$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b135e8de-4e6c-4d15-87c3-51709cb5a460.roa File: b135e8de-4e6c-4d15-87c3-51709cb5a460.roa (raw, json) Hash identifier: Q6WsNaj1abwlD4aEgzNZc5WZ7uBOhwVpboFrAVW6Yx0= Subject key identifier: 94:E6:F4:CC:4D:51:94:E0:83:4F:99:96:26:F6:FE:0E:B5:2F:1E:41 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 01E41A49BCC0E30F0A32E94C24CB7C4C4570D9EF Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b135e8de-4e6c-4d15-87c3-51709cb5a460.roa Signing time: Wed 05 Feb 2025 00:00:00 +0000 ROA not before: Wed 05 Feb 2025 00:00:00 +0000 ROA not after: Wed 12 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:39c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:e4:1a:49:bc:c0:e3:0f:0a:32:e9:4c:24:cb:7c:4c:45:70:d9:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Feb 5 00:00:00 2025 GMT Not After : Mar 12 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2a:ee:e4:a1:ed:75:ed:50:2e:92:fe:39:53: da:9c:4d:00:78:fe:07:f2:64:5e:4c:04:e3:be:ec: eb:82:11:57:36:c4:77:e4:62:65:ef:61:62:50:12: f0:b8:22:3e:9e:64:e1:3a:36:07:96:05:ff:3e:49: 5f:60:6d:3d:9a:93:01:4d:03:f6:2b:2d:5a:fb:86: 3f:81:03:87:93:56:b8:63:b2:64:54:9a:08:7f:95: 26:be:e4:bc:c1:1d:fe:00:c0:69:36:15:c7:2a:93: 8b:c9:71:b3:a7:f7:b7:50:2e:49:19:49:93:0d:92: 88:0f:2d:bd:7d:7d:16:ad:e3:c0:7b:5c:61:be:40: cc:ac:2e:97:48:b4:96:2e:19:d3:de:05:fe:65:f6: 84:e5:13:0f:6d:51:b5:76:f8:73:1f:8a:a3:50:ca: ec:b9:32:1e:46:d7:4e:59:bc:fe:fe:36:84:2e:35: 20:4e:ff:dd:9c:0c:b2:a0:47:23:15:1a:3f:26:46: 1c:bd:21:74:82:48:b1:66:7d:ca:1e:64:03:5f:af: 2f:ae:da:c3:51:7a:10:5d:a5:28:4c:4a:62:bb:2b: 91:fc:51:4b:1b:e7:14:f1:18:ca:6a:70:99:4c:25: 17:e3:2a:c3:84:9a:82:a9:24:3d:f8:24:d7:c7:6c: f9:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:E6:F4:CC:4D:51:94:E0:83:4F:99:96:26:F6:FE:0E:B5:2F:1E:41 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b135e8de-4e6c-4d15-87c3-51709cb5a460.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:39c::/48 Signature Algorithm: sha256WithRSAEncryption 0f:0a:a7:f1:e1:86:bf:ef:41:42:92:c9:88:92:2f:57:d9:bf: a8:06:96:41:b5:df:6d:3c:ad:e4:a9:3e:2a:cd:d7:cf:a1:03: e9:8a:4a:b0:b9:78:08:1d:62:e6:95:06:d3:dc:7e:7e:ac:b6: fc:de:10:98:bd:72:08:a9:53:98:96:62:34:6e:4e:ca:a7:fa: fc:8f:77:b5:34:62:fa:3d:45:83:ad:5c:b8:61:23:e2:f2:9f: a5:73:1a:e9:26:f7:e2:40:58:c4:62:f6:66:1e:d5:ac:cf:19: a0:05:ed:8a:58:ac:6d:68:62:e8:13:6f:94:9a:d2:73:3e:39: 7c:3c:40:ed:c2:cc:48:3c:fe:ac:a0:fa:b8:49:7a:9f:a7:f7: fd:34:76:94:36:18:9c:6b:13:81:b9:60:de:6b:ad:94:cb:4d: 42:09:80:9b:6d:06:5b:6c:ee:4d:1b:64:10:da:48:b4:36:33: dd:52:59:40:fe:32:f5:f1:56:8c:d7:2b:c3:af:7e:88:c3:49: b9:f7:c3:99:67:53:aa:36:04:ca:de:24:f2:1c:49:96:30:fc: 52:eb:e4:76:5f:03:2e:5d:25:40:4c:8a:7e:04:29:bc:e0:ae: 9c:24:90:b2:82:51:30:cb:ab:3f:d1:80:da:33:db:ea:99:1c: 2b:cb:1f:e4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUAeQaSbzA4w8KMulMJMt8TEVw2e8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMjA1MDAwMDAwWhcNMjUwMzEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZDdlOGM0NjQ3NDQ1YmM3ZTJjNzdmMjg1OWQyNTE1ZjMz YWRjZDk4ZDlhMDQ4YWFjNTg5NWY4ZWUwN2IxNGZhMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0Ku7koe117VAukv45U9qcTQB4/gfyZF5MBOO+7OuCEVc2 xHfkYmXvYWJQEvC4Ij6eZOE6NgeWBf8+SV9gbT2akwFNA/YrLVr7hj+BA4eTVrhj smRUmgh/lSa+5LzBHf4AwGk2Fccqk4vJcbOn97dQLkkZSZMNkogPLb19fRat48B7 XGG+QMysLpdItJYuGdPeBf5l9oTlEw9tUbV2+HMfiqNQyuy5Mh5G105ZvP7+NoQu NSBO/92cDLKgRyMVGj8mRhy9IXSCSLFmfcoeZANfry+u2sNRehBdpShMSmK7K5H8 UUsb5xTxGMpqcJlMJRfjKsOEmoKpJD34JNfHbPltAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUlOb0zE1RlOCDT5mWJvb+DrUvHkEwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2IxMzVlOGRlLTRlNmMtNGQxNS04N2MzLTUxNzA5Y2I1YTQ2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA5wwDQYJKoZIhvcNAQELBQADggEBAA8Kp/Hhhr/vQUKSyYiSL1fZ v6gGlkG13208reSpPirN18+hA+mKSrC5eAgdYuaVBtPcfn6stvzeEJi9cgipU5iW YjRuTsqn+vyPd7U0Yvo9RYOtXLhhI+Lyn6VzGukm9+JAWMRi9mYe1azPGaAF7YpY rG1oYugTb5Sa0nM+OXw8QO3CzEg8/qyg+rhJep+n9/00dpQ2GJxrE4G5YN5rrZTL TUIJgJttBlts7k0bZBDaSLQ2M91SWUD+MvXxVozXK8OvfojDSbn3w5lnU6o2BMre JPIcSZYw/FLr5HZfAy5dJUBMin4EKbzgrpwkkLKCUTDLqz/RgNoz2+qZHCvLH+Q= -----END CERTIFICATE-----Generated at Sun Feb 16 15:13:49 2025 by rpki-client