$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c92a8c24-62b8-4009-a51c-8908d7373850.roa File: c92a8c24-62b8-4009-a51c-8908d7373850.roa (raw, json) Hash identifier: 0S6ahXfHVRj34hNYiTA1XW/G8VDcVnayj+mSML5Dd9A= Subject key identifier: AA:76:EF:C6:51:6F:2E:2F:D2:63:62:72:C7:BB:DD:18:CB:EF:03:C0 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 41702A6BBAC12EA686A5870B09D762176C059D29 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c92a8c24-62b8-4009-a51c-8908d7373850.roa Signing time: Mon 06 Jan 2025 00:00:00 +0000 ROA not before: Mon 06 Jan 2025 00:00:00 +0000 ROA not after: Mon 10 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e100::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:70:2a:6b:ba:c1:2e:a6:86:a5:87:0b:09:d7:62:17:6c:05:9d:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jan 6 00:00:00 2025 GMT Not After : Feb 10 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:7c:5d:e7:2e:f8:33:1e:08:69:6e:40:0a:e4: 48:4c:9d:bf:b7:4d:68:18:05:2d:73:3d:1d:47:36: 1f:8b:fa:86:0d:88:e5:83:c1:41:05:5f:d3:c8:86: 94:46:54:a3:37:82:0c:ff:0e:ca:09:39:31:2c:8d: e2:c4:2e:9f:df:2e:f3:f3:f4:97:e4:d9:03:93:b4: c0:85:a5:39:07:5a:40:08:28:d3:07:61:e6:ca:3d: 32:1a:35:31:98:6d:ce:50:18:91:8c:5b:eb:f7:2e: fb:e9:61:c0:f2:5f:ba:ce:7a:9a:4e:41:95:e8:17: ef:8d:1f:78:26:54:df:3c:ed:8a:43:c6:fe:ce:83: 5c:10:2a:36:f1:47:55:4d:db:63:05:0f:39:96:27: a0:ef:1c:19:81:4d:4c:fe:b0:fd:45:b3:7f:04:7f: b3:be:f6:8a:db:36:db:d4:f8:b5:c2:0e:86:1d:33: 62:c1:94:cf:7a:1e:b8:c9:7a:21:85:4a:fb:51:04: 80:82:90:56:b5:2b:1e:81:ee:a3:1f:05:ad:fd:2c: 80:fc:c4:30:19:6b:f0:08:d6:84:df:d9:33:26:d3: d8:0f:4b:68:c5:17:61:e3:2f:32:f0:54:2a:c4:e4: e7:0a:f3:05:ae:f7:04:5c:8a:78:04:8d:10:98:75: 1f:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:76:EF:C6:51:6F:2E:2F:D2:63:62:72:C7:BB:DD:18:CB:EF:03:C0 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c92a8c24-62b8-4009-a51c-8908d7373850.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e100::/42 Signature Algorithm: sha256WithRSAEncryption 9e:6c:c4:13:76:86:49:1d:4a:79:bd:8c:5c:4a:d9:52:ae:bd: 1a:ea:50:ad:51:63:43:bc:77:44:59:e2:cf:0e:37:62:82:29: e2:f1:25:b7:fc:1b:25:f0:b6:70:db:d7:8c:fb:14:88:cd:2a: 10:1c:9d:39:59:46:f5:35:d2:da:a8:f1:d0:78:65:e0:a2:c0: c5:00:4b:2b:63:b3:9b:59:8a:6d:60:fa:58:0d:94:4d:45:ba: b1:52:67:a3:41:ea:31:ca:23:2a:40:42:0f:61:ea:4a:ed:5a: 3e:5a:5c:86:66:74:b4:7d:19:56:8f:47:a1:ef:8b:6a:7f:4d: 1f:15:ef:07:f2:7e:59:e7:60:ba:0f:5f:76:dd:58:d6:d4:33: 9e:89:bf:18:ed:5b:79:14:e3:f6:34:91:6b:a1:5e:96:2a:b4: 7e:49:cc:c0:88:9c:2b:17:77:40:89:e8:d4:da:49:5c:ba:ea: dc:77:75:df:71:9d:f4:5e:2f:58:78:46:36:93:da:e9:52:98: 41:f1:95:d3:ef:dd:14:55:61:26:84:e6:eb:88:ff:d4:b6:4e: 18:48:75:b6:53:0c:c1:a8:ce:c0:01:02:0d:00:88:a2:56:6d: b4:e9:7b:01:84:15:b4:2e:f1:6c:36:04:00:5d:2c:0d:ae:de: 73:33:fb:81 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQXAqa7rBLqaGpYcLCddiF2wFnSkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMTA2MDAwMDAwWhcNMjUwMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NzM5ZjMwZDhjNmE4OTVjZWJiM2E3ODg2MjA1MjZiMDEz OWI2ZDQyOTdjNThiZjViNzg1NmU3OTUyYmE4NzcxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdfF3nLvgzHghpbkAK5EhMnb+3TWgYBS1zPR1HNh+L+oYN iOWDwUEFX9PIhpRGVKM3ggz/DsoJOTEsjeLELp/fLvPz9Jfk2QOTtMCFpTkHWkAI KNMHYebKPTIaNTGYbc5QGJGMW+v3LvvpYcDyX7rOeppOQZXoF++NH3gmVN887YpD xv7Og1wQKjbxR1VN22MFDzmWJ6DvHBmBTUz+sP1Fs38Ef7O+9orbNtvU+LXCDoYd M2LBlM96HrjJeiGFSvtRBICCkFa1Kx6B7qMfBa39LID8xDAZa/AI1oTf2TMm09gP S2jFF2HjLzLwVCrE5OcK8wWu9wRcingEjRCYdR+dAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUqnbvxlFvLi/SY2Jyx7vdGMvvA8AwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M5MmE4YzI0LTYyYjgtNDAwOS1hNTFjLTg5MDhkNzM3Mzg1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD74QAwDQYJKoZIhvcNAQELBQADggEBAJ5sxBN2hkkdSnm9jFxK2VKu vRrqUK1RY0O8d0RZ4s8ON2KCKeLxJbf8GyXwtnDb14z7FIjNKhAcnTlZRvU10tqo 8dB4ZeCiwMUASytjs5tZim1g+lgNlE1FurFSZ6NB6jHKIypAQg9h6krtWj5aXIZm dLR9GVaPR6Hvi2p/TR8V7wfyflnnYLoPX3bdWNbUM56JvxjtW3kU4/Y0kWuhXpYq tH5JzMCInCsXd0CJ6NTaSVy66tx3dd9xnfReL1h4RjaT2ulSmEHxldPv3RRVYSaE 5uuI/9S2ThhIdbZTDMGozsABAg0AiKJWbbTpewGEFbQu8Ww2BABdLA2u3nMz+4E= -----END CERTIFICATE-----Generated at Wed Feb 5 09:48:12 2025 by rpki-client