$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1340e23a-bfc5-46cd-bf07-bd9f77994462.roa File: 1340e23a-bfc5-46cd-bf07-bd9f77994462.roa (raw, json) Hash identifier: qC9bl9HFIFJaaKdQ3Yi02haN3tir2n4nPW8PlUddfGA= Subject key identifier: 4B:73:26:33:A0:26:DD:E5:6B:6C:29:DC:F1:41:52:01:C0:17:95:A8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2AE6400B304F6EE9C4CE00BB8FB4238B883CAB40 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1340e23a-bfc5-46cd-bf07-bd9f77994462.roa Signing time: Tue 22 Apr 2025 16:00:15 +0000 ROA not before: Tue 22 Apr 2025 16:00:15 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ffb:8040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:e6:40:0b:30:4f:6e:e9:c4:ce:00:bb:8f:b4:23:8b:88:3c:ab:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:00:15 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=eeb30c8837d53eed43fe3294d985d87d55af70ea9ce013b872ae44a8b18680de, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:f0:d3:65:17:31:dc:54:75:c4:81:2b:8d:10: 06:ab:ab:23:76:be:2c:4f:0d:40:61:87:19:ce:65: 0d:df:15:97:43:49:fc:a0:7c:89:90:45:7f:85:ec: cb:3f:57:ad:24:b9:96:f5:9b:cf:e4:3c:5a:fd:45: e3:ef:88:44:55:1a:62:72:e6:b6:ff:c8:7a:7a:d9: bc:e4:a6:8a:1c:50:d6:a9:e7:fa:ba:7a:df:a1:73: e7:5c:e7:9c:aa:6f:16:0b:c4:61:f1:a0:bc:8a:d3: f7:88:35:34:b5:d0:f8:78:36:18:d5:9c:0a:f1:a3: 3f:c5:49:ab:6f:08:0f:fc:bc:fd:87:ac:31:16:00: e3:71:b6:8b:e6:2a:01:f2:3c:25:28:69:4f:92:04: 42:a9:4f:a7:8a:c8:f0:f0:1d:a3:14:60:48:6a:49: 6c:e2:44:29:01:08:5c:63:1e:eb:42:5f:87:95:8b: e9:d7:1c:71:5b:b8:9a:b7:39:a6:f9:c0:5f:c8:0d: 66:e5:2f:d9:de:3f:92:77:38:36:97:ea:c7:94:4b: b8:51:c9:e3:d9:88:47:0a:8c:22:b5:c6:73:21:27: 87:ac:30:6c:e4:d7:6f:41:01:f1:13:e7:f1:df:4e: 8d:29:d9:14:e3:57:37:8c:89:6c:3f:d1:61:84:ed: 0f:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:73:26:33:A0:26:DD:E5:6B:6C:29:DC:F1:41:52:01:C0:17:95:A8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1340e23a-bfc5-46cd-bf07-bd9f77994462.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffb:8040::/46 Signature Algorithm: sha256WithRSAEncryption c9:0c:78:88:93:4e:3b:66:5c:4b:01:82:b7:42:17:90:2a:4e: 44:01:c9:8a:b2:ad:32:48:bb:86:c8:cc:ba:1f:87:e0:63:05: 6a:9f:ec:a2:92:94:49:d6:26:5b:65:7f:cf:6a:b3:da:f6:fc: 06:9a:07:ee:c0:e2:47:e2:e3:7a:65:ef:05:cd:a3:05:54:f5: a5:4b:ec:ac:b0:08:12:ef:1a:d8:fa:39:54:18:fa:e5:a3:cd: 86:a5:49:36:e9:14:5d:29:88:aa:bc:17:0b:f1:6c:8e:b4:79: 9b:09:7c:0f:83:c5:12:18:d4:fd:1d:fe:38:11:36:b2:ee:09: 7b:93:00:13:38:2e:91:62:a9:32:a3:fe:77:df:bd:d9:04:b5: bb:b8:90:d5:39:da:c9:fb:f8:54:a4:6c:6d:5a:8b:f6:cd:9f: dd:cd:d3:86:83:fc:08:59:10:87:bc:49:c6:b2:3a:58:89:3c: 84:b2:b6:2a:e0:0c:df:61:ab:90:5e:83:58:cc:77:02:0f:b2: 72:f3:41:42:06:fc:04:d0:6b:47:9d:58:05:76:ac:b9:4c:32: 8c:d9:9d:ed:2e:dc:f2:a9:a7:5e:e6:f6:7c:f5:a5:47:4b:6b: 13:53:52:06:42:f3:3a:61:55:d6:79:db:5c:0b:a5:9c:d8:4b: de:17:cb:88 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKuZACzBPbunEzgC7j7Qji4g8q0AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTYwMDE1WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZWIzMGM4ODM3ZDUzZWVkNDNmZTMyOTRkOTg1ZDg3ZDU1 YWY3MGVhOWNlMDEzYjg3MmFlNDRhOGIxODY4MGRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCS8NNlFzHcVHXEgSuNEAarqyN2vixPDUBhhxnOZQ3fFZdD SfygfImQRX+F7Ms/V60kuZb1m8/kPFr9RePviERVGmJy5rb/yHp62bzkpoocUNap 5/q6et+hc+dc55yqbxYLxGHxoLyK0/eINTS10Ph4NhjVnArxoz/FSatvCA/8vP2H rDEWAONxtovmKgHyPCUoaU+SBEKpT6eKyPDwHaMUYEhqSWziRCkBCFxjHutCX4eV i+nXHHFbuJq3Oab5wF/IDWblL9neP5J3ODaX6seUS7hRyePZiEcKjCK1xnMhJ4es MGzk129BAfET5/HfTo0p2RTjVzeMiWw/0WGE7Q9JAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUS3MmM6Am3eVrbCnc8UFSAcAXlagwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEzNDBlMjNhLWJmYzUtNDZjZC1iZjA3LWJkOWY3Nzk5NDQ2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/7gEAwDQYJKoZIhvcNAQELBQADggEBAMkMeIiTTjtmXEsBgrdCF5Aq TkQByYqyrTJIu4bIzLofh+BjBWqf7KKSlEnWJltlf89qs9r2/AaaB+7A4kfi43pl 7wXNowVU9aVL7KywCBLvGtj6OVQY+uWjzYalSTbpFF0piKq8FwvxbI60eZsJfA+D xRIY1P0d/jgRNrLuCXuTABM4LpFiqTKj/nffvdkEtbu4kNU52sn7+FSkbG1ai/bN n93N04aD/AhZEIe8ScayOliJPISytirgDN9hq5Beg1jMdwIPsnLzQUIG/ATQa0ed WAV2rLlMMozZne0u3PKpp17m9nz1pUdLaxNTUgZC8zphVdZ521wLpZzYS94Xy4g= -----END CERTIFICATE-----Generated at Sat Apr 26 13:17:54 2025 by rpki-client