$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/895c8025-23be-48f6-aa0d-8f761b1c5bb1.roa File: 895c8025-23be-48f6-aa0d-8f761b1c5bb1.roa (raw, json) Hash identifier: DOAaV6LwQeoLNR107xZkuVcQyPIroVM3eV8DbiTPoG0= Subject key identifier: 37:9F:DA:77:76:62:DB:C7:B0:F6:AE:26:8A:8B:06:F2:A2:B5:40:7C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5ED3B504061F45A539BEF586AFF24676401DE273 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/895c8025-23be-48f6-aa0d-8f761b1c5bb1.roa Signing time: Fri 24 Jan 2025 00:00:00 +0000 ROA not before: Fri 24 Jan 2025 00:00:00 +0000 ROA not after: Fri 28 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:8508::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:d3:b5:04:06:1f:45:a5:39:be:f5:86:af:f2:46:76:40:1d:e2:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 24 00:00:00 2025 GMT Not After : Feb 28 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4e:de:c0:1a:21:0d:88:41:68:68:46:38:5c: 17:2c:fe:f1:3b:25:9f:d2:cd:1b:95:2d:d2:8d:4f: 66:09:cf:f6:fb:68:1c:c3:c2:ea:f9:58:1a:77:5e: 99:dd:84:6c:33:d2:e3:d5:25:7a:dd:7b:dc:38:34: e1:9e:ae:68:1c:7f:b0:88:26:f8:92:d9:bf:78:1a: ad:a2:6a:ea:20:21:74:06:cf:25:a6:2d:53:82:5c: 65:35:ac:59:c8:49:54:07:6c:c2:a8:c5:f5:47:a2: 61:98:31:33:3f:bb:2a:1e:38:a8:8e:c2:59:5a:fa: cc:1b:d8:2d:f8:93:1f:28:97:67:be:bd:df:5d:78: 8c:2d:86:d3:4b:33:ec:41:5a:a9:e7:0a:79:ac:80: bb:1e:bd:07:b0:63:fa:66:9d:9e:f2:58:1e:c4:75: 37:ff:8b:ca:63:98:3e:f2:13:a0:58:d9:9c:a8:69: 5e:c0:b5:7e:da:aa:e6:98:ea:2e:bb:c3:d5:4a:ff: 0e:4c:c7:00:fc:74:fc:a0:22:f1:d2:20:79:60:2a: 7c:78:23:1b:98:fc:55:47:b0:3d:46:d9:b3:62:f9: 5f:be:e3:6d:5f:b2:45:00:58:e5:44:b0:60:55:53: 96:50:48:26:91:29:81:04:c5:eb:01:71:a5:71:8e: e0:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:9F:DA:77:76:62:DB:C7:B0:F6:AE:26:8A:8B:06:F2:A2:B5:40:7C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/895c8025-23be-48f6-aa0d-8f761b1c5bb1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:8508::/48 Signature Algorithm: sha256WithRSAEncryption 35:88:84:4b:c7:39:39:e8:8a:59:c9:90:35:cf:fe:88:60:2c: eb:79:ea:be:7f:d3:56:6a:05:db:54:51:42:6e:8d:6c:ec:0f: 00:16:e3:2e:52:0d:fc:0d:e5:ba:2d:80:bf:56:95:de:fe:27: 17:9b:2f:7c:0d:11:26:a3:07:43:09:7f:cb:f9:40:0c:c3:5d: 2a:42:94:f5:66:db:c5:07:e3:ec:75:07:58:bc:cf:e6:67:2f: 2d:41:d7:95:a3:c4:38:ce:59:4f:99:e8:0d:e9:cd:29:c4:93: 56:c3:ff:38:8e:93:27:10:b6:0f:f4:fd:37:d0:9d:c3:13:9a: c3:fc:5b:78:3e:2c:97:02:a1:53:65:67:76:60:a0:22:b5:24: 4a:83:cd:55:57:a7:c9:a0:f4:5e:9b:d8:d6:db:0d:ad:11:63: e2:d8:0e:ed:65:0a:89:f8:9c:2d:1e:28:7b:7d:f3:a3:d9:77: 37:af:81:2b:3b:1b:64:7f:91:3d:a5:d5:a0:0e:50:fe:72:4d: b7:ab:79:fa:08:17:4b:82:95:bc:8f:94:39:13:cd:06:36:1b: 19:d2:13:eb:f2:3c:29:11:c8:e9:f1:ca:a5:c0:f8:ef:67:7e: fd:72:c9:27:3d:7e:2f:a5:34:65:21:6d:3a:b9:9e:08:53:e9: dc:d4:8e:33 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXtO1BAYfRaU5vvWGr/JGdkAd4nMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTI0MDAwMDAwWhcNMjUwMjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YjJmN2Y3YWVkNTMxNjNhNjg0MGJiMjk1YjUwMzliNzlj MDgwMzE1NzMyYzJkODQzMjQyYWY5YWU1OWQzYWRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvTt7AGiENiEFoaEY4XBcs/vE7JZ/SzRuVLdKNT2YJz/b7 aBzDwur5WBp3XpndhGwz0uPVJXrde9w4NOGermgcf7CIJviS2b94Gq2iauogIXQG zyWmLVOCXGU1rFnISVQHbMKoxfVHomGYMTM/uyoeOKiOwlla+swb2C34kx8ol2e+ vd9deIwthtNLM+xBWqnnCnmsgLsevQewY/pmnZ7yWB7EdTf/i8pjmD7yE6BY2Zyo aV7AtX7aquaY6i67w9VK/w5MxwD8dPygIvHSIHlgKnx4IxuY/FVHsD1G2bNi+V++ 421fskUAWOVEsGBVU5ZQSCaRKYEExesBcaVxjuCpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUN5/ad3Zi28ew9q4miosG8qK1QHwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg5NWM4MDI1LTIzYmUtNDhmNi1hYTBkLThmNzYxYjFjNWJiMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9hQgwDQYJKoZIhvcNAQELBQADggEBADWIhEvHOTnoilnJkDXP/ohg LOt56r5/01ZqBdtUUUJujWzsDwAW4y5SDfwN5botgL9Wld7+JxebL3wNESajB0MJ f8v5QAzDXSpClPVm28UH4+x1B1i8z+ZnLy1B15WjxDjOWU+Z6A3pzSnEk1bD/ziO kycQtg/0/TfQncMTmsP8W3g+LJcCoVNlZ3ZgoCK1JEqDzVVXp8mg9F6b2NbbDa0R Y+LYDu1lCon4nC0eKHt986PZdzevgSs7G2R/kT2l1aAOUP5yTberefoIF0uClbyP lDkTzQY2GxnSE+vyPCkRyOnxyqXA+O9nfv1yySc9fi+lNGUhbTq5nghT6dzUjjM= -----END CERTIFICATE-----Generated at Sun Feb 16 15:49:54 2025 by rpki-client