$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/64dce371-37b2-4fab-9d85-05ea7f2c1aab.roa File: 64dce371-37b2-4fab-9d85-05ea7f2c1aab.roa (raw, json) Hash identifier: 8cWszJs70MoUCQ0KfWPX8UjIkQYLqcmZdF904GIIOuU= Subject key identifier: C9:85:14:8D:1A:86:F2:4C:D7:95:FC:E5:83:2D:60:42:9A:2D:FB:58 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 77F542175A23FD803B82C98D518CEA2FA85AD250 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/64dce371-37b2-4fab-9d85-05ea7f2c1aab.roa Signing time: Mon 06 Jan 2025 00:00:00 +0000 ROA not before: Mon 06 Jan 2025 00:00:00 +0000 ROA not after: Mon 10 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e300::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:f5:42:17:5a:23:fd:80:3b:82:c9:8d:51:8c:ea:2f:a8:5a:d2:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jan 6 00:00:00 2025 GMT Not After : Feb 10 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a4:ba:2b:2b:c5:ca:5a:1c:18:0a:ed:06:2f: 39:c4:ad:9d:97:5f:1c:44:46:aa:1d:8a:c5:b0:04: 68:83:e0:e2:66:e4:2a:ac:72:76:e8:c7:65:fe:32: 58:fe:00:0a:aa:69:97:be:04:a0:a9:e6:1b:a7:19: af:22:d0:1b:10:5f:b3:cc:4b:e0:d5:07:b4:63:d1: ba:da:61:a4:9d:20:74:12:05:ed:33:ac:d8:d5:3a: f9:4f:87:41:38:d8:23:6f:fb:28:f3:45:45:1d:ef: 1c:71:17:34:67:84:2d:47:20:af:b5:7d:eb:b2:64: cd:7b:e4:b5:af:97:9b:be:1a:14:0f:30:3d:63:57: f9:d6:1b:96:f9:54:b8:49:e5:4e:22:01:b6:c2:29: 76:1a:ba:66:7a:13:a0:33:05:e5:d0:d3:e9:77:8f: 2a:1c:57:53:b7:64:a0:ef:2e:76:f3:de:01:5e:4d: 18:f6:32:e5:b8:78:20:93:71:57:ad:97:26:f1:ff: 82:3e:7d:f4:27:80:76:a6:66:dd:7c:cd:86:45:0c: ce:7e:8b:9e:a0:a7:8e:a6:6b:b4:07:7a:83:8c:d3: 55:3b:7e:6a:50:0a:a1:81:a2:3a:2d:45:e6:03:46: 26:78:72:bc:a6:96:76:cb:f5:01:e7:bb:2f:cc:0c: 3f:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:85:14:8D:1A:86:F2:4C:D7:95:FC:E5:83:2D:60:42:9A:2D:FB:58 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/64dce371-37b2-4fab-9d85-05ea7f2c1aab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e300::/42 Signature Algorithm: sha256WithRSAEncryption 86:73:b4:89:da:90:21:9c:b0:47:6a:03:b1:5a:6a:1a:60:9e: c7:64:5d:8b:8a:0c:f5:73:a6:2c:4f:b3:a6:21:79:4c:e1:b2: 3c:a4:60:62:ba:9e:bb:83:63:ed:63:13:7e:70:ec:8e:77:dc: 98:87:10:34:e3:24:dd:98:97:3e:df:76:31:e3:cf:7d:87:f9: f5:0a:77:48:99:07:f9:31:15:e2:77:97:c4:23:64:ff:78:61: 4b:4d:30:45:7b:97:0f:a2:96:d0:f0:78:25:71:12:4d:25:73: 69:41:ef:08:c3:76:3c:75:09:97:3c:55:ea:6e:b4:2f:6e:b8: 52:b4:3a:74:cb:d3:44:ed:7d:de:5c:77:f4:6c:6f:94:f4:00: 35:54:18:40:98:df:4e:6e:d7:5f:b3:af:76:a5:d2:9c:db:95: fd:71:f1:c6:6e:7a:05:71:bc:f6:9f:ee:a1:52:8d:4b:e7:f7: 3a:cc:8c:f2:48:06:9e:ae:59:d8:d5:1b:db:9b:96:d2:f7:04: 5e:60:91:9f:ac:d0:98:bb:1c:de:4f:f7:3a:c1:84:38:21:d5: ed:c8:9d:1c:5d:1c:f8:ef:a3:e0:28:d4:e7:cc:57:39:24:2c: 05:e0:dc:39:ee:de:14:65:8a:95:32:88:78:03:8b:0a:8e:c6: 78:69:ab:87 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUd/VCF1oj/YA7gsmNUYzqL6ha0lAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMTA2MDAwMDAwWhcNMjUwMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNjQxYjhjZDBlNWY3N2MwYTA0ODdjOWUxMjI3MDY4YTlk YTdjZWZjMTVlMGVmZmJiY2E3MzRmZTgyYjMzYjU1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClpLorK8XKWhwYCu0GLznErZ2XXxxERqodisWwBGiD4OJm 5Cqscnbox2X+Mlj+AAqqaZe+BKCp5hunGa8i0BsQX7PMS+DVB7Rj0braYaSdIHQS Be0zrNjVOvlPh0E42CNv+yjzRUUd7xxxFzRnhC1HIK+1feuyZM175LWvl5u+GhQP MD1jV/nWG5b5VLhJ5U4iAbbCKXYaumZ6E6AzBeXQ0+l3jyocV1O3ZKDvLnbz3gFe TRj2MuW4eCCTcVetlybx/4I+ffQngHamZt18zYZFDM5+i56gp46ma7QHeoOM01U7 fmpQCqGBojotReYDRiZ4crymlnbL9QHnuy/MDD9NAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUyYUUjRqG8kzXlfzlgy1gQpot+1gwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzY0ZGNlMzcxLTM3YjItNGZhYi05ZDg1LTA1ZWE3ZjJjMWFhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD74wAwDQYJKoZIhvcNAQELBQADggEBAIZztInakCGcsEdqA7Faahpg nsdkXYuKDPVzpixPs6YheUzhsjykYGK6nruDY+1jE35w7I533JiHEDTjJN2Ylz7f djHjz32H+fUKd0iZB/kxFeJ3l8QjZP94YUtNMEV7lw+iltDweCVxEk0lc2lB7wjD djx1CZc8VeputC9uuFK0OnTL00Ttfd5cd/Rsb5T0ADVUGECY305u11+zr3al0pzb lf1x8cZuegVxvPaf7qFSjUvn9zrMjPJIBp6uWdjVG9ubltL3BF5gkZ+s0Ji7HN5P 9zrBhDgh1e3InRxdHPjvo+Ao1OfMVzkkLAXg3Dnu3hRlipUyiHgDiwqOxnhpq4c= -----END CERTIFICATE-----Generated at Wed Feb 5 10:00:17 2025 by rpki-client