$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91abda45-0cb9-4b48-94cf-80f7b19fa7f5.roa File: 91abda45-0cb9-4b48-94cf-80f7b19fa7f5.roa (raw, json) Hash identifier: 9QkgFxyjPoY+6XhRAn0MQxJubdPSqeSq9muPFFEd5bI= Subject key identifier: 34:B1:F6:24:85:45:6D:5F:61:37:65:61:52:F2:63:0C:07:53:75:CC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0A70A42DF1049FACEBAD6A90CB15D9AF2C3DDED3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91abda45-0cb9-4b48-94cf-80f7b19fa7f5.roa Signing time: Mon 03 Feb 2025 00:00:00 +0000 ROA not before: Mon 03 Feb 2025 00:00:00 +0000 ROA not after: Mon 10 Mar 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1f61:5080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:70:a4:2d:f1:04:9f:ac:eb:ad:6a:90:cb:15:d9:af:2c:3d:de:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 3 00:00:00 2025 GMT Not After : Mar 10 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:d1:61:07:e1:49:48:5f:d7:e0:75:63:90:89: c3:a8:17:fa:c2:d3:fe:a2:54:1d:e3:50:a6:5a:cb: f1:34:a7:2a:8e:61:b6:b8:c9:af:ad:91:31:f9:33: d6:49:cb:e7:b3:90:53:be:e9:7c:0f:1b:3c:17:6b: f3:d9:d3:6e:89:99:f5:1f:75:48:0e:a7:c0:6c:d0: 81:ce:39:1d:b6:62:e3:34:5c:37:64:e4:ad:6b:fc: df:d1:29:f4:46:1d:1a:b7:78:cb:3b:a7:ef:00:8d: c9:85:d0:24:60:21:48:4e:5e:0f:fd:d0:b6:78:d7: c8:f8:99:8a:cf:15:b9:ab:31:6b:8d:1a:0d:5e:f7: f9:ea:ba:44:76:79:e6:c3:1b:6e:bb:ea:9a:ce:70: ee:a6:03:ea:73:14:99:d3:92:59:40:d8:fc:b0:3c: 9d:4e:c1:67:d4:ff:10:f9:74:cf:0b:0f:c8:16:02: 06:18:05:fb:9b:44:75:c1:bc:ac:f2:42:5e:83:ea: 07:14:27:3b:aa:15:eb:11:16:4e:6b:bc:33:49:f8: 3f:29:6c:ee:9d:55:65:d5:71:56:93:56:fa:9f:ee: ff:b9:a8:4b:27:43:20:3e:eb:97:c5:47:1b:d6:0a: 6c:60:4a:6d:c0:93:f8:1a:f3:80:3b:06:7f:2f:a0: 82:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:B1:F6:24:85:45:6D:5F:61:37:65:61:52:F2:63:0C:07:53:75:CC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91abda45-0cb9-4b48-94cf-80f7b19fa7f5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:5080::/48 Signature Algorithm: sha256WithRSAEncryption 65:10:74:50:26:20:21:d7:b0:95:bb:3f:2f:3a:ed:06:90:51: 84:8b:d7:a7:82:41:b6:20:b6:30:c2:73:3a:d3:b6:d2:3c:0f: c7:a5:9b:c0:bb:91:f7:af:58:98:0a:cf:41:2d:c2:3e:3c:64: 30:8b:13:7d:b5:32:79:be:0f:12:88:4e:db:50:d9:9d:94:d4: 7b:c6:fc:a4:90:7f:22:52:92:7f:b3:b1:2c:40:e5:c4:00:1c: b3:ab:b1:d0:33:6f:93:c5:c4:c4:3a:b1:2c:fa:04:31:4a:a5: ab:08:85:24:c4:16:f2:d2:89:9c:33:7b:5f:f9:f3:d1:4c:19: 5d:77:a5:48:87:62:af:6d:c9:f5:a9:a7:19:a2:ce:e5:a2:56: b6:ea:ec:3b:8b:4b:6f:bb:d5:37:a0:08:40:40:10:73:8d:06: 41:34:9b:f6:79:3b:5b:4c:d9:f2:a0:8e:30:f4:13:9d:90:28: a7:07:4c:5f:df:15:b2:de:ba:c3:78:73:4b:f1:32:86:76:ce: 01:a1:69:f4:b5:3e:5d:17:20:46:f6:cc:05:09:3e:30:d6:a8: 7c:62:96:70:b6:07:df:8f:f8:c9:31:3e:4b:2d:d0:11:cf:e2: 25:7e:fc:94:80:e6:bc:40:f5:06:9c:af:e0:33:dc:8b:fa:1f: d8:12:40:55 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCnCkLfEEn6zrrWqQyxXZryw93tMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjAzMDAwMDAwWhcNMjUwMzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYmI2OGIzZThkZjdiZWI1MTY3ZGM5ZjcyMGVhZDZkZjlh Njc0NDFkZTMwNjQ4ODY1MjI0MzlmZTAwOGU3NjMzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCk0WEH4UlIX9fgdWOQicOoF/rC0/6iVB3jUKZay/E0pyqO Yba4ya+tkTH5M9ZJy+ezkFO+6XwPGzwXa/PZ026JmfUfdUgOp8Bs0IHOOR22YuM0 XDdk5K1r/N/RKfRGHRq3eMs7p+8AjcmF0CRgIUhOXg/90LZ418j4mYrPFbmrMWuN Gg1e9/nqukR2eebDG2676prOcO6mA+pzFJnTkllA2PywPJ1OwWfU/xD5dM8LD8gW AgYYBfubRHXBvKzyQl6D6gcUJzuqFesRFk5rvDNJ+D8pbO6dVWXVcVaTVvqf7v+5 qEsnQyA+65fFRxvWCmxgSm3Ak/ga84A7Bn8voIKlAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUNLH2JIVFbV9hN2VhUvJjDAdTdcwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkxYWJkYTQ1LTBjYjktNGI0OC05NGNmLTgwZjdiMTlmYTdmNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB9hUIAwDQYJKoZIhvcNAQELBQADggEBAGUQdFAmICHXsJW7Py867QaQ UYSL16eCQbYgtjDCczrTttI8D8elm8C7kfevWJgKz0Etwj48ZDCLE321Mnm+DxKI TttQ2Z2U1HvG/KSQfyJSkn+zsSxA5cQAHLOrsdAzb5PFxMQ6sSz6BDFKpasIhSTE FvLSiZwze1/589FMGV13pUiHYq9tyfWppxmizuWiVrbq7DuLS2+71TegCEBAEHON BkE0m/Z5O1tM2fKgjjD0E52QKKcHTF/fFbLeusN4c0vxMoZ2zgGhafS1Pl0XIEb2 zAUJPjDWqHxilnC2B9+P+MkxPkst0BHP4iV+/JSA5rxA9Qacr+Az3Iv6H9gSQFU= -----END CERTIFICATE-----Generated at Wed Feb 5 16:04:43 2025 by rpki-client