$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/80d0e2ea-6a97-4531-ba66-c7d4d4ee82a7.roa File: 80d0e2ea-6a97-4531-ba66-c7d4d4ee82a7.roa (raw, json) Hash identifier: zogtPnT6WzjdmbK9MXQ95KMjNwEy93Cn+IwiidNxoWI= Subject key identifier: DA:C6:1B:1A:19:28:AB:D9:E3:37:57:68:47:73:AF:AE:51:B5:F4:87 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 7F66725E00B242BF17D6346796479AD1E69E3AAF Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/80d0e2ea-6a97-4531-ba66-c7d4d4ee82a7.roa Signing time: Mon 10 Feb 2025 00:00:00 +0000 ROA not before: Mon 10 Feb 2025 00:00:00 +0000 ROA not after: Mon 17 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2606:8140::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:66:72:5e:00:b2:42:bf:17:d6:34:67:96:47:9a:d1:e6:9e:3a:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Feb 10 00:00:00 2025 GMT Not After : Mar 17 23:59:59 2025 GMT Subject: CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:18:1a:de:03:56:78:fe:1b:69:4d:bb:84:f0: 46:37:1e:2f:6e:8a:62:e8:89:02:3e:67:69:b2:12: 66:24:48:93:e8:43:4f:49:92:68:e9:34:c0:5c:fe: 4a:7d:f8:f0:5e:76:4b:ca:e8:65:4d:ee:ff:63:d8: 95:42:bc:c0:1e:bb:ca:bd:e2:4b:d0:35:9c:4f:6a: 06:b3:82:67:ad:29:eb:a4:41:a8:b7:60:77:ed:2e: 02:86:1e:85:b7:40:1f:5e:f2:38:72:fb:b9:1c:a2: aa:9c:59:63:d0:22:e8:f6:05:cf:bf:c0:4e:20:b7: bc:31:a5:ce:2d:a1:66:d1:6d:f6:51:90:00:6a:36: 71:76:22:a1:9f:49:75:c0:cb:85:34:e3:9a:ea:a9: b9:3c:1c:10:a3:81:a2:68:85:b7:6c:ee:a6:8a:61: 9c:ac:cf:a8:62:fc:8a:69:0f:a9:f1:3d:6b:37:27: 01:21:19:89:3a:25:cb:ac:41:c2:92:22:c1:b3:46: 9e:a3:d3:f7:b4:93:60:f2:53:9e:af:9d:bb:5f:33: a0:5b:2e:65:69:39:02:ce:5c:dd:1d:c3:31:85:ce: d1:32:b5:b4:31:dd:72:5a:6e:72:66:46:68:27:f7: c4:50:ab:15:76:aa:8b:c8:fd:f3:8a:ef:42:81:19: f8:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:C6:1B:1A:19:28:AB:D9:E3:37:57:68:47:73:AF:AE:51:B5:F4:87 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/80d0e2ea-6a97-4531-ba66-c7d4d4ee82a7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:8140::/32 Signature Algorithm: sha256WithRSAEncryption 6c:3b:00:02:ea:dd:fa:4c:44:36:65:09:be:98:4f:a5:00:24: 08:a1:f7:82:28:41:62:17:d1:61:fe:b8:d7:01:57:e8:3a:67: f2:60:98:06:dc:37:b2:27:61:1a:10:db:65:13:47:f2:76:5e: e2:e8:5a:25:5a:08:bd:69:a8:54:c9:e3:b7:99:8d:51:34:12: 32:c6:d6:a1:07:c7:da:b2:c9:fa:21:53:2f:6e:65:db:53:04: 60:9c:44:c2:e7:eb:8b:ef:13:08:d0:ec:b0:e6:8d:a4:46:27: 16:fb:48:c8:1f:45:fb:9d:a3:83:e6:d8:4c:7d:c7:4d:3b:dd: d3:33:ed:e2:73:68:a9:b8:a8:cd:3a:7b:f4:ed:75:4a:a4:21: 51:7a:b6:5d:87:ab:02:79:c1:3d:8c:77:d8:5c:f2:7b:44:ca: cb:eb:57:c1:04:40:e9:7e:ee:79:1e:b4:28:63:14:97:62:1e: 18:5f:27:09:38:2a:ec:b0:d8:7a:a8:80:8d:ad:c0:28:57:c9: ee:6d:dc:02:05:c4:97:56:40:3d:6e:0f:14:42:bf:eb:d5:89: a2:9b:de:30:7a:aa:1e:37:02:a0:42:a6:1a:36:92:2b:00:1d: 4f:d8:0a:28:39:17:9b:ff:ba:f3:cd:7a:1d:8e:51:f4:71:50: b3:ee:c6:8d -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUf2ZyXgCyQr8X1jRnlkea0eaeOq8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwMjEwMDAwMDAwWhcNMjUwMzE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2N2JjZmU2MzYzM2IyOTY3ODBhZDJiYzM4ZWNiNjFiZDkx MjRmYjE5OWE5ZmY5OTVjM2MwMTQzYzk2NGQ4YmNlMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdGBreA1Z4/htpTbuE8EY3Hi9uimLoiQI+Z2myEmYkSJPo Q09JkmjpNMBc/kp9+PBedkvK6GVN7v9j2JVCvMAeu8q94kvQNZxPagazgmetKeuk Qai3YHftLgKGHoW3QB9e8jhy+7kcoqqcWWPQIuj2Bc+/wE4gt7wxpc4toWbRbfZR kABqNnF2IqGfSXXAy4U045rqqbk8HBCjgaJohbds7qaKYZysz6hi/IppD6nxPWs3 JwEhGYk6JcusQcKSIsGzRp6j0/e0k2DyU56vnbtfM6BbLmVpOQLOXN0dwzGFztEy tbQx3XJabnJmRmgn98RQqxV2qovI/fOK70KBGfi/AgMBAAGjggKyMIICrjAdBgNV HQ4EFgQU2sYbGhkoq9njN1doR3OvrlG19IcwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzgwZDBlMmVhLTZhOTctNDUzMS1iYTY2LWM3ZDRkNGVlODJhNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBoFAMA0GCSqGSIb3DQEBCwUAA4IBAQBsOwAC6t36TEQ2ZQm+mE+lACQI ofeCKEFiF9Fh/rjXAVfoOmfyYJgG3DeyJ2EaENtlE0fydl7i6FolWgi9aahUyeO3 mY1RNBIyxtahB8fassn6IVMvbmXbUwRgnETC5+uL7xMI0Oyw5o2kRicW+0jIH0X7 naOD5thMfcdNO93TM+3ic2ipuKjNOnv07XVKpCFRerZdh6sCecE9jHfYXPJ7RMrL 61fBBEDpfu55HrQoYxSXYh4YXycJOCrssNh6qICNrcAoV8nubdwCBcSXVkA9bg8U Qr/r1Ymim94weqoeNwKgQqYaNpIrAB1P2AooOReb/7rzzXodjlH0cVCz7saN -----END CERTIFICATE-----Generated at Sun Feb 16 15:33:55 2025 by rpki-client