$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c3c1377b-15a9-4918-8ac4-4abafd31046f.roa File: c3c1377b-15a9-4918-8ac4-4abafd31046f.roa (raw, json) Hash identifier: a0bcEgcPW8jjG/bZ4Ce3o6F5wGnPVUG+a3kowaQ5tbY= Subject key identifier: A6:AB:BA:C3:80:8D:C8:A0:35:DC:B7:15:D7:38:86:AD:E4:58:B3:CE Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 672CB7E69026311DAC414A5BF1335FC5B7972C43 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c3c1377b-15a9-4918-8ac4-4abafd31046f.roa Signing time: Fri 24 Jan 2025 00:00:00 +0000 ROA not before: Fri 24 Jan 2025 00:00:00 +0000 ROA not after: Fri 28 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:647::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:2c:b7:e6:90:26:31:1d:ac:41:4a:5b:f1:33:5f:c5:b7:97:2c:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jan 24 00:00:00 2025 GMT Not After : Feb 28 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:38:c1:cc:7f:fc:30:2c:62:f2:c1:07:cb:a5: cd:14:cf:aa:35:3f:5b:1c:19:3f:0c:c3:4b:3e:ac: 44:53:d4:99:4d:60:c0:c8:27:53:bb:e2:48:f6:67: d2:a8:ea:00:2c:1a:fe:95:1b:12:79:f0:ac:db:3e: fe:4e:14:42:79:26:1c:9e:23:64:a9:34:2a:fa:3d: a7:fa:ff:cd:8f:0d:41:15:3c:99:3f:48:ed:9d:64: e9:e1:07:32:fc:81:4f:52:88:5f:e2:fe:f0:5e:3d: 9c:af:8c:95:ad:c8:5e:f4:b4:16:3f:1a:bc:0f:6b: 77:f9:df:17:50:84:b8:a8:3b:24:44:9f:31:f6:47: 4b:ff:35:81:f7:f2:4d:18:2e:8b:da:63:43:12:5c: 9f:63:cd:be:11:9e:29:47:76:ab:c9:c1:da:7a:70: 52:c8:3e:43:a1:d6:f2:2f:cd:a5:1f:6e:ab:c6:81: 44:2e:35:58:bd:74:45:45:9d:8d:49:55:aa:8d:24: b8:07:1f:0b:a3:ac:71:cc:08:a4:77:0b:ba:8a:18: b1:3d:a8:38:dc:00:85:10:5e:5e:45:e5:29:7b:0d: 60:41:64:c8:0a:22:e4:68:b6:68:c1:51:43:9c:55: 84:c4:41:56:9f:d6:d5:74:99:32:a1:64:8b:2d:e8: f3:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:AB:BA:C3:80:8D:C8:A0:35:DC:B7:15:D7:38:86:AD:E4:58:B3:CE X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c3c1377b-15a9-4918-8ac4-4abafd31046f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:647::/48 Signature Algorithm: sha256WithRSAEncryption 13:d5:ff:ef:71:0c:13:21:d7:79:45:b3:a4:cd:63:8b:8d:9c: 7a:2d:9b:c3:c2:75:85:b9:2e:a7:36:f7:4c:63:90:8e:30:6a: 54:fe:40:58:5b:ec:ab:dc:b2:94:4a:1c:09:54:9b:2c:ff:96: 5a:bf:42:a6:36:07:20:cb:4a:f5:e2:4e:2a:09:35:c1:ee:fd: 49:f4:1f:52:53:55:50:8c:74:78:4a:54:ab:36:88:cd:7b:7f: db:70:17:5c:51:ac:87:3a:97:84:39:5d:cc:2b:b4:f5:38:14: 59:1e:21:53:d0:cb:ed:58:68:12:7f:46:a3:cb:8b:a0:84:69: 8a:77:15:e3:4c:42:ff:ab:d2:10:0a:b9:42:06:b0:fc:c3:56: 2e:b1:b7:12:86:56:e4:68:65:c9:7d:3a:e9:7c:0e:9e:a7:ca: 01:9c:7d:77:51:36:91:0b:23:3a:39:9e:3e:ff:60:fd:67:d1: 8e:44:63:d9:69:ef:fe:9a:43:5f:5e:40:ce:6f:53:b4:2e:06: 2e:1d:d7:8f:d3:64:f8:c6:3c:dc:8d:d0:da:c5:75:bd:70:4a: 6c:44:6c:91:1c:4b:c4:a4:d6:cf:2a:0b:68:08:04:97:64:dd: b8:36:46:ea:54:f6:e4:f5:15:13:78:e0:ca:a5:17:ad:18:35: 3d:0d:ba:37 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZyy35pAmMR2sQUpb8TNfxbeXLEMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMTI0MDAwMDAwWhcNMjUwMjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNTJlNDRhMTE3ZmE4MWMxOTgxMWY5ZDAyZGNlYTM5NzUw N2UyZDUyMjE5OTFjYTM2MWRkMGUzMGJkMzc1ZjU2MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJOMHMf/wwLGLywQfLpc0Uz6o1P1scGT8Mw0s+rERT1JlN YMDIJ1O74kj2Z9Ko6gAsGv6VGxJ58KzbPv5OFEJ5JhyeI2SpNCr6Paf6/82PDUEV PJk/SO2dZOnhBzL8gU9SiF/i/vBePZyvjJWtyF70tBY/GrwPa3f53xdQhLioOyRE nzH2R0v/NYH38k0YLovaY0MSXJ9jzb4RnilHdqvJwdp6cFLIPkOh1vIvzaUfbqvG gUQuNVi9dEVFnY1JVaqNJLgHHwujrHHMCKR3C7qKGLE9qDjcAIUQXl5F5Sl7DWBB ZMgKIuRotmjBUUOcVYTEQVaf1tV0mTKhZIst6PNvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUpqu6w4CNyKA13LcV1ziGreRYs84wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2MzYzEzNzdiLTE1YTktNDkxOC04YWM0LTRhYmFmZDMxMDQ2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABkcwDQYJKoZIhvcNAQELBQADggEBABPV/+9xDBMh13lFs6TNY4uN nHotm8PCdYW5Lqc290xjkI4walT+QFhb7KvcspRKHAlUmyz/llq/QqY2ByDLSvXi TioJNcHu/Un0H1JTVVCMdHhKVKs2iM17f9twF1xRrIc6l4Q5XcwrtPU4FFkeIVPQ y+1YaBJ/RqPLi6CEaYp3FeNMQv+r0hAKuUIGsPzDVi6xtxKGVuRoZcl9Oul8Dp6n ygGcfXdRNpELIzo5nj7/YP1n0Y5EY9lp7/6aQ19eQM5vU7QuBi4d14/TZPjGPNyN 0NrFdb1wSmxEbJEcS8Sk1s8qC2gIBJdk3bg2RupU9uT1FRN44MqlF60YNT0Nujc= -----END CERTIFICATE-----Generated at Sun Feb 16 15:37:31 2025 by rpki-client