$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6790ee9a-7d7b-4416-9f0a-9fecab956ccf.roa File: 6790ee9a-7d7b-4416-9f0a-9fecab956ccf.roa (raw, json) Hash identifier: 7nRlxIOKu+ReE41BRFZ59rpq4p3QgxXvp/zUZQtecUE= Subject key identifier: 7C:ED:F9:55:8F:0C:3C:1F:B8:8A:6E:21:0E:98:88:9F:24:86:5C:7B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1A8536DE1D87410863C488790BBCAEAAC977EB95 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6790ee9a-7d7b-4416-9f0a-9fecab956ccf.roa Signing time: Wed 05 Feb 2025 00:00:00 +0000 ROA not before: Wed 05 Feb 2025 00:00:00 +0000 ROA not after: Wed 12 Mar 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ff6:2000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:85:36:de:1d:87:41:08:63:c4:88:79:0b:bc:ae:aa:c9:77:eb:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 5 00:00:00 2025 GMT Not After : Mar 12 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:0a:e1:a8:3b:ff:f4:4e:b9:23:ef:ee:ad:1f: fe:7d:91:2b:85:21:f6:48:dc:e6:ed:92:b1:fc:91: 6c:09:1a:ca:e6:c8:5f:ff:88:bc:3c:ef:90:7a:56: 67:2a:f7:b4:9d:41:61:58:14:8c:89:b9:88:2a:2f: 9e:c8:75:58:2a:b3:85:3c:0b:06:4d:66:fc:07:0e: 1f:c4:ba:e8:08:e5:50:f8:06:5f:81:fd:8d:b3:44: 38:c3:c8:b0:99:81:d2:27:fd:39:02:6e:c0:87:67: 4f:c2:0f:c0:5e:5e:a7:30:96:27:e8:67:65:7a:3e: 64:6e:b2:19:d8:e7:f1:c5:38:f5:af:0b:f3:81:24: d6:a1:9c:ba:1b:f4:c7:9b:e5:24:9d:1a:6b:e5:dd: e2:ba:15:33:0a:41:48:3b:ef:be:f3:85:82:da:b7: eb:1c:84:1f:5f:9b:9e:c8:f4:1e:b9:5e:97:fc:d2: 31:70:cd:04:76:b2:73:27:a0:10:73:0b:03:3c:9d: 38:0d:73:09:13:8c:4f:d5:6f:59:44:8d:ef:12:5d: be:57:09:51:bf:8c:0d:46:1b:93:be:59:24:ac:43: 1c:8e:2f:d2:03:40:6e:99:12:0d:eb:56:0c:06:87: e3:a7:ac:8a:63:91:22:54:81:f5:12:ad:54:87:78: 0a:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:ED:F9:55:8F:0C:3C:1F:B8:8A:6E:21:0E:98:88:9F:24:86:5C:7B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6790ee9a-7d7b-4416-9f0a-9fecab956ccf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff6:2000::/40 Signature Algorithm: sha256WithRSAEncryption 4b:d1:48:2d:59:d8:0b:4f:3a:1c:0b:de:f9:c1:c8:e9:7f:f5: 7f:97:bc:ac:96:e9:8e:be:cd:18:84:96:11:00:a1:9c:46:a8: af:bc:08:79:23:4f:19:10:89:95:17:46:07:1b:c6:e7:b8:8c: 67:d3:9a:c2:cb:58:b2:4d:0f:f8:a0:e8:12:bf:8e:c8:2c:f7: dc:fc:94:d3:4c:17:f9:e9:d8:88:27:86:7f:ca:5e:33:fd:4d: 4b:94:76:f8:67:fc:e0:ee:34:1a:74:ce:da:2f:35:68:47:e2: e6:41:34:53:d9:a5:93:69:8d:4c:d6:ea:cd:f8:1c:8c:35:db: 41:a5:0f:bb:56:75:d2:d2:52:7d:8c:9e:b2:aa:9a:f4:61:73: 69:f2:1a:c8:b3:32:ee:bc:b5:eb:0b:48:63:3b:43:1f:2b:68: 77:f0:5e:31:9d:db:cf:c2:94:9c:88:99:d4:4a:97:77:4c:ea: e8:61:58:df:a1:34:b2:d5:39:1c:6c:0e:64:15:4b:91:39:0f: f0:32:3a:42:08:ab:28:af:ed:e3:74:b3:ca:2f:c2:7c:d7:88: 30:46:fb:f1:9e:a9:cb:1c:0a:8b:7d:b8:c2:5d:d3:87:f1:4d: 74:80:0b:80:4c:ce:22:55:ad:0d:92:d1:a5:71:4b:d8:f1:84: 14:4a:b5:9b -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUGoU23h2HQQhjxIh5C7yuqsl365UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjA1MDAwMDAwWhcNMjUwMzEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMGZkNzlmZjE5YTZmYTExNjE1NTdjMzZmYTU4NzZmYTkw MTk3MzQxYzQzZmJjZmNiNzQ4ZjhkMjBhZDExZjg2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDsCuGoO//0Trkj7+6tH/59kSuFIfZI3ObtkrH8kWwJGsrm yF//iLw875B6Vmcq97SdQWFYFIyJuYgqL57IdVgqs4U8CwZNZvwHDh/EuugI5VD4 Bl+B/Y2zRDjDyLCZgdIn/TkCbsCHZ0/CD8BeXqcwlifoZ2V6PmRushnY5/HFOPWv C/OBJNahnLob9Meb5SSdGmvl3eK6FTMKQUg7777zhYLat+schB9fm57I9B65Xpf8 0jFwzQR2snMnoBBzCwM8nTgNcwkTjE/Vb1lEje8SXb5XCVG/jA1GG5O+WSSsQxyO L9IDQG6ZEg3rVgwGh+OnrIpjkSJUgfUSrVSHeAr7AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUfO35VY8MPB+4im4hDpiInySGXHswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY3OTBlZTlhLTdkN2ItNDQxNi05ZjBhLTlmZWNhYjk1NmNjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/2IDANBgkqhkiG9w0BAQsFAAOCAQEAS9FILVnYC086HAve+cHI6X/1 f5e8rJbpjr7NGISWEQChnEaor7wIeSNPGRCJlRdGBxvG57iMZ9OawstYsk0P+KDo Er+OyCz33PyU00wX+enYiCeGf8peM/1NS5R2+Gf84O40GnTO2i81aEfi5kE0U9ml k2mNTNbqzfgcjDXbQaUPu1Z10tJSfYyesqqa9GFzafIayLMy7ry16wtIYztDHyto d/BeMZ3bz8KUnIiZ1EqXd0zq6GFY36E0stU5HGwOZBVLkTkP8DI6QgirKK/t43Sz yi/CfNeIMEb78Z6pyxwKi324wl3Th/FNdIALgEzOIlWtDZLRpXFL2PGEFEq1mw== -----END CERTIFICATE-----Generated at Wed Feb 5 16:03:26 2025 by rpki-client