$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1204fd3b-3f96-4317-9dcb-ebef15964e7a.roa File: 1204fd3b-3f96-4317-9dcb-ebef15964e7a.roa (raw, json) Hash identifier: 28DlzvadhP2A6wRUKzF0mwtNDDpcG167WBd2mqy5O8Q= Subject key identifier: D0:3D:0B:10:FB:FA:8C:81:CF:02:38:3E:0C:A5:E7:DE:58:5D:DD:43 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7426D3946C8E1CDBF2FB3AB03D9356C62B4016E0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1204fd3b-3f96-4317-9dcb-ebef15964e7a.roa Signing time: Tue 22 Apr 2025 16:32:03 +0000 ROA not before: Tue 22 Apr 2025 16:32:03 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f32:c000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:26:d3:94:6c:8e:1c:db:f2:fb:3a:b0:3d:93:56:c6:2b:40:16:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:32:03 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=277d99c167414720bc9697f9868c5d57f2d61e2c1b6503834038b848a24d9f37, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d3:54:b8:c2:1c:d7:49:90:cd:0b:ad:6c:f5: 76:7b:d7:4d:7f:00:8f:5b:68:f4:61:79:3f:7b:54: 2d:8d:2d:4a:c0:93:89:cb:a7:ad:29:7e:24:67:40: bd:e5:57:70:2f:a3:54:23:6f:7d:04:58:c2:38:9e: a5:33:af:59:eb:6a:f5:9e:a8:36:7d:33:52:40:62: b5:55:5b:6d:ce:da:ef:41:08:3d:ab:9a:ff:e3:d6: 65:8f:0b:23:80:96:55:05:5a:f9:3c:c8:85:a8:fe: 53:65:81:ca:80:cb:bf:d3:5a:fa:a0:e3:24:7c:84: 1f:cb:32:61:60:51:60:ce:e7:db:31:70:3c:66:82: 8e:aa:1c:21:ce:bb:10:46:7d:89:47:25:21:98:77: 43:5d:0d:83:d0:1b:db:ae:70:06:a6:37:3d:4b:f6: 3a:e3:29:04:58:7c:fb:4b:69:52:f8:9c:38:11:04: 59:3f:a9:d3:4b:3a:f3:77:80:5b:1c:fd:50:af:e9: 46:17:cb:3b:3e:86:2b:91:04:55:3b:e3:da:86:6a: 78:34:0a:ae:aa:ee:f4:e6:ae:1e:9c:cf:5b:58:3a: af:98:03:f6:2e:2d:37:bf:5d:fa:04:95:d3:9c:18: 78:03:e8:e4:fb:c5:4d:a9:9a:61:76:e8:73:53:f1: 64:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:3D:0B:10:FB:FA:8C:81:CF:02:38:3E:0C:A5:E7:DE:58:5D:DD:43 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1204fd3b-3f96-4317-9dcb-ebef15964e7a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f32:c000::/40 Signature Algorithm: sha256WithRSAEncryption b8:13:c1:98:00:55:e6:0e:21:c7:9a:c0:d5:52:63:c6:1a:e8: 2b:39:e2:bc:5c:ab:e8:a8:dc:c3:8f:0d:f1:37:5c:79:9f:89: 6b:4f:df:8d:40:fd:4b:e8:b8:48:b1:0e:92:9e:e6:bf:f9:77: 18:d3:ec:08:c2:81:84:61:74:b3:00:e1:ee:ab:5c:38:2a:ff: 64:e9:06:7d:40:60:f9:70:1b:cd:a1:18:8f:d9:de:20:ee:7d: 39:25:97:d4:85:b8:a6:4c:cc:05:76:5c:0e:a6:e4:f7:41:3a: 91:72:ce:e5:02:07:bd:3a:f4:03:e1:9b:94:b6:bc:46:f0:75: 54:80:f5:e7:f0:8f:e8:fa:e2:d8:d4:a6:bb:4d:0f:de:cd:8e: ee:61:ca:96:c5:59:62:7d:54:36:fc:17:3a:b4:1c:25:83:c4: d3:b5:3c:08:be:c8:eb:9e:39:b7:d3:be:bf:06:cb:76:cb:b4: 08:47:55:22:bd:0c:6c:f8:d7:ff:92:eb:6f:7c:3e:f8:18:91: c5:2e:05:10:92:aa:68:91:71:e4:a0:70:ce:7c:68:88:b1:d0: 3e:ed:e7:f9:67:7d:11:8e:40:68:54:6e:27:56:2f:33:d5:5d: 9f:f0:56:51:41:19:d7:25:09:7f:5d:06:d5:3c:94:90:68:09: 59:76:93:09 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUdCbTlGyOHNvy+zqwPZNWxitAFuAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTYzMjAzWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNzdkOTljMTY3NDE0NzIwYmM5Njk3Zjk4NjhjNWQ1N2Yy ZDYxZTJjMWI2NTAzODM0MDM4Yjg0OGEyNGQ5ZjM3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC301S4whzXSZDNC61s9XZ7101/AI9baPRheT97VC2NLUrA k4nLp60pfiRnQL3lV3Avo1Qjb30EWMI4nqUzr1nravWeqDZ9M1JAYrVVW23O2u9B CD2rmv/j1mWPCyOAllUFWvk8yIWo/lNlgcqAy7/TWvqg4yR8hB/LMmFgUWDO59sx cDxmgo6qHCHOuxBGfYlHJSGYd0NdDYPQG9uucAamNz1L9jrjKQRYfPtLaVL4nDgR BFk/qdNLOvN3gFsc/VCv6UYXyzs+hiuRBFU749qGang0Cq6q7vTmrh6cz1tYOq+Y A/YuLTe/XfoEldOcGHgD6OT7xU2pmmF26HNT8WR1AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU0D0LEPv6jIHPAjg+DKXn3lhd3UMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEyMDRmZDNiLTNmOTYtNDMxNy05ZGNiLWViZWYxNTk2NGU3YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB8ywDANBgkqhkiG9w0BAQsFAAOCAQEAuBPBmABV5g4hx5rA1VJjxhro KznivFyr6Kjcw48N8TdceZ+Ja0/fjUD9S+i4SLEOkp7mv/l3GNPsCMKBhGF0swDh 7qtcOCr/ZOkGfUBg+XAbzaEYj9neIO59OSWX1IW4pkzMBXZcDqbk90E6kXLO5QIH vTr0A+GblLa8RvB1VID15/CP6Pri2NSmu00P3s2O7mHKlsVZYn1UNvwXOrQcJYPE 07U8CL7I6545t9O+vwbLdsu0CEdVIr0MbPjX/5Lrb3w++BiRxS4FEJKqaJFx5KBw znxoiLHQPu3n+Wd9EY5AaFRuJ1YvM9Vdn/BWUUEZ1yUJf10G1TyUkGgJWXaTCQ== -----END CERTIFICATE-----Generated at Sat Apr 26 16:52:51 2025 by rpki-client