$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/c686f937-000a-490a-846c-e2773b637b26.roa File: c686f937-000a-490a-846c-e2773b637b26.roa (raw, json) Hash identifier: nznqDWZ08KHtj5r5C1tCoskNX8zOVMfgAasDIvn6teg= Subject key identifier: FA:09:05:96:9C:91:5A:4F:0D:1D:CA:01:DE:94:47:66:FE:EC:F7:16 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 684F64FB34A01A94C2C5F5D7EC50A5BEB3F85ABA Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/c686f937-000a-490a-846c-e2773b637b26.roa Signing time: Fri 31 Jan 2025 00:00:00 +0000 ROA not before: Fri 31 Jan 2025 00:00:00 +0000 ROA not after: Fri 07 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2606:f40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:4f:64:fb:34:a0:1a:94:c2:c5:f5:d7:ec:50:a5:be:b3:f8:5a:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Jan 31 00:00:00 2025 GMT Not After : Mar 7 23:59:59 2025 GMT Subject: CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:2c:59:ae:d5:b0:54:bf:c9:ad:0f:e4:6d:44: d3:0c:1f:4d:d5:54:52:97:e3:4c:be:36:a9:f4:c6: e3:24:ec:dd:cc:40:e2:c6:47:fa:f7:c7:83:f0:87: bc:92:5f:37:ef:b4:5a:bc:08:17:d1:f1:a9:c5:89: fa:bb:f0:d9:14:17:5d:5f:cc:21:99:64:d6:7c:f1: af:fc:7a:fc:3f:e4:f5:d1:00:bb:51:c3:ba:b7:15: fb:61:19:4a:bc:f7:4c:7b:c7:12:c1:1c:8d:b6:74: 71:a9:55:b2:4f:c2:b1:e2:e7:e1:e8:84:b8:14:b1: bc:89:ff:af:2b:03:69:22:e2:84:bc:ee:3c:5b:53: 15:d5:43:5d:16:fc:4c:86:93:69:5a:54:50:ab:f5: d3:e5:45:ef:e6:62:a5:86:7a:93:ab:79:9a:c3:ab: f2:8a:c3:2b:42:11:1e:79:8f:b6:c0:d5:d9:20:68: c0:dc:ac:28:6f:f9:fd:59:4d:78:be:35:04:33:ed: 88:04:19:a6:33:c6:f1:b4:92:b1:f5:5e:d2:71:4e: 3c:02:cc:9b:45:49:91:21:87:9e:01:03:0a:65:84: 34:2c:1c:f2:5e:a5:38:3a:34:5c:e3:d0:bf:07:6a: 83:9e:1e:f6:a1:97:24:ae:f4:19:a3:e9:f6:c0:ff: 75:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:09:05:96:9C:91:5A:4F:0D:1D:CA:01:DE:94:47:66:FE:EC:F7:16 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/c686f937-000a-490a-846c-e2773b637b26.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40::/32 Signature Algorithm: sha256WithRSAEncryption ae:65:38:be:46:93:84:19:37:82:a5:86:49:87:65:10:21:65: fa:61:ed:c2:a3:e4:1a:08:b5:4c:bf:d4:d4:be:94:cf:56:6b: 55:dd:40:4e:39:a8:12:f6:9f:e8:96:8d:f2:98:c2:02:fb:0a: 36:f1:30:22:ef:a4:63:57:6a:e8:5d:19:31:32:5d:0b:eb:e1: d7:48:14:07:0b:c1:de:38:76:91:f5:4b:1c:45:3b:c9:0b:86: f5:55:6c:e5:7e:4b:06:58:ad:1e:8d:cc:8a:e2:72:d3:17:b2: ad:22:5f:41:55:1a:0e:85:bd:33:d1:65:6a:81:37:10:5c:9d: 15:cd:5b:5e:37:c8:87:08:67:f4:88:ad:ef:87:7e:d8:67:7a: cd:09:fc:9f:e0:48:02:1b:3c:88:f6:4a:12:54:30:22:28:a9: c5:26:d1:f2:c8:04:3a:a5:1f:44:22:be:22:f6:fd:6b:0b:9b: 62:b5:2e:b4:93:95:ba:ec:9c:11:aa:f2:0d:79:65:80:cf:fe: b1:7f:79:f3:20:a6:c1:03:4b:96:f8:1b:75:66:6d:0b:17:19: 85:ee:e2:5e:d8:4c:f0:2d:11:c3:5e:30:99:67:f8:63:21:77: 18:39:14:62:3f:f3:fe:c2:a7:e7:3e:72:a1:9b:e3:97:83:02: 54:af:6f:ca -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUaE9k+zSgGpTCxfXX7FClvrP4WrowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUwMTMxMDAwMDAwWhcNMjUwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZjNmZTg1ZmIwNGJmMGI4MzU2NDBiM2M0ZWUyMzczOGUz OGE1MmVkODFkZGYyNjdkMmRjOWU5N2QxODllZTMyMS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2LFmu1bBUv8mtD+RtRNMMH03VVFKX40y+Nqn0xuMk7N3M QOLGR/r3x4Pwh7ySXzfvtFq8CBfR8anFifq78NkUF11fzCGZZNZ88a/8evw/5PXR ALtRw7q3FfthGUq890x7xxLBHI22dHGpVbJPwrHi5+HohLgUsbyJ/68rA2ki4oS8 7jxbUxXVQ10W/EyGk2laVFCr9dPlRe/mYqWGepOreZrDq/KKwytCER55j7bA1dkg aMDcrChv+f1ZTXi+NQQz7YgEGaYzxvG0krH1XtJxTjwCzJtFSZEhh54BAwplhDQs HPJepTg6NFzj0L8HaoOeHvahlySu9Bmj6fbA/3VZAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQU+gkFlpyRWk8NHcoB3pRHZv7s9xYwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjL2M2ODZmOTM3LTAwMGEtNDkwYS04NDZjLWUyNzczYjYzN2IyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBg9AMA0GCSqGSIb3DQEBCwUAA4IBAQCuZTi+RpOEGTeCpYZJh2UQIWX6 Ye3Co+QaCLVMv9TUvpTPVmtV3UBOOagS9p/olo3ymMIC+wo28TAi76RjV2roXRkx Ml0L6+HXSBQHC8HeOHaR9UscRTvJC4b1VWzlfksGWK0ejcyK4nLTF7KtIl9BVRoO hb0z0WVqgTcQXJ0VzVteN8iHCGf0iK3vh37YZ3rNCfyf4EgCGzyI9koSVDAiKKnF JtHyyAQ6pR9EIr4i9v1rC5titS60k5W67JwRqvINeWWAz/6xf3nzIKbBA0uW+Bt1 Zm0LFxmF7uJe2EzwLRHDXjCZZ/hjIXcYORRiP/P+wqfnPnKhm+OXgwJUr2/K -----END CERTIFICATE-----Generated at Sun Feb 16 15:10:24 2025 by rpki-client