$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f7068e3e-0b73-43e3-83c2-9df613575814.roa File: f7068e3e-0b73-43e3-83c2-9df613575814.roa (raw, json) Hash identifier: vgo8FdGk98qniBleZf68RMIY+ZSRtMHjMClvJXkyLcU= Subject key identifier: B4:B8:44:C8:E8:29:D6:81:89:21:54:FD:31:57:F4:5B:DB:B2:E0:F9 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 6B3BF0832390941904E0CBBEB9362B9C4D48CA64 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f7068e3e-0b73-43e3-83c2-9df613575814.roa Signing time: Mon 10 Feb 2025 00:00:00 +0000 ROA not before: Mon 10 Feb 2025 00:00:00 +0000 ROA not after: Mon 17 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:547::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:3b:f0:83:23:90:94:19:04:e0:cb:be:b9:36:2b:9c:4d:48:ca:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Feb 10 00:00:00 2025 GMT Not After : Mar 17 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:da:13:b1:b5:1a:dd:01:69:e5:06:d1:d6:45: ca:df:b3:14:df:7e:d5:46:92:1a:6b:78:13:62:3d: 2f:ee:4a:f2:e8:af:0d:44:c5:40:ef:4a:2a:83:a6: 6b:69:24:bd:36:82:07:79:22:1a:84:b8:7c:b7:78: a2:32:7f:60:91:c1:f1:47:30:9c:73:f4:c5:64:05: b8:5c:8f:8f:3d:52:a3:af:3b:95:df:b9:be:6e:f1: 06:ef:34:02:4d:9c:77:b1:68:e8:48:bb:d5:5d:09: f6:fc:71:b7:8a:a4:db:92:69:b9:02:ad:ee:74:75: 98:c1:5b:08:3e:2b:3d:8d:66:13:f8:dd:0a:18:b8: b1:10:07:c7:fa:c9:cd:70:71:b6:87:1a:f0:79:78: 87:6c:c3:f5:b0:33:d1:46:de:bc:99:1b:51:23:05: db:65:5b:9e:eb:b0:e1:5d:8b:0c:ce:6d:aa:d9:63: 0d:0d:58:ac:2d:a0:c0:16:f6:e6:08:a2:63:cb:c5: d9:60:a2:0c:3d:8f:7b:5a:cb:78:da:6f:84:e5:91: d7:d1:a4:53:47:0c:a1:c4:0d:94:c1:21:7c:b1:e7: 54:05:44:0a:98:8a:19:31:42:87:ae:de:c8:07:a7: 80:88:c0:6c:e5:a9:c7:e3:05:cc:dc:fc:a1:41:84: 24:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:B8:44:C8:E8:29:D6:81:89:21:54:FD:31:57:F4:5B:DB:B2:E0:F9 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f7068e3e-0b73-43e3-83c2-9df613575814.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:547::/48 Signature Algorithm: sha256WithRSAEncryption 9b:78:e2:0b:c0:97:63:a7:e1:fa:5f:64:8a:6c:2c:9d:80:d9: f4:c4:16:dd:fd:8a:73:bc:b9:d3:63:e1:4a:85:11:b9:b1:22: 20:54:87:71:4e:ca:54:a9:15:c3:69:4c:e9:1d:20:60:9e:79: 49:db:5f:7c:c8:ab:31:0c:9f:22:65:c9:0b:97:88:b1:a1:95: 07:65:c6:f6:46:1a:aa:a9:dc:20:17:e1:7b:85:e9:d7:1d:0c: 6e:71:23:df:8b:f7:81:10:2c:e5:ef:55:ee:0e:d9:be:c2:df: 0d:14:e7:fc:c7:01:e5:ad:b6:df:71:1c:89:f1:2f:e6:ac:ab: 9d:2e:76:00:6d:d8:44:1d:ce:d0:70:c7:21:6f:2d:dc:bc:30: a4:0f:3d:e7:5d:b6:d1:e8:df:9c:ed:c8:fd:fc:31:bc:1c:53: c2:57:17:cc:4b:45:94:ec:c4:0e:9b:33:27:83:81:ea:b2:49: 71:68:65:6a:96:ec:bd:e9:1b:27:48:fb:48:c1:ca:3e:c9:63: c3:fc:4e:83:39:0f:e9:1a:19:05:df:53:8e:a0:ca:22:f6:55: 5f:15:e0:5a:25:02:cb:66:53:3f:bc:2f:b5:8d:1b:5b:9a:e4: 6c:5e:ed:05:36:69:70:f0:be:0d:65:1f:45:eb:94:fd:f2:4b: 66:06:48:b3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUazvwgyOQlBkE4Mu+uTYrnE1IymQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMjEwMDAwMDAwWhcNMjUwMzE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNzAwYmQxNGYwZjQxNjZhYmYxOTk4MjhlYTYyMDJhZGYw YTIzZGFiMjI2MzM5ODhiNTQ1ZGM1MTZiZDY5MGJiMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCT2hOxtRrdAWnlBtHWRcrfsxTfftVGkhpreBNiPS/uSvLo rw1ExUDvSiqDpmtpJL02ggd5IhqEuHy3eKIyf2CRwfFHMJxz9MVkBbhcj489UqOv O5Xfub5u8QbvNAJNnHexaOhIu9VdCfb8cbeKpNuSabkCre50dZjBWwg+Kz2NZhP4 3QoYuLEQB8f6yc1wcbaHGvB5eIdsw/WwM9FG3ryZG1EjBdtlW57rsOFdiwzObarZ Yw0NWKwtoMAW9uYIomPLxdlgogw9j3tay3jab4TlkdfRpFNHDKHEDZTBIXyx51QF RAqYihkxQoeu3sgHp4CIwGzlqcfjBczc/KFBhCQZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUtLhEyOgp1oGJIVT9MVf0W9uy4PkwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2Y3MDY4ZTNlLTBiNzMtNDNlMy04M2MyLTlkZjYxMzU3NTgxNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABUcwDQYJKoZIhvcNAQELBQADggEBAJt44gvAl2On4fpfZIpsLJ2A 2fTEFt39inO8udNj4UqFEbmxIiBUh3FOylSpFcNpTOkdIGCeeUnbX3zIqzEMnyJl yQuXiLGhlQdlxvZGGqqp3CAX4XuF6dcdDG5xI9+L94EQLOXvVe4O2b7C3w0U5/zH AeWttt9xHInxL+asq50udgBt2EQdztBwxyFvLdy8MKQPPeddttHo35ztyP38Mbwc U8JXF8xLRZTsxA6bMyeDgeqySXFoZWqW7L3pGydI+0jByj7JY8P8ToM5D+kaGQXf U46gyiL2VV8V4FolAstmUz+8L7WNG1ua5Gxe7QU2aXDwvg1lH0XrlP3yS2YGSLM= -----END CERTIFICATE-----Generated at Sun Feb 16 15:04:19 2025 by rpki-client