$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0668f39a-0950-45e9-b174-8f7a83ff26e9.roa File: 0668f39a-0950-45e9-b174-8f7a83ff26e9.roa (raw, json) Hash identifier: qTJzihCibSMLHyWeJzGOd84AMTwvLl7dvnZcygxE1wU= Subject key identifier: 37:7E:C0:77:9C:73:FD:6F:54:C2:18:84:A7:00:0F:60:5C:20:19:41 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 344FBD78F2C6AB91658B8DD7F39282A5D5D82F24 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0668f39a-0950-45e9-b174-8f7a83ff26e9.roa Signing time: Mon 06 Jan 2025 00:00:00 +0000 ROA not before: Mon 06 Jan 2025 00:00:00 +0000 ROA not after: Mon 10 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:4f:bd:78:f2:c6:ab:91:65:8b:8d:d7:f3:92:82:a5:d5:d8:2f:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jan 6 00:00:00 2025 GMT Not After : Feb 10 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ca:3e:95:25:d8:5c:44:23:a9:af:a7:c3:93: aa:bf:e7:2f:95:82:e1:cb:4b:19:e0:cb:4f:af:67: 8d:1b:4b:f6:f2:0f:4e:05:c9:9b:81:18:2e:3c:23: 02:d9:65:1c:a8:3a:43:c6:3c:74:37:4d:17:20:fb: c9:53:2f:54:25:5b:0a:b3:d6:ab:96:6e:9b:58:c9: 64:8d:27:e5:64:55:49:50:e4:7e:c6:17:46:40:53: 62:9c:8d:d7:e6:39:d5:c1:ce:34:f6:ae:a3:24:b1: 98:29:05:10:83:a0:b0:de:f2:f8:d5:e9:53:d9:87: 2e:b5:60:e9:53:8f:bb:c4:b3:d0:e6:58:71:23:79: b2:80:f8:82:a6:55:cf:eb:15:9d:cc:65:6f:92:d8: 77:7b:3f:9e:6e:a3:0f:99:13:29:9f:96:5c:93:1d: 62:11:da:b0:b3:2a:6f:dd:d2:da:b6:fe:7e:f0:23: 26:51:38:36:30:d3:0e:0d:4b:41:14:88:96:c9:d2: f5:95:45:79:04:7c:25:01:f5:26:14:e0:5b:8d:ac: 80:21:ed:6e:ce:76:49:6e:fb:6d:09:d8:36:5b:3c: ae:6f:da:2d:a0:86:84:c0:3c:a6:57:56:bb:04:90: 56:a7:8d:02:77:01:ef:b6:70:f2:8c:81:7e:14:cc: 6c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:7E:C0:77:9C:73:FD:6F:54:C2:18:84:A7:00:0F:60:5C:20:19:41 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0668f39a-0950-45e9-b174-8f7a83ff26e9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:1000::/48 Signature Algorithm: sha256WithRSAEncryption 03:e4:3e:4c:9c:0b:88:91:d9:f4:52:cf:d4:52:ec:d6:fc:e6: 8b:c2:fe:d7:1a:30:ed:c3:9f:e3:ef:ec:41:a3:a4:38:cf:de: 2f:96:3d:61:2e:6a:81:f2:f8:60:4a:11:b7:74:f4:34:81:77: c5:07:b1:47:6c:f4:c6:5c:ca:3a:87:2e:ab:af:e7:17:b8:62: bb:6f:6e:87:0a:d2:11:54:23:4a:ad:75:66:89:ec:00:93:2e: fc:29:8d:49:22:8b:76:d7:fa:6f:f6:4d:37:51:fe:9d:84:13: dc:d1:e0:bf:74:44:5b:8f:19:09:0e:4b:94:f6:38:09:d2:f8: 7b:ef:93:68:69:76:ff:08:e0:8e:3d:35:cf:6d:54:13:80:b8: f5:ce:d7:b8:2c:6e:45:f6:5a:65:5a:b0:cb:44:04:16:49:7d: 10:e3:66:fc:36:9e:1b:dc:f3:f0:69:71:b5:99:68:d1:0f:7e: 9c:a9:8a:9d:21:85:23:f9:26:48:50:61:b8:81:5c:1e:84:f9: ae:bb:8e:1e:8a:7f:ca:e3:13:45:9a:42:13:50:7c:40:f3:1d: 5d:cd:60:f1:05:4c:39:21:b1:ab:7f:bf:45:79:ba:52:23:6e: 27:23:3b:59:4f:7f:2a:c2:56:d5:4b:18:f8:fd:07:c9:93:9c: b8:9b:8c:2c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNE+9ePLGq5Fli43X85KCpdXYLyQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMTA2MDAwMDAwWhcNMjUwMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkOGIzNTg3ZjE3ZGU2YmZkYzMxMzQzODczZDRlNmNkMTgz YWQyZmMxNDAwZmU0YzY5MDQyYzk0NzJhOTQzNmM2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxyj6VJdhcRCOpr6fDk6q/5y+VguHLSxngy0+vZ40bS/by D04FyZuBGC48IwLZZRyoOkPGPHQ3TRcg+8lTL1QlWwqz1quWbptYyWSNJ+VkVUlQ 5H7GF0ZAU2KcjdfmOdXBzjT2rqMksZgpBRCDoLDe8vjV6VPZhy61YOlTj7vEs9Dm WHEjebKA+IKmVc/rFZ3MZW+S2Hd7P55uow+ZEymfllyTHWIR2rCzKm/d0tq2/n7w IyZRODYw0w4NS0EUiJbJ0vWVRXkEfCUB9SYU4FuNrIAh7W7Odklu+20J2DZbPK5v 2i2ghoTAPKZXVrsEkFanjQJ3Ae+2cPKMgX4UzGxFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUN37Ad5xz/W9UwhiEpwAPYFwgGUEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzA2NjhmMzlhLTA5NTAtNDVlOS1iMTc0LThmN2E4M2ZmMjZlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwEAAwDQYJKoZIhvcNAQELBQADggEBAAPkPkycC4iR2fRSz9RS7Nb8 5ovC/tcaMO3Dn+Pv7EGjpDjP3i+WPWEuaoHy+GBKEbd09DSBd8UHsUds9MZcyjqH Lquv5xe4YrtvbocK0hFUI0qtdWaJ7ACTLvwpjUkii3bX+m/2TTdR/p2EE9zR4L90 RFuPGQkOS5T2OAnS+Hvvk2hpdv8I4I49Nc9tVBOAuPXO17gsbkX2WmVasMtEBBZJ fRDjZvw2nhvc8/BpcbWZaNEPfpypip0hhSP5JkhQYbiBXB6E+a67jh6Kf8rjE0Wa QhNQfEDzHV3NYPEFTDkhsat/v0V5ulIjbicjO1lPfyrCVtVLGPj9B8mTnLibjCw= -----END CERTIFICATE-----Generated at Wed Feb 5 09:43:00 2025 by rpki-client