$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bb5af757-1bdc-48f9-bc20-c74fd49096a5.roa File: bb5af757-1bdc-48f9-bc20-c74fd49096a5.roa (raw, json) Hash identifier: FKat51w5QIUj/JyD5nMuGu6DxfCp/Os9daUzyBVNjqI= Subject key identifier: DF:E8:F0:12:ED:04:F5:2D:D3:FF:83:D2:4F:6F:CA:4F:CD:C8:BA:4A Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 09645FE97FA44130AAC8725979F41C121417E010 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bb5af757-1bdc-48f9-bc20-c74fd49096a5.roa Signing time: Mon 10 Feb 2025 00:00:00 +0000 ROA not before: Mon 10 Feb 2025 00:00:00 +0000 ROA not after: Mon 17 Mar 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:611::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 12 Feb 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:64:5f:e9:7f:a4:41:30:aa:c8:72:59:79:f4:1c:12:14:17:e0:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Feb 10 00:00:00 2025 GMT Not After : Mar 17 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a6:25:03:af:5c:0f:67:f6:fa:40:61:bc:95: fe:92:fc:f6:b4:8b:69:5a:11:0a:90:a5:01:84:46: 69:42:d7:f7:15:e8:93:2a:a8:bd:18:86:68:00:aa: a7:09:33:44:70:63:e0:5c:9c:9c:d6:26:12:c2:a2: ec:11:fd:b2:07:d1:95:28:74:5f:0c:1f:fe:e6:5b: 21:a0:e0:01:0a:b7:35:c5:e6:12:37:8b:76:a5:da: 73:d5:82:33:49:8e:71:84:02:30:8c:75:fe:82:cb: cf:6c:95:c5:2c:a0:4d:43:72:68:2e:79:31:f9:74: cc:1e:3d:ea:c7:eb:6b:c1:56:27:01:63:57:47:61: fb:8a:f4:cc:cf:3c:e3:14:0d:2f:c1:04:85:dc:91: 2f:2b:87:29:8c:4c:ce:86:e0:a8:61:79:7a:dd:07: 63:37:26:ce:b3:d8:12:af:0e:2c:eb:b3:df:5a:59: 98:a9:04:e9:1e:48:97:4b:96:4c:88:bc:6a:de:2b: cb:f7:bd:ac:24:8e:12:9a:32:c4:9c:f8:92:3a:84: 9a:30:88:35:95:94:61:66:5c:05:13:cd:0e:77:01: 51:f8:4e:46:3e:fb:5a:7b:ea:10:14:20:7a:27:ad: dc:36:6e:8f:ea:c5:85:01:bc:d4:d5:40:7f:fc:00: b3:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:E8:F0:12:ED:04:F5:2D:D3:FF:83:D2:4F:6F:CA:4F:CD:C8:BA:4A X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bb5af757-1bdc-48f9-bc20-c74fd49096a5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:611::/48 Signature Algorithm: sha256WithRSAEncryption 76:06:8d:31:d5:7b:c2:ac:5b:4d:e3:29:5a:ed:e7:de:46:dc: 8d:d7:6d:c0:ad:39:75:2f:00:89:c0:0f:21:44:a3:01:f7:71: 62:c1:17:0b:7c:ac:db:ea:cf:46:ff:7b:d9:19:ed:18:5e:ab: 58:13:5d:83:01:1b:81:de:81:4a:45:73:41:8e:98:ec:e1:ff: 37:e0:2a:e1:eb:c2:36:95:ff:04:c9:75:95:4c:c9:be:1e:96: f8:43:06:74:74:98:fe:df:c8:fc:61:54:a1:07:c2:75:ca:30: 8b:7f:af:14:57:82:0a:49:cd:b6:8d:fb:a8:d8:c0:2f:39:be: bc:44:ac:e2:37:c4:41:3d:42:a2:d8:14:81:0f:00:f0:6d:07: fd:4c:d3:98:b2:06:91:a7:65:fc:5f:11:7b:98:a1:9a:2a:73: 4f:02:19:6d:4b:1a:58:90:12:2b:9e:f0:79:86:d6:39:0e:49: 81:01:3c:46:65:6a:c4:6d:8e:fe:83:16:b4:3c:d0:8e:2d:69: f6:ea:c8:0b:99:de:80:27:7d:d6:e4:5c:e9:78:92:06:22:29: 82:65:9c:6d:80:d5:55:5e:cc:75:29:b7:99:fa:2b:4a:58:6f: 88:0c:f9:07:13:34:ff:60:95:66:af:08:c5:d9:5a:10:1f:88: cf:75:87:5d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCWRf6X+kQTCqyHJZefQcEhQX4BAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMjEwMDAwMDAwWhcNMjUwMzE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MTc1Y2YzZTRhZmExNGQxN2MxNjI3Mjg2N2E2ZDM2OTUx Yzg2M2ZlZDAyYTkwZjVkY2Y0NWQ0YjZiYzk5MzQwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0piUDr1wPZ/b6QGG8lf6S/Pa0i2laEQqQpQGERmlC1/cV 6JMqqL0YhmgAqqcJM0RwY+BcnJzWJhLCouwR/bIH0ZUodF8MH/7mWyGg4AEKtzXF 5hI3i3al2nPVgjNJjnGEAjCMdf6Cy89slcUsoE1DcmgueTH5dMwePerH62vBVicB Y1dHYfuK9MzPPOMUDS/BBIXckS8rhymMTM6G4KhheXrdB2M3Js6z2BKvDizrs99a WZipBOkeSJdLlkyIvGreK8v3vawkjhKaMsSc+JI6hJowiDWVlGFmXAUTzQ53AVH4 TkY++1p76hAUIHonrdw2bo/qxYUBvNTVQH/8ALOdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3+jwEu0E9S3T/4PST2/KT83IukowHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2JiNWFmNzU3LTFiZGMtNDhmOS1iYzIwLWM3NGZkNDkwOTZhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABhEwDQYJKoZIhvcNAQELBQADggEBAHYGjTHVe8KsW03jKVrt595G 3I3XbcCtOXUvAInADyFEowH3cWLBFwt8rNvqz0b/e9kZ7Rheq1gTXYMBG4HegUpF c0GOmOzh/zfgKuHrwjaV/wTJdZVMyb4elvhDBnR0mP7fyPxhVKEHwnXKMIt/rxRX ggpJzbaN+6jYwC85vrxErOI3xEE9QqLYFIEPAPBtB/1M05iyBpGnZfxfEXuYoZoq c08CGW1LGliQEiue8HmG1jkOSYEBPEZlasRtjv6DFrQ80I4tafbqyAuZ3oAnfdbk XOl4kgYiKYJlnG2A1VVezHUpt5n6K0pYb4gM+QcTNP9glWavCMXZWhAfiM91h10= -----END CERTIFICATE-----Generated at Tue Feb 11 14:48:30 2025 by rpki-client