$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5211bbfa-c26c-44f8-96b2-a9282cfd61a1.roa File: 5211bbfa-c26c-44f8-96b2-a9282cfd61a1.roa (raw, json) Hash identifier: ndCJd2hLAIUCfDEECmLXJyKMNTtUTdXwBarYnqYe3iI= Subject key identifier: E9:28:1D:5F:BA:63:3A:12:F8:99:E6:2D:3B:9C:A7:A2:E3:0E:7E:BB Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 701593B77CE108971CB6CE199F7C929737064F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5211bbfa-c26c-44f8-96b2-a9282cfd61a1.roa Signing time: Mon 06 Jan 2025 00:00:00 +0000 ROA not before: Mon 06 Jan 2025 00:00:00 +0000 ROA not after: Mon 10 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:15:93:b7:7c:e1:08:97:1c:b6:ce:19:9f:7c:92:97:37:06:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jan 6 00:00:00 2025 GMT Not After : Feb 10 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9e:ec:0a:e3:c6:7a:49:71:83:70:3e:c1:47: 95:d5:06:50:fb:ff:b1:3a:e2:fd:83:81:e4:a6:7c: ec:c5:35:fc:61:21:ff:f7:32:67:97:67:09:41:3c: 83:63:68:6e:08:1d:07:cf:0d:4f:5a:3a:02:28:81: cd:cc:5c:60:4a:ac:71:b0:59:a9:50:84:ea:95:b8: 1f:6b:e6:42:7a:09:3c:38:09:50:7e:36:fc:4b:db: b1:35:32:d0:44:70:26:27:8e:4d:04:43:b6:6a:62: af:61:d2:44:3e:8f:99:be:a4:62:57:51:80:f6:52: 32:fd:5e:f0:a5:3f:16:a5:3f:fc:b4:ee:f1:a4:03: 9c:f0:eb:0d:1e:9c:57:28:3b:3b:dd:fe:42:a5:ef: c7:d4:40:a9:ed:ec:34:22:b7:e5:82:d0:2c:6a:8b: b9:2d:74:af:56:e8:4e:17:b8:8b:ea:87:07:ed:4a: 33:28:b8:08:5d:29:fa:7a:9a:29:9a:e0:c3:0d:12: e3:90:09:4b:8b:82:03:9d:76:c2:68:34:cf:d2:3a: 62:df:48:fa:4a:16:5f:db:4a:41:1b:7b:fe:2a:d2: bd:24:6c:db:65:46:4e:10:02:11:21:ae:a9:c8:5c: 2e:79:4b:ea:ba:7a:85:69:46:cb:13:7f:24:cb:30: e1:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:28:1D:5F:BA:63:3A:12:F8:99:E6:2D:3B:9C:A7:A2:E3:0E:7E:BB X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5211bbfa-c26c-44f8-96b2-a9282cfd61a1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e100::/40 Signature Algorithm: sha256WithRSAEncryption 6d:58:55:a9:28:41:87:aa:2d:20:61:b6:80:0c:e2:8e:05:a3: af:1f:97:32:14:af:cb:32:31:dd:0a:de:c5:f9:4c:1b:5b:c1: 52:c8:21:c5:99:2b:a8:a0:82:0d:45:74:74:29:78:a1:94:2d: 96:ef:e7:8d:bb:0b:9f:2b:9c:9d:f6:af:df:a2:36:a8:aa:00: 68:78:f9:df:e1:09:d2:2b:8c:1a:37:9c:59:cd:70:ff:3c:f7: 5a:de:c3:46:09:b6:91:b3:ad:c0:30:fe:e0:c6:c7:b5:7f:04: bd:09:3d:ae:4b:a0:3d:94:73:9a:65:09:ba:29:50:c4:c2:3b: 