$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/87bafb0d-7cec-4331-8a09-4a4d56abf7d1.roa File: 87bafb0d-7cec-4331-8a09-4a4d56abf7d1.roa (raw, json) Hash identifier: cDCGHJB3tgkWk/uhuYLKRReFfgH5Voq3OPkuQWACvwI= Subject key identifier: B8:D0:92:CF:E9:F9:85:A4:1C:3A:DB:CD:49:A4:82:B1:4F:8E:A8:ED Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1E98541ED8879C48FDE97277153896A4FE55F85F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/87bafb0d-7cec-4331-8a09-4a4d56abf7d1.roa Signing time: Mon 06 Jan 2025 00:00:00 +0000 ROA not before: Mon 06 Jan 2025 00:00:00 +0000 ROA not after: Mon 10 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e500::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:98:54:1e:d8:87:9c:48:fd:e9:72:77:15:38:96:a4:fe:55:f8:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jan 6 00:00:00 2025 GMT Not After : Feb 10 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:32:81:5d:20:23:44:49:20:0c:2d:82:47:b9: 56:32:31:c9:2f:31:34:96:c0:5e:55:d9:59:61:34: b3:e1:c2:f6:d2:11:45:48:d1:7e:1b:88:fc:34:ab: 04:64:a7:47:0f:7f:5f:17:8e:db:f4:8b:9a:e2:5a: 29:31:3a:2e:5a:04:8b:e0:20:b9:8e:2e:0e:31:db: 67:97:ee:3b:82:3a:38:23:0a:16:e2:a1:52:79:b8: b0:46:b6:8a:c0:10:52:6d:5a:4d:c2:13:f0:c5:67: bd:2e:cf:63:8c:d3:41:f9:d8:45:a4:ef:72:55:be: df:34:f9:7e:a7:20:0b:61:81:1b:b2:46:c3:19:e2: 0a:c7:65:bc:9e:4d:1f:1d:a5:81:00:0b:4d:b9:4c: c2:7e:28:26:98:a3:54:a9:5d:de:08:8b:f2:f6:4e: db:0f:4d:70:1b:20:1b:be:bc:db:7c:93:b0:d3:84: ca:49:a5:fe:69:08:8a:31:ff:8c:bb:28:03:70:41: fa:d4:d8:a1:09:3f:fb:61:b7:a7:08:84:5e:c8:f4: bc:59:68:9e:0f:61:ed:c3:5f:39:80:4e:fc:ab:d3: 8a:8e:2e:14:62:81:1d:95:16:b0:e9:84:08:ca:92: 98:ad:d2:93:54:eb:6c:9f:b2:24:48:e4:c8:8e:86: 6a:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:D0:92:CF:E9:F9:85:A4:1C:3A:DB:CD:49:A4:82:B1:4F:8E:A8:ED X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/87bafb0d-7cec-4331-8a09-4a4d56abf7d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e500::/42 Signature Algorithm: sha256WithRSAEncryption 1d:53:e2:2c:de:53:49:e4:a6:97:fd:2d:67:c6:89:fc:c4:88: 2e:71:d4:64:58:0b:7a:78:2a:67:74:c6:3e:20:34:77:e3:49: 7a:8c:7d:3e:7d:ad:77:94:59:f8:61:d0:17:ec:66:e8:37:1d: ed:f7:31:c2:6f:66:f6:a6:e4:ca:cc:3d:57:a0:ce:2e:49:08: 5b:ff:24:89:15:7b:5e:47:ce:c7:a4:d2:9d:0d:ea:db:a4:0f: a5:bb:65:41:eb:d6:2c:8a:8d:f1:8d:aa:92:a8:22:77:e5:31: 98:86:2c:c6:5c:a7:2b:93:ae:d5:15:fd:8a:7c:25:dc:1a:3a: d9:a9:eb:23:81:aa:cf:15:0c:22:50:8a:7f:94:e4:b7:77:4f: 01:a7:4d:56:5d:89:2b:dd:d2:9b:2b:65:04:92:61:5e:7b:a1: 34:33:c3:01:d9:6a:a1:1a:a1:ab:a3:19:28:25:ad:03:21:f8: 12:97:ee:ea:25:c4:88:8b:c6:f1:03:35:de:78:51:4c:2b:8f: a3:af:af:f4:77:e9:7b:43:50:f6:9c:17:1e:28:e2:06:02:cb: d4:f7:2f:76:18:44:e4:44:7b:46:48:78:cf:e6:8d:25:8c:53: 3d:6c:4c:65:30:f8:9e:37:a4:7e:80:bc:c8:ee:9b:3d:18:fb: b0:38:94:15 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHphUHtiHnEj96XJ3FTiWpP5V+F8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMTA2MDAwMDAwWhcNMjUwMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMjc1OWY2YzkzMGNkNDZiMzRhMTU5MGM2ZmFjNTRhNDQz ZjQ3Y2RhZTk4ZWMwZTI4NWQwMDBjN2ZiODQwOTg4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvMoFdICNESSAMLYJHuVYyMckvMTSWwF5V2VlhNLPhwvbS EUVI0X4biPw0qwRkp0cPf18Xjtv0i5riWikxOi5aBIvgILmOLg4x22eX7juCOjgj ChbioVJ5uLBGtorAEFJtWk3CE/DFZ70uz2OM00H52EWk73JVvt80+X6nIAthgRuy RsMZ4grHZbyeTR8dpYEAC025TMJ+KCaYo1SpXd4Ii/L2TtsPTXAbIBu+vNt8k7DT hMpJpf5pCIox/4y7KANwQfrU2KEJP/tht6cIhF7I9LxZaJ4PYe3DXzmATvyr04qO LhRigR2VFrDphAjKkpit0pNU62yfsiRI5MiOhmoZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUuNCSz+n5haQcOtvNSaSCsU+OqO0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzg3YmFmYjBkLTdjZWMtNDMzMS04YTA5LTRhNGQ1NmFiZjdkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD75QAwDQYJKoZIhvcNAQELBQADggEBAB1T4izeU0nkppf9LWfGifzE iC5x1GRYC3p4Kmd0xj4gNHfjSXqMfT59rXeUWfhh0BfsZug3He33McJvZvam5MrM PVegzi5JCFv/JIkVe15Hzsek0p0N6tukD6W7ZUHr1iyKjfGNqpKoInflMZiGLMZc pyuTrtUV/Yp8JdwaOtmp6yOBqs8VDCJQin+U5Ld3TwGnTVZdiSvd0psrZQSSYV57 oTQzwwHZaqEaoaujGSglrQMh+BKX7uolxIiLxvEDNd54UUwrj6Ovr/R36XtDUPac Fx4o4gYCy9T3L3YYROREe0ZIeM/mjSWMUz1sTGUw+J43pH6AvMjumz0Y+7A4lBU= -----END CERTIFICATE-----Generated at Wed Feb 5 09:38:25 2025 by rpki-client