$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ceacf551-02ee-4f40-8abd-053509a65c13.roa File: ceacf551-02ee-4f40-8abd-053509a65c13.roa (raw, json) Hash identifier: zvUcxGo7rqcWT/Z4949f5/L89kQ0D0YfARKZih60UXk= Subject key identifier: D8:73:19:08:26:96:45:6E:82:D6:4E:82:C3:BC:07:76:A9:2F:E2:B1 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0DBA38F5EDEF27624B1FF72286F25915AF3F7372 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ceacf551-02ee-4f40-8abd-053509a65c13.roa Signing time: Mon 06 Jan 2025 00:00:00 +0000 ROA not before: Mon 06 Jan 2025 00:00:00 +0000 ROA not after: Mon 10 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:ea00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:ba:38:f5:ed:ef:27:62:4b:1f:f7:22:86:f2:59:15:af:3f:73:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jan 6 00:00:00 2025 GMT Not After : Feb 10 23:59:59 2025 GMT Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:43:87:d7:3e:9f:f3:87:a4:90:83:dd:d1:a0: 73:3c:5b:df:b2:1d:44:65:58:26:f6:35:e2:93:3c: f0:eb:90:b8:ce:0b:49:9b:92:07:a5:12:c8:4f:ed: b0:1a:cc:94:34:e1:d0:a8:71:32:c2:af:20:f6:16: 78:36:76:29:b3:66:4f:ca:b6:13:ab:db:23:e2:0f: c5:bf:d5:d6:a0:76:34:28:3e:78:91:91:f5:ad:d2: 5d:6d:f9:f2:e4:fd:ec:6d:bb:b6:f2:4c:39:94:17: 37:4e:a1:3a:e8:d7:25:79:03:43:2d:b6:5d:79:1e: e3:42:4c:6e:7f:e5:83:0a:0e:90:74:50:12:ac:7e: 6d:ba:d8:e2:71:2c:d4:40:ec:a1:c7:7c:56:94:79: c9:90:40:b9:6a:46:e9:35:e8:3d:c1:09:76:7f:8f: d3:c8:23:63:8a:3c:d3:e7:83:b2:52:13:35:a6:bd: 53:6d:80:39:4e:65:ef:cc:56:28:fb:39:b2:84:30: 5e:6a:5c:6e:d2:4d:48:07:3b:c0:74:a7:70:20:5d: a1:4d:06:2e:4e:ca:50:00:52:98:d5:37:4a:89:15: c0:ff:f0:49:32:fb:c7:f0:97:92:76:f8:4d:71:a2: f4:33:06:43:a6:36:bd:f6:37:7e:40:7f:05:0f:32: 83:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:73:19:08:26:96:45:6E:82:D6:4E:82:C3:BC:07:76:A9:2F:E2:B1 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ceacf551-02ee-4f40-8abd-053509a65c13.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ea00::/42 Signature Algorithm: sha256WithRSAEncryption 25:71:06:97:ef:99:7c:25:67:c7:92:34:6e:cf:63:c8:6e:34: 3f:a1:42:1f:1f:ac:80:aa:c5:2c:a0:ea:44:b9:49:c7:97:98: 6c:8c:6d:ef:82:f5:62:55:3c:05:ff:32:75:ac:03:7a:4c:aa: b2:35:d8:cc:5f:d2:17:89:e3:df:2c:9b:26:00:8f:43:52:8f: 67:72:f1:f6:11:f3:0f:2b:8f:c3:74:f8:d4:62:85:eb:c1:eb: cb:5b:fd:31:9f:56:83:c0:d6:2d:c7:07:25:e9:23:74:0e:25: 1e:4f:56:59:18:41:2f:d1:a3:fa:66:6b:e3:60:8f:ec:92:34: 12:13:4e:0e:1c:12:17:07:46:58:b0:e8:53:2f:7e:0f:68:1a: 43:1c:d9:3f:e7:07:2e:bc:02:80:62:78:2d:0e:2f:fc:bc:72: 1d:e7:5b:8e:1d:70:5f:c9:13:29:28:03:ac:83:af:ef:aa:23: 21:2c:2e:f2:98:10:f4:24:ed:1c:1b:36:38:07:9c:6b:b8:f1: 57:f2:eb:15:34:24:a6:4b:da:1b:33:35:8e:db:39:44:a8:e3: ef:14:c7:23:b7:98:21:26:59:46:60:37:7f:0d:9b:f5:fe:91: a5:18:81:c3:dc:10:be:8a:00:b5:2c:9f:c1:77:5b:ab:63:a7: b3:f8:0c:7a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDbo49e3vJ2JLH/cihvJZFa8/c3IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMTA2MDAwMDAwWhcNMjUwMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYjBmMWIyYTZmYTc5YmZhNjNjOGVhMGFlZWFiYzI2Y2Rh YWZjYWViZjhhM2RmMmY2OTE1ODIxY2NlMjczMTk0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtQ4fXPp/zh6SQg93RoHM8W9+yHURlWCb2NeKTPPDrkLjO C0mbkgelEshP7bAazJQ04dCocTLCryD2Fng2dimzZk/KthOr2yPiD8W/1dagdjQo PniRkfWt0l1t+fLk/extu7byTDmUFzdOoTro1yV5A0Mttl15HuNCTG5/5YMKDpB0 UBKsfm262OJxLNRA7KHHfFaUecmQQLlqRuk16D3BCXZ/j9PII2OKPNPng7JSEzWm vVNtgDlOZe/MVij7ObKEMF5qXG7STUgHO8B0p3AgXaFNBi5OylAAUpjVN0qJFcD/ 8Eky+8fwl5J2+E1xovQzBkOmNr32N35AfwUPMoPFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2HMZCCaWRW6C1k6Cw7wHdqkv4rEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NlYWNmNTUxLTAyZWUtNGY0MC04YWJkLTA1MzUwOWE2NWMxMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76gAwDQYJKoZIhvcNAQELBQADggEBACVxBpfvmXwlZ8eSNG7PY8hu ND+hQh8frICqxSyg6kS5SceXmGyMbe+C9WJVPAX/MnWsA3pMqrI12Mxf0heJ498s myYAj0NSj2dy8fYR8w8rj8N0+NRihevB68tb/TGfVoPA1i3HByXpI3QOJR5PVlkY QS/Ro/pma+Ngj+ySNBITTg4cEhcHRliw6FMvfg9oGkMc2T/nBy68AoBieC0OL/y8 ch3nW44dcF/JEykoA6yDr++qIyEsLvKYEPQk7RwbNjgHnGu48Vfy6xU0JKZL2hsz NY7bOUSo4+8UxyO3mCEmWUZgN38Nm/X+kaUYgcPcEL6KALUsn8F3W6tjp7P4DHo= -----END CERTIFICATE-----Generated at Wed Feb 5 09:42:05 2025 by rpki-client