$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f08968f-7dae-4e98-9a63-6c8a03f3a558.roa File: 6f08968f-7dae-4e98-9a63-6c8a03f3a558.roa (raw, json) Hash identifier: ML0ZzmVrNQQx0Nb2xgmvjbjbX2I8C/gHtlCzs62Snh0= Subject key identifier: 8D:97:2B:38:24:80:44:56:FC:3F:E1:0A:22:71:DC:56:45:1D:FD:16 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 131E6044004CC3B61E13BB4D1415AE10C1C579F9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f08968f-7dae-4e98-9a63-6c8a03f3a558.roa Signing time: Mon 03 Feb 2025 00:00:00 +0000 ROA not before: Mon 03 Feb 2025 00:00:00 +0000 ROA not after: Mon 10 Mar 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1fff:5040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:1e:60:44:00:4c:c3:b6:1e:13:bb:4d:14:15:ae:10:c1:c5:79:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 3 00:00:00 2025 GMT Not After : Mar 10 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d4:af:a3:3f:de:54:b6:8d:be:ca:13:58:24: 0c:9d:fa:2a:d3:88:08:4b:bc:38:d7:bc:59:6b:b9: 3d:b0:cf:ca:e1:18:7e:ce:97:b8:36:46:65:6f:84: fd:31:02:dc:fa:44:f6:68:c1:3d:c5:1e:de:29:4b: 7b:79:df:6f:fb:4a:3e:f7:3e:41:e5:ee:0a:63:62: f2:88:77:a8:0c:ee:bf:4e:f8:9f:cf:92:f2:fc:bb: b4:ac:9e:3e:71:e1:e3:d5:0e:15:3a:0c:51:0a:64: 01:2e:26:0f:b7:a2:55:36:21:80:0d:dd:20:d7:0e: b3:1a:86:3e:77:a0:13:55:ba:39:ff:80:01:53:fd: e6:9a:2f:d9:53:82:57:05:37:4d:ca:50:f6:3e:4a: bf:62:23:a1:d6:95:89:d6:a1:49:f8:cb:e0:e0:de: 0f:41:fc:39:53:7d:a7:90:8b:20:76:46:be:a4:ee: db:77:b6:99:d7:b8:c4:96:37:4e:57:58:01:64:f0: ba:eb:1b:85:53:04:00:96:70:ff:f5:bf:da:f0:32: 16:9d:d1:5a:89:b3:03:8d:46:7d:b0:77:00:28:40: f0:39:d6:8d:e0:fe:52:ef:f7:58:62:b6:9d:ac:79: 57:94:85:7c:fc:13:1a:87:3b:9d:4b:85:27:8f:16: 00:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:97:2B:38:24:80:44:56:FC:3F:E1:0A:22:71:DC:56:45:1D:FD:16 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f08968f-7dae-4e98-9a63-6c8a03f3a558.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:5040::/48 Signature Algorithm: sha256WithRSAEncryption 13:bb:f5:bf:bd:ff:f9:d4:0b:f8:0a:af:82:6f:fd:c3:87:65: 31:9d:d7:9d:c1:ce:30:16:48:e1:6a:20:13:fe:1a:44:90:1b: 03:cf:c1:d5:ad:c0:e8:66:42:6e:14:a8:17:54:44:68:dd:dd: db:0d:af:02:e3:ea:82:5d:aa:7e:04:8a:02:62:f0:b3:01:80: 5e:c8:b2:49:04:dc:75:f2:1d:da:fd:39:df:93:22:57:da:b0: 20:b3:5a:14:e5:ef:21:45:81:5d:26:b6:6e:bc:90:a9:09:c2: f6:ec:7b:8a:fe:c7:f7:ef:6f:83:ce:92:6b:07:b9:01:dd:34: 9a:2a:7c:43:61:36:ab:1e:c3:28:b8:d4:1f:96:53:0c:ae:5a: 33:97:43:cc:05:b8:4d:05:b3:9b:95:03:ea:65:76:7b:e2:93: 2c:f8:cf:8a:f8:59:79:3d:b3:67:51:5a:e0:39:4d:d2:39:d6: 35:b0:24:1b:55:57:51:ab:1a:30:40:3b:ac:d0:74:1e:da:41: b6:88:22:9e:f1:76:f8:26:d4:be:2b:42:93:f4:63:23:bd:d6: b5:24:f3:c9:93:cb:84:bd:b2:8c:00:01:c5:85:a7:70:cb:1f: c3:63:c3:b9:90:26:d6:21:f0:f3:3d:9d:da:46:66:a2:1d:0b: bf:c6:65:4a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEx5gRABMw7YeE7tNFBWuEMHFefkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjAzMDAwMDAwWhcNMjUwMzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ODNkODFhOWE4OWRjM2E0Y2VjOWEyMGI2NWM4ZThjMzlh Y2UyMDBmY2JiZmU5NDAxMTRlYWU0ZDcxNDVhMDNiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC21K+jP95Uto2+yhNYJAyd+irTiAhLvDjXvFlruT2wz8rh GH7Ol7g2RmVvhP0xAtz6RPZowT3FHt4pS3t532/7Sj73PkHl7gpjYvKId6gM7r9O +J/PkvL8u7Ssnj5x4ePVDhU6DFEKZAEuJg+3olU2IYAN3SDXDrMahj53oBNVujn/ gAFT/eaaL9lTglcFN03KUPY+Sr9iI6HWlYnWoUn4y+Dg3g9B/DlTfaeQiyB2Rr6k 7tt3tpnXuMSWN05XWAFk8LrrG4VTBACWcP/1v9rwMhad0VqJswONRn2wdwAoQPA5 1o3g/lLv91hitp2seVeUhXz8ExqHO51LhSePFgDJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUjZcrOCSARFb8P+EKInHcVkUd/RYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZmMDg5NjhmLTdkYWUtNGU5OC05YTYzLTZjOGEwM2YzYTU1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//UEAwDQYJKoZIhvcNAQELBQADggEBABO79b+9//nUC/gKr4Jv/cOH ZTGd153BzjAWSOFqIBP+GkSQGwPPwdWtwOhmQm4UqBdURGjd3dsNrwLj6oJdqn4E igJi8LMBgF7IskkE3HXyHdr9Od+TIlfasCCzWhTl7yFFgV0mtm68kKkJwvbse4r+ x/fvb4POkmsHuQHdNJoqfENhNqsewyi41B+WUwyuWjOXQ8wFuE0Fs5uVA+pldnvi kyz4z4r4WXk9s2dRWuA5TdI51jWwJBtVV1GrGjBAO6zQdB7aQbaIIp7xdvgm1L4r QpP0YyO91rUk88mTy4S9sowAAcWFp3DLH8Njw7mQJtYh8PM9ndpGZqIdC7/GZUo= -----END CERTIFICATE-----Generated at Wed Feb 5 16:01:43 2025 by rpki-client