$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ea014712-964e-4c9e-bacc-2630e4e451b2.roa File: ea014712-964e-4c9e-bacc-2630e4e451b2.roa (raw, json) Hash identifier: ZSbtCWju2C8gfoOStWnK5QUHpNtnhq2mUyJF27Z0Ga8= Subject key identifier: 4F:8A:04:D0:8E:CD:91:C9:82:F0:93:21:5D:5C:72:8F:43:2F:90:9F Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 0BFC08888FBD30250D7F05C522930ABB0E7A3E92 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ea014712-964e-4c9e-bacc-2630e4e451b2.roa Signing time: Wed 05 Feb 2025 00:00:00 +0000 ROA not before: Wed 05 Feb 2025 00:00:00 +0000 ROA not after: Wed 12 Mar 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:d00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:fc:08:88:8f:bd:30:25:0d:7f:05:c5:22:93:0a:bb:0e:7a:3e:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Feb 5 00:00:00 2025 GMT Not After : Mar 12 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:3c:76:f6:06:d7:ae:c3:86:80:45:7d:51:88: 7c:46:b0:d3:21:6b:d5:97:97:b0:8b:ad:ee:71:22: 75:77:57:6d:ef:34:10:86:6b:62:8f:23:71:39:a0: 86:cb:13:34:ba:7e:b0:25:5b:f1:78:4e:26:de:0c: 20:8c:5d:bd:14:5e:64:5a:48:c5:bd:58:8a:fb:e2: c9:04:1c:d6:a3:5a:72:69:1e:f4:f1:10:4f:7d:9c: 5a:74:24:da:85:d0:9b:9e:79:bb:fc:1b:a6:52:3f: d2:97:04:78:c4:4f:3c:02:7a:f5:4b:06:6e:2c:77: 3f:f8:f5:62:20:e7:ec:d7:95:42:7f:2e:e4:7b:a0: b2:f4:72:82:99:c7:ce:de:24:86:6c:39:d9:8e:e8: 75:a3:bf:e0:eb:5d:b3:28:ce:e9:97:82:01:c2:76: b2:cc:69:af:ea:d0:2e:2e:9e:b0:c3:c9:88:c1:01: 41:d4:60:ec:cf:01:12:24:96:08:33:eb:d6:ec:c6: 01:6c:7d:4f:27:30:e3:ed:ba:98:2c:83:93:85:95: ee:b5:d7:f2:a3:ba:31:05:1a:32:ab:1c:06:d7:89: 06:b2:21:6d:19:db:d6:55:b2:d5:22:a0:87:a1:05: b9:2e:84:c6:92:82:a1:c7:89:47:15:9a:76:3a:98: 09:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:8A:04:D0:8E:CD:91:C9:82:F0:93:21:5D:5C:72:8F:43:2F:90:9F X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ea014712-964e-4c9e-bacc-2630e4e451b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:d00::/40 Signature Algorithm: sha256WithRSAEncryption 44:d5:28:c6:ed:5a:0b:90:2c:1f:85:4c:64:80:99:9b:a3:5b: be:ed:9c:7c:c9:2a:4a:b0:13:1b:3d:91:cc:94:3c:a4:0c:3f: dc:d3:7d:73:19:e7:3a:b5:2f:7c:cd:a6:56:39:37:52:3c:18: 48:10:84:64:40:16:93:7d:62:43:2d:62:c2:4b:9f:82:e5:79: dc:de:fa:fc:91:8d:da:7c:ba:49:65:24:5d:60:f1:e0:11:11: 6a:09:57:e8:61:c9:60:af:1d:bf:ab:33:2e:d5:6d:0b:47:9c: d6:64:2d:7b:0b:ee:d9:c8:51:30:70:38:67:fd:29:cb:bf:1b: a4:e5:92:62:82:8b:1c:cb:fc:57:ca:bd:09:3f:c1:da:20:c3: 4b:9f:14:bc:ee:3f:d7:0f:74:2e:6d:46:9f:94:74:cb:5d:01: 1d:40:f2:ff:9e:6f:be:e4:b7:59:09:22:62:3c:fe:8b:43:1f: 2b:59:1c:34:05:08:c1:a0:66:f0:2b:49:66:c0:be:e5:68:78: 6f:46:55:c7:56:85:6c:77:f4:21:2a:4b:00:d1:4f:e8:09:3b: d5:a1:ce:97:fd:00:dc:a3:95:b2:b0:b1:81:7e:6a:58:3c:fd: a4:de:59:ac:f2:27:91:93:2a:cf:ef:46:84:19:e3:85:2f:d8: bf:2e:de:7c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUC/wIiI+9MCUNfwXFIpMKuw56PpIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMjA1MDAwMDAwWhcNMjUwMzEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYzVjMzBiMTg4Y2UxYzVmODVkMWQ5MGE1NmI3ZmQyZWZj ZTdiYTNiNDM3MWQ1NzIxZTUyZjFlY2I5MzQwNDUxMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCPPHb2Bteuw4aARX1RiHxGsNMha9WXl7CLre5xInV3V23v NBCGa2KPI3E5oIbLEzS6frAlW/F4TibeDCCMXb0UXmRaSMW9WIr74skEHNajWnJp HvTxEE99nFp0JNqF0Jueebv8G6ZSP9KXBHjETzwCevVLBm4sdz/49WIg5+zXlUJ/ LuR7oLL0coKZx87eJIZsOdmO6HWjv+DrXbMozumXggHCdrLMaa/q0C4unrDDyYjB AUHUYOzPARIklggz69bsxgFsfU8nMOPtupgsg5OFle611/KjujEFGjKrHAbXiQay IW0Z29ZVstUioIehBbkuhMaSgqHHiUcVmnY6mAmdAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUT4oE0I7NkcmC8JMhXVxyj0MvkJ8wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2VhMDE0NzEyLTk2NGUtNGM5ZS1iYWNjLTI2MzBlNGU0NTFiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmBZzADTANBgkqhkiG9w0BAQsFAAOCAQEARNUoxu1aC5AsH4VMZICZm6Nb vu2cfMkqSrATGz2RzJQ8pAw/3NN9cxnnOrUvfM2mVjk3UjwYSBCEZEAWk31iQy1i wkufguV53N76/JGN2ny6SWUkXWDx4BERaglX6GHJYK8dv6szLtVtC0ec1mQtewvu 2chRMHA4Z/0py78bpOWSYoKLHMv8V8q9CT/B2iDDS58UvO4/1w90Lm1Gn5R0y10B HUDy/55vvuS3WQkiYjz+i0MfK1kcNAUIwaBm8CtJZsC+5Wh4b0ZVx1aFbHf0ISpL ANFP6Ak71aHOl/0A3KOVsrCxgX5qWDz9pN5ZrPInkZMqz+9GhBnjhS/Yvy7efA== -----END CERTIFICATE-----Generated at Sun Feb 16 06:02:58 2025 by rpki-client