$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09e0eed7-f971-49f0-8b15-65706a28f0d4.roa File: 09e0eed7-f971-49f0-8b15-65706a28f0d4.roa (raw, json) Hash identifier: oKyY7aN/8RRgGiMpwaIWuFbF7oL1xOLusYcwlzDKHoI= Subject key identifier: 9E:2A:EF:3A:F8:3F:FF:61:6C:2F:53:09:E0:7A:BB:4D:79:D8:40:1D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0305A314355E37C460BA0621967F57D92D183105 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09e0eed7-f971-49f0-8b15-65706a28f0d4.roa Signing time: Mon 21 Apr 2025 17:51:23 +0000 ROA not before: Mon 21 Apr 2025 17:51:23 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:4010::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:05:a3:14:35:5e:37:c4:60:ba:06:21:96:7f:57:d9:2d:18:31:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 21 17:51:23 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=f5be852fdcfce79f8b39cb3c5b18a6acb52f93698af184519f30355f1088b0b6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5a:61:23:e3:c8:ab:1b:53:5c:2e:14:d8:07: e4:c3:89:14:01:d5:ef:59:e6:7f:39:62:6d:0c:2b: 97:75:2e:d9:40:47:16:85:a9:9e:25:a8:c5:77:c1: b5:0e:f1:17:ab:0c:15:8c:15:2c:df:3f:44:78:ac: d2:ec:d9:b6:61:1f:ce:59:9a:51:6d:a6:27:f2:45: 7e:e0:c4:71:0a:aa:f1:ae:f1:4f:3f:2b:38:60:21: b9:e4:6e:91:be:51:d8:da:91:76:64:57:e5:8c:8f: ea:67:c4:76:3c:52:6b:9e:d1:46:d4:6c:59:f6:a2: a8:93:70:06:a0:d2:32:ad:d6:94:10:33:a3:d1:93: f5:31:8c:50:68:c4:ab:87:85:b8:37:84:42:27:83: 91:8d:0b:3c:ed:54:09:08:f5:46:a7:2c:48:bd:7d: 0c:3e:a4:66:a9:d8:10:a8:81:fd:35:2a:ba:cc:99: 3e:0b:25:2a:f5:d9:8a:96:81:24:e0:3f:de:df:97: 01:ef:ff:3d:a8:ee:0a:45:f1:7a:fc:7f:1b:a2:52: 7e:98:b6:f0:11:b7:4b:62:d0:2d:50:53:ad:b7:f2: 38:83:79:f5:ba:f1:89:ca:34:65:ab:00:21:ac:9e: c0:97:0b:c9:5e:49:b5:4a:8f:4b:08:b3:67:a3:bb: 1b:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:2A:EF:3A:F8:3F:FF:61:6C:2F:53:09:E0:7A:BB:4D:79:D8:40:1D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09e0eed7-f971-49f0-8b15-65706a28f0d4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:4010::/48 Signature Algorithm: sha256WithRSAEncryption 8d:65:7b:7d:88:72:70:69:e1:31:5b:a5:c5:1f:ea:2b:eb:29: cc:79:56:56:b5:b3:0f:d3:9e:54:b5:09:86:be:55:7b:ea:39: a5:ee:b5:a7:33:4a:35:6d:cb:7b:b2:f9:03:6f:04:99:13:ea: 15:c9:91:6f:db:a7:9e:f8:ca:3c:c6:75:1e:0f:a3:f6:77:1c: 54:7e:a0:a3:10:84:50:00:30:ec:86:81:84:80:0e:0b:b4:77: 69:26:25:cf:f3:c3:fa:d5:04:28:c2:26:8c:b2:de:5a:b0:95: 95:1b:c1:29:d3:37:58:ec:1d:bf:05:30:2a:f6:c9:0d:38:6c: 7f:bc:b6:e4:36:c9:42:4e:73:47:50:f6:f8:e7:97:40:dd:6e: 6d:b3:9d:1f:11:9f:af:2c:37:97:b5:39:99:ad:64:ed:28:4d: 16:9a:e2:66:68:8a:83:3f:b5:4f:22:a7:2e:9b:99:35:1c:6b: 34:cb:d7:5b:7f:91:71:ca:4a:ac:29:c8:fe:4c:71:ee:a2:08: 3a:17:8d:6c:4e:56:29:fa:44:54:5c:b9:d6:e4:e6:07:46:4d: f7:a4:ae:12:10:b2:10:aa:8f:74:39:53:06:97:db:47:5e:3d: 8a:3f:6e:45:c9:44:8c:11:50:ba:ff:ed:55:51:00:98:b8:59: a6:0d:6b:e6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUAwWjFDVeN8RgugYhln9X2S0YMQUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIxMTc1MTIzWhcNMjUwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNWJlODUyZmRjZmNlNzlmOGIzOWNiM2M1YjE4YTZhY2I1 MmY5MzY5OGFmMTg0NTE5ZjMwMzU1ZjEwODhiMGI2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmWmEj48irG1NcLhTYB+TDiRQB1e9Z5n85Ym0MK5d1LtlA RxaFqZ4lqMV3wbUO8RerDBWMFSzfP0R4rNLs2bZhH85ZmlFtpifyRX7gxHEKqvGu 8U8/KzhgIbnkbpG+UdjakXZkV+WMj+pnxHY8Umue0UbUbFn2oqiTcAag0jKt1pQQ M6PRk/UxjFBoxKuHhbg3hEIng5GNCzztVAkI9UanLEi9fQw+pGap2BCogf01KrrM mT4LJSr12YqWgSTgP97flwHv/z2o7gpF8Xr8fxuiUn6YtvARt0ti0C1QU6238jiD efW68YnKNGWrACGsnsCXC8leSbVKj0sIs2ejuxsFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUnirvOvg//2FsL1MJ4Hq7TXnYQB0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA5ZTBlZWQ3LWY5NzEtNDlmMC04YjE1LTY1NzA2YTI4ZjBkNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AQBAwDQYJKoZIhvcNAQELBQADggEBAI1le32IcnBp4TFbpcUf6ivr Kcx5Vla1sw/TnlS1CYa+VXvqOaXutaczSjVty3uy+QNvBJkT6hXJkW/bp574yjzG dR4Po/Z3HFR+oKMQhFAAMOyGgYSADgu0d2kmJc/zw/rVBCjCJoyy3lqwlZUbwSnT N1jsHb8FMCr2yQ04bH+8tuQ2yUJOc0dQ9vjnl0Ddbm2znR8Rn68sN5e1OZmtZO0o TRaa4mZoioM/tU8ipy6bmTUcazTL11t/kXHKSqwpyP5Mce6iCDoXjWxOVin6RFRc udbk5gdGTfekrhIQshCqj3Q5UwaX20dePYo/bkXJRIwRULr/7VVRAJi4WaYNa+Y= -----END CERTIFICATE-----Generated at Sat Apr 26 18:07:47 2025 by rpki-client