$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b700ba59-e7b4-4735-adc4-f2dba045282c.roa File: b700ba59-e7b4-4735-adc4-f2dba045282c.roa (raw, json) Hash identifier: ZmMIRLm5XtbytulLBG0BeVXEPWt/J0UKlvonZ1UaE8I= Subject key identifier: 12:EF:47:5A:A0:0C:10:05:53:F0:F3:B0:8B:44:52:BA:FD:B9:CB:66 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 24B8C7D9617F2D313734EDC7810E63218AEE65CE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b700ba59-e7b4-4735-adc4-f2dba045282c.roa Signing time: Mon 03 Feb 2025 00:00:00 +0000 ROA not before: Mon 03 Feb 2025 00:00:00 +0000 ROA not after: Mon 10 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f00:80d0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:b8:c7:d9:61:7f:2d:31:37:34:ed:c7:81:0e:63:21:8a:ee:65:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 3 00:00:00 2025 GMT Not After : Mar 10 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:6b:a1:0c:d9:10:5d:22:99:54:2b:52:8b:dc: 09:e7:29:fe:2e:bc:12:51:88:62:55:09:ea:56:00: f8:b4:38:e9:44:49:8a:a8:1d:0e:1d:26:a0:ee:9f: 5b:c3:f4:a3:2c:a6:5e:8d:0e:f0:df:16:ae:b3:f0: d7:6c:5c:32:2c:da:72:f8:c5:40:2d:11:09:a9:4c: 51:9a:f1:c2:6f:45:2c:eb:88:00:18:c5:c6:39:04: 1a:96:27:fc:93:03:dc:2c:8e:a8:8f:23:11:46:55: 9e:f4:3e:01:bc:3d:0c:ed:c9:02:91:b5:13:3b:35: 51:7b:b0:bf:d3:fe:3e:70:57:43:d6:12:e8:0d:3b: 3f:c4:21:eb:7f:45:ad:2f:c2:f5:30:5f:25:da:87: 3b:10:52:80:01:70:21:5b:3d:4d:19:cb:e4:3a:b7: 67:36:82:ed:d1:98:4e:77:53:4f:74:03:5a:4d:98: de:0f:52:2a:7e:a5:73:cb:3b:3a:f9:81:80:c6:00: 82:29:c2:22:37:fc:2a:a7:31:f9:af:f1:ce:91:61: 82:37:ec:84:16:2b:c8:95:3d:a7:49:36:0d:f9:25: 1e:10:c0:0b:a8:d8:6b:46:f5:17:ec:b4:61:8e:03: c3:f1:d7:9a:9b:79:39:c2:9f:de:70:35:c6:b6:41: 52:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:EF:47:5A:A0:0C:10:05:53:F0:F3:B0:8B:44:52:BA:FD:B9:CB:66 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b700ba59-e7b4-4735-adc4-f2dba045282c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:80d0::/48 Signature Algorithm: sha256WithRSAEncryption 3c:00:e6:75:97:67:51:23:3d:f7:64:fa:bc:6d:40:3c:46:2f: 12:b2:8b:67:da:5f:27:02:d2:e1:81:33:5b:69:6a:2d:d1:4b: c6:b8:43:c3:5a:a3:34:b0:41:01:6a:00:8a:1f:12:ba:14:f7: 13:20:f6:19:76:7d:07:f4:23:69:0e:08:86:4d:90:53:7b:a1: 26:d4:0c:a1:e6:7e:5f:c9:aa:02:dd:b9:36:92:e7:ca:aa:f0: 7f:32:b8:52:f8:30:37:0f:ce:a1:7a:a8:91:e9:c7:69:bd:b1: 11:01:68:98:f4:df:4c:6a:fb:f1:78:a3:cd:f9:07:2a:e1:9e: 5f:a6:d5:ae:53:4d:e4:c3:96:a7:04:74:49:53:14:ca:d1:85: 22:4a:09:4e:d6:40:28:e7:52:a0:b3:22:b5:fd:82:a9:c9:ca: aa:f7:2a:cf:8f:2c:75:2c:56:74:0d:b9:66:2e:42:b1:68:f9: ec:01:72:8d:c2:99:c7:4b:77:f8:05:bb:d4:7f:3c:c2:e3:73: 04:66:e8:8b:c7:3f:a9:dd:4f:f2:78:e3:58:79:84:4d:73:6b: fc:9c:27:7d:67:db:59:0b:20:16:87:a1:f5:fa:92:f2:18:bf: 9a:d4:a3:3f:1f:3a:86:a8:f0:2a:95:25:56:55:2c:c3:8d:d3: f7:dc:c9:6f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJLjH2WF/LTE3NO3HgQ5jIYruZc4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjAzMDAwMDAwWhcNMjUwMzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmYTJhZjU3NWFjNzNkMGJmOGFmMDczZGE0ODVmMDUzYjUw NDNlY2M5OTQyMThlNDQyNGYxOWQyYWM3MTE5ZDYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCba6EM2RBdIplUK1KL3AnnKf4uvBJRiGJVCepWAPi0OOlE SYqoHQ4dJqDun1vD9KMspl6NDvDfFq6z8NdsXDIs2nL4xUAtEQmpTFGa8cJvRSzr iAAYxcY5BBqWJ/yTA9wsjqiPIxFGVZ70PgG8PQztyQKRtRM7NVF7sL/T/j5wV0PW EugNOz/EIet/Ra0vwvUwXyXahzsQUoABcCFbPU0Zy+Q6t2c2gu3RmE53U090A1pN mN4PUip+pXPLOzr5gYDGAIIpwiI3/CqnMfmv8c6RYYI37IQWK8iVPadJNg35JR4Q wAuo2GtG9RfstGGOA8Px15qbeTnCn95wNca2QVIzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUEu9HWqAMEAVT8POwi0RSuv25y2YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I3MDBiYTU5LWU3YjQtNDczNS1hZGM0LWYyZGJhMDQ1MjgyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AgNAwDQYJKoZIhvcNAQELBQADggEBADwA5nWXZ1EjPfdk+rxtQDxG LxKyi2faXycC0uGBM1tpai3RS8a4Q8NaozSwQQFqAIofEroU9xMg9hl2fQf0I2kO CIZNkFN7oSbUDKHmfl/JqgLduTaS58qq8H8yuFL4MDcPzqF6qJHpx2m9sREBaJj0 30xq+/F4o835Byrhnl+m1a5TTeTDlqcEdElTFMrRhSJKCU7WQCjnUqCzIrX9gqnJ yqr3Ks+PLHUsVnQNuWYuQrFo+ewBco3CmcdLd/gFu9R/PMLjcwRm6IvHP6ndT/J4 41h5hE1za/ycJ31n21kLIBaHofX6kvIYv5rUoz8fOoao8CqVJVZVLMON0/fcyW8= -----END CERTIFICATE-----Generated at Wed Feb 5 09:41:34 2025 by rpki-client