$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b64a54c-d6fb-4229-9471-bd2ea024187f.roa File: 6b64a54c-d6fb-4229-9471-bd2ea024187f.roa (raw, json) Hash identifier: 2VH+REmd64Cw2SPzgxOg56Osycv3PRIp+wSP6rgAT8o= Subject key identifier: 7F:F7:D3:2A:E0:23:F6:A7:FF:EE:2E:3D:2A:A2:AE:06:AC:83:28:AC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 61504031B9CE3BDD930F21E0E0740DA36E46D9A8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b64a54c-d6fb-4229-9471-bd2ea024187f.roa Signing time: Tue 04 Feb 2025 00:00:00 +0000 ROA not before: Tue 04 Feb 2025 00:00:00 +0000 ROA not after: Tue 11 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ffb:80a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:50:40:31:b9:ce:3b:dd:93:0f:21:e0:e0:74:0d:a3:6e:46:d9:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 4 00:00:00 2025 GMT Not After : Mar 11 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:eb:84:be:83:90:4e:f1:9c:58:03:5a:99:ec: 1a:0c:cd:09:1f:db:82:90:e0:f1:fa:4e:08:9b:85: 82:7b:59:af:d5:6b:f6:8a:86:25:20:72:bd:ae:c3: 21:0c:85:28:22:ca:d6:09:b4:4b:7c:78:1d:da:34: 8f:f3:52:28:02:78:96:fc:f9:30:df:e1:77:51:bd: fa:9b:aa:71:11:ee:d9:71:1e:1a:63:31:5b:74:75: 41:9d:4a:d3:6f:42:ff:14:a1:86:e5:d1:ae:a2:66: de:b9:a1:eb:e4:2a:f7:86:27:d0:41:9f:e2:c9:0e: 96:67:57:53:9d:ac:31:bb:5b:01:16:8f:9d:0b:c9: 96:63:62:bd:8a:fb:e6:a1:4e:5b:18:bf:5e:a0:60: ed:d7:9c:54:45:2e:3c:cd:b9:2b:38:29:e7:72:b8: 59:d7:0c:42:fe:62:cd:7b:fe:87:91:e5:13:16:23: 34:99:bc:fa:07:b0:cf:c8:81:5f:11:41:06:a7:73: e1:69:2c:fa:cc:56:ae:29:94:56:9a:e2:d4:fb:95: f6:6a:77:f8:a1:6c:cd:77:0d:dc:45:36:12:b2:6a: 5b:4a:44:f4:19:ed:85:dd:18:86:00:02:28:0e:7f: e8:a7:88:c6:af:e9:10:72:c1:16:8f:a5:7c:a2:16: 87:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:F7:D3:2A:E0:23:F6:A7:FF:EE:2E:3D:2A:A2:AE:06:AC:83:28:AC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b64a54c-d6fb-4229-9471-bd2ea024187f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffb:80a0::/48 Signature Algorithm: sha256WithRSAEncryption c7:03:e8:1a:c1:a8:54:f8:ac:0c:48:89:ee:5f:da:13:08:63: d6:30:92:ae:53:f7:85:60:ac:6e:cb:27:10:c5:66:f3:c2:fc: 0e:5d:c1:e4:96:04:0b:8c:a6:a7:5d:a0:fa:70:b4:c1:69:21: cf:43:91:68:25:65:c6:ca:33:af:ee:b1:43:c0:f7:72:8d:cf: a3:47:25:cc:f7:e1:72:30:c6:e7:31:54:a9:2b:c4:0e:d1:2d: 8c:5f:8a:d8:cb:f2:fc:b6:2c:08:c3:bc:73:cc:26:7e:0f:ac: f9:2f:3a:9c:92:a6:20:6a:ce:e7:b5:04:cb:a6:22:c8:08:20: f1:69:4a:68:76:ff:7a:2c:37:c0:80:9a:83:5a:fc:ae:92:b4: 61:6f:47:bb:4d:ff:de:57:64:5c:6b:fc:bb:77:e1:e2:ad:48: 95:c1:ba:f1:c8:95:c6:c5:ea:cd:22:71:fe:cc:0f:72:05:8f: 30:ff:0b:15:da:6e:e8:03:45:07:43:e2:1a:fd:e7:32:95:4e: a2:c7:36:f3:84:e6:16:ee:03:eb:12:c9:ed:83:42:f3:b9:37: 1d:b2:1c:20:b8:c9:09:88:94:68:e4:73:75:cc:b5:98:e0:4c: d6:10:2a:8a:9d:d1:71:98:d2:7c:5b:36:70:a3:b7:26:00:27: fe:05:80:fb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYVBAMbnOO92TDyHg4HQNo25G2agwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjA0MDAwMDAwWhcNMjUwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MDI2MGI5YjNhMTY1YTEwMDAyZjdjNDg4ODEyMzljNTQx MDc2NDkyMGNlNzMxYTU3YTM0YjZjNmQ1MWE4ZjllMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC264S+g5BO8ZxYA1qZ7BoMzQkf24KQ4PH6TgibhYJ7Wa/V a/aKhiUgcr2uwyEMhSgiytYJtEt8eB3aNI/zUigCeJb8+TDf4XdRvfqbqnER7tlx HhpjMVt0dUGdStNvQv8UoYbl0a6iZt65oevkKveGJ9BBn+LJDpZnV1OdrDG7WwEW j50LyZZjYr2K++ahTlsYv16gYO3XnFRFLjzNuSs4KedyuFnXDEL+Ys17/oeR5RMW IzSZvPoHsM/IgV8RQQanc+FpLPrMVq4plFaa4tT7lfZqd/ihbM13DdxFNhKyaltK RPQZ7YXdGIYAAigOf+iniMav6RBywRaPpXyiFofDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUf/fTKuAj9qf/7i49KqKuBqyDKKwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZiNjRhNTRjLWQ2ZmItNDIyOS05NDcxLWJkMmVhMDI0MTg3Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/7gKAwDQYJKoZIhvcNAQELBQADggEBAMcD6BrBqFT4rAxIie5f2hMI Y9Ywkq5T94VgrG7LJxDFZvPC/A5dweSWBAuMpqddoPpwtMFpIc9DkWglZcbKM6/u sUPA93KNz6NHJcz34XIwxucxVKkrxA7RLYxfitjL8vy2LAjDvHPMJn4PrPkvOpyS piBqzue1BMumIsgIIPFpSmh2/3osN8CAmoNa/K6StGFvR7tN/95XZFxr/Lt34eKt SJXBuvHIlcbF6s0icf7MD3IFjzD/CxXabugDRQdD4hr95zKVTqLHNvOE5hbuA+sS ye2DQvO5Nx2yHCC4yQmIlGjkc3XMtZjgTNYQKoqd0XGY0nxbNnCjtyYAJ/4FgPs= -----END CERTIFICATE-----Generated at Wed Feb 5 09:59:05 2025 by rpki-client