$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e3c66b01-c8b4-4cf4-a54f-8356d3d956ed.roa File: e3c66b01-c8b4-4cf4-a54f-8356d3d956ed.roa (raw, json) Hash identifier: 9Mp/bI0Lyk7NTR2syEhCRr8UeFMilNP6LuD8HQFcWyI= Subject key identifier: 3F:50:3B:96:0B:54:E3:C2:67:26:FE:7D:71:C2:26:25:26:51:A9:C1 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 298D031FE1B0F4FEB7C389E58A885CC4A8D3B0EA Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e3c66b01-c8b4-4cf4-a54f-8356d3d956ed.roa Signing time: Fri 24 Jan 2025 00:00:00 +0000 ROA not before: Fri 24 Jan 2025 00:00:00 +0000 ROA not after: Fri 28 Feb 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:c0f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:8d:03:1f:e1:b0:f4:fe:b7:c3:89:e5:8a:88:5c:c4:a8:d3:b0:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jan 24 00:00:00 2025 GMT Not After : Feb 28 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:62:dc:3b:68:7a:ac:bf:cb:ac:da:39:bc:6c: 98:45:85:50:b7:d1:15:b9:75:1f:7d:ae:dc:8b:dd: 34:7d:2d:e7:0b:45:ae:49:2f:98:5e:93:c6:77:e3: 67:00:8f:a1:a5:0c:28:f4:cb:88:5b:4f:09:df:76: bf:31:24:9a:df:63:3a:c4:d6:f7:e5:ea:9d:48:75: d7:3f:9d:55:41:d4:3a:d8:1a:d7:53:e7:c1:92:24: 56:6a:c4:09:ec:ea:64:f1:93:cd:0f:42:3e:91:af: a7:09:05:d4:5c:1e:31:01:c1:1a:da:a2:7c:a7:d7: 96:10:3d:6e:ca:a5:8d:38:0c:9c:6c:73:03:ba:a1: 00:64:4e:f8:a1:b6:ff:04:bb:e6:07:0f:4c:43:85: 52:b5:46:dc:f4:74:e6:b9:f3:9e:10:67:ad:e8:20: fa:72:d1:e2:c1:87:ef:b1:60:b0:4a:78:61:8e:d6: 3e:a8:fb:4d:0a:d7:33:e1:d5:c9:6b:2f:36:39:c0: 9d:2a:00:9b:28:3c:8e:30:30:5c:54:1c:01:cb:f1: 99:4a:02:18:ec:37:9d:d0:bb:02:1c:63:51:b4:7f: 25:86:ee:b1:fc:c7:2c:5c:92:00:f8:bb:df:89:dc: ce:6b:5f:a3:bb:70:8e:47:ed:76:50:09:67:2e:23: 7c:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:50:3B:96:0B:54:E3:C2:67:26:FE:7D:71:C2:26:25:26:51:A9:C1 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e3c66b01-c8b4-4cf4-a54f-8356d3d956ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c0f::/48 Signature Algorithm: sha256WithRSAEncryption 5b:d6:e7:92:06:a4:54:f3:1c:4f:a1:9d:00:d6:39:ec:69:fc: 99:c2:5f:66:bd:55:c3:2a:6d:1b:46:58:49:d0:28:6a:19:4c: f3:9d:fa:40:34:5a:5e:6e:57:f3:2c:7e:8d:21:0c:ae:0b:51: cc:ef:6a:f9:9f:0f:7b:53:38:9f:25:86:a2:61:3c:98:be:7b: fc:e0:32:bf:71:aa:79:58:37:84:0c:dc:57:88:8e:e4:4a:77: 8b:e1:2d:de:46:8b:15:2d:22:63:c6:52:c0:f4:97:47:28:e3: a5:51:49:c7:89:0a:3b:86:21:23:9f:0d:30:c4:73:6f:81:a0: 54:08:8d:10:32:2b:aa:d5:05:80:03:8d:52:3a:5b:61:ed:31: 2f:2d:83:3b:3d:3e:7e:dc:3a:20:ba:bb:19:9c:a2:c8:99:d8: 43:e4:b1:a0:95:c9:89:0e:3b:ff:4b:de:e0:4f:8b:1c:92:33: a9:c6:91:5d:51:74:64:55:0f:7b:a3:6f:39:22:ce:51:8c:d8: ba:37:72:9e:ee:3d:fc:bb:88:f1:ac:3f:c6:d4:91:3e:6a:7b: 82:f5:fb:fb:f5:cd:f0:02:86:5d:bc:37:30:05:8d:f2:69:c8: 01:74:b3:df:4b:18:bd:0a:fe:8d:08:27:06:91:7a:b2:dd:8a: 45:cb:95:2f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKY0DH+Gw9P63w4nliohcxKjTsOowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMTI0MDAwMDAwWhcNMjUwMjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxM2NjZDQ5YjI2ZmNhNWMzZTk4N2UwZTExMzdhMDUxN2U5 NzBlYjlmMWI5MzhhNjIxMmE5MDFhMTE2ZjZmM2Q3MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9Ytw7aHqsv8us2jm8bJhFhVC30RW5dR99rtyL3TR9LecL Ra5JL5hek8Z342cAj6GlDCj0y4hbTwnfdr8xJJrfYzrE1vfl6p1Iddc/nVVB1DrY GtdT58GSJFZqxAns6mTxk80PQj6Rr6cJBdRcHjEBwRraonyn15YQPW7KpY04DJxs cwO6oQBkTvihtv8Eu+YHD0xDhVK1Rtz0dOa5854QZ63oIPpy0eLBh++xYLBKeGGO 1j6o+00K1zPh1clrLzY5wJ0qAJsoPI4wMFxUHAHL8ZlKAhjsN53QuwIcY1G0fyWG 7rH8xyxckgD4u9+J3M5rX6O7cI5H7XZQCWcuI3wDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUP1A7lgtU48JnJv59ccImJSZRqcEwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2UzYzY2YjAxLWM4YjQtNGNmNC1hNTRmLTgzNTZkM2Q5NTZlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADA8wDQYJKoZIhvcNAQELBQADggEBAFvW55IGpFTzHE+hnQDWOexp /JnCX2a9VcMqbRtGWEnQKGoZTPOd+kA0Wl5uV/Msfo0hDK4LUczvavmfD3tTOJ8l hqJhPJi+e/zgMr9xqnlYN4QM3FeIjuRKd4vhLd5GixUtImPGUsD0l0co46VRSceJ CjuGISOfDTDEc2+BoFQIjRAyK6rVBYADjVI6W2HtMS8tgzs9Pn7cOiC6uxmcosiZ 2EPksaCVyYkOO/9L3uBPixySM6nGkV1RdGRVD3ujbzkizlGM2Lo3cp7uPfy7iPGs P8bUkT5qe4L1+/v1zfAChl28NzAFjfJpyAF0s99LGL0K/o0IJwaRerLdikXLlS8= -----END CERTIFICATE-----Generated at Sun Feb 16 15:05:14 2025 by rpki-client