$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b128b97-197d-4126-9887-73a31ea7479b.roa File: 4b128b97-197d-4126-9887-73a31ea7479b.roa (raw, json) Hash identifier: ej+pVjopAJuA1cCtIqoA/iKF8PtJUfUgpN8TQkO7KFs= Subject key identifier: 0B:14:28:FB:B3:96:4F:24:38:B6:A0:32:88:39:34:28:EE:83:3E:E0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 42EA39AA6A474C2F72E65AA76EEB294FA1814B27 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b128b97-197d-4126-9887-73a31ea7479b.roa Signing time: Tue 15 Apr 2025 00:12:01 +0000 ROA not before: Tue 15 Apr 2025 00:12:01 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f60:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:ea:39:aa:6a:47:4c:2f:72:e6:5a:a7:6e:eb:29:4f:a1:81:4b:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:12:01 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=13853a4b19821b254e634db02ef3e370d348c574bb90fd0b163f5fa872997d28, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ed:ea:25:a7:0a:1e:06:1d:6a:a6:8a:f2:2b: 39:3c:b2:4f:e7:52:d6:8e:eb:9e:0b:93:d3:d4:0f: 16:f8:dd:e3:ca:a8:20:ce:0b:e5:b1:41:39:40:9f: 78:26:37:d0:40:7f:43:86:fd:79:05:b9:4c:80:f4: b3:f8:6f:fe:33:01:58:d9:ec:1b:8b:e7:bc:07:b5: 89:d7:4b:2d:b2:90:eb:81:a5:66:dc:3b:c8:23:fc: 7a:54:80:53:9e:03:7b:c8:c0:99:31:23:71:8d:7b: e4:f8:c5:92:64:b9:b1:a1:d3:a7:4b:83:f2:65:eb: 04:1d:3f:36:3e:f6:92:a6:a2:85:90:a8:f3:a3:cc: fe:60:32:a8:2a:05:c5:32:e1:14:93:c7:18:10:c9: 7b:16:00:c3:71:11:89:7d:0f:03:97:60:5d:5b:fd: de:3f:44:b2:e6:13:b2:3f:a3:8b:3b:0c:f6:55:7b: 6e:a4:72:bf:8d:1e:7a:d3:c7:2c:52:dc:98:89:b1: 62:d2:a8:5b:4b:cf:3a:ae:de:98:68:9b:b6:d8:eb: c5:7b:f5:3e:cb:32:18:d5:2d:c8:58:5b:33:49:6f: 6b:fc:80:0a:5f:20:34:3a:dc:42:e2:48:65:3c:30: cf:ea:cf:09:2e:28:5c:6e:bf:62:5f:be:a0:a1:72: 95:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:14:28:FB:B3:96:4F:24:38:B6:A0:32:88:39:34:28:EE:83:3E:E0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b128b97-197d-4126-9887-73a31ea7479b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f60:e000::/40 Signature Algorithm: sha256WithRSAEncryption 60:27:84:d8:82:93:58:a1:62:26:68:aa:85:6f:9b:a5:56:0d: 9b:97:37:a4:6f:53:f3:61:13:17:45:8f:b7:e5:8b:02:29:dd: 54:2b:af:58:55:5a:b3:a0:e5:fa:24:f7:f4:5d:8b:5f:cc:71: 8c:75:77:6b:74:08:95:79:5d:56:26:32:58:be:24:62:bf:40: 3b:cf:d0:71:f4:66:39:04:3d:f7:26:78:3e:56:c9:bb:b9:4c: ad:99:69:50:5e:5b:be:12:da:fb:63:51:06:fb:3c:41:cb:11: 64:ce:0b:67:a8:09:bc:2f:61:a2:54:65:66:ef:44:ea:5a:6b: fe:03:74:74:bd:b9:8c:ad:1d:2a:ba:dd:61:57:08:be:f8:85: b3:8e:4c:9d:aa:26:c3:d0:d3:9a:67:77:d0:96:92:5b:1a:47: 0e:08:6e:8c:7d:e4:6a:c8:92:fd:87:fb:0d:29:95:d3:0a:53: e3:0d:de:7a:08:50:04:d9:5f:b2:85:c2:25:a5:73:55:34:3c: 33:1c:ee:d3:71:28:f7:41:6c:5c:36:3e:9e:f8:22:fb:c9:1d: aa:e6:4e:3d:d4:f5:1f:ab:bc:bb:32:d4:17:93:2c:4d:9b:83: da:69:4b:76:67:86:1a:13:da:06:7f:53:42:ec:9b:e7:33:99: 14:38:ce:40 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUQuo5qmpHTC9y5lqnbuspT6GBSycwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE1MDAxMjAxWhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMzg1M2E0YjE5ODIxYjI1NGU2MzRkYjAyZWYzZTM3MGQz NDhjNTc0YmI5MGZkMGIxNjNmNWZhODcyOTk3ZDI4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDG7eolpwoeBh1qporyKzk8sk/nUtaO654Lk9PUDxb43ePK qCDOC+WxQTlAn3gmN9BAf0OG/XkFuUyA9LP4b/4zAVjZ7BuL57wHtYnXSy2ykOuB pWbcO8gj/HpUgFOeA3vIwJkxI3GNe+T4xZJkubGh06dLg/Jl6wQdPzY+9pKmooWQ qPOjzP5gMqgqBcUy4RSTxxgQyXsWAMNxEYl9DwOXYF1b/d4/RLLmE7I/o4s7DPZV e26kcr+NHnrTxyxS3JiJsWLSqFtLzzqu3phom7bY68V79T7LMhjVLchYWzNJb2v8 gApfIDQ63ELiSGU8MM/qzwkuKFxuv2JfvqChcpUnAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUCxQo+7OWTyQ4tqAyiDk0KO6DPuAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRiMTI4Yjk3LTE5N2QtNDEyNi05ODg3LTczYTMxZWE3NDc5Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9g4DANBgkqhkiG9w0BAQsFAAOCAQEAYCeE2IKTWKFiJmiqhW+bpVYN m5c3pG9T82ETF0WPt+WLAindVCuvWFVas6Dl+iT39F2LX8xxjHV3a3QIlXldViYy WL4kYr9AO8/QcfRmOQQ99yZ4PlbJu7lMrZlpUF5bvhLa+2NRBvs8QcsRZM4LZ6gJ vC9holRlZu9E6lpr/gN0dL25jK0dKrrdYVcIvviFs45Mnaomw9DTmmd30JaSWxpH DghujH3kasiS/Yf7DSmV0wpT4w3eeghQBNlfsoXCJaVzVTQ8Mxzu03Eo90FsXDY+ nvgi+8kdquZOPdT1H6u8uzLUF5MsTZuD2mlLdmeGGhPaBn9TQuyb5zOZFDjOQA== -----END CERTIFICATE-----Generated at Sat Apr 26 17:02:10 2025 by rpki-client