$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea48da40-e606-40ca-a47e-49973c2920b0.roa File: ea48da40-e606-40ca-a47e-49973c2920b0.roa (raw, json) Hash identifier: RmQqTBx4iKg40Z/BD9Ztn/LXnCGmR1cb21qFRveeZcw= Subject key identifier: 5B:F9:7E:B4:6A:86:A3:B3:F7:D8:B9:48:33:CB:B2:30:5E:F8:C7:68 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4C4B695E8328FCB9FB23F7BF63387A81E3120536 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea48da40-e606-40ca-a47e-49973c2920b0.roa Signing time: Tue 04 Feb 2025 00:00:00 +0000 ROA not before: Tue 04 Feb 2025 00:00:00 +0000 ROA not after: Tue 11 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fb8:8000::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:4b:69:5e:83:28:fc:b9:fb:23:f7:bf:63:38:7a:81:e3:12:05:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 4 00:00:00 2025 GMT Not After : Mar 11 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:14:1a:0b:bd:46:29:4c:f4:24:a2:6d:a3:cf: 98:2b:84:52:6e:6a:50:f6:85:4d:4a:ce:40:2a:6b: 32:ff:8e:fd:1b:b9:11:09:f1:e8:1e:eb:16:be:23: 1d:7b:c1:86:75:2a:12:c9:88:3b:bf:ab:90:a0:67: e8:71:c3:fd:94:7e:5a:4a:d5:2d:df:10:e0:3a:71: e7:e3:2b:8c:84:08:08:59:1c:03:28:4e:d1:52:19: e2:fc:6b:e0:04:09:42:a7:6a:46:85:7e:24:34:77: 3d:7c:45:d8:37:70:23:91:e6:d2:ba:86:59:85:38: 48:90:26:ee:a5:98:4d:b5:e9:a8:32:96:31:25:c3: 14:90:51:a4:55:80:52:40:84:52:f0:9c:c0:06:f3: fa:b5:86:3f:32:89:66:07:19:ea:c0:79:b5:1b:df: e1:6d:b2:d0:91:0a:4a:94:73:6d:2e:aa:7a:ea:58: 78:00:9b:15:e4:2d:ed:6d:55:db:65:73:1d:9a:a2: 1a:c4:b0:9d:75:c8:51:ad:6d:ba:a1:80:54:6b:3a: 93:42:ef:3d:45:df:21:f2:07:9a:5f:a4:16:9e:f1: 02:19:d7:1d:42:5f:19:df:99:63:af:e1:54:df:c5: d6:9b:7e:b9:e2:d2:b9:2a:86:91:73:61:55:53:1a: d4:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:F9:7E:B4:6A:86:A3:B3:F7:D8:B9:48:33:CB:B2:30:5E:F8:C7:68 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea48da40-e606-40ca-a47e-49973c2920b0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb8:8000::/39 Signature Algorithm: sha256WithRSAEncryption 0b:b2:a6:4c:82:c0:e1:9a:e5:fa:c9:c8:8d:f3:a1:c1:16:0d: ee:3c:a6:91:9f:09:3f:c6:b6:33:bd:a3:9b:69:4a:b6:a9:03: b1:75:74:b0:50:9f:77:8c:c7:84:0c:a1:ee:3c:70:04:41:ba: 87:a6:72:e7:c1:ac:3d:75:79:b2:7e:2a:05:d3:83:84:58:7b: 92:54:e4:91:7a:be:37:96:2f:20:91:6a:ce:3e:38:26:23:e4: d3:ac:a2:73:ac:35:83:29:19:94:37:21:0c:95:c9:12:14:0b: 6a:9a:3d:25:2a:01:f0:53:d2:b0:53:df:1a:f4:2a:63:cc:df: 15:d0:ad:07:9d:22:68:70:e6:7d:bd:46:b2:29:f1:83:09:a4: 06:d2:67:e8:2d:f4:cb:c3:67:6b:e7:95:35:d3:bd:81:5e:8d: f8:ec:f4:1d:2d:4f:2e:35:fd:8d:cf:38:b7:a9:4d:e0:c7:cc: 40:c4:76:a9:74:a0:2d:f8:fa:a7:7e:e2:9f:76:10:26:8c:b8: ac:ae:41:6a:d8:5f:3b:09:db:59:01:da:74:7b:29:74:82:5b: fb:42:37:62:ef:d3:9e:d1:9d:16:d2:59:be:fd:79:bd:ab:4b: d4:07:f7:cf:d2:d6:da:81:b7:dd:19:52:98:d0:60:da:78:ef: 66:e8:34:e8 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUTEtpXoMo/Ln7I/e/Yzh6geMSBTYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjA0MDAwMDAwWhcNMjUwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ODVmYTE2NGRkNjlkMjE5MzliYWFhMTc2OWIwZWI4NGY0 NDg5NmY4Yjc4MDgyMjMyZmFjM2YzZjBiZDI2OTJjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDFBoLvUYpTPQkom2jz5grhFJualD2hU1KzkAqazL/jv0b uREJ8ege6xa+Ix17wYZ1KhLJiDu/q5CgZ+hxw/2UflpK1S3fEOA6cefjK4yECAhZ HAMoTtFSGeL8a+AECUKnakaFfiQ0dz18Rdg3cCOR5tK6hlmFOEiQJu6lmE216agy ljElwxSQUaRVgFJAhFLwnMAG8/q1hj8yiWYHGerAebUb3+FtstCRCkqUc20uqnrq WHgAmxXkLe1tVdtlcx2aohrEsJ11yFGtbbqhgFRrOpNC7z1F3yHyB5pfpBae8QIZ 1x1CXxnfmWOv4VTfxdabfrni0rkqhpFzYVVTGtSRAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUW/l+tGqGo7P32LlIM8uyMF74x2gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VhNDhkYTQwLWU2MDYtNDBjYS1hNDdlLTQ5OTczYzI5MjBiMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB+4gDANBgkqhkiG9w0BAQsFAAOCAQEAC7KmTILA4Zrl+snIjfOhwRYN 7jymkZ8JP8a2M72jm2lKtqkDsXV0sFCfd4zHhAyh7jxwBEG6h6Zy58GsPXV5sn4q BdODhFh7klTkkXq+N5YvIJFqzj44JiPk06yic6w1gykZlDchDJXJEhQLapo9JSoB 8FPSsFPfGvQqY8zfFdCtB50iaHDmfb1GsinxgwmkBtJn6C30y8Nna+eVNdO9gV6N +Oz0HS1PLjX9jc84t6lN4MfMQMR2qXSgLfj6p37in3YQJoy4rK5BathfOwnbWQHa dHspdIJb+0I3Yu/TntGdFtJZvv15vatL1Af3z9LW2oG33RlSmNBg2njvZug06A== -----END CERTIFICATE-----Generated at Wed Feb 5 09:37:34 2025 by rpki-client