$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b0acdef-c848-447c-9624-6a4634464aaa.roa File: 0b0acdef-c848-447c-9624-6a4634464aaa.roa (raw, json) Hash identifier: kMbl7OV9hUODqoyY4cKNDs6pDrGGz/mkA72M7G+RuMw= Subject key identifier: 84:46:7F:35:33:75:EB:5C:54:AC:94:73:0B:E6:68:89:8D:08:2F:81 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0CAE2814C4217C3C5ED489747C43308758DFBA7B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b0acdef-c848-447c-9624-6a4634464aaa.roa Signing time: Mon 06 Jan 2025 00:00:00 +0000 ROA not before: Mon 06 Jan 2025 00:00:00 +0000 ROA not after: Mon 10 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e800::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:ae:28:14:c4:21:7c:3c:5e:d4:89:74:7c:43:30:87:58:df:ba:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jan 6 00:00:00 2025 GMT Not After : Feb 10 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:f8:b1:09:23:8a:da:77:37:69:3b:9d:d1:0b: 84:70:29:08:2d:ae:a5:ed:94:72:18:20:9a:10:8b: ae:5e:9f:3a:aa:82:cd:da:68:a0:23:32:70:10:c5: 96:65:bb:89:ff:d4:41:d6:1c:64:78:2a:0e:4c:c3: aa:64:4c:8c:15:e9:9e:6d:dd:95:45:74:b0:7b:89: de:b8:1b:2a:e9:08:45:02:8c:dc:50:c6:22:6f:4b: bc:60:a5:94:b5:a8:bc:70:6f:82:18:18:c5:d1:51: 21:86:68:e0:17:1e:3f:57:e1:7b:47:66:1d:5e:e5: ee:4c:55:d0:9f:6f:6e:06:66:6d:8b:d9:59:ad:84: 0e:af:c0:d6:39:b8:05:54:67:f9:5a:b5:48:4c:68: cd:52:2c:5e:40:42:86:1c:22:30:cd:dc:56:5f:21: 4d:d7:5c:ee:e2:bb:8b:8b:27:0d:9d:a4:08:ed:38: 37:af:86:48:39:8d:59:58:4a:39:0d:dd:80:9d:88: 7b:11:8a:12:1b:6d:34:12:06:f7:14:4d:ae:32:48: d5:20:79:a3:71:78:f1:53:d7:53:0c:c0:05:80:a3: cc:7b:5e:25:db:8a:6a:d0:0d:ba:ea:87:2b:c3:f6: cd:95:f8:16:6e:2c:af:7b:86:f6:66:f3:43:0e:78: ec:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:46:7F:35:33:75:EB:5C:54:AC:94:73:0B:E6:68:89:8D:08:2F:81 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b0acdef-c848-447c-9624-6a4634464aaa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e800::/42 Signature Algorithm: sha256WithRSAEncryption 8b:2c:d4:7b:97:e5:57:a7:e7:c8:48:b9:99:42:24:dd:98:4f: ad:db:01:9c:bd:8c:b1:32:f4:d9:8c:89:8c:8b:c6:f2:8e:06: 07:01:db:7b:7f:54:a8:4a:68:85:b7:b2:22:d8:14:11:71:fc: 81:72:c5:7b:2e:a7:bf:c4:23:55:da:75:49:f5:a0:8f:bc:10: b2:4d:cc:16:4e:00:e0:99:97:40:db:da:c8:26:6c:51:ba:f6: 9b:d5:99:0c:78:ec:d3:db:28:fa:59:d0:85:e5:0c:bd:b9:d8: 34:3b:17:34:63:b0:b3:60:4c:44:e8:1e:10:d9:e9:14:db:5e: 7a:ef:eb:98:91:ba:30:1d:08:db:4f:71:5b:e9:b6:77:ea:83: 49:7b:fc:c1:51:9c:b7:b2:64:41:57:33:06:32:a2:e2:91:c4: 29:ed:44:de:b9:15:3a:62:52:7b:db:fb:8f:bc:59:55:bf:20: 2c:49:6b:59:87:a5:7e:d9:2f:b7:27:9e:fc:fc:fd:4a:48:33: af:b0:31:62:72:cc:78:d1:fd:25:d8:31:23:b3:83:ba:f0:c1: f7:ee:53:54:fa:eb:74:e8:bc:b8:e9:6f:7a:a7:c6:90:53:ef: 17:9e:81:a7:84:4b:04:5c:be:85:42:4f:19:75:9e:00:fd:f7: 9c:c4:bc:6f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDK4oFMQhfDxe1Il0fEMwh1jfunswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMTA2MDAwMDAwWhcNMjUwMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZDhjNjkzZDc0MWRmZWQzNDFhNmEyYTRlYjYzNGRkZjk3 ZDA4NzcyMjhhZDViMGYxY2JkNWMxNWU3MTUzYjk3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD2+LEJI4radzdpO53RC4RwKQgtrqXtlHIYIJoQi65enzqq gs3aaKAjMnAQxZZlu4n/1EHWHGR4Kg5Mw6pkTIwV6Z5t3ZVFdLB7id64GyrpCEUC jNxQxiJvS7xgpZS1qLxwb4IYGMXRUSGGaOAXHj9X4XtHZh1e5e5MVdCfb24GZm2L 2VmthA6vwNY5uAVUZ/latUhMaM1SLF5AQoYcIjDN3FZfIU3XXO7iu4uLJw2dpAjt ODevhkg5jVlYSjkN3YCdiHsRihIbbTQSBvcUTa4ySNUgeaNxePFT11MMwAWAo8x7 XiXbimrQDbrqhyvD9s2V+BZuLK97hvZm80MOeOwBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUhEZ/NTN161xUrJRzC+ZoiY0IL4EwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBiMGFjZGVmLWM4NDgtNDQ3Yy05NjI0LTZhNDYzNDQ2NGFhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76AAwDQYJKoZIhvcNAQELBQADggEBAIss1HuX5Ven58hIuZlCJN2Y T63bAZy9jLEy9NmMiYyLxvKOBgcB23t/VKhKaIW3siLYFBFx/IFyxXsup7/EI1Xa dUn1oI+8ELJNzBZOAOCZl0Db2sgmbFG69pvVmQx47NPbKPpZ0IXlDL252DQ7FzRj sLNgTEToHhDZ6RTbXnrv65iRujAdCNtPcVvptnfqg0l7/MFRnLeyZEFXMwYyouKR xCntRN65FTpiUnvb+4+8WVW/ICxJa1mHpX7ZL7cnnvz8/UpIM6+wMWJyzHjR/SXY MSOzg7rwwffuU1T663TovLjpb3qnxpBT7xeegaeESwRcvoVCTxl1ngD995zEvG8= -----END CERTIFICATE-----Generated at Wed Feb 5 09:48:07 2025 by rpki-client