$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/154c39ec-28ce-41bb-ad0d-c48503198277.roa File: 154c39ec-28ce-41bb-ad0d-c48503198277.roa (raw, json) Hash identifier: 56dk+GZOCeAJDS4gVH5mwyrEn3KkT3hhKIOqbDarV8Q= Subject key identifier: 0F:99:48:64:F0:EF:2F:89:F6:A6:B7:C8:E8:30:55:32:AB:33:DC:1C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 580AEFDDB02280E4507F3559525C8375E5BE88AD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/154c39ec-28ce-41bb-ad0d-c48503198277.roa Signing time: Tue 22 Apr 2025 16:32:04 +0000 ROA not before: Tue 22 Apr 2025 16:32:04 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f70:7400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:0a:ef:dd:b0:22:80:e4:50:7f:35:59:52:5c:83:75:e5:be:88:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:32:04 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=5d4d9c9defe2eed09000ba3811bb0e68a975e6f4b6d53f3cd0b8e129ed2f3125, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:7c:aa:50:c3:5c:ad:e5:9a:a5:12:2e:cd:88: cf:d7:99:d5:fa:0a:c9:b3:66:7c:06:07:6c:3e:2d: 0b:a8:48:2b:93:90:cd:5c:68:ef:d0:28:73:7d:17: 63:e4:3e:44:6a:9d:86:80:17:c9:40:bc:f5:c7:2d: 69:48:39:47:87:60:d1:9f:cf:c1:93:8e:ab:1d:e2: f4:91:58:b6:7e:62:37:a1:b8:39:de:77:ce:5f:4c: 1c:b9:b5:ed:45:02:40:2a:ef:12:29:5e:56:90:40: 9a:65:a9:34:e2:60:e6:c9:54:c3:31:de:a1:48:2f: c3:db:f3:47:01:2f:83:f6:7b:b4:7a:ec:be:cd:74: 7f:ad:b9:28:f6:74:83:1c:7e:01:c9:32:3d:44:bb: c0:ab:a6:09:dc:5b:e2:a6:66:58:37:58:d6:e9:3f: 97:7a:15:ba:c8:ea:8c:f3:e9:7a:c8:73:a3:44:76: a1:58:7b:ac:2e:66:ff:03:31:e8:e4:64:76:17:59: 23:3a:83:ab:bc:82:80:ae:22:94:1b:92:f0:e5:fd: a2:26:c3:90:12:dd:27:81:84:e2:08:df:1f:2b:be: 97:d1:6c:21:14:24:30:a9:69:1a:7a:81:db:ba:cf: 9f:92:e5:dc:93:ba:a4:3d:c8:83:95:cd:80:0a:5a: 01:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:99:48:64:F0:EF:2F:89:F6:A6:B7:C8:E8:30:55:32:AB:33:DC:1C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/154c39ec-28ce-41bb-ad0d-c48503198277.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f70:7400::/40 Signature Algorithm: sha256WithRSAEncryption 3d:bb:89:c4:9e:6c:b7:4c:99:61:43:e1:97:73:0e:a6:03:06: 33:59:23:76:36:59:fe:7d:07:3b:a7:c3:24:7f:73:0f:a5:e2: 45:7d:57:35:e0:17:dc:be:f0:6a:7a:fa:0f:77:86:96:d2:b3: 79:bb:c9:79:c3:e7:bb:21:03:76:5e:7a:2d:74:fb:29:23:40: 06:04:52:22:b2:66:4a:a7:db:63:90:e4:a9:52:0a:6b:b2:80: 67:54:0c:a9:e5:5a:9e:49:6e:4c:ac:fe:03:f1:8a:50:a1:3e: ee:be:18:6a:ee:4d:f5:fb:2d:86:1d:3d:18:71:11:e8:1e:a1: f8:c7:54:d9:d0:7f:fa:86:fd:a9:c9:6b:9e:cf:ad:69:f5:a2: e9:df:e4:98:95:13:16:62:e5:17:87:62:89:ac:c7:46:5e:71: e5:96:3e:66:f8:1f:af:3a:f3:c4:50:1e:fd:08:7a:00:97:ca: 9d:97:6f:a1:59:1d:18:53:75:1f:c2:88:c8:af:7e:3c:76:9c: a0:47:9a:62:cc:73:b2:82:80:fc:cb:a7:16:27:ce:39:77:c8: d2:4c:de:fb:44:42:df:44:12:66:bb:2c:68:2f:75:89:f0:fb: 08:96:9f:0b:a6:63:07:19:41:7d:93:8f:8c:d1:92:72:4f:02: b0:14:6e:3c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUWArv3bAigORQfzVZUlyDdeW+iK0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTYzMjA0WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZDRkOWM5ZGVmZTJlZWQwOTAwMGJhMzgxMWJiMGU2OGE5 NzVlNmY0YjZkNTNmM2NkMGI4ZTEyOWVkMmYzMTI1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDufKpQw1yt5ZqlEi7NiM/XmdX6CsmzZnwGB2w+LQuoSCuT kM1caO/QKHN9F2PkPkRqnYaAF8lAvPXHLWlIOUeHYNGfz8GTjqsd4vSRWLZ+Yjeh uDned85fTBy5te1FAkAq7xIpXlaQQJplqTTiYObJVMMx3qFIL8Pb80cBL4P2e7R6 7L7NdH+tuSj2dIMcfgHJMj1Eu8CrpgncW+KmZlg3WNbpP5d6FbrI6ozz6XrIc6NE dqFYe6wuZv8DMejkZHYXWSM6g6u8goCuIpQbkvDl/aImw5AS3SeBhOII3x8rvpfR bCEUJDCpaRp6gdu6z5+S5dyTuqQ9yIOVzYAKWgFTAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUD5lIZPDvL4n2prfI6DBVMqsz3BwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE1NGMzOWVjLTI4Y2UtNDFiYi1hZDBkLWM0ODUwMzE5ODI3Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9wdDANBgkqhkiG9w0BAQsFAAOCAQEAPbuJxJ5st0yZYUPhl3MOpgMG M1kjdjZZ/n0HO6fDJH9zD6XiRX1XNeAX3L7wanr6D3eGltKzebvJecPnuyEDdl56 LXT7KSNABgRSIrJmSqfbY5DkqVIKa7KAZ1QMqeVankluTKz+A/GKUKE+7r4Yau5N 9fsthh09GHER6B6h+MdU2dB/+ob9qclrns+tafWi6d/kmJUTFmLlF4diiazHRl5x 5ZY+ZvgfrzrzxFAe/Qh6AJfKnZdvoVkdGFN1H8KIyK9+PHacoEeaYsxzsoKA/Mun FifOOXfI0kze+0RC30QSZrssaC91ifD7CJafC6ZjBxlBfZOPjNGSck8CsBRuPA== -----END CERTIFICATE-----Generated at Sat Apr 26 16:52:14 2025 by rpki-client