$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/7e5e4204-8bcf-499a-999a-8f190e991cc4.roa File: 7e5e4204-8bcf-499a-999a-8f190e991cc4.roa (raw, json) Hash identifier: SalZzcaUqif4gpSqrO22LSunTH6GPr9otYvpckKXeIY= Subject key identifier: 8F:2C:83:22:C3:A0:DD:89:4B:8F:A4:05:D1:1E:30:F5:08:A2:5E:4D Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 3F6A31DBAFB9337808D32E04498678D57FB9FAE7 Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/7e5e4204-8bcf-499a-999a-8f190e991cc4.roa Signing time: Fri 31 Jan 2025 00:00:00 +0000 ROA not before: Fri 31 Jan 2025 00:00:00 +0000 ROA not after: Fri 07 Mar 2025 23:59:59 +0000 asID: 62785 IP address blocks: 2605:b140::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 18 Feb 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:6a:31:db:af:b9:33:78:08:d3:2e:04:49:86:78:d5:7f:b9:fa:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: Jan 31 00:00:00 2025 GMT Not After : Mar 7 23:59:59 2025 GMT Subject: CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:97:85:8d:c8:6e:30:3e:a5:ec:d0:b0:4e:da: 07:04:04:ae:8d:db:65:8c:d4:ac:73:ba:54:f2:9d: 48:ca:e2:3e:03:f7:18:33:54:b2:1b:8f:b7:f4:c9: 77:31:20:38:b2:bc:88:c4:b4:01:71:9e:64:04:da: ec:e2:e1:06:a3:42:50:87:3b:ed:08:24:a2:25:b5: 33:fa:99:4c:76:21:19:2f:f3:46:e6:49:58:53:e2: 85:30:5a:b5:ef:66:6b:1b:bb:97:8c:96:33:be:cd: 55:21:5f:f2:89:8d:84:05:46:e5:39:7d:29:f1:f7: 46:7c:97:df:d4:58:58:1d:ef:35:bb:b0:70:89:65: 2c:da:9a:b1:5c:13:c2:fc:cb:35:c2:94:5c:31:38: 36:78:d5:fe:f8:e2:7d:77:95:68:7d:90:46:bc:56: 61:96:87:1f:6c:a8:a7:8c:77:f1:12:3e:a1:46:78: d7:7f:d6:62:6d:14:04:e7:9f:31:a8:ba:a5:e8:6b: 15:70:7c:67:40:38:db:1c:42:4c:67:a8:2a:c6:6e: 91:cf:05:f6:a5:8c:5e:8d:96:02:d5:d2:9f:9b:63: bb:53:32:2b:ce:0c:60:84:91:c5:79:3d:17:6a:01: b2:8c:c4:22:d0:55:71:19:1c:c4:07:7c:de:ee:9f: f0:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:2C:83:22:C3:A0:DD:89:4B:8F:A4:05:D1:1E:30:F5:08:A2:5E:4D X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/7e5e4204-8bcf-499a-999a-8f190e991cc4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:b140::/32 Signature Algorithm: sha256WithRSAEncryption 35:61:94:ec:79:86:15:0b:b9:ed:1f:cf:10:d4:6e:75:58:50: f8:e8:cf:37:92:b7:ac:1e:84:7a:65:71:ac:12:0f:07:09:a2: d0:4e:bf:09:6f:5a:c1:3d:58:27:18:8c:d4:5f:9d:a3:19:66: e6:d6:b1:86:9b:fe:c0:c2:a4:e9:0c:7b:b6:da:bc:09:70:52: 71:da:bd:83:30:72:22:af:4a:e4:17:51:d5:19:ca:bf:03:f2: e8:8a:87:98:a4:45:1c:93:2c:be:f9:4c:63:bb:05:3b:81:c2: 93:1c:f9:f4:87:50:30:59:c5:92:0d:ca:50:94:34:5a:55:02: fe:ce:4a:c6:c4:fe:df:07:d0:4b:3e:00:57:b3:85:ed:5e:c5: 1e:b0:1a:9a:0d:c7:ee:7d:16:64:e5:f0:f1:87:c8:88:9c:74: 38:bb:13:6b:ed:ee:63:04:af:9e:0c:42:f4:9d:f5:e1:f8:03: 0d:4d:83:c6:11:50:64:3e:a9:24:54:c5:51:63:ba:10:e6:26: de:ba:55:0f:a1:af:c9:f2:87:7d:3c:3f:10:a3:8e:de:e9:14: d5:31:ed:1c:4b:14:8b:96:44:fd:49:9c:dc:e8:bc:60:a4:4b: 61:c5:de:a4:f5:f2:88:5a:9b:54:a1:a6:f6:92:fe:e1:92:56: 05:68:25:8c -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUP2ox26+5M3gI0y4ESYZ41X+5+ucwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjUwMTMxMDAwMDAwWhcNMjUwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYTZmYTQ5YTgyMjQzZTAzOTJiNjFlMjVjMjMyNDFhYTE4 YzNhOTQwYWFhNzRlZGVlNTQ0MmFhNzE4YmJiYmZlMS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYl4WNyG4wPqXs0LBO2gcEBK6N22WM1KxzulTynUjK4j4D 9xgzVLIbj7f0yXcxIDiyvIjEtAFxnmQE2uzi4QajQlCHO+0IJKIltTP6mUx2IRkv 80bmSVhT4oUwWrXvZmsbu5eMljO+zVUhX/KJjYQFRuU5fSnx90Z8l9/UWFgd7zW7 sHCJZSzamrFcE8L8yzXClFwxODZ41f744n13lWh9kEa8VmGWhx9sqKeMd/ESPqFG eNd/1mJtFATnnzGouqXoaxVwfGdAONscQkxnqCrGbpHPBfaljF6NlgLV0p+bY7tT MivODGCEkcV5PRdqAbKMxCLQVXEZHMQHfN7un/DTAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUjyyDIsOg3YlLj6QF0R4w9QiiXk0wHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4LzdlNWU0MjA0LThiY2YtNDk5YS05OTlhLThmMTkwZTk5MWNjNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBbFAMA0GCSqGSIb3DQEBCwUAA4IBAQA1YZTseYYVC7ntH88Q1G51WFD4 6M83kresHoR6ZXGsEg8HCaLQTr8Jb1rBPVgnGIzUX52jGWbm1rGGm/7AwqTpDHu2 2rwJcFJx2r2DMHIir0rkF1HVGcq/A/LoioeYpEUckyy++UxjuwU7gcKTHPn0h1Aw WcWSDcpQlDRaVQL+zkrGxP7fB9BLPgBXs4XtXsUesBqaDcfufRZk5fDxh8iInHQ4 uxNr7e5jBK+eDEL0nfXh+AMNTYPGEVBkPqkkVMVRY7oQ5ibeulUPoa/J8od9PD8Q o47e6RTVMe0cSxSLlkT9SZzc6LxgpEthxd6k9fKIWptUoab2kv7hklYFaCWM -----END CERTIFICATE-----Generated at Sun Feb 16 20:18:22 2025 by rpki-client