$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2b35ab1a-8001-404a-9285-196aa943aa95.roa File: 2b35ab1a-8001-404a-9285-196aa943aa95.roa (raw, json) Hash identifier: TytIxSuPXN63tSf+nDmXwF2VXvrud4g3EhTOJombKl0= Subject key identifier: 7F:7D:FF:32:BA:7E:E3:18:CF:95:5D:56:9C:CA:47:85:99:F0:4F:AA Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 4AF0FAFA071127220EFCF80793C4CA3B191B08D3 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2b35ab1a-8001-404a-9285-196aa943aa95.roa Signing time: Mon 10 Feb 2025 00:00:00 +0000 ROA not before: Mon 10 Feb 2025 00:00:00 +0000 ROA not after: Mon 17 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:387::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:f0:fa:fa:07:11:27:22:0e:fc:f8:07:93:c4:ca:3b:19:1b:08:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Feb 10 00:00:00 2025 GMT Not After : Mar 17 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:27:a7:e5:6f:9d:ab:44:e5:0b:39:aa:dc:eb: 63:26:8a:8a:92:1d:11:08:cd:ee:ca:71:da:bf:b4: f6:b5:c4:7f:1f:af:6a:f6:9f:de:0b:5f:6d:5d:65: b4:0c:68:21:0f:61:c9:12:21:65:91:ec:e9:66:5c: f8:0f:b5:7c:48:8b:4a:98:3a:ad:90:c3:6f:39:3b: dc:6e:24:c8:0b:cb:65:a5:ea:87:9f:01:bb:75:16: c0:e2:da:e3:67:8b:ce:23:74:31:40:65:dc:de:76: 1f:8f:3e:4c:ad:92:e7:4d:68:0d:e5:3b:28:d6:5e: 0f:6d:da:c9:0a:38:9f:c8:83:bd:36:57:e8:92:fc: 3c:6a:a0:e3:2a:83:06:d2:f3:22:4b:b2:5a:0c:ef: 39:e2:7f:9e:d4:a3:88:23:2e:48:17:32:8e:9d:bf: f4:70:d3:5b:8c:db:0f:18:34:9c:c5:14:f8:b1:3f: 9a:49:36:0c:68:38:71:56:74:b0:7f:57:91:c8:16: b2:85:60:b4:6b:88:03:db:13:a1:b8:5a:26:71:ab: 92:b5:94:ca:42:06:c7:37:68:ba:7d:a9:19:8a:92: dd:83:8f:1a:83:0e:b7:37:0f:f6:86:34:01:7e:78: 3d:fe:d2:d7:95:a5:02:de:bd:fa:69:ae:b2:ce:ee: f2:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:7D:FF:32:BA:7E:E3:18:CF:95:5D:56:9C:CA:47:85:99:F0:4F:AA X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2b35ab1a-8001-404a-9285-196aa943aa95.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:387::/48 Signature Algorithm: sha256WithRSAEncryption 54:97:60:3a:b2:dd:76:63:e2:f1:2e:10:2b:92:aa:0b:d7:82: d2:44:1f:f7:95:5f:cc:fa:be:c5:1a:9a:09:50:84:66:54:3b: b7:3f:0c:b4:3c:c5:47:37:24:7a:d2:77:99:81:2b:9c:23:bc: 68:80:02:18:0a:a6:f9:84:1a:2b:d9:8f:21:5d:05:fd:12:a6: cb:48:52:6a:ff:0d:f6:a6:65:aa:14:74:24:85:fa:55:16:dc: a0:f5:7e:3c:cf:6b:67:0d:3d:b7:9f:3a:68:5d:0a:12:c6:99: 79:d1:8f:44:b2:9b:7a:22:fb:a3:38:2e:32:c1:7f:23:49:f7: 70:bb:c5:ae:bd:bf:c1:c4:db:36:1b:b3:6b:5b:2a:07:77:a8: dd:dc:0e:12:82:38:53:6b:a7:38:c0:8e:39:78:f0:34:4a:c3: 58:18:8d:96:26:ae:18:68:af:69:82:4e:e9:9d:12:de:eb:ae: fd:83:8e:c7:8b:d5:0a:0c:45:e2:3b:d2:ab:a2:c0:af:cd:6b: e8:03:18:96:7c:4e:88:cb:8a:86:99:4d:0d:9a:f4:0e:b1:de: 98:b1:a7:3e:0b:ba:8b:04:cd:d7:43:44:da:8d:cc:8e:78:2d: bb:54:ac:66:20:a1:40:77:93:58:b7:f7:e2:5d:02:f6:42:90: 78:f7:31:57 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSvD6+gcRJyIO/PgHk8TKOxkbCNMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMjEwMDAwMDAwWhcNMjUwMzE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZjRmNzQ4YTgyYjcwYzMyZTZlMjdmNDMwNGQ0MGNkOTRi M2JlZmQ3MmRkZjRhYTc2M2IxNGU0YWY1MGYwOGVkMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsJ6flb52rROULOarc62MmioqSHREIze7Kcdq/tPa1xH8f r2r2n94LX21dZbQMaCEPYckSIWWR7OlmXPgPtXxIi0qYOq2Qw285O9xuJMgLy2Wl 6oefAbt1FsDi2uNni84jdDFAZdzedh+PPkytkudNaA3lOyjWXg9t2skKOJ/Ig702 V+iS/DxqoOMqgwbS8yJLsloM7znif57Uo4gjLkgXMo6dv/Rw01uM2w8YNJzFFPix P5pJNgxoOHFWdLB/V5HIFrKFYLRriAPbE6G4WiZxq5K1lMpCBsc3aLp9qRmKkt2D jxqDDrc3D/aGNAF+eD3+0teVpQLevfpprrLO7vL3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUf33/Mrp+4xjPlV1WnMpHhZnwT6owHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzJiMzVhYjFhLTgwMDEtNDA0YS05Mjg1LTE5NmFhOTQzYWE5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA4cwDQYJKoZIhvcNAQELBQADggEBAFSXYDqy3XZj4vEuECuSqgvX gtJEH/eVX8z6vsUamglQhGZUO7c/DLQ8xUc3JHrSd5mBK5wjvGiAAhgKpvmEGivZ jyFdBf0SpstIUmr/DfamZaoUdCSF+lUW3KD1fjzPa2cNPbefOmhdChLGmXnRj0Sy m3oi+6M4LjLBfyNJ93C7xa69v8HE2zYbs2tbKgd3qN3cDhKCOFNrpzjAjjl48DRK w1gYjZYmrhhor2mCTumdEt7rrv2DjseL1QoMReI70quiwK/Na+gDGJZ8TojLioaZ TQ2a9A6x3pixpz4LuosEzddDRNqNzI54LbtUrGYgoUB3k1i39+JdAvZCkHj3MVc= -----END CERTIFICATE-----Generated at Sun Feb 16 15:06:29 2025 by rpki-client