2a:83:e0:59:35:56:33:66:8b:43:1b:5a:e9:e5:ac:b0:29:0a: 21:48:c0:92:f7:1f:18:56:1d:9f:f4:a7:66:20:40:fa:c7:06: d1:81:41:3f:ce:86:7e:0c:7c:46:15:28:9c:99:0c:09:28:5a: df:9f:5a:62:de:26:79:7c:8f:f0:de:fd:20:45:c1:78:1e:92: 7a:c5:04:58:2d:36:0d:14:ea:74:cc:12:aa:d2:a8:54:6f:ea: 78:71:5b:0b:20:d3:04:da:6e:8f:ff:a1:37:10:1d:78:f9:7d: 1b:3e:dd:2a:fe:18:41:18:39:16:47:91:c8:88:01:63:d2:0c: 61:ef:7a:9f -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgITcBWTt3zhCJccts4Zn3ySlzcGTzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJiNTg0NWMzMDdkMGJmNjFiMTM0YjhhYjcxMTU0NTgyNmIx NzA3ZmQ1ZjBhZjg0ZGEwODAeFw0yNTAxMDYwMDAwMDBaFw0yNTAyMTAyMzU5NTla MHoxSTBHBgNVBAUTQDE0MTU5NDAyMjRlOGNjZmZhNTQyMjkyMjIyMjEzZjRlZDkw YWQwZTYxYjhkMTNhMGEzNTExY2NlZTRhMDBmZDgxLTArBgNVBAMTJGZiYjI3NTc2 LWNhYzItNDM4MS05YTUzLTZjMTVlMGRjMjZmZjCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMue7ArjxnpJcYNwPsFHldUGUPv/sTri/YOB5KZ87MU1/GEh //cyZ5dnCUE8g2NobggdB88NT1o6AiiBzcxcYEqscbBZqVCE6pW4H2vmQnoJPDgJ UH42/EvbsTUy0ERwJieOTQRDtmpir2HSRD6Pmb6kYldRgPZSMv1e8KU/FqU//LTu 8aQDnPDrDR6cVyg7O93+QqXvx9RAqe3sNCK35YLQLGqLuS10r1boThe4i+qHB+1K Myi4CF0p+nqaKZrgww0S45AJS4uCA512wmg0z9I6Yt9I+koWX9tKQRt7/irSvSRs 22VGThACESGuqchcLnlL6rp6hWlGyxN/JMsw4fkCAwEAAaOCArMwggKvMB0GA1Ud DgQWBBTpKB1fumM6EviZ5i07nKei4w5+uzAfBgNVHSMEGDAWgBQuGOIIoYJXGwl9 0iOnFp5A6+mJPTAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv NTIxZWIzM2YtOTY3Mi00Y2Q5LWFjY2UtMTM3MjI3ZTk3MWFjLzZhOTUzN2E4LWE2 ODUtNGI0OC05ZmE4LTgzNjJlNGZjNDdhZS9iNTg0NWMzMDdkMGJmNjFiMTM0Yjhh YjcxMTU0NTgyNmIxNzA3ZmQ1ZjBhZjg0ZGEwOC5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS81MTdmM2VkNy01OGI1LTQ3OTYtYmUzNy0xNGQ2 MmU0OGYwNTYvNTIxMWJiZmEtYzI2Yy00NGY4LTk2YjItYTkyODJjZmQ2MWExLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzct MTRkNjJlNDhmMDU2L0NfWWJFMHVLdHhGVVdDYXhjSF9WOEstRTJnZy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIw CAMGACYA8PvhMA0GCSqGSIb3DQEBCwUAA4IBAQBtWFWpKEGHqi0gYbaADOKOBaOv H5cyFK/LMjHdCt7F+UwbW8FSyCHFmSuooIINRXR0KXihlC2W7+eNuwufK5yd9q/f ojaoqgBoePnf4QnSK4waN5xZzXD/PPda3sNGCbaRs63AMP7gxse1fwS9CT2uS6A9 lHOaZQm6KVDEwjsqg+BZNVYzZotDG1rp5aywKQohSMCS9x8YVh2f9KdmIED6xwbR gUE/zoZ+DHxGFSicmQwJKFrfn1pi3iZ5fI/w3v0gRcF4HpJ6xQRYLTYNFOp0zBKq 0qhUb+p4cVsLINME2m6P/6E3EB14+X0bPt0q/hhBGDkWR5HIiAFj0gxh73qf -----END CERTIFICATE-----Generated at Wed Feb 5 10:01:04 2025 by rpki-client