$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa File: c1547439-2593-48d5-aaf8-70d69e1a8163.roa (raw, json) Hash identifier: ZhL4Rx39ip6qSlv5QkY8RXY28pZD90N9Mj30NSJwEVk= Subject key identifier: B9:23:99:EB:3B:94:80:46:56:7C:9C:65:78:33:D4:38:70:ED:81:66 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 486BF207BFC207B1C947DCAF7F36D5A21D1D3D6F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa Signing time: Tue 28 Jan 2025 00:00:00 +0000 ROA not before: Tue 28 Jan 2025 00:00:00 +0000 ROA not after: Tue 04 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:6b:f2:07:bf:c2:07:b1:c9:47:dc:af:7f:36:d5:a2:1d:1d:3d:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jan 28 00:00:00 2025 GMT Not After : Mar 4 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:71:af:b4:d1:cf:9b:4f:57:f2:3a:b9:ae:a5: 33:09:36:d4:b0:55:c8:ec:31:ce:c9:13:9e:7e:1f: 4c:89:49:13:8d:2b:b6:c5:cf:14:27:81:ff:5e:fb: 89:4e:3d:32:61:07:af:6c:50:92:40:9d:37:f3:b0: 8a:cd:c3:13:86:ae:2a:b9:c7:97:bc:be:05:be:b6: d4:49:88:0a:ff:f3:88:ad:65:f6:ac:72:f5:20:da: 18:11:89:43:ed:6b:91:37:97:57:53:27:76:cd:d3: 52:0b:4f:0f:be:ae:50:b7:97:88:10:bb:47:86:40: 74:6c:ca:db:be:93:9f:43:b3:d0:c9:ea:d5:6a:9f: 31:ca:fb:c2:9f:35:f0:66:ec:c1:5d:1f:54:e0:9c: d5:6e:5d:63:49:c8:6c:0e:2b:9a:80:47:26:9f:4f: cb:06:80:c6:32:71:f9:92:c1:22:f2:3d:82:bb:05: ad:a2:04:09:9b:27:af:c7:b1:50:61:1b:9d:6b:8b: a3:c4:fa:3e:38:9d:03:b9:6b:68:a1:f4:93:23:ac: 32:15:87:46:0f:cf:93:e0:73:18:42:bb:69:ed:3b: f8:52:71:35:05:5f:f3:91:9c:63:c8:40:da:48:5c: f5:84:4a:6e:83:80:7b:17:57:3f:a4:2b:56:43:0e: bb:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:23:99:EB:3B:94:80:46:56:7C:9C:65:78:33:D4:38:70:ED:81:66 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:11::/48 Signature Algorithm: sha256WithRSAEncryption 18:74:97:a4:5d:64:4f:b0:fd:ce:1c:ad:83:2c:71:9e:d5:ec: fa:4a:d3:4a:7d:99:37:ea:06:91:ca:ef:90:57:9e:81:2c:e4: 57:0a:63:ff:39:09:82:eb:50:ea:16:1a:c8:a1:a2:18:c0:c9: ca:68:58:51:db:b9:38:11:c8:e5:7a:c0:4d:4b:54:a1:10:a0: 5c:da:58:be:4e:5e:1a:b3:ce:1a:25:06:97:8e:db:18:0a:40: 20:4b:00:ff:bd:52:97:26:32:c6:9c:06:0f:2d:8a:16:32:a7: 3e:e6:56:a2:99:dd:d8:0c:15:07:c8:58:27:a4:57:36:3b:82: d3:f4:6d:1f:dc:ea:60:4b:f6:06:f3:7e:0d:fd:a5:dd:55:f2: 79:47:25:f7:e9:1a:6a:30:d8:46:6d:3d:f2:35:9a:f9:23:6d: ce:12:d7:e2:f5:dc:0c:9c:9c:0d:71:a0:27:bf:05:b3:93:b5: 72:68:e7:ee:d4:ab:61:8d:c5:9d:79:c4:f0:f8:2e:c6:9e:d3: a6:e0:31:4c:24:60:73:20:95:ca:b5:b5:e5:05:3a:3d:ae:b0: 1d:f5:70:13:a0:02:d8:93:f0:f7:30:a6:51:66:a6:af:09:c8: 0f:64:be:ca:85:02:7c:96:57:b8:e1:8e:95:56:c2:6d:93:3d: 9b:bb:79:99 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSGvyB7/CB7HJR9yvfzbVoh0dPW8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMTI4MDAwMDAwWhcNMjUwMzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3OWJiYjRkZDZhMjA5ODgwYTg0YjdmZmY4MjdhNGM5YTk5 OTc5NmE4YjBjYzFjZjI0ZTgxMjIwNGUyZTQzOTUyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcca+00c+bT1fyOrmupTMJNtSwVcjsMc7JE55+H0yJSRON K7bFzxQngf9e+4lOPTJhB69sUJJAnTfzsIrNwxOGriq5x5e8vgW+ttRJiAr/84it ZfascvUg2hgRiUPta5E3l1dTJ3bN01ILTw++rlC3l4gQu0eGQHRsytu+k59Ds9DJ 6tVqnzHK+8KfNfBm7MFdH1TgnNVuXWNJyGwOK5qARyafT8sGgMYycfmSwSLyPYK7 Ba2iBAmbJ6/HsVBhG51ri6PE+j44nQO5a2ih9JMjrDIVh0YPz5PgcxhCu2ntO/hS cTUFX/ORnGPIQNpIXPWESm6DgHsXVz+kK1ZDDruJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUuSOZ6zuUgEZWfJxleDPUOHDtgWYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2MxNTQ3NDM5LTI1OTMtNDhkNS1hYWY4LTcwZDY5ZTFhODE2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwABEwDQYJKoZIhvcNAQELBQADggEBABh0l6RdZE+w/c4crYMscZ7V 7PpK00p9mTfqBpHK75BXnoEs5FcKY/85CYLrUOoWGsihohjAycpoWFHbuTgRyOV6 wE1LVKEQoFzaWL5OXhqzzholBpeO2xgKQCBLAP+9UpcmMsacBg8tihYypz7mVqKZ 3dgMFQfIWCekVzY7gtP0bR/c6mBL9gbzfg39pd1V8nlHJffpGmow2EZtPfI1mvkj bc4S1+L13AycnA1xoCe/BbOTtXJo5+7Uq2GNxZ15xPD4Lsae06bgMUwkYHMglcq1 teUFOj2usB31cBOgAtiT8PcwplFmpq8JyA9kvsqFAnyWV7jhjpVWwm2TPZu7eZk= -----END CERTIFICATE-----Generated at Wed Feb 5 09:50:36 2025 by rpki-client