$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f16b923-96f5-4070-b07e-8883a22a8290.roa File: 8f16b923-96f5-4070-b07e-8883a22a8290.roa (raw, json) Hash identifier: /j04g9/D+CGRXvDfpMgoecXiYiY7zpedmLwLeD3p2pc= Subject key identifier: 89:25:78:D5:51:3A:57:05:C5:83:1C:6D:5E:A1:DE:87:F0:D3:8D:04 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5886990075EF1DCD992A5B55B8CCB78D9BD88008 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f16b923-96f5-4070-b07e-8883a22a8290.roa Signing time: Tue 04 Feb 2025 00:00:00 +0000 ROA not before: Tue 04 Feb 2025 00:00:00 +0000 ROA not after: Tue 11 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f18::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:86:99:00:75:ef:1d:cd:99:2a:5b:55:b8:cc:b7:8d:9b:d8:80:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 4 00:00:00 2025 GMT Not After : Mar 11 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:fd:36:50:59:5b:50:85:4a:76:b1:37:4f:91: 58:5f:4e:07:41:d9:da:a5:5e:c1:5f:b5:e3:88:81: 48:91:ef:66:7d:e3:eb:d0:dd:70:80:d9:d1:dd:37: ce:33:06:ff:6e:63:5f:e0:91:ce:35:aa:72:b0:db: 85:75:b7:0b:d6:d8:66:59:66:63:3b:3d:c7:59:f3: 62:fb:4b:86:da:3a:5a:5d:51:fd:7e:f5:0f:d5:4b: 71:67:ea:60:c9:aa:5d:b1:03:7f:af:52:5a:36:66: 64:06:49:d0:c6:5f:4a:d1:40:06:fc:e3:71:20:37: 32:ef:7c:b8:99:82:ea:05:04:8b:11:5e:7f:da:78: 30:ed:f2:47:3f:e1:e2:32:97:a4:db:da:ad:32:83: 84:d4:4a:f7:95:c1:34:d5:5e:4b:8d:20:7a:c6:e0: 12:8f:50:00:20:9a:18:6d:b4:2c:fe:d8:ba:ba:21: 5b:6a:9a:78:c4:3a:01:13:d0:62:02:ca:97:82:e1: d9:a8:ff:77:ed:5f:04:16:01:4e:90:95:a1:15:86: 2a:0e:ae:a4:b9:3d:07:a8:ce:51:5d:b2:9d:54:b8: fd:20:24:36:ca:9c:f8:e8:bc:c3:8c:61:c1:ff:fd: 07:74:ba:85:d9:5b:9f:83:d9:0b:c8:96:fb:b9:b0: 1e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:25:78:D5:51:3A:57:05:C5:83:1C:6D:5E:A1:DE:87:F0:D3:8D:04 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f16b923-96f5-4070-b07e-8883a22a8290.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f18::/35 Signature Algorithm: sha256WithRSAEncryption 03:99:0e:74:0c:7b:68:1a:4e:d1:85:98:4b:97:b4:dd:9b:b6: a9:b7:ab:21:e6:35:e3:b9:c7:4a:9c:2e:0c:26:e4:b7:02:da: ec:de:1c:99:3d:84:82:02:55:d4:9e:51:af:b9:5b:26:6f:a3: ac:64:54:ee:b2:16:dd:9e:30:c6:af:e1:94:c4:d2:43:49:15: 2a:2e:80:b1:88:39:e3:71:75:26:24:79:60:9e:70:70:74:10: 7f:0f:cd:a5:28:f1:cf:cb:ed:c8:d8:76:68:7c:2d:50:db:a6: f6:25:41:95:3e:d4:f7:2a:05:3f:23:e2:52:96:59:69:79:05: 4e:de:23:07:70:c1:2b:0a:1e:4e:3a:1c:a1:97:fd:d3:8c:95: a3:fd:aa:3b:ce:19:aa:80:e0:82:97:57:e0:f9:4c:2c:c3:40: 68:0c:86:31:92:82:15:d8:5a:fc:e5:b4:52:63:b9:3e:f7:63: eb:a9:08:1a:db:52:d3:95:ce:b3:06:a8:70:9b:66:62:4e:93: 87:08:86:b4:d7:5c:ed:04:0a:de:0d:21:38:b0:ce:63:1f:e0: fd:99:c9:38:08:ca:9d:2b:cd:ee:62:fd:84:a6:64:29:a7:29: ef:b3:00:1c:78:57:8c:f7:78:45:f4:31:33:a9:c1:52:dc:71: 49:c3:0e:e0 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUWIaZAHXvHc2ZKltVuMy3jZvYgAgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjA0MDAwMDAwWhcNMjUwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0AwOWRiZjAyZTNjYTEzY2NkNjNkMWU1YjdkNDBhMDRmZmZk ZTUwMTY0Y2ZmMTYyMmJjNzI3OGQ5NzI3MTBlNTFiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCD/TZQWVtQhUp2sTdPkVhfTgdB2dqlXsFfteOIgUiR72Z9 4+vQ3XCA2dHdN84zBv9uY1/gkc41qnKw24V1twvW2GZZZmM7PcdZ82L7S4baOlpd Uf1+9Q/VS3Fn6mDJql2xA3+vUlo2ZmQGSdDGX0rRQAb843EgNzLvfLiZguoFBIsR Xn/aeDDt8kc/4eIyl6Tb2q0yg4TUSveVwTTVXkuNIHrG4BKPUAAgmhhttCz+2Lq6 IVtqmnjEOgET0GICypeC4dmo/3ftXwQWAU6QlaEVhioOrqS5PQeozlFdsp1UuP0g JDbKnPjovMOMYcH//Qd0uoXZW5+D2QvIlvu5sB5lAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUiSV41VE6VwXFgxxtXqHeh/DTjQQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhmMTZiOTIzLTk2ZjUtNDA3MC1iMDdlLTg4ODNhMjJhODI5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgUmAB8YADANBgkqhkiG9w0BAQsFAAOCAQEAA5kOdAx7aBpO0YWYS5e03Zu2 qberIeY147nHSpwuDCbktwLa7N4cmT2EggJV1J5Rr7lbJm+jrGRU7rIW3Z4wxq/h lMTSQ0kVKi6AsYg543F1JiR5YJ5wcHQQfw/NpSjxz8vtyNh2aHwtUNum9iVBlT7U 9yoFPyPiUpZZaXkFTt4jB3DBKwoeTjocoZf904yVo/2qO84ZqoDggpdX4PlMLMNA aAyGMZKCFdha/OW0UmO5Pvdj66kIGttS05XOswaocJtmYk6ThwiGtNdc7QQK3g0h OLDOYx/g/ZnJOAjKnSvN7mL9hKZkKacp77MAHHhXjPd4RfQxM6nBUtxxScMO4A== -----END CERTIFICATE-----Generated at Wed Feb 5 09:49:20 2025 by rpki-client