$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7c0c4811-7db0-4cc0-8fa1-6dbda4055b97.roa File: 7c0c4811-7db0-4cc0-8fa1-6dbda4055b97.roa (raw, json) Hash identifier: d4Tldj0RfztG2+rvMKSHQHA/ZPjv0GWp+jkoJL3Foiw= Subject key identifier: EA:8E:9D:13:E9:8B:57:AF:7F:74:46:E8:66:57:90:23:76:49:75:5C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7884B9A3A3F41F6B019E7F467219A59D7F1D3DDD Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7c0c4811-7db0-4cc0-8fa1-6dbda4055b97.roa Signing time: Mon 06 Jan 2025 00:00:00 +0000 ROA not before: Mon 06 Jan 2025 00:00:00 +0000 ROA not after: Mon 10 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:eb00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:84:b9:a3:a3:f4:1f:6b:01:9e:7f:46:72:19:a5:9d:7f:1d:3d:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jan 6 00:00:00 2025 GMT Not After : Feb 10 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ba:2c:30:54:d5:14:81:12:b9:dd:46:3f:5f: c4:46:c4:30:06:90:4a:10:0a:90:25:d1:4e:52:a8: d8:ad:39:6a:38:6e:04:9b:30:63:b7:c0:a0:88:40: 97:76:be:4a:03:70:91:7d:de:3b:96:b9:4f:03:a0: 5c:ff:45:a7:fc:3d:e9:0a:d9:2d:16:f2:83:14:04: 14:b5:88:0f:db:70:87:4c:c0:d3:03:2a:97:ef:2a: b3:b9:f4:bb:4a:dc:88:fa:a4:53:70:dc:70:88:39: 1f:5d:52:be:a9:99:58:a1:0d:bb:ec:64:f7:7b:8c: 72:fa:5f:c0:63:65:c2:67:32:0f:a0:ff:e6:ed:ff: f3:00:5b:1e:de:be:6a:17:18:54:fb:c8:85:58:b1: 01:06:c3:cb:53:a2:89:09:f0:f6:75:38:23:a1:a7: bc:25:77:7b:d7:07:5b:33:48:43:50:30:d3:52:63: ad:c6:8e:9d:de:6e:1c:57:1e:e0:07:35:0f:a0:4c: da:41:7f:01:85:8e:f7:42:e2:dd:07:3c:3c:42:c6: 40:77:f0:7f:46:62:ce:33:0c:19:9f:b7:93:8c:4e: 26:af:af:7c:53:b5:e7:29:51:22:c8:d0:d0:18:10: 6f:75:e1:71:32:9e:11:1f:58:71:62:30:16:2d:71: 4d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:8E:9D:13:E9:8B:57:AF:7F:74:46:E8:66:57:90:23:76:49:75:5C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7c0c4811-7db0-4cc0-8fa1-6dbda4055b97.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:eb00::/40 Signature Algorithm: sha256WithRSAEncryption 51:6e:7f:73:b5:ed:d8:de:55:a7:24:5a:51:f9:7b:d2:04:7c: 73:7c:fa:d2:46:21:c0:c9:93:8f:46:14:23:dd:a4:d3:3f:a6: 3e:8b:84:81:45:4a:91:2c:a5:0b:c6:d4:33:44:d7:c8:bb:83: 81:7f:42:c0:d5:52:fd:9e:29:8c:fe:b5:27:88:54:fc:74:9f: f7:96:40:b8:e8:e9:57:bf:8a:14:54:77:c1:0b:dd:6c:a6:a1: 1b:01:26:25:7f:d7:2f:c1:15:c4:1b:fc:3d:77:0c:90:fb:56: dd:60:2f:d3:b6:47:e7:b6:76:85:c0:15:b2:e1:86:2f:5e:af: 1c:ca:8f:c4:3a:c1:21:dd:cd:41:5b:5a:bc:c6:e0:2b:b6:5b: 8b:eb:e1:ee:bb:ee:fd:86:61:4e:8e:83:c1:31:1e:a2:02:f5: ad:62:26:a3:5f:78:ff:8f:31:d8:b5:3e:e1:07:7d:9a:6f:a9: 61:45:1a:90:10:93:6a:a5:51:b5:bc:55:05:1c:93:f4:b2:7f: 58:eb:5e:6f:af:b6:7d:77:98:87:b7:d0:b9:56:d3:c6:de:5d: d3:13:f2:54:1d:74:50:f4:15:4d:45:f5:56:a1:e9:9b:76:3b: 91:10:d1:51:c1:92:f2:f7:bc:ef:bc:73:ed:41:60:2d:ec:ee: 90:df:e6:14 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUeIS5o6P0H2sBnn9GchmlnX8dPd0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMTA2MDAwMDAwWhcNMjUwMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZTZiYzNjNWYwMWRhMGI3NzljNzM5MDAzZTFkYmViZDU5 MGIwYmI2ZGQzMjU3YzVhZTg3N2Q1NjAzNGViNzY1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/uiwwVNUUgRK53UY/X8RGxDAGkEoQCpAl0U5SqNitOWo4 bgSbMGO3wKCIQJd2vkoDcJF93juWuU8DoFz/Raf8PekK2S0W8oMUBBS1iA/bcIdM wNMDKpfvKrO59LtK3Ij6pFNw3HCIOR9dUr6pmVihDbvsZPd7jHL6X8BjZcJnMg+g /+bt//MAWx7evmoXGFT7yIVYsQEGw8tTookJ8PZ1OCOhp7wld3vXB1szSENQMNNS Y63Gjp3ebhxXHuAHNQ+gTNpBfwGFjvdC4t0HPDxCxkB38H9GYs4zDBmft5OMTiav r3xTtecpUSLI0NAYEG914XEynhEfWHFiMBYtcU2VAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU6o6dE+mLV69/dEboZleQI3ZJdVwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzdjMGM0ODExLTdkYjAtNGNjMC04ZmExLTZkYmRhNDA1NWI5Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD76zANBgkqhkiG9w0BAQsFAAOCAQEAUW5/c7Xt2N5VpyRaUfl70gR8 c3z60kYhwMmTj0YUI92k0z+mPouEgUVKkSylC8bUM0TXyLuDgX9CwNVS/Z4pjP61 J4hU/HSf95ZAuOjpV7+KFFR3wQvdbKahGwEmJX/XL8EVxBv8PXcMkPtW3WAv07ZH 57Z2hcAVsuGGL16vHMqPxDrBId3NQVtavMbgK7Zbi+vh7rvu/YZhTo6DwTEeogL1 rWImo194/48x2LU+4Qd9mm+pYUUakBCTaqVRtbxVBRyT9LJ/WOteb6+2fXeYh7fQ uVbTxt5d0xPyVB10UPQVTUX1VqHpm3Y7kRDRUcGS8ve877xz7UFgLezukN/mFA== -----END CERTIFICATE-----Generated at Wed Feb 5 09:42:30 2025 by rpki-client