$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/02e8e3cf-8157-4c2c-8460-90cdfb690289.roa File: 02e8e3cf-8157-4c2c-8460-90cdfb690289.roa (raw, json) Hash identifier: Wgg32IpWmLH366u+t3DyKTn7BaesUun1rCxwtLxnj6o= Subject key identifier: EA:37:F9:4E:2F:9B:2D:DA:97:A9:89:F0:AC:2A:9E:E5:46:0C:1E:59 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 48144C8004E90512E0A1AD63E827C1DEDE0A70B6 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/02e8e3cf-8157-4c2c-8460-90cdfb690289.roa Signing time: Sat 08 Feb 2025 00:00:00 +0000 ROA not before: Sat 08 Feb 2025 00:00:00 +0000 ROA not after: Sat 15 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000::/28 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:14:4c:80:04:e9:05:12:e0:a1:ad:63:e8:27:c1:de:de:0a:70:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 8 00:00:00 2025 GMT Not After : Mar 15 23:59:59 2025 GMT Subject: CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d1:e0:75:3c:18:c6:4a:55:6b:6a:d7:e3:35: e0:d7:4c:76:e4:30:bd:81:2b:d3:d3:14:11:ac:1e: dd:57:3c:00:9b:cc:0d:da:6d:b9:df:21:c6:95:2d: 86:88:ed:ad:ac:d3:9c:42:0f:2c:60:79:31:6c:6b: c1:5d:47:dd:a8:fb:36:70:26:ec:a8:cc:2c:b8:13: eb:30:bb:53:b2:a5:15:9c:63:ec:75:fe:f2:34:f4: 9d:cb:b2:81:81:d8:31:d6:50:8c:04:95:50:3b:62: 4b:30:c5:05:01:f0:b4:ee:80:c0:8e:f3:de:77:83: b7:8a:e7:a4:d1:b5:bd:10:3f:d7:4a:01:d8:40:c1: 9f:ab:c3:b4:ac:2a:8c:cb:22:69:37:0e:26:ea:4f: 47:6f:51:36:a7:73:4a:b1:c5:e1:b3:14:40:47:eb: cf:07:5b:48:34:ea:75:cf:ba:59:54:68:86:08:3d: 45:2c:a6:5d:35:8a:45:f4:64:b1:3c:4d:7e:eb:af: 96:7e:4f:8b:63:f7:d2:de:18:38:b7:20:32:07:9f: 7b:ea:f1:54:ec:65:33:0d:1c:1d:b0:16:60:07:9d: d3:49:bd:3a:8b:dd:bb:92:32:a8:3a:50:bc:ec:37: 42:4e:84:ed:e7:74:c3:c3:a9:b7:e9:4c:4b:e3:34: 15:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:37:F9:4E:2F:9B:2D:DA:97:A9:89:F0:AC:2A:9E:E5:46:0C:1E:59 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/02e8e3cf-8157-4c2c-8460-90cdfb690289.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000::/28 Signature Algorithm: sha256WithRSAEncryption 04:bc:7d:13:8b:be:d4:59:34:08:e4:65:c8:df:ec:87:71:68: 1b:6f:f7:df:33:9e:53:a5:03:d5:cb:ce:2d:73:35:e7:72:c5: 05:54:2c:e6:b3:5e:54:3f:36:6b:e4:bf:38:68:81:82:8b:21: c7:53:6f:30:cf:93:e0:3e:6d:69:94:40:92:66:d9:a3:79:64: 00:24:bc:a3:84:8a:fe:7d:29:93:50:e1:03:d4:0e:21:b0:b0: ed:f6:df:54:fd:9e:57:ee:26:1d:01:3a:53:58:ea:b8:12:23: 6b:e2:d9:50:fd:6a:1a:5d:f3:29:76:9e:0b:ef:6c:24:27:2b: 31:d2:bd:2d:b1:df:89:a3:d5:e0:60:7e:49:72:67:fe:75:7d: dc:48:28:6d:a6:c5:ce:3a:94:e1:04:62:3b:ae:e0:56:59:16: 3f:47:5d:9b:0b:b7:48:e3:00:b0:6c:f4:98:2c:f0:76:b0:65: c8:ea:27:1b:97:b0:f5:e6:a9:81:e6:fd:ac:30:63:93:4d:cd: 2f:02:0d:95:52:be:e5:c0:65:36:06:f7:18:6f:3f:6c:dc:17: 32:78:60:89:08:45:65:15:f6:ad:bc:e7:c8:6e:59:69:d8:ea: 0c:d5:ee:a2:19:7d:47:9a:59:d2:ef:37:63:ae:ce:40:91:57: 98:39:22:81 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUSBRMgATpBRLgoa1j6CfB3t4KcLYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwMjA4MDAwMDAwWhcNMjUwMzE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNzE1MjE2NzgxZGFmNmE2YTc4ZDgwNmIwNWFiNTc1ZThj ZDNiYjEwODc5YzliMWFmOWIxOGVmOTc1MjI4OTIwMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJ0eB1PBjGSlVratfjNeDXTHbkML2BK9PTFBGsHt1XPACb zA3abbnfIcaVLYaI7a2s05xCDyxgeTFsa8FdR92o+zZwJuyozCy4E+swu1OypRWc Y+x1/vI09J3LsoGB2DHWUIwElVA7YkswxQUB8LTugMCO8953g7eK56TRtb0QP9dK AdhAwZ+rw7SsKozLImk3DibqT0dvUTanc0qxxeGzFEBH688HW0g06nXPullUaIYI PUUspl01ikX0ZLE8TX7rr5Z+T4tj99LeGDi3IDIHn3vq8VTsZTMNHB2wFmAHndNJ vTqL3buSMqg6ULzsN0JOhO3ndMPDqbfpTEvjNBXZAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQU6jf5Ti+bLdqXqYnwrCqe5UYMHlkwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzAyZThlM2NmLTgxNTctNGMyYy04NDYwLTkwY2RmYjY5MDI4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQQmAJAAMA0GCSqGSIb3DQEBCwUAA4IBAQAEvH0Ti77UWTQI5GXI3+yHcWgb b/ffM55TpQPVy84tczXncsUFVCzms15UPzZr5L84aIGCiyHHU28wz5PgPm1plECS ZtmjeWQAJLyjhIr+fSmTUOED1A4hsLDt9t9U/Z5X7iYdATpTWOq4EiNr4tlQ/Woa XfMpdp4L72wkJysx0r0tsd+Jo9XgYH5Jcmf+dX3cSChtpsXOOpThBGI7ruBWWRY/ R12bC7dI4wCwbPSYLPB2sGXI6icbl7D15qmB5v2sMGOTTc0vAg2VUr7lwGU2BvcY bz9s3BcyeGCJCEVlFfatvOfIbllp2OoM1e6iGX1HmlnS7zdjrs5AkVeYOSKB -----END CERTIFICATE-----Generated at Sun Feb 16 15:12:30 2025 by rpki-client