$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/793099d2-d8bb-4f78-8e97-4cd87968a269.roa File: 793099d2-d8bb-4f78-8e97-4cd87968a269.roa (raw, json) Hash identifier: LbpMtqaZGfV7oHfO1fg4DGryaR+gTVdpKST7Z0o4j60= Subject key identifier: 8C:C1:C9:0E:B5:94:89:6D:F5:28:12:4E:55:EF:C3:C4:9F:77:13:E7 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 387FCB82B56A3677AC0D883C054C5720390DB3ED Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/793099d2-d8bb-4f78-8e97-4cd87968a269.roa Signing time: Fri 24 Jan 2025 00:00:00 +0000 ROA not before: Fri 24 Jan 2025 00:00:00 +0000 ROA not after: Fri 28 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c06::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:7f:cb:82:b5:6a:36:77:ac:0d:88:3c:05:4c:57:20:39:0d:b3:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jan 24 00:00:00 2025 GMT Not After : Feb 28 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a5:7b:17:eb:48:54:48:0e:9a:e5:e7:87:cf: 82:42:1e:46:7d:aa:d4:e9:06:d6:14:7d:86:89:8c: 04:7e:a3:a3:27:0d:d0:37:0b:2a:df:bf:b4:4a:88: 0f:e9:1c:32:08:ba:b8:f5:29:e8:fb:b8:c7:f9:21: 67:11:73:c1:0a:f4:7d:48:b3:3e:f5:68:1c:3a:3c: 9c:f7:7a:fb:e0:5c:f0:b3:a7:cd:04:ab:ad:82:fb: 9f:8c:ba:f9:8c:df:66:65:eb:8f:53:15:52:44:d0: 70:e4:46:5d:52:37:26:a0:00:48:09:43:f2:45:0d: a0:2a:42:70:4e:a0:8c:ab:5c:21:ac:10:c4:b8:95: 23:bf:aa:1f:3b:ef:33:f3:b7:ec:fa:ef:22:6c:4e: 1b:3b:e8:7e:7e:70:f6:99:9e:2c:49:a4:0c:39:76: c3:be:15:f7:bc:41:19:7a:38:36:3a:3a:4d:60:9f: 9c:60:73:9c:fd:a4:83:d4:05:de:c6:e0:c4:1e:fe: 79:05:7c:18:bf:c0:23:3d:99:84:ff:83:46:c5:89: 08:8f:e8:c8:0a:0f:bf:11:2d:db:cb:db:03:07:22: f8:76:00:7b:73:99:30:6a:aa:5d:fe:f8:0b:b0:d7: 11:1a:17:b6:ac:fe:76:98:31:5c:7b:61:8a:9d:4e: 22:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:C1:C9:0E:B5:94:89:6D:F5:28:12:4E:55:EF:C3:C4:9F:77:13:E7 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/793099d2-d8bb-4f78-8e97-4cd87968a269.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c06::/48 Signature Algorithm: sha256WithRSAEncryption 50:24:9e:4d:d1:59:7c:10:a3:31:fe:37:bd:72:9d:0f:2a:33: 9a:b8:c7:48:6a:aa:ab:49:48:35:b2:b5:cb:e0:48:f8:a9:25: a5:59:56:f0:66:67:86:42:7e:bb:49:16:25:dc:ea:e3:d4:69: 56:bb:33:14:a7:3c:be:8f:2d:00:32:81:80:3d:61:d1:3f:db: bf:98:75:ed:1d:22:dd:e8:63:ae:1a:c5:c3:ac:a6:09:1b:c4: e8:74:2e:40:5d:d6:d4:2b:f1:9b:92:6e:8e:d4:75:cc:59:d2: 4e:76:9d:60:56:83:b8:f7:5c:af:59:56:c5:fc:51:4a:43:08: dc:7d:f8:c2:88:59:c0:e1:21:58:78:0a:e1:01:7c:b3:15:f9: 46:d2:34:3d:be:bd:db:03:3f:ae:4f:f0:ad:59:de:88:93:5c: d7:30:be:d1:bc:01:57:46:f4:33:78:33:81:f5:4e:89:b6:a3: eb:66:e5:35:5f:94:74:f5:7f:7d:2a:dc:70:dc:2c:b4:ee:68: 48:f4:7f:56:12:5e:e6:03:d8:09:fc:9e:13:62:79:42:b7:be: c0:b7:87:77:20:fb:9c:ef:bd:05:8c:86:1f:87:55:0b:22:f1: f0:d7:3d:8a:77:22:9d:fc:68:1d:7d:c7:b4:cf:ac:d4:f5:a0: df:c1:a7:f1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOH/LgrVqNnesDYg8BUxXIDkNs+0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMTI0MDAwMDAwWhcNMjUwMjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MjM3MmJlYzUwZGVlYjYyZTYxNmNmOWJlZmU4NDhjNWQz ZTc2OWMxYzNjMGMxZmZkMDMzZDg0ODg0NjQ5Y2ZkMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDApXsX60hUSA6a5eeHz4JCHkZ9qtTpBtYUfYaJjAR+o6Mn DdA3Cyrfv7RKiA/pHDIIurj1Kej7uMf5IWcRc8EK9H1Isz71aBw6PJz3evvgXPCz p80Eq62C+5+MuvmM32Zl649TFVJE0HDkRl1SNyagAEgJQ/JFDaAqQnBOoIyrXCGs EMS4lSO/qh877zPzt+z67yJsThs76H5+cPaZnixJpAw5dsO+Ffe8QRl6ODY6Ok1g n5xgc5z9pIPUBd7G4MQe/nkFfBi/wCM9mYT/g0bFiQiP6MgKD78RLdvL2wMHIvh2 AHtzmTBqql3++Auw1xEaF7as/naYMVx7YYqdTiLLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUjMHJDrWUiW31KBJOVe/DxJ93E+cwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzc5MzA5OWQyLWQ4YmItNGY3OC04ZTk3LTRjZDg3OTY4YTI2OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAYwDQYJKoZIhvcNAQELBQADggEBAFAknk3RWXwQozH+N71ynQ8q M5q4x0hqqqtJSDWytcvgSPipJaVZVvBmZ4ZCfrtJFiXc6uPUaVa7MxSnPL6PLQAy gYA9YdE/27+Yde0dIt3oY64axcOspgkbxOh0LkBd1tQr8ZuSbo7UdcxZ0k52nWBW g7j3XK9ZVsX8UUpDCNx9+MKIWcDhIVh4CuEBfLMV+UbSND2+vdsDP65P8K1Z3oiT XNcwvtG8AVdG9DN4M4H1Tom2o+tm5TVflHT1f30q3HDcLLTuaEj0f1YSXuYD2An8 nhNieUK3vsC3h3cg+5zvvQWMhh+HVQsi8fDXPYp3Ip38aB19x7TPrNT1oN/Bp/E= -----END CERTIFICATE-----Generated at Sun Feb 16 15:37:02 2025 by rpki-client