$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/58ae88e3-1626-4e66-a775-9d30fa3396fa.roa File: 58ae88e3-1626-4e66-a775-9d30fa3396fa.roa (raw, json) Hash identifier: s7IiEESj6TqJplB4LdntfaXbXpdAxPcmvWdBRKj/p78= Subject key identifier: 97:94:5F:10:41:1F:6A:20:42:7C:ED:36:A1:FA:84:B8:0A:DF:57:EA Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 3E68AA501A531EBF41407B8D0A083C8B46CF3C28 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/58ae88e3-1626-4e66-a775-9d30fa3396fa.roa Signing time: Wed 05 Feb 2025 00:00:00 +0000 ROA not before: Wed 05 Feb 2025 00:00:00 +0000 ROA not after: Wed 12 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:b00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:68:aa:50:1a:53:1e:bf:41:40:7b:8d:0a:08:3c:8b:46:cf:3c:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Feb 5 00:00:00 2025 GMT Not After : Mar 12 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5a:b8:4d:a9:95:3e:67:fb:6a:7f:65:51:f6: 8e:51:c1:2b:99:f9:79:3f:a7:c9:5d:5b:4b:99:d9: 00:a8:b1:7f:82:ef:34:04:b3:7f:78:de:d0:ea:9f: 52:2a:e6:96:75:4e:71:cf:de:ea:0d:57:ad:19:48: 37:01:13:75:84:52:5f:49:13:f9:29:61:57:ca:75: 66:4a:75:1a:36:ed:12:fd:64:ed:74:5c:b5:28:e4: 64:0e:49:f5:4a:a9:b6:43:e4:5d:60:3f:3c:42:b7: 90:4c:97:fd:40:cd:1b:79:9b:96:cf:3b:d0:da:e9: 01:7b:27:68:04:ec:78:6b:bc:d2:96:8e:10:26:80: 11:d0:a1:f0:3f:dd:c7:46:48:82:77:e2:47:be:32: bb:07:ea:07:3d:cb:ab:b9:71:85:b8:ec:f1:cd:4e: 1b:02:08:d9:d6:cb:a9:57:f8:84:0a:01:11:ac:5a: 52:45:6d:bc:c1:c9:01:67:84:0a:a2:f7:79:0e:4b: 6f:54:7d:96:f8:e8:c4:12:b5:fc:34:68:01:fb:ef: 05:dc:27:85:8e:cc:86:e6:14:84:ce:79:b5:99:d2: 1c:71:ef:4b:bc:83:e4:96:1a:df:87:6d:eb:f9:09: 0e:a8:0b:e5:9a:7d:38:57:0f:1e:68:4b:9a:60:5a: 26:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:94:5F:10:41:1F:6A:20:42:7C:ED:36:A1:FA:84:B8:0A:DF:57:EA X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/58ae88e3-1626-4e66-a775-9d30fa3396fa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:b00::/40 Signature Algorithm: sha256WithRSAEncryption 7a:48:1b:80:06:92:27:e3:03:82:20:7f:56:61:54:ef:63:6a: 22:f4:51:e5:55:3a:99:57:18:55:64:5c:cc:dd:01:f8:04:5f: 27:fa:0d:21:ee:d4:b4:b7:a3:cb:69:8a:5f:27:2d:f8:29:35: 46:cf:24:16:a9:f1:cd:e8:70:53:ff:4f:da:ba:8d:3f:2a:90: 94:0e:a9:e0:68:31:1d:18:60:12:1d:8b:be:d8:4e:d7:dc:87: 33:32:bf:79:35:a8:10:ed:ef:40:7f:0b:87:c3:b7:45:5e:3b: ff:76:b6:a1:b6:b7:4b:7c:6c:92:38:88:d7:85:71:f8:99:c0: dc:33:4a:59:12:ef:ff:09:88:b1:26:d3:a3:57:71:f4:1d:f7: b6:3d:5d:78:94:d5:fa:fc:a8:3e:0a:6e:79:07:90:da:61:7d: fc:d2:40:78:37:bd:28:a9:0d:dd:d6:33:e8:a0:fd:ee:d4:12: 5e:e7:d2:e8:5b:61:cb:70:c7:bc:ea:19:70:01:08:c2:90:a7: 18:02:80:90:0a:8b:70:c5:5e:26:43:66:02:b5:35:64:dc:c9: dd:cc:15:d0:0d:8d:51:f1:15:34:e7:91:77:8e:fe:a6:c1:0a: 26:9f:7b:c3:9b:1b:31:9c:a0:ff:12:e7:83:ed:4a:9a:a3:43: e9:5d:f9:f8 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUPmiqUBpTHr9BQHuNCgg8i0bPPCgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMjA1MDAwMDAwWhcNMjUwMzEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYzZlNmUxYzZjYTE0ZWZkZjQ3M2M3Y2Q3Njk5YWNmZjg2 NjcxNDgyNTIxODBjNGVmNzMyNjcxNTZhMGExYzAxMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6WrhNqZU+Z/tqf2VR9o5RwSuZ+Xk/p8ldW0uZ2QCosX+C 7zQEs3943tDqn1Iq5pZ1TnHP3uoNV60ZSDcBE3WEUl9JE/kpYVfKdWZKdRo27RL9 ZO10XLUo5GQOSfVKqbZD5F1gPzxCt5BMl/1AzRt5m5bPO9Da6QF7J2gE7HhrvNKW jhAmgBHQofA/3cdGSIJ34ke+MrsH6gc9y6u5cYW47PHNThsCCNnWy6lX+IQKARGs WlJFbbzByQFnhAqi93kOS29UfZb46MQStfw0aAH77wXcJ4WOzIbmFITOebWZ0hxx 70u8g+SWGt+Hbev5CQ6oC+WafThXDx5oS5pgWiYhAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUl5RfEEEfaiBCfO02ofqEuArfV+owHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzU4YWU4OGUzLTE2MjYtNGU2Ni1hNzc1LTlkMzBmYTMzOTZmYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmBZzACzANBgkqhkiG9w0BAQsFAAOCAQEAekgbgAaSJ+MDgiB/VmFU72Nq IvRR5VU6mVcYVWRczN0B+ARfJ/oNIe7UtLejy2mKXyct+Ck1Rs8kFqnxzehwU/9P 2rqNPyqQlA6p4GgxHRhgEh2LvthO19yHMzK/eTWoEO3vQH8Lh8O3RV47/3a2oba3 S3xskjiI14Vx+JnA3DNKWRLv/wmIsSbTo1dx9B33tj1deJTV+vyoPgpueQeQ2mF9 /NJAeDe9KKkN3dYz6KD97tQSXufS6Fthy3DHvOoZcAEIwpCnGAKAkAqLcMVeJkNm ArU1ZNzJ3cwV0A2NUfEVNOeRd47+psEKJp97w5sbMZyg/xLng+1KmqND6V35+A== -----END CERTIFICATE-----Generated at Sun Feb 16 15:19:50 2025 by rpki-client