$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9bd7780-4f41-490c-9ef8-0c9f02433493.roa File: e9bd7780-4f41-490c-9ef8-0c9f02433493.roa (raw, json) Hash identifier: Y+Q3ZemnF4oRt4Ts05V7deXb5O0bwlvDPQl15WFrTI0= Subject key identifier: 6A:2B:36:3A:88:12:2C:9E:0A:1A:68:35:5B:A9:9E:86:A9:9C:84:C3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7D2CA80D7A604F08AA2DC6513A9685D680221EC1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9bd7780-4f41-490c-9ef8-0c9f02433493.roa Signing time: Tue 04 Feb 2025 00:00:00 +0000 ROA not before: Tue 04 Feb 2025 00:00:00 +0000 ROA not after: Tue 11 Mar 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ff5:2000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:2c:a8:0d:7a:60:4f:08:aa:2d:c6:51:3a:96:85:d6:80:22:1e:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 4 00:00:00 2025 GMT Not After : Mar 11 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:78:56:a1:6d:b3:0a:ca:bd:6f:52:22:7a:98: ce:6c:f0:02:1f:c8:10:06:4e:bc:b9:00:ad:ce:54: a3:0a:2c:96:fc:80:57:04:63:01:ca:32:c7:fb:bd: a2:c1:c6:c1:2d:9f:c5:cb:66:f0:8e:f4:55:c9:96: 10:b3:90:3b:02:21:b6:77:f8:16:cb:cf:45:d9:86: 05:55:10:71:2a:33:c9:25:0c:0c:c3:5c:aa:21:68: bb:1f:1a:7d:a9:61:d3:54:26:44:98:d2:03:8b:48: 37:3d:a6:89:b9:63:15:45:fa:0f:fa:7a:ac:e5:8f: ce:d7:15:d9:47:b0:aa:a5:33:6b:af:bc:5b:fc:d7: 3f:6d:29:17:fb:2d:7d:c4:80:7d:a8:eb:7e:c2:7b: f3:51:6b:4c:f0:dd:2f:f0:d7:36:9b:2d:4e:27:67: a4:b4:f7:cb:3b:e7:81:ce:fb:b5:e3:e1:da:d2:8f: 56:6d:15:0a:2a:67:58:eb:bb:7b:73:4c:19:00:4b: 16:e0:1b:ab:6d:2d:be:2f:0b:2d:6e:ed:17:37:a7: 35:29:9c:ab:ab:03:b0:22:7c:17:f3:32:ba:33:bd: 4a:d8:e9:c9:da:a2:3b:65:97:84:29:66:3c:96:a2: 59:b4:1c:81:db:e4:03:9c:97:2e:19:32:79:86:19: a0:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:2B:36:3A:88:12:2C:9E:0A:1A:68:35:5B:A9:9E:86:A9:9C:84:C3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9bd7780-4f41-490c-9ef8-0c9f02433493.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff5:2000::/40 Signature Algorithm: sha256WithRSAEncryption 39:ae:ad:05:88:35:e2:8b:b2:7d:db:50:f1:ca:8e:3f:55:0c: c7:6b:f0:45:b4:bf:bd:a0:f8:4a:df:d8:23:48:30:1b:05:87: cf:c8:d6:bc:bb:a0:18:24:d4:94:60:2c:4c:5c:47:c5:db:5a: 1d:e3:d5:d9:61:ab:b5:e6:d6:5e:20:b7:1a:c0:10:ce:6b:63: 1b:98:2f:26:ca:a6:61:19:41:3f:1d:aa:80:3a:e4:5a:a1:9e: 32:65:38:a7:da:ab:96:27:b3:b2:ac:38:10:66:f1:7a:5b:fa: af:d5:95:39:f5:e2:cb:54:aa:8b:c8:75:a6:52:a4:25:21:fe: 05:c5:ca:72:e1:30:9e:7a:43:ab:b7:47:9b:53:8e:4b:d1:f5: 1b:30:fc:8d:2b:4e:51:d8:3a:05:10:21:9e:e9:3e:71:a7:4b: 39:23:9c:ae:e0:01:03:fa:bf:a4:06:1c:07:5c:88:5d:f7:cc: 66:c4:e9:1f:20:17:a8:7f:2e:6d:3c:33:0b:ff:64:3d:24:f4: f3:c0:cc:53:c8:a9:05:ac:ac:3b:56:2b:87:54:58:b3:0a:90: fb:22:a2:b2:b7:85:99:82:6a:b3:96:c7:80:7f:10:36:ab:f2: d7:f7:3c:dd:c1:87:39:ff:5c:92:31:9e:a6:4a:96:86:72:02: db:d7:84:0e -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUfSyoDXpgTwiqLcZROpaF1oAiHsEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjA0MDAwMDAwWhcNMjUwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MjI1MzNkNmI1ODU3N2U4YTdlOTkwNzgyZGU1Y2JjY2Fk YzQ4MWVlMmIzMDdmNjBhYjc2N2JmY2IxOGJmMjkyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOeFahbbMKyr1vUiJ6mM5s8AIfyBAGTry5AK3OVKMKLJb8 gFcEYwHKMsf7vaLBxsEtn8XLZvCO9FXJlhCzkDsCIbZ3+BbLz0XZhgVVEHEqM8kl DAzDXKohaLsfGn2pYdNUJkSY0gOLSDc9pom5YxVF+g/6eqzlj87XFdlHsKqlM2uv vFv81z9tKRf7LX3EgH2o637Ce/NRa0zw3S/w1zabLU4nZ6S098s754HO+7Xj4drS j1ZtFQoqZ1jru3tzTBkASxbgG6ttLb4vCy1u7Rc3pzUpnKurA7AifBfzMrozvUrY 6cnaojtll4QpZjyWolm0HIHb5AOcly4ZMnmGGaATAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUais2OogSLJ4KGmg1W6mehqmchMMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U5YmQ3NzgwLTRmNDEtNDkwYy05ZWY4LTBjOWYwMjQzMzQ5My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/1IDANBgkqhkiG9w0BAQsFAAOCAQEAOa6tBYg14ouyfdtQ8cqOP1UM x2vwRbS/vaD4St/YI0gwGwWHz8jWvLugGCTUlGAsTFxHxdtaHePV2WGrtebWXiC3 GsAQzmtjG5gvJsqmYRlBPx2qgDrkWqGeMmU4p9qrliezsqw4EGbxelv6r9WVOfXi y1Sqi8h1plKkJSH+BcXKcuEwnnpDq7dHm1OOS9H1GzD8jStOUdg6BRAhnuk+cadL OSOcruABA/q/pAYcB1yIXffMZsTpHyAXqH8ubTwzC/9kPST088DMU8ipBaysO1Yr h1RYswqQ+yKisreFmYJqs5bHgH8QNqvy1/c83cGHOf9ckjGepkqWhnIC29eEDg== -----END CERTIFICATE-----Generated at Wed Feb 5 16:01:34 2025 by rpki-client