$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aad24a2e-f61b-42b4-9509-9e06a136eb0b.roa File: aad24a2e-f61b-42b4-9509-9e06a136eb0b.roa (raw, json) Hash identifier: By6tQ0PAH7IKqs/YUWpfYzB89JGyUzd1U/BOvhH6nQE= Subject key identifier: AE:EB:91:0E:D8:4C:2E:D2:16:2B:E6:64:72:E8:9C:F8:08:C3:93:3D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5BB80E0C9A4C9D35053390301C7CA4D4EFF404FD Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aad24a2e-f61b-42b4-9509-9e06a136eb0b.roa Signing time: Fri 24 Jan 2025 00:00:00 +0000 ROA not before: Fri 24 Jan 2025 00:00:00 +0000 ROA not after: Fri 28 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5502::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:b8:0e:0c:9a:4c:9d:35:05:33:90:30:1c:7c:a4:d4:ef:f4:04:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jan 24 00:00:00 2025 GMT Not After : Feb 28 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:8a:75:f4:ae:47:a2:5c:e1:c7:c4:0a:a3:b8: eb:ef:2a:6f:fa:2a:47:cf:6f:f2:ca:6b:9c:b0:74: c6:58:aa:60:5b:f5:3d:1e:79:80:33:e5:31:e3:6a: 20:9a:26:ac:a0:6b:0f:d1:8f:bd:0f:27:f4:a4:cd: b2:bb:82:eb:0a:81:88:57:e5:50:08:90:a8:4f:92: 1b:0b:8e:57:5f:a6:f4:fe:ef:84:c3:7d:6f:f6:dc: b7:b1:f9:a5:80:f3:2d:d2:c4:21:2e:fe:5b:55:eb: 67:19:39:53:c7:08:ff:7b:8e:56:3a:de:10:32:9c: 49:f9:9d:dc:48:63:f9:c7:a0:d1:f5:28:28:f5:d2: 21:be:d7:18:19:f5:9f:a5:35:49:11:d1:b4:e7:07: 0f:0e:91:e4:a1:cb:cb:c3:45:59:c5:3c:6d:50:9a: 5f:47:80:d4:a0:bf:0d:f5:52:22:71:6d:8c:46:15: 34:12:ea:18:ff:54:9e:7f:3f:f4:1d:39:b1:21:c6: fd:07:75:78:32:03:90:38:0f:b8:cd:2d:50:8e:87: 47:2e:81:47:9d:1d:c2:56:85:58:13:97:04:e5:79: 25:fe:ec:48:c0:c8:b9:1a:8d:bd:69:37:ee:60:10: 32:77:3a:8d:1f:48:e5:e9:8c:2f:95:cc:ee:c1:e7: e0:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:EB:91:0E:D8:4C:2E:D2:16:2B:E6:64:72:E8:9C:F8:08:C3:93:3D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aad24a2e-f61b-42b4-9509-9e06a136eb0b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5502::/48 Signature Algorithm: sha256WithRSAEncryption a2:95:d5:c3:2f:11:83:b6:a6:8f:fe:f7:2f:ac:5d:c2:ef:f5: f1:27:b5:32:21:da:d2:f9:a7:d6:39:0d:5d:62:d6:85:e2:90: e2:7b:1d:73:86:3c:e0:6a:3d:26:f3:32:f2:59:95:b7:4c:cb: 38:7c:4a:77:58:5e:2b:23:27:84:36:32:06:be:a0:85:8f:d2: 99:3a:03:f5:28:5b:d8:16:37:ff:27:b5:0a:fe:62:b0:1a:19: 09:8d:94:23:d8:11:98:af:b3:a3:05:08:c6:79:6e:91:56:ad: ea:a5:d3:39:c6:6e:6d:63:82:09:cf:81:bc:9d:fc:35:3d:e9: 01:67:25:cd:09:7a:0e:8c:9d:bc:8c:33:d4:56:c8:6d:2d:31: 65:aa:4a:95:e5:11:d6:fb:4c:aa:5c:8b:b7:02:36:a2:a5:e5: 85:74:4c:b2:fd:69:3d:67:2b:86:27:12:73:d3:7d:56:3a:03: 8f:45:d3:a2:35:8f:0f:60:8a:0b:1d:a9:90:a1:25:d0:24:86: 6d:6d:65:17:cc:3f:7c:d0:c8:a4:53:ba:47:c6:7c:0d:63:da: 28:36:e0:39:f3:00:cc:62:91:6e:95:b6:c8:1a:cd:3f:d2:00: 2f:35:a0:fb:56:79:de:ca:7e:4f:39:e2:20:32:79:eb:06:bd: 90:c0:ad:a9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUW7gODJpMnTUFM5AwHHyk1O/0BP0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMTI0MDAwMDAwWhcNMjUwMjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZGIwNDg3MGNiNDA0ODQzMGQ2MmIxMTI4Nzc3YWYxYmE2 YThkYTdjNTMwMjJmZDliMjcyMWJiMWJhMTllOWIwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNinX0rkeiXOHHxAqjuOvvKm/6KkfPb/LKa5ywdMZYqmBb 9T0eeYAz5THjaiCaJqygaw/Rj70PJ/SkzbK7gusKgYhX5VAIkKhPkhsLjldfpvT+ 74TDfW/23Lex+aWA8y3SxCEu/ltV62cZOVPHCP97jlY63hAynEn5ndxIY/nHoNH1 KCj10iG+1xgZ9Z+lNUkR0bTnBw8OkeShy8vDRVnFPG1Qml9HgNSgvw31UiJxbYxG FTQS6hj/VJ5/P/QdObEhxv0HdXgyA5A4D7jNLVCOh0cugUedHcJWhVgTlwTleSX+ 7EjAyLkajb1pN+5gEDJ3Oo0fSOXpjC+VzO7B5+DXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUruuRDthMLtIWK+Zkcuic+AjDkz0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FhZDI0YTJlLWY2MWItNDJiNC05NTA5LTllMDZhMTM2ZWIwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQIwDQYJKoZIhvcNAQELBQADggEBAKKV1cMvEYO2po/+9y+sXcLv 9fEntTIh2tL5p9Y5DV1i1oXikOJ7HXOGPOBqPSbzMvJZlbdMyzh8SndYXisjJ4Q2 Mga+oIWP0pk6A/UoW9gWN/8ntQr+YrAaGQmNlCPYEZivs6MFCMZ5bpFWreql0znG bm1jggnPgbyd/DU96QFnJc0Jeg6MnbyMM9RWyG0tMWWqSpXlEdb7TKpci7cCNqKl 5YV0TLL9aT1nK4YnEnPTfVY6A49F06I1jw9gigsdqZChJdAkhm1tZRfMP3zQyKRT ukfGfA1j2ig24DnzAMxikW6VtsgazT/SAC81oPtWed7Kfk854iAyeesGvZDArak= -----END CERTIFICATE-----Generated at Sun Feb 16 15:12:29 2025 by rpki-client