$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e07b009f-7b48-43a4-a98e-2a14c194afe8.roa File: e07b009f-7b48-43a4-a98e-2a14c194afe8.roa (raw, json) Hash identifier: 3/oQmOxI/P9zxVuAPJwGfXB45NwDLHZdpcgEcRfJJms= Subject key identifier: 6F:C2:8B:25:37:71:DB:A2:10:9A:7A:FF:CE:93:3D:13:BD:43:0D:08 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A733D77CA4D4C9FD44EC5DDEB5D83329A5BEC8A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e07b009f-7b48-43a4-a98e-2a14c194afe8.roa Signing time: Fri 24 Jan 2025 00:00:00 +0000 ROA not before: Fri 24 Jan 2025 00:00:00 +0000 ROA not after: Fri 28 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:4003::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:73:3d:77:ca:4d:4c:9f:d4:4e:c5:dd:eb:5d:83:32:9a:5b:ec:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 24 00:00:00 2025 GMT Not After : Feb 28 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5a:56:92:c3:09:d5:6e:f5:9b:2a:47:1b:48: 2a:09:b6:59:01:6b:51:f1:05:b5:a5:f6:8b:e5:56: 5d:37:de:2e:40:bb:54:d8:5f:e0:07:e3:d5:ac:05: c9:1d:fd:33:05:e3:ff:9a:6e:4f:4d:e7:51:76:96: 1d:d1:47:56:ef:e0:a1:32:71:40:ea:20:d5:a0:46: 8b:74:92:12:e2:df:33:3d:4e:01:a5:20:8b:dd:22: d4:d0:c5:9d:90:86:5c:b1:d8:e7:de:86:1a:3b:9d: 68:3f:ad:f9:16:7e:7f:8b:0f:e7:7d:81:a8:37:4a: 3f:db:af:f2:a7:3b:4f:88:90:6d:9a:2e:6d:3c:e3: 35:7f:78:5d:4e:43:1c:9f:f9:12:21:0d:cb:66:20: cf:95:84:2c:80:e2:8f:0b:4b:24:25:f9:bb:3f:ad: 6b:6e:68:df:52:8a:8e:f2:c2:5a:09:3c:f4:06:ec: aa:c3:bf:97:4a:dd:dd:40:5b:49:c1:33:0c:f4:be: 1e:36:b8:91:47:a9:73:96:4b:0f:3c:d7:e2:39:97: 7f:c4:0e:d9:73:d7:14:59:a3:5b:6a:f1:64:ef:68: 16:36:33:25:11:c3:19:d6:49:30:62:df:56:7d:a5: 9c:76:96:57:ab:b6:2f:dd:42:3b:7e:5a:de:55:3c: f8:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:C2:8B:25:37:71:DB:A2:10:9A:7A:FF:CE:93:3D:13:BD:43:0D:08 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e07b009f-7b48-43a4-a98e-2a14c194afe8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:4003::/48 Signature Algorithm: sha256WithRSAEncryption 80:d2:62:2e:1f:18:c3:fb:35:e3:57:29:2a:3b:70:96:b2:ca: 35:14:d9:e2:22:8f:f5:88:61:fa:3a:42:73:a6:8c:ba:7c:ef: 88:2e:e4:27:a8:0a:6a:9c:4b:ff:49:ea:e2:71:7a:e9:8b:a0: 4a:8c:f8:51:ed:29:0b:33:b2:74:1c:1e:e1:66:5a:ab:16:74: 3d:8e:0d:65:82:b1:2c:c7:04:e8:7f:7f:39:7b:05:81:8b:e8: a5:69:c4:9b:67:d2:a7:7f:e3:83:a1:fc:21:24:6b:31:46:9c: 40:db:df:51:9a:32:a2:75:4d:be:86:0d:e2:94:8c:b3:e5:f3: 2c:a7:91:e1:26:22:be:7a:46:11:9b:7a:f1:1c:1f:1d:56:ac: ce:0c:0a:42:16:0e:c8:94:ae:22:d0:cf:e8:0a:4d:b7:40:5c: b9:1d:5a:70:0d:26:c9:ea:eb:da:dc:b8:f4:78:d4:0d:92:fe: a0:ee:c2:9c:21:f6:95:ed:34:ab:9e:fe:70:f9:90:03:63:48: 23:37:b6:f3:4e:3c:e2:64:e2:8c:1d:ba:7a:fc:db:54:b4:2c: 6e:fd:a8:13:7e:fd:50:3a:fc:80:85:36:7d:44:9d:ca:bc:bc: 2f:b2:9d:9e:d7:48:c3:ca:98:3a:7c:22:f4:7c:e0:40:17:56: 0d:45:1b:fe -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOnM9d8pNTJ/UTsXd612DMppb7IowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTI0MDAwMDAwWhcNMjUwMjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYzg4YTFlZjNkOTUzNTNhNDI1ZTA1ZTY1YzJkMmEwZTBm OGRkOGQzNTM0YzliODFkMmMyN2Q1OTAwZGRjNGUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6WlaSwwnVbvWbKkcbSCoJtlkBa1HxBbWl9ovlVl033i5A u1TYX+AH49WsBckd/TMF4/+abk9N51F2lh3RR1bv4KEycUDqINWgRot0khLi3zM9 TgGlIIvdItTQxZ2Qhlyx2Ofehho7nWg/rfkWfn+LD+d9gag3Sj/br/KnO0+IkG2a Lm084zV/eF1OQxyf+RIhDctmIM+VhCyA4o8LSyQl+bs/rWtuaN9Sio7ywloJPPQG 7KrDv5dK3d1AW0nBMwz0vh42uJFHqXOWSw881+I5l3/EDtlz1xRZo1tq8WTvaBY2 MyURwxnWSTBi31Z9pZx2llerti/dQjt+Wt5VPPjpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUb8KLJTdx26IQmnr/zpM9E71DDQgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UwN2IwMDlmLTdiNDgtNDNhNC1hOThlLTJhMTRjMTk0YWZlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmIAEHQAMwDQYJKoZIhvcNAQELBQADggEBAIDSYi4fGMP7NeNXKSo7cJay yjUU2eIij/WIYfo6QnOmjLp874gu5CeoCmqcS/9J6uJxeumLoEqM+FHtKQszsnQc HuFmWqsWdD2ODWWCsSzHBOh/fzl7BYGL6KVpxJtn0qd/44Oh/CEkazFGnEDb31Ga MqJ1Tb6GDeKUjLPl8yynkeEmIr56RhGbevEcHx1WrM4MCkIWDsiUriLQz+gKTbdA XLkdWnANJsnq69rcuPR41A2S/qDuwpwh9pXtNKue/nD5kANjSCM3tvNOPOJk4owd unr821S0LG79qBN+/VA6/ICFNn1Encq8vC+ynZ7XSMPKmDp8IvR84EAXVg1FG/4= -----END CERTIFICATE-----Generated at Sun Feb 16 15:53:09 2025 by rpki-client