$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b17bf491-58d8-4391-b7a8-e39988877ceb.roa File: b17bf491-58d8-4391-b7a8-e39988877ceb.roa (raw, json) Hash identifier: Ax6G/u9M2XeVJkJjGU85b4UH3e76aHLlBsi6KcksvDg= Subject key identifier: AB:09:85:D0:47:75:D0:15:5D:AF:4D:CF:BA:4E:FD:5C:33:64:69:C1 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 47728C24075BAD75133A85DE0BEA7AC5A695638C Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b17bf491-58d8-4391-b7a8-e39988877ceb.roa Signing time: Fri 24 Jan 2025 00:00:00 +0000 ROA not before: Fri 24 Jan 2025 00:00:00 +0000 ROA not after: Fri 28 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:c0a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:72:8c:24:07:5b:ad:75:13:3a:85:de:0b:ea:7a:c5:a6:95:63:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jan 24 00:00:00 2025 GMT Not After : Feb 28 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b3:93:44:f4:e3:72:c9:70:52:68:6c:da:34: 04:13:bc:cd:ff:c9:3e:2e:29:8e:4d:a2:e6:cf:ed: 5a:6d:e9:d7:43:a1:78:32:50:71:4e:a5:bd:d2:f0: 0a:00:1a:6d:81:90:c9:de:94:b5:56:46:80:07:d2: e2:37:57:0e:30:82:35:d7:14:fc:db:46:09:0e:ab: 7d:89:11:3c:55:94:6a:c0:6c:f1:2a:ac:c3:b5:99: 09:29:bd:ad:64:18:8d:83:15:36:10:62:f8:fa:24: 79:bd:2c:1b:dd:c6:b7:06:0f:a0:e1:e2:be:d3:7d: b9:d5:dd:8d:6a:cf:d2:30:44:c6:ca:e0:41:f3:e4: a2:58:3d:54:95:7b:19:fa:92:4e:1b:91:80:c7:9b: c3:25:74:ea:29:ae:d9:4f:76:67:e5:86:7f:55:29: fa:60:de:ff:c2:9f:fa:c0:bc:1c:fb:eb:8f:6c:03: 4e:e6:53:06:43:71:49:c6:02:10:24:f7:dc:a6:24: f1:3b:ae:18:a8:4b:29:13:ff:79:1a:07:89:55:fc: 39:32:7b:37:45:00:01:88:d1:f5:6b:af:41:54:a5: d4:71:7e:32:eb:37:3e:5d:22:99:12:48:8a:87:a2: b8:e2:00:76:fb:70:f9:69:73:ef:49:f6:ed:1d:86: f4:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:09:85:D0:47:75:D0:15:5D:AF:4D:CF:BA:4E:FD:5C:33:64:69:C1 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b17bf491-58d8-4391-b7a8-e39988877ceb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c0a::/48 Signature Algorithm: sha256WithRSAEncryption 67:45:55:e9:d2:b9:86:e9:b8:2e:3d:00:f9:26:12:d9:ff:b2: fc:58:4f:56:16:9e:39:51:87:06:76:c0:09:03:72:43:cd:81: 53:2d:82:e3:75:32:20:f3:74:77:5b:16:ad:6e:9f:d3:7d:36: c3:95:54:57:e9:aa:5c:15:30:04:d7:07:be:a5:a1:be:35:1b: c1:5f:fc:3d:df:9b:a4:ea:22:0a:36:48:e9:11:48:9c:77:44: d2:d6:10:cc:01:81:d0:b8:20:a1:d3:d0:84:17:a2:9e:23:4e: 3a:af:81:c7:d1:c3:42:fd:09:58:9b:57:42:df:6c:b3:57:3d: b3:90:72:25:be:e7:eb:bc:15:49:c7:85:a6:e8:5b:bb:f8:c3: 07:bb:cb:3f:e0:b2:96:bd:01:3d:58:33:06:5a:10:40:0f:7d: 7d:ea:9e:4c:17:ec:a5:2f:c5:47:60:e8:f9:5d:d4:f1:6a:92: 29:c0:fc:55:f0:ff:5b:9e:8d:67:91:38:86:76:ed:91:39:ba: e3:9c:8b:49:85:ba:7b:3d:89:cb:74:88:b5:d9:cf:00:48:b9: 8d:80:63:9f:f6:83:88:d8:1f:7b:77:4b:0b:80:7f:09:75:11: d1:54:62:b2:5d:b2:d3:42:ed:7b:b4:95:14:b5:93:e4:17:a7: a3:b8:90:c1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUR3KMJAdbrXUTOoXeC+p6xaaVY4wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMTI0MDAwMDAwWhcNMjUwMjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYTVkMGEyOTI3MjhlNWM0NWM2YjlkZTlkZGM2NjhlZDcw YTBjNjFiZjM2Y2NjNDcwZTMxMTRiM2FiNzNmNmEwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+s5NE9ONyyXBSaGzaNAQTvM3/yT4uKY5NoubP7Vpt6ddD oXgyUHFOpb3S8AoAGm2BkMnelLVWRoAH0uI3Vw4wgjXXFPzbRgkOq32JETxVlGrA bPEqrMO1mQkpva1kGI2DFTYQYvj6JHm9LBvdxrcGD6Dh4r7TfbnV3Y1qz9IwRMbK 4EHz5KJYPVSVexn6kk4bkYDHm8MldOoprtlPdmflhn9VKfpg3v/Cn/rAvBz7649s A07mUwZDcUnGAhAk99ymJPE7rhioSykT/3kaB4lV/DkyezdFAAGI0fVrr0FUpdRx fjLrNz5dIpkSSIqHorjiAHb7cPlpc+9J9u0dhvSzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUqwmF0Ed10BVdr03Puk79XDNkacEwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2IxN2JmNDkxLTU4ZDgtNDM5MS1iN2E4LWUzOTk4ODg3N2NlYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAowDQYJKoZIhvcNAQELBQADggEBAGdFVenSuYbpuC49APkmEtn/ svxYT1YWnjlRhwZ2wAkDckPNgVMtguN1MiDzdHdbFq1un9N9NsOVVFfpqlwVMATX B76lob41G8Ff/D3fm6TqIgo2SOkRSJx3RNLWEMwBgdC4IKHT0IQXop4jTjqvgcfR w0L9CVibV0LfbLNXPbOQciW+5+u8FUnHhaboW7v4wwe7yz/gspa9AT1YMwZaEEAP fX3qnkwX7KUvxUdg6Pld1PFqkinA/FXw/1uejWeROIZ27ZE5uuOci0mFuns9ict0 iLXZzwBIuY2AY5/2g4jYH3t3SwuAfwl1EdFUYrJdstNC7Xu0lRS1k+QXp6O4kME= -----END CERTIFICATE-----Generated at Sun Feb 16 15:35:43 2025 by rpki-client