$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b4188873-f5f8-4ab9-a9fa-7b61a4860f25.roa File: b4188873-f5f8-4ab9-a9fa-7b61a4860f25.roa (raw, json) Hash identifier: xpjfGoXumVJNu8s46CyqPF7PjHo23CYKds9R7Fhf/84= Subject key identifier: FF:07:B6:47:CF:85:01:7C:DF:A6:03:10:5A:E8:1C:B8:69:69:EA:D8 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 7834B183CA7D925ADB9DE1364D8B947876AEF32D Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b4188873-f5f8-4ab9-a9fa-7b61a4860f25.roa Signing time: Fri 24 Jan 2025 00:00:00 +0000 ROA not before: Fri 24 Jan 2025 00:00:00 +0000 ROA not after: Fri 28 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:c07::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:34:b1:83:ca:7d:92:5a:db:9d:e1:36:4d:8b:94:78:76:ae:f3:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jan 24 00:00:00 2025 GMT Not After : Feb 28 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:e1:60:4d:59:85:ee:57:f9:6e:37:3a:f5:5a: 82:af:36:bf:c4:d7:28:ac:f8:06:8c:51:91:16:e5: 4d:49:2d:dc:78:34:d4:f4:df:38:9b:97:9b:19:7b: e5:8a:7f:96:dd:76:01:65:4f:27:57:b8:f4:6c:14: 46:7f:af:e4:ba:11:1a:40:da:b4:ff:4f:b4:74:74: 36:41:0d:13:54:70:39:6b:ac:06:b6:37:6d:37:82: 62:61:7e:fb:1b:b4:e8:a1:44:f4:ca:eb:21:5c:90: 38:9c:9c:77:e2:b7:3f:d0:c4:4b:a8:2c:ee:90:fa: 07:e5:99:11:20:0b:b0:e9:65:b5:83:33:93:6e:53: 0e:56:68:96:06:3c:40:d8:47:16:7b:a8:50:c4:ac: a9:09:4b:f5:ed:2c:94:51:d6:e8:35:b6:8b:71:56: 3f:be:c3:b6:6e:e9:48:98:89:97:50:74:2e:53:61: 29:ea:af:f6:90:c2:7b:f5:23:4a:da:1c:10:82:ac: 8c:4a:89:64:01:4a:25:b9:b9:dd:3f:92:c5:6e:71: 58:bc:93:61:bf:b9:59:31:b1:26:5b:49:40:f8:17: cc:03:3c:e5:eb:62:94:fe:b4:e2:ac:4b:4e:19:80: 71:45:0b:b6:53:9a:6e:02:a5:14:e4:06:5b:22:e4: 08:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:07:B6:47:CF:85:01:7C:DF:A6:03:10:5A:E8:1C:B8:69:69:EA:D8 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b4188873-f5f8-4ab9-a9fa-7b61a4860f25.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c07::/48 Signature Algorithm: sha256WithRSAEncryption 6c:75:6d:ce:da:ec:32:9b:18:fb:12:8c:91:59:74:59:60:82: 13:60:5b:71:76:3c:cb:b9:99:f3:4c:f2:bf:17:6c:7f:85:ef: 07:3f:84:bb:ed:9c:09:ba:9e:2e:90:a3:f4:84:29:25:1a:ea: 1b:06:8f:91:23:91:06:e3:55:a9:c9:c2:72:6f:53:f2:ba:02: de:5e:fa:3e:22:8f:8e:28:46:90:1d:c0:4d:7b:f1:c8:dc:2a: a0:1e:c9:78:9a:56:c9:ff:97:f6:ac:bd:6b:a3:37:d1:4f:98: 33:c8:dc:ab:7d:13:5e:fd:55:1f:2f:bf:be:a2:9e:74:d1:62: 00:74:a6:e7:d7:e7:ff:45:1c:8c:6e:c0:6e:7a:8e:8d:46:d9: 58:8e:5f:5d:38:c8:14:4b:df:3e:e5:15:b7:93:1d:8c:fb:f8: ee:c5:f8:b0:87:bb:fd:fa:93:8f:b3:33:fb:03:e0:86:ba:49: f5:c8:ae:9f:a9:ef:30:9b:3a:98:6f:e6:cd:9e:eb:1a:81:79: c8:98:38:b3:8f:b5:19:c7:e9:50:28:4d:11:4e:8d:34:64:57: 93:e0:a0:8e:d8:63:b4:6a:a7:08:92:76:77:60:c7:65:ac:e5: fa:04:5d:93:51:dd:3a:65:d7:74:06:8f:94:2e:f2:28:cc:bd: ee:6a:00:27 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUeDSxg8p9klrbneE2TYuUeHau8y0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMTI0MDAwMDAwWhcNMjUwMjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxOTA4NDc1ZDhlODgwMTRmMjIzYmEwODVjNmE3ZjAyZGE5 NDcxM2EwNzk1NTM2ZjhkMTc2YmUxMGQzYWExYWZlMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCc4WBNWYXuV/luNzr1WoKvNr/E1yis+AaMUZEW5U1JLdx4 NNT03zibl5sZe+WKf5bddgFlTydXuPRsFEZ/r+S6ERpA2rT/T7R0dDZBDRNUcDlr rAa2N203gmJhfvsbtOihRPTK6yFckDicnHfitz/QxEuoLO6Q+gflmREgC7DpZbWD M5NuUw5WaJYGPEDYRxZ7qFDErKkJS/XtLJRR1ug1totxVj++w7Zu6UiYiZdQdC5T YSnqr/aQwnv1I0raHBCCrIxKiWQBSiW5ud0/ksVucVi8k2G/uVkxsSZbSUD4F8wD POXrYpT+tOKsS04ZgHFFC7ZTmm4CpRTkBlsi5Ah9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU/we2R8+FAXzfpgMQWugcuGlp6tgwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2I0MTg4ODczLWY1ZjgtNGFiOS1hOWZhLTdiNjFhNDg2MGYyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAcwDQYJKoZIhvcNAQELBQADggEBAGx1bc7a7DKbGPsSjJFZdFlg ghNgW3F2PMu5mfNM8r8XbH+F7wc/hLvtnAm6ni6Qo/SEKSUa6hsGj5EjkQbjVanJ wnJvU/K6At5e+j4ij44oRpAdwE178cjcKqAeyXiaVsn/l/asvWujN9FPmDPI3Kt9 E179VR8vv76innTRYgB0pufX5/9FHIxuwG56jo1G2ViOX104yBRL3z7lFbeTHYz7 +O7F+LCHu/36k4+zM/sD4Ia6SfXIrp+p7zCbOphv5s2e6xqBeciYOLOPtRnH6VAo TRFOjTRkV5PgoI7YY7RqpwiSdndgx2Ws5foEXZNR3Tpl13QGj5Qu8ijMve5qACc= -----END CERTIFICATE-----Generated at Sun Feb 16 15:44:15 2025 by rpki-client