$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c288c187-a311-482f-a404-3061061e705c.roa File: c288c187-a311-482f-a404-3061061e705c.roa (raw, json) Hash identifier: ZWP7/1UMruDCq/esUfs55qYG520kbVKRqnFnGDO2wCU= Subject key identifier: D5:05:9F:2F:B0:CC:BC:5D:D4:EC:6D:72:8E:E5:98:09:33:BC:CF:7F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2DD4B026D6350C91CB7D47A4317443D95FAA58F1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c288c187-a311-482f-a404-3061061e705c.roa Signing time: Tue 04 Feb 2025 00:00:00 +0000 ROA not before: Tue 04 Feb 2025 00:00:00 +0000 ROA not after: Tue 11 Mar 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1f12:400::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:d4:b0:26:d6:35:0c:91:cb:7d:47:a4:31:74:43:d9:5f:aa:58:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 4 00:00:00 2025 GMT Not After : Mar 11 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:02:c6:53:9b:9f:e8:7e:8d:58:20:57:9e:83: b7:1a:6b:59:02:5c:0b:fb:78:80:10:da:84:55:80: 66:a6:cf:d2:8d:84:0f:fc:fe:36:fb:dc:77:62:f2: 0a:7f:c3:e5:e4:ce:28:d5:bc:9c:e3:19:f7:8f:3f: 23:a9:35:6a:6d:54:67:0d:4e:12:2f:bc:b6:65:87: 21:d4:a0:f3:ec:4a:ab:c3:e9:92:33:cf:fa:b2:fd: 6a:25:80:46:ad:c6:08:a5:ea:4c:67:4c:60:13:68: bf:d1:9e:d4:b5:be:fe:64:8f:6a:a9:a2:59:4e:0d: 86:ac:d2:99:66:d2:71:ba:96:b5:94:64:40:70:66: c9:83:41:01:a7:52:90:91:4f:b9:c5:93:0f:0d:f6: b7:5c:59:cd:d5:f0:83:ca:ed:e5:ad:13:5f:d9:d4: 87:5b:24:a1:83:c8:87:ae:61:e6:b9:40:72:99:1d: e0:ab:9e:ba:e8:74:fb:8e:d1:40:93:56:f5:92:a0: bb:84:29:7d:6a:9d:7e:13:cd:7a:17:76:14:cd:a0: 74:a4:cb:dd:6d:52:88:5f:4e:94:5c:00:2d:19:9a: 2d:bd:65:57:43:78:4e:e8:96:b4:a9:19:64:22:74: 16:cf:36:54:99:5e:b5:b3:80:3f:59:0a:07:ad:98: 32:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:05:9F:2F:B0:CC:BC:5D:D4:EC:6D:72:8E:E5:98:09:33:BC:CF:7F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c288c187-a311-482f-a404-3061061e705c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f12:400::/38 Signature Algorithm: sha256WithRSAEncryption 2f:9e:19:90:69:4f:7f:07:57:9d:b6:c1:84:ec:e5:22:5a:ec: 55:0b:a5:2f:0e:53:ec:75:45:fa:6c:f3:0a:e5:0f:ce:50:a1: c1:36:4d:a3:39:22:1a:e4:39:ad:ba:f4:63:9b:e3:5e:e2:a5: f3:17:b2:b7:33:ff:bc:d9:ab:75:6e:ea:ca:43:b4:86:aa:5e: 2d:25:9c:d6:67:aa:75:81:cf:9f:03:89:3b:9d:20:97:d2:09: 4b:ec:28:70:9f:19:bc:d6:ec:b0:6e:70:ef:3c:e6:02:23:a1: 8f:2c:d8:a3:23:57:03:db:cc:29:aa:73:53:8f:11:aa:51:34: 9a:2a:20:0d:11:ea:74:e6:50:c2:c7:50:87:19:3d:45:72:1e: 18:1d:4e:f2:2e:66:e3:2e:71:ef:4b:70:2b:c5:a1:c0:bc:7c: de:41:ea:47:98:e2:eb:10:43:ae:b7:2b:57:76:b1:78:99:26: 00:5e:99:8c:43:85:79:49:f4:a3:65:00:4a:d6:a2:ec:16:14: a8:37:35:c9:12:27:6a:73:cf:37:aa:de:5e:1b:ae:46:84:b2: 77:62:83:6c:6b:b9:5c:f7:a4:bd:24:0f:21:b5:41:dd:31:3d: aa:0d:b3:05:6b:de:ed:09:88:f2:83:be:47:ba:33:f7:e6:5c: 5f:e3:04:01 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIULdSwJtY1DJHLfUekMXRD2V+qWPEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjA0MDAwMDAwWhcNMjUwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZmFiOTIzMjg2MTg4YWNkM2Q5Zjk3MjdlNDBmMjU4MDBj N2IzNzRhNzE5OGFmZjBmNWFmN2YyNWQ2NzVlMzcyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsAsZTm5/ofo1YIFeeg7caa1kCXAv7eIAQ2oRVgGamz9KN hA/8/jb73Hdi8gp/w+XkzijVvJzjGfePPyOpNWptVGcNThIvvLZlhyHUoPPsSqvD 6ZIzz/qy/WolgEatxgil6kxnTGATaL/RntS1vv5kj2qpollODYas0plm0nG6lrWU ZEBwZsmDQQGnUpCRT7nFkw8N9rdcWc3V8IPK7eWtE1/Z1IdbJKGDyIeuYea5QHKZ HeCrnrrodPuO0UCTVvWSoLuEKX1qnX4TzXoXdhTNoHSky91tUohfTpRcAC0Zmi29 ZVdDeE7olrSpGWQidBbPNlSZXrWzgD9ZCgetmDJRAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU1QWfL7DMvF3U7G1yjuWYCTO8z38wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyODhjMTg3LWEzMTEtNDgyZi1hNDA0LTMwNjEwNjFlNzA1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgImAB8SBDANBgkqhkiG9w0BAQsFAAOCAQEAL54ZkGlPfwdXnbbBhOzlIlrs VQulLw5T7HVF+mzzCuUPzlChwTZNozkiGuQ5rbr0Y5vjXuKl8xeytzP/vNmrdW7q ykO0hqpeLSWc1meqdYHPnwOJO50gl9IJS+wocJ8ZvNbssG5w7zzmAiOhjyzYoyNX A9vMKapzU48RqlE0miogDRHqdOZQwsdQhxk9RXIeGB1O8i5m4y5x70twK8WhwLx8 3kHqR5ji6xBDrrcrV3axeJkmAF6ZjEOFeUn0o2UAStai7BYUqDc1yRInanPPN6re XhuuRoSyd2KDbGu5XPekvSQPIbVB3TE9qg2zBWve7QmI8oO+R7oz9+ZcX+MEAQ== -----END CERTIFICATE-----Generated at Wed Feb 5 16:00:09 2025 by rpki-client