$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/c686f937-000a-490a-846c-e2773b637b26.roa File: c686f937-000a-490a-846c-e2773b637b26.roa (raw, json) Hash identifier: c1frx/1rhGJOPxd/oGpwDMFEw59EXddmbuyWxU/JUjA= Subject key identifier: 2F:5D:08:E8:83:A2:20:65:43:41:7D:5A:4A:63:A7:6D:C8:1F:DB:D2 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 7AC7945AE5ECD71E10884B36EDAC3A9B5515DF6B Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/c686f937-000a-490a-846c-e2773b637b26.roa Signing time: Tue 25 Feb 2025 00:20:10 +0000 ROA not before: Tue 25 Feb 2025 00:20:10 +0000 ROA not after: Tue 01 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2606:f40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 07:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:c7:94:5a:e5:ec:d7:1e:10:88:4b:36:ed:ac:3a:9b:55:15:df:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Feb 25 00:20:10 2025 GMT Not After : Apr 1 23:59:59 2025 GMT Subject: CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c4:82:e4:80:92:28:37:0e:43:d7:09:a7:d2: 5c:e5:7f:ab:d9:3f:4a:3c:a8:3f:c8:24:17:7b:f6: e8:bd:4a:b2:ce:83:f6:6d:0f:f7:09:bb:e5:18:0a: d3:b0:d0:36:7a:27:b4:61:f2:5d:95:fb:d3:c8:21: 0e:11:54:4d:95:6a:6e:d0:ed:eb:69:3b:1c:79:06: ba:9d:18:64:48:ad:80:8c:ba:db:29:51:c3:c9:42: 68:4b:41:49:11:7e:3b:f1:b2:ff:66:fd:ad:87:e0: 07:0c:ce:cb:0e:29:e9:41:b4:f1:c6:45:85:f4:00: 5f:ad:f1:f7:94:41:00:c9:a0:94:98:05:35:7b:af: 09:c0:03:d3:33:33:47:a9:ae:5a:f3:4c:d4:99:27: 01:c9:52:f5:5f:0b:67:e8:1b:8d:1b:43:17:69:97: e6:01:ad:fe:43:c1:45:9e:c4:89:a5:43:f8:0c:c0: d3:01:23:6c:39:bf:90:af:68:53:22:df:08:dc:16: ec:e1:61:8a:49:4d:31:72:dd:12:1a:d9:ae:17:7d: 3c:6c:bb:c7:70:f9:bb:73:10:52:61:7f:bf:16:86: 4d:f5:44:1c:c8:cd:79:7b:d4:37:41:98:e9:ce:d5: b2:1a:1b:25:89:bd:18:0a:97:60:a0:82:11:be:5a: 08:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:5D:08:E8:83:A2:20:65:43:41:7D:5A:4A:63:A7:6D:C8:1F:DB:D2 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/c686f937-000a-490a-846c-e2773b637b26.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40::/32 Signature Algorithm: sha256WithRSAEncryption 71:4b:ff:25:7d:8c:58:84:a2:90:71:2b:f3:8e:1f:ba:18:14: 03:e4:89:99:a1:58:fe:ab:1f:7f:c3:2d:ab:01:8d:f0:d5:6b: f8:44:74:de:d0:49:57:8b:bd:98:c3:b1:3f:12:0f:45:29:e5: a8:ff:a8:07:e1:1f:4a:42:ea:78:4c:5b:07:e1:ea:ed:b3:77: e5:67:40:e3:77:21:38:e7:f2:bc:34:ea:d0:f5:08:fd:86:23: 17:da:d1:75:a9:51:a6:11:db:0b:2d:0e:8e:4f:3a:a0:60:1d: fa:ff:6d:ea:b3:15:fa:ee:54:ac:a2:9e:fe:2b:0f:d6:78:a9: 99:87:d4:33:99:4a:d9:cc:fb:54:19:d4:91:40:7c:a3:0d:9b: 90:51:14:b0:ff:87:69:f6:6a:ee:c3:b5:90:34:a0:ac:3a:72: d6:a9:42:1f:9b:d6:c7:43:ee:8b:f9:5d:7c:0e:47:bc:27:e8: c3:14:25:5b:5f:9f:b6:11:55:cd:b8:57:f7:5a:d4:e9:a8:8b: 77:3f:03:f5:19:d5:f6:ec:bc:4b:a8:0b:ab:85:0d:7c:0e:69: 4e:05:cf:17:d7:bf:60:77:ca:b9:06:c4:93:14:f3:73:98:b4: 60:0b:ae:3f:7d:35:b0:fa:6e:e8:ef:a5:63:60:65:81:ef:03: ae:f2:3f:c8 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUeseUWuXs1x4QiEs27aw6m1UV32swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUwMjI1MDAyMDEwWhcNMjUwNDAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NzlhMjExYzk4ZjBkNzgxMmE2YjY4ZDEwYmQwY2I3YWJl MjFjNjI4NjNiNDQ2ZjZmYTIxYzE0MTA5N2Q1MWE3MS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJxILkgJIoNw5D1wmn0lzlf6vZP0o8qD/IJBd79ui9SrLO g/ZtD/cJu+UYCtOw0DZ6J7Rh8l2V+9PIIQ4RVE2Vam7Q7etpOxx5BrqdGGRIrYCM utspUcPJQmhLQUkRfjvxsv9m/a2H4AcMzssOKelBtPHGRYX0AF+t8feUQQDJoJSY BTV7rwnAA9MzM0eprlrzTNSZJwHJUvVfC2foG40bQxdpl+YBrf5DwUWexImlQ/gM wNMBI2w5v5CvaFMi3wjcFuzhYYpJTTFy3RIa2a4XfTxsu8dw+btzEFJhf78Whk31 RBzIzXl71DdBmOnO1bIaGyWJvRgKl2CgghG+Wgh1AgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUL10I6IOiIGVDQX1aSmOnbcgf29IwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjL2M2ODZmOTM3LTAwMGEtNDkwYS04NDZjLWUyNzczYjYzN2IyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBg9AMA0GCSqGSIb3DQEBCwUAA4IBAQBxS/8lfYxYhKKQcSvzjh+6GBQD 5ImZoVj+qx9/wy2rAY3w1Wv4RHTe0ElXi72Yw7E/Eg9FKeWo/6gH4R9KQup4TFsH 4erts3flZ0DjdyE45/K8NOrQ9Qj9hiMX2tF1qVGmEdsLLQ6OTzqgYB36/23qsxX6 7lSsop7+Kw/WeKmZh9QzmUrZzPtUGdSRQHyjDZuQURSw/4dp9mruw7WQNKCsOnLW qUIfm9bHQ+6L+V18Dke8J+jDFCVbX5+2EVXNuFf3WtTpqIt3PwP1GdX27LxLqAur hQ18DmlOBc8X179gd8q5BsSTFPNzmLRgC64/fTWw+m7o76VjYGWB7wOu8j/I -----END CERTIFICATE-----Generated at Thu Mar 13 23:53:14 2025 by rpki-client