$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98b69d9f-696f-41bf-b67b-214977d82ae4.roa File: 98b69d9f-696f-41bf-b67b-214977d82ae4.roa (raw, json) Hash identifier: aHb8ss3xGrFsj93dAisyDMcbju4IwfMR1E+sS/j65fk= Subject key identifier: 2B:D4:90:4B:95:5B:91:FD:C0:25:6B:26:51:E6:6B:CD:52:8D:2C:4C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3AD82597347425E9665187D1DC176AEA3C4799AA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98b69d9f-696f-41bf-b67b-214977d82ae4.roa Signing time: Fri 07 Feb 2025 00:00:00 +0000 ROA not before: Fri 07 Feb 2025 00:00:00 +0000 ROA not after: Fri 14 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f29:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:d8:25:97:34:74:25:e9:66:51:87:d1:dc:17:6a:ea:3c:47:99:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 7 00:00:00 2025 GMT Not After : Mar 14 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:65:3c:01:49:68:55:af:9e:e2:0d:c7:77:5f: 56:6c:03:30:8a:7b:e3:bb:a0:4b:69:9a:44:0b:f2: 32:19:14:26:07:7c:ec:48:b0:7a:e1:8c:0b:a1:34: 52:d1:46:a5:b9:6d:96:b4:a3:56:9a:24:f7:48:46: ad:d9:86:a9:7a:8c:f6:e5:ef:84:95:13:46:80:06: 44:4b:39:36:d8:0d:27:0a:ad:ac:63:87:58:42:83: 9e:04:b5:8c:e2:07:fa:fa:8e:d9:60:8c:1b:59:a6: cc:4b:44:a8:fd:47:14:e7:66:f2:e1:09:95:2e:df: 80:bf:5e:45:3a:64:51:9b:6e:5a:d3:1d:85:ba:1d: 1e:68:3d:64:ed:a0:dd:e0:99:4f:f6:4d:51:6a:f9: 5f:4a:37:89:13:e2:19:9f:c8:28:1b:c8:e3:38:b4: b5:7b:45:4c:eb:e6:d2:e8:57:af:78:f3:1b:c7:c8: d9:87:c2:c5:08:b6:12:9d:db:ca:ca:dc:eb:72:7c: 43:7b:6d:b0:ea:91:02:08:bb:d0:0e:cd:33:07:4f: 6f:14:c6:83:5a:67:31:52:0d:d3:44:2f:ae:eb:e8: ba:ad:fe:dc:24:cb:af:73:14:35:0b:59:a5:62:89: be:ba:33:02:e8:d1:8a:2a:1c:52:9d:82:35:da:a0: 62:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:D4:90:4B:95:5B:91:FD:C0:25:6B:26:51:E6:6B:CD:52:8D:2C:4C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98b69d9f-696f-41bf-b67b-214977d82ae4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f29:8000::/36 Signature Algorithm: sha256WithRSAEncryption 95:fd:37:1c:c0:b0:d6:5a:ed:71:3a:55:c1:7b:0d:32:96:41: 9c:b1:ae:0f:b3:0c:2f:a4:6a:16:61:cf:01:67:86:f0:e2:bd: 05:2a:e4:db:59:7a:2f:7d:00:9d:31:b8:85:39:32:f6:c9:c3: 13:e6:b8:f2:cf:dd:cb:d6:2a:46:08:dc:1c:fa:ae:e1:d0:a6: 68:c9:ba:db:66:21:7e:39:1f:ff:c6:e0:cf:60:20:6d:38:39: 8e:1f:56:ec:09:5f:d9:35:20:c1:79:9e:0b:ee:eb:4b:54:c7: 5d:cb:da:0f:7f:9f:b3:a3:37:3b:85:39:ad:94:ce:2d:97:d3: 96:eb:99:54:17:c6:43:99:0e:5f:2e:ac:8f:9c:71:1d:23:0d: e8:db:20:31:86:f2:95:ac:1b:b2:a0:3a:0a:ef:f9:aa:fc:37: f1:b4:d1:1d:bf:90:da:06:8f:dd:65:73:51:80:c9:a8:45:43: 60:3f:22:f3:bb:07:b6:7e:cd:7d:63:ae:cb:3b:ff:bc:26:f3: 12:b7:32:91:f5:34:44:ec:fd:d8:7f:83:a3:e6:d8:ae:88:98: ba:d2:bb:10:68:9b:45:f2:b1:be:b5:5f:c9:dc:da:25:ca:4e: 47:4c:1f:2f:da:6a:44:b1:0b:32:be:d0:6b:a3:53:1b:98:57: b7:6d:37:13 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUOtgllzR0JelmUYfR3Bdq6jxHmaowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjA3MDAwMDAwWhcNMjUwMzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZTAwYjVlNjk5YWE3MTQ0OTc3ZjQ5Y2QxODdmMDA3MmE0 ZjdlNjNkZmY2M2E2MDgzNDBhMDQ5YThlOWIwMjQ2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQZTwBSWhVr57iDcd3X1ZsAzCKe+O7oEtpmkQL8jIZFCYH fOxIsHrhjAuhNFLRRqW5bZa0o1aaJPdIRq3Zhql6jPbl74SVE0aABkRLOTbYDScK raxjh1hCg54EtYziB/r6jtlgjBtZpsxLRKj9RxTnZvLhCZUu34C/XkU6ZFGbblrT HYW6HR5oPWTtoN3gmU/2TVFq+V9KN4kT4hmfyCgbyOM4tLV7RUzr5tLoV6948xvH yNmHwsUIthKd28rK3OtyfEN7bbDqkQIIu9AOzTMHT28UxoNaZzFSDdNEL67r6Lqt /twky69zFDULWaViib66MwLo0YoqHFKdgjXaoGLPAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUK9SQS5Vbkf3AJWsmUeZrzVKNLEwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk4YjY5ZDlmLTY5NmYtNDFiZi1iNjdiLTIxNDk3N2Q4MmFlNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8pgDANBgkqhkiG9w0BAQsFAAOCAQEAlf03HMCw1lrtcTpVwXsNMpZB nLGuD7MML6RqFmHPAWeG8OK9BSrk21l6L30AnTG4hTky9snDE+a48s/dy9YqRgjc HPqu4dCmaMm622Yhfjkf/8bgz2AgbTg5jh9W7Alf2TUgwXmeC+7rS1THXcvaD3+f s6M3O4U5rZTOLZfTluuZVBfGQ5kOXy6sj5xxHSMN6NsgMYbylawbsqA6Cu/5qvw3 8bTRHb+Q2gaP3WVzUYDJqEVDYD8i87sHtn7NfWOuyzv/vCbzErcykfU0ROz92H+D o+bYroiYutK7EGibRfKxvrVfydzaJcpOR0wfL9pqRLELMr7Qa6NTG5hXt203Ew== -----END CERTIFICATE-----Generated at Sun Feb 16 15:12:55 2025 by rpki-client