$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53c2cd3c-53af-4880-ab72-8d40e7088c6b.roa File: 53c2cd3c-53af-4880-ab72-8d40e7088c6b.roa (raw, json) Hash identifier: SSQ72aOkwabMjd7HVycF/BMh2j3HndQEBUA8X5MRoNk= Subject key identifier: DB:A0:3E:01:00:7B:85:B7:33:B5:ED:65:42:68:6F:1D:51:A4:02:88 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 04321DE1B63F889B7B91670D16A672612C077132 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53c2cd3c-53af-4880-ab72-8d40e7088c6b.roa Signing time: Tue 04 Feb 2025 00:00:00 +0000 ROA not before: Tue 04 Feb 2025 00:00:00 +0000 ROA not after: Tue 11 Mar 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ff2:2000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:32:1d:e1:b6:3f:88:9b:7b:91:67:0d:16:a6:72:61:2c:07:71:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 4 00:00:00 2025 GMT Not After : Mar 11 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a4:37:56:59:45:31:f1:45:a0:da:0d:b4:6a: 40:f7:4f:95:b7:b8:37:c3:6d:ec:78:b5:2f:e7:20: 0c:9e:61:a0:3d:c4:54:1c:e2:1b:ae:35:76:51:2a: e1:13:bc:9a:b9:ae:00:1f:09:93:d2:16:d0:61:8c: f3:4a:9b:fe:29:54:a1:c9:5d:ed:f1:5e:c6:d3:2b: 0d:7a:22:88:b3:75:c2:f7:31:c4:ac:00:9b:5a:60: 5f:bd:9f:7c:24:82:db:0a:f9:1c:de:b4:d5:84:c4: 95:1a:25:ba:b1:95:e4:1c:84:75:c8:13:3b:a0:1e: 76:25:d9:f2:b5:37:00:e5:d4:12:9d:b5:43:6d:f5: 28:fd:d1:fc:d3:bc:40:7a:c0:7b:54:cb:2b:b9:43: bf:bb:d6:f7:52:6b:6f:0c:04:f7:1c:30:24:2e:44: b7:36:82:c3:2c:ff:81:49:e0:06:3c:c7:7d:4b:0e: a6:04:7e:90:e5:ac:93:b4:b1:18:0d:a0:bd:67:a8: 35:ab:69:52:af:61:4c:fc:f4:ba:9f:6f:83:05:b8: aa:0f:f4:a8:bf:c5:e9:08:a6:e2:7c:28:9e:c1:e3: aa:f8:cd:33:0a:46:62:1c:50:0c:c0:33:ed:33:92: 81:0d:dd:51:d8:d2:26:3e:f4:e6:ef:32:d0:00:05: 38:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:A0:3E:01:00:7B:85:B7:33:B5:ED:65:42:68:6F:1D:51:A4:02:88 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53c2cd3c-53af-4880-ab72-8d40e7088c6b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:2000::/40 Signature Algorithm: sha256WithRSAEncryption 92:e9:0a:e1:0b:c4:39:99:95:d3:51:a4:c6:bb:58:67:aa:80: 08:79:8f:d3:17:cc:d8:55:b0:06:c1:4b:6e:63:28:16:b4:b3: a1:ce:9f:fa:2c:29:3a:8a:b9:3d:bd:3f:b9:37:d4:9e:19:b5: e7:df:dd:a5:3a:95:2e:92:4f:15:9c:57:3c:19:b7:66:3d:04: 4e:ef:72:be:12:49:6c:b7:31:72:7c:18:82:2a:0a:b7:af:61: 4e:60:31:f8:88:56:78:f5:7b:c5:de:17:01:4a:ac:d8:36:6b: d4:5a:bc:ff:a9:f9:35:5e:a5:9e:3e:ba:af:90:29:05:e0:97: e9:3a:54:99:fb:77:c9:f9:78:18:13:ce:53:b2:27:ee:1e:7f: b1:81:24:a4:eb:c9:45:77:e8:0d:cc:3b:f1:a0:5c:5a:20:8e: 81:8f:1e:92:57:84:b4:64:de:e4:4c:a9:e9:6c:2e:ed:b1:8f: ed:12:17:2e:e8:4c:1a:81:ce:fc:3f:d4:70:f4:8e:48:dc:83: 7e:5e:fe:dc:1a:29:26:cd:92:d0:7d:c4:82:40:85:3b:f9:09: 8f:b6:98:09:dc:c0:f8:1e:1c:26:50:97:55:57:24:66:f1:71: 85:e0:b3:18:1b:a9:d4:1e:a8:68:04:2e:c4:0b:96:12:07:92: cf:b0:5a:f6 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUBDId4bY/iJt7kWcNFqZyYSwHcTIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjA0MDAwMDAwWhcNMjUwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MGIyMmRhNDFmNWMzZTA3ZjVmMTJmNjQ2NmIxODliMjU4 YjFiMWFmYTBjMGMyYjkzNTE5MzYxZmNkMzhmOTcwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3pDdWWUUx8UWg2g20akD3T5W3uDfDbex4tS/nIAyeYaA9 xFQc4huuNXZRKuETvJq5rgAfCZPSFtBhjPNKm/4pVKHJXe3xXsbTKw16IoizdcL3 McSsAJtaYF+9n3wkgtsK+RzetNWExJUaJbqxleQchHXIEzugHnYl2fK1NwDl1BKd tUNt9Sj90fzTvEB6wHtUyyu5Q7+71vdSa28MBPccMCQuRLc2gsMs/4FJ4AY8x31L DqYEfpDlrJO0sRgNoL1nqDWraVKvYUz89Lqfb4MFuKoP9Ki/xekIpuJ8KJ7B46r4 zTMKRmIcUAzAM+0zkoEN3VHY0iY+9ObvMtAABThVAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU26A+AQB7hbczte1lQmhvHVGkAogwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzYzJjZDNjLTUzYWYtNDg4MC1hYjcyLThkNDBlNzA4OGM2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/yIDANBgkqhkiG9w0BAQsFAAOCAQEAkukK4QvEOZmV01GkxrtYZ6qA CHmP0xfM2FWwBsFLbmMoFrSzoc6f+iwpOoq5Pb0/uTfUnhm159/dpTqVLpJPFZxX PBm3Zj0ETu9yvhJJbLcxcnwYgioKt69hTmAx+IhWePV7xd4XAUqs2DZr1Fq8/6n5 NV6lnj66r5ApBeCX6TpUmft3yfl4GBPOU7In7h5/sYEkpOvJRXfoDcw78aBcWiCO gY8ekleEtGTe5Eyp6Wwu7bGP7RIXLuhMGoHO/D/UcPSOSNyDfl7+3BopJs2S0H3E gkCFO/kJj7aYCdzA+B4cJlCXVVckZvFxheCzGBup1B6oaAQuxAuWEgeSz7Ba9g== -----END CERTIFICATE-----Generated at Wed Feb 5 16:02:48 2025 by rpki-client