81eRUqTnNHX7ssqP05k GJhSE0LenNCSfEfqI57dkd2yFCl2he4tG1JHBoSuDLLhoPTzm6tAsUCQ05cCqj/D b9MsWE1ybIhdCQovLMP2vEK0BbWrLK72+rAHooHZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU4C/oiaKDvAxRfV4eL7hZwxPzOTQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM3OTkyM2Y2LWYyZWQtNDFhMC1hMGI1LTNlYTdhNmY3MWMzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/3UEAwDQYJKoZIhvcNAQELBQADggEBAE9w1fMhIcXmPy4uBY1RuyeA O5eAAotLgGPtCy05pmqUSRstAH/eb+yjdcb+pI/9r8D+q4fymofr9OhSsRkRHSdm c17mXlRTLu8JR0Kj8sQxqmH40GKvamMs+GtVNuQfHDRenAMYFLuY/T5A1LxB8EOX GmAhjfAzcb7s/MzUwLPm2J06mL1iGs+cPFkl3Mblww1W2BMDmQny1PKnMLGLnzmN Rju8RYiOt7vwa/nxxbh1MgwsxQqVL0sQySG7azmqq7S8WJ0fTWtGF6J9lMpfXMFz bBtZw8HIFM+gr+eHm5hmmJ8L7Izzr/YmahFHU6dugrk7i+5IbQtMLJgMuBOuJ+Q= -----END CERTIFICATE-----Generated at Wed Feb 5 15:45:46 2025 by rpki-client