$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9de59557-6a5a-4eb0-b7c2-2a2666d4db6f.roa File: 9de59557-6a5a-4eb0-b7c2-2a2666d4db6f.roa (raw, json) Hash identifier: KENDhCs6F9WunyqCxLkLyqCYeG9Xdq/NxNiCNcdx1ts= Subject key identifier: A7:25:DB:D7:84:22:55:8A:8B:C4:6B:E2:45:53:90:C9:8E:10:6F:84 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 27C77047486D7BEF2ED6BD6CF6AFE7ECCF933934 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9de59557-6a5a-4eb0-b7c2-2a2666d4db6f.roa Signing time: Mon 03 Feb 2025 00:00:00 +0000 ROA not before: Mon 03 Feb 2025 00:00:00 +0000 ROA not after: Mon 10 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f61:8080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:c7:70:47:48:6d:7b:ef:2e:d6:bd:6c:f6:af:e7:ec:cf:93:39:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 3 00:00:00 2025 GMT Not After : Mar 10 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:15:09:f6:04:f6:e2:b7:98:8d:c4:bc:83:00: 19:33:f9:dc:e2:9a:d0:fd:60:07:44:2a:14:79:60: 97:13:bb:62:22:62:a2:e3:2e:9c:15:a4:6e:f6:c0: 56:80:da:0b:15:0e:d2:58:b1:6c:cc:a7:6a:06:40: 0d:3c:17:6f:bd:fa:9e:d3:6a:80:2c:7a:88:24:f0: a4:0a:31:49:58:d5:57:5a:ec:c3:c1:41:19:d7:df: 96:8e:dd:a5:11:17:b7:33:02:53:ae:eb:da:f8:16: 2b:f7:92:95:10:a2:b4:4c:e1:a8:4e:00:3e:01:05: b9:f7:29:fe:1a:bf:1c:2d:88:f4:09:eb:4f:66:e4: 2c:77:5f:cc:99:69:51:7f:cc:71:22:41:0a:9d:37: cb:02:bf:d5:9d:08:8c:77:95:7a:78:73:18:84:89: f5:b3:66:af:18:1b:53:4f:cc:60:2f:c3:b1:51:ca: f4:8e:69:a1:f2:43:07:1c:1b:c3:88:a8:cd:0a:72: b3:ca:b4:d0:fa:f7:80:75:56:f4:c6:e4:dc:11:2c: 54:25:5e:a2:08:89:50:b6:8a:ef:5d:ad:64:2e:2c: 55:9a:06:8e:54:99:3e:e2:92:a3:b3:42:e1:de:25: 0e:a1:92:e0:f2:58:e8:5f:6e:79:21:93:49:4e:3c: 33:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:25:DB:D7:84:22:55:8A:8B:C4:6B:E2:45:53:90:C9:8E:10:6F:84 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9de59557-6a5a-4eb0-b7c2-2a2666d4db6f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:8080::/48 Signature Algorithm: sha256WithRSAEncryption 8a:fa:ae:10:fb:ea:07:13:89:ed:a0:13:2d:83:f7:c3:61:d8: 41:a6:7f:a0:e0:7d:11:8d:db:8e:d7:bb:af:0f:51:f7:5f:c2: c2:96:1b:62:92:21:70:70:57:d0:47:46:49:13:cf:97:a2:2c: 0a:03:4e:e7:c1:14:77:31:24:76:74:00:d6:1d:4d:76:f2:af: fe:15:8e:04:65:e7:9a:6b:a9:f3:23:fe:5a:93:ef:8b:86:74: b1:ab:88:f4:13:f6:74:1f:fe:f8:84:91:96:d8:46:50:ac:a2: 02:fa:7a:01:40:3c:bc:bf:69:cf:3b:e5:0c:0c:1b:8e:52:7b: c6:89:df:6a:0a:1d:d1:ad:a0:74:33:25:db:8d:60:f9:bf:bd: 47:60:f1:79:3d:9c:f5:64:bc:e6:0a:aa:75:21:56:dd:6a:53: c5:db:e0:0e:a7:10:eb:eb:9e:06:7b:4a:26:58:11:9b:fe:cf: 3c:34:d2:08:96:78:22:8f:47:9a:24:9c:ea:7d:16:d0:dd:6a: bb:8d:11:e9:ba:67:f2:62:90:e6:a7:c7:76:5d:f6:21:08:42: 75:bc:f7:90:98:87:79:51:dc:89:9e:be:ff:39:f1:34:a8:b0: 7a:d0:06:fc:fd:88:6d:da:85:a6:20:1f:ed:1b:0c:2f:86:9d: 9d:aa:b2:89 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJ8dwR0hte+8u1r1s9q/n7M+TOTQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjAzMDAwMDAwWhcNMjUwMzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNDUwODRiZTdlM2YxODIzMWJlNjk2ODM2NGM3Y2JmMDBi MTIwYWE3ODdkODEzMzVhZGZhZDYzNWRhMmNjMzVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZFQn2BPbit5iNxLyDABkz+dzimtD9YAdEKhR5YJcTu2Ii YqLjLpwVpG72wFaA2gsVDtJYsWzMp2oGQA08F2+9+p7TaoAseogk8KQKMUlY1Vda 7MPBQRnX35aO3aURF7czAlOu69r4Fiv3kpUQorRM4ahOAD4BBbn3Kf4avxwtiPQJ 609m5Cx3X8yZaVF/zHEiQQqdN8sCv9WdCIx3lXp4cxiEifWzZq8YG1NPzGAvw7FR yvSOaaHyQwccG8OIqM0KcrPKtND694B1VvTG5NwRLFQlXqIIiVC2iu9drWQuLFWa Bo5UmT7ikqOzQuHeJQ6hkuDyWOhfbnkhk0lOPDNxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUpyXb14QiVYqLxGviRVOQyY4Qb4QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlkZTU5NTU3LTZhNWEtNGViMC1iN2MyLTJhMjY2NmQ0ZGI2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB9hgIAwDQYJKoZIhvcNAQELBQADggEBAIr6rhD76gcTie2gEy2D98Nh 2EGmf6DgfRGN247Xu68PUfdfwsKWG2KSIXBwV9BHRkkTz5eiLAoDTufBFHcxJHZ0 ANYdTXbyr/4VjgRl55prqfMj/lqT74uGdLGriPQT9nQf/viEkZbYRlCsogL6egFA PLy/ac875QwMG45Se8aJ32oKHdGtoHQzJduNYPm/vUdg8Xk9nPVkvOYKqnUhVt1q U8Xb4A6nEOvrngZ7SiZYEZv+zzw00giWeCKPR5oknOp9FtDdaruNEem6Z/JikOan x3Zd9iEIQnW895CYh3lR3Imevv858TSosHrQBvz9iG3ahaYgH+0bDC+GnZ2qsok= -----END CERTIFICATE-----Generated at Wed Feb 5 09:38:21 2025 by rpki-client