$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/664b5c88-c7b6-4443-8c1a-f4429e487f3a.roa File: 664b5c88-c7b6-4443-8c1a-f4429e487f3a.roa (raw, json) Hash identifier: GSi3Pz2uSzZOU9xplsDmZVzk3U+4a1uuSR05zymUmCA= Subject key identifier: E4:F7:35:28:C7:98:84:A9:02:B1:EB:44:0D:E0:56:5F:88:0B:D9:DE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1F6E7C9527EB75F2469C39624B39F446EE7D560E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/664b5c88-c7b6-4443-8c1a-f4429e487f3a.roa Signing time: Tue 04 Feb 2025 00:00:00 +0000 ROA not before: Tue 04 Feb 2025 00:00:00 +0000 ROA not after: Tue 11 Mar 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ffb:5080::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:6e:7c:95:27:eb:75:f2:46:9c:39:62:4b:39:f4:46:ee:7d:56:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 4 00:00:00 2025 GMT Not After : Mar 11 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2b:c5:9a:fd:d7:3c:14:48:36:9d:18:d8:9a: 26:1e:89:aa:5a:8f:38:68:42:1f:47:d4:45:62:da: 77:d8:7e:d1:ac:f0:d6:8f:0d:f9:bd:b6:4d:3b:d9: 11:50:fe:d0:15:eb:8f:fd:65:68:a9:d5:77:5a:7a: 84:bc:c3:17:4c:bf:01:bb:cf:8e:08:b8:6a:eb:47: b0:7d:02:3e:c3:5a:63:70:30:0d:21:23:d0:96:f3: d5:38:06:27:54:79:3f:e9:77:eb:5f:94:61:a8:de: 26:a0:63:69:e5:3c:71:aa:30:d0:af:b4:7d:04:7a: 50:ca:ed:61:6c:68:e0:bf:7e:4d:ff:87:bc:34:6d: e3:7c:87:ce:26:49:bd:05:91:9b:af:80:a0:3c:d7: 3f:42:bf:35:4d:cd:1a:29:b6:c3:5c:e3:b6:88:7c: 6d:78:84:d9:57:74:98:34:eb:37:cc:52:e7:55:b3: 10:84:24:20:6d:e1:b1:8c:c3:10:7c:da:d6:42:02: 6d:12:7b:22:8a:ca:cd:f2:2d:30:b3:f9:0c:68:5a: 2f:11:2c:69:3d:6b:c7:a6:5e:23:73:26:4a:89:ab: 28:d3:7a:76:53:37:26:11:24:b0:6e:02:47:a9:63: ad:89:10:9f:97:c6:7a:08:b8:40:4f:ee:d6:01:38: 78:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:F7:35:28:C7:98:84:A9:02:B1:EB:44:0D:E0:56:5F:88:0B:D9:DE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/664b5c88-c7b6-4443-8c1a-f4429e487f3a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffb:5080::/46 Signature Algorithm: sha256WithRSAEncryption 5a:f5:65:ac:cf:85:3b:e1:a9:e9:d9:47:c4:21:d2:ee:18:b6: 74:cb:39:57:57:a3:60:ce:fa:49:5b:54:ee:c6:85:67:df:23: ed:6d:d1:81:e1:08:99:0b:c2:eb:ca:98:d9:33:19:9c:f3:98: c3:2d:fb:93:df:e1:8c:32:37:7c:63:85:7d:0c:37:c4:99:a3: 61:f3:ae:ee:b8:44:df:12:d2:27:22:93:1a:7e:8c:59:ba:6f: d5:30:fb:5d:b6:9a:c2:99:37:db:f3:63:40:62:1e:49:88:51: 6c:85:04:20:fd:e6:45:f5:28:6d:15:4b:a7:47:cf:38:fa:28: 07:d7:37:15:b6:fe:64:b1:ed:f2:3a:64:81:5b:8f:44:84:81: 8f:8e:f1:4b:4e:46:e6:b0:7f:30:83:6b:34:83:9c:b6:a6:1e: eb:04:00:de:63:a9:68:da:bd:ec:6a:e3:d5:2e:d1:d5:87:3c: fb:d6:6e:0b:f1:9c:69:9f:da:75:57:8c:df:9a:66:3a:88:4d: 52:44:b1:d4:99:31:32:58:b2:cd:2b:32:83:a3:2d:b9:d7:aa: 4d:08:0c:cd:54:44:24:be:c2:36:08:57:1e:a2:89:5d:07:b2: a3:34:65:65:49:7a:10:f2:50:70:c2:05:2c:1c:2e:29:98:9f: 6a:92:68:91 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUH258lSfrdfJGnDliSzn0Ru59Vg4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjA0MDAwMDAwWhcNMjUwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0BhYTM3ODA0MjUyZmM4OGVlODM4Y2RjNTQ2ZTU1MDhhNGY5 N2VmYjNmYzQ0ZTI3YTJhNzU5ODZhMjE4YjU0NDBjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+K8Wa/dc8FEg2nRjYmiYeiapajzhoQh9H1EVi2nfYftGs 8NaPDfm9tk072RFQ/tAV64/9ZWip1XdaeoS8wxdMvwG7z44IuGrrR7B9Aj7DWmNw MA0hI9CW89U4BidUeT/pd+tflGGo3iagY2nlPHGqMNCvtH0EelDK7WFsaOC/fk3/ h7w0beN8h84mSb0FkZuvgKA81z9CvzVNzRoptsNc47aIfG14hNlXdJg06zfMUudV sxCEJCBt4bGMwxB82tZCAm0SeyKKys3yLTCz+QxoWi8RLGk9a8emXiNzJkqJqyjT enZTNyYRJLBuAkepY62JEJ+XxnoIuEBP7tYBOHjtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5Pc1KMeYhKkCsetEDeBWX4gL2d4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY2NGI1Yzg4LWM3YjYtNDQ0My04YzFhLWY0NDI5ZTQ4N2YzYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/7UIAwDQYJKoZIhvcNAQELBQADggEBAFr1ZazPhTvhqenZR8Qh0u4Y tnTLOVdXo2DO+klbVO7GhWffI+1t0YHhCJkLwuvKmNkzGZzzmMMt+5Pf4YwyN3xj hX0MN8SZo2Hzru64RN8S0icikxp+jFm6b9Uw+122msKZN9vzY0BiHkmIUWyFBCD9 5kX1KG0VS6dHzzj6KAfXNxW2/mSx7fI6ZIFbj0SEgY+O8UtORuawfzCDazSDnLam HusEAN5jqWjavexq49Uu0dWHPPvWbgvxnGmf2nVXjN+aZjqITVJEsdSZMTJYss0r MoOjLbnXqk0IDM1URCS+wjYIVx6iiV0HsqM0ZWVJehDyUHDCBSwcLimYn2qSaJE= -----END CERTIFICATE-----Generated at Wed Feb 5 16:02:48 2025 by rpki-client