$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f17303e-fb3f-43d5-8067-de8367b1fc63.roa File: 4f17303e-fb3f-43d5-8067-de8367b1fc63.roa (raw, json) Hash identifier: 7wHL+1OwXOyDCN3HLr8aGKtp3HfwTVnfjAB5B8nu44M= Subject key identifier: C3:0F:24:A1:87:8A:BF:BA:98:4F:FC:40:6C:4F:77:2B:FD:3C:50:99 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 79BD98C97522E05A1C80541E6E050ECB28F3376D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f17303e-fb3f-43d5-8067-de8367b1fc63.roa Signing time: Thu 22 May 2025 00:53:16 +0000 ROA not before: Thu 22 May 2025 00:53:16 +0000 ROA not after: Thu 26 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fed:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:bd:98:c9:75:22:e0:5a:1c:80:54:1e:6e:05:0e:cb:28:f3:37:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 22 00:53:16 2025 GMT Not After : Jun 26 23:59:59 2025 GMT Subject: serialNumber=fa980fce0505348c613b4e39c7f3ddb104af6fe0ebebb142a667fbf1a03f9fca, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:83:bd:23:15:b5:18:22:1c:14:50:03:e2:a5: a7:79:d5:d1:75:c0:04:71:37:15:5a:ad:e1:dc:f4: 13:96:f7:9d:ea:02:d1:e4:0e:df:6a:6d:a7:99:5f: 97:4f:7a:95:78:99:0c:9f:c5:28:d2:2c:50:0e:29: 54:b2:6a:89:57:16:54:5e:7a:0e:cd:77:3c:77:4b: 76:5c:9f:56:eb:55:00:83:e9:c6:e0:de:71:9d:6a: 30:02:87:0a:31:32:b1:57:97:03:15:8a:41:c0:35: 3c:03:84:cb:69:b5:18:7f:db:0c:56:56:e5:54:30: f9:21:0f:d4:18:e0:3b:94:6d:4f:ac:88:1c:b5:20: 93:8a:40:35:3e:bf:77:4d:55:25:cf:f6:56:e1:13: e1:de:de:f9:d4:60:9e:28:92:60:25:0b:e0:3b:b6: 40:26:f7:80:cf:6f:7d:81:d9:bf:a1:69:98:c8:ee: 7c:f1:61:b4:0d:00:a4:48:11:81:7c:47:54:0b:c4: 1a:7a:c8:50:f9:76:cb:27:5e:57:0a:d6:41:aa:74: 38:5f:8a:d3:9d:5e:0a:ec:fb:52:27:83:47:53:b8: 92:4b:1f:01:74:21:98:42:d7:0a:64:ec:1c:03:6f: 65:c4:dc:3f:a5:d5:40:4f:d0:67:51:61:ff:a1:12: dd:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:0F:24:A1:87:8A:BF:BA:98:4F:FC:40:6C:4F:77:2B:FD:3C:50:99 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f17303e-fb3f-43d5-8067-de8367b1fc63.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fed:e000::/40 Signature Algorithm: sha256WithRSAEncryption 81:e8:c7:b3:b1:28:6a:38:fd:c4:34:8b:57:19:8d:06:d2:69: f1:d4:ef:af:ed:09:d2:df:df:05:36:a7:aa:ce:ab:2f:32:cf: 13:d9:e5:85:81:8d:f9:c0:60:6e:91:b1:5c:8e:3f:8a:d2:49: 39:3c:88:00:3e:7e:59:a0:b7:86:38:13:95:dd:74:b2:6a:47: e4:55:91:a9:ee:8a:f6:e2:ee:57:36:5f:41:49:e7:54:85:2f: cc:7d:1b:20:e7:76:d2:70:fe:24:76:15:9f:e5:c6:70:b0:ac: a4:10:31:da:f9:16:5c:1f:3e:9d:41:43:89:af:b0:65:7f:27: 2a:52:ac:1e:dd:08:16:61:6e:01:8c:e9:0d:eb:3b:de:22:28: ab:9e:7f:bc:1d:21:3a:5f:75:63:f2:31:32:e3:35:38:4a:ba: 5d:a8:22:e0:3d:31:ee:f0:b2:84:99:64:de:9b:25:58:12:9a: 8a:37:83:39:b1:3e:8d:89:fd:ab:5b:02:15:13:1c:bf:4d:3b: 0a:bb:84:b3:19:8a:5d:d6:74:f4:03:c4:76:d0:b2:c6:19:d0: 72:a7:2c:a0:1a:59:9a:c6:e4:31:12:03:80:1b:ec:04:7d:bd: 82:5f:1e:45:2c:f4:ab:84:16:0f:32:16:55:93:a1:09:fd:4b: f8:79:99:69 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUeb2YyXUi4FocgFQebgUOyyjzN20wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIyMDA1MzE2WhcNMjUwNjI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYTk4MGZjZTA1MDUzNDhjNjEzYjRlMzljN2YzZGRiMTA0 YWY2ZmUwZWJlYmIxNDJhNjY3ZmJmMWEwM2Y5ZmNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLg70jFbUYIhwUUAPipad51dF1wARxNxVareHc9BOW953q AtHkDt9qbaeZX5dPepV4mQyfxSjSLFAOKVSyaolXFlReeg7Ndzx3S3Zcn1brVQCD 6cbg3nGdajAChwoxMrFXlwMVikHANTwDhMtptRh/2wxWVuVUMPkhD9QY4DuUbU+s iBy1IJOKQDU+v3dNVSXP9lbhE+He3vnUYJ4okmAlC+A7tkAm94DPb32B2b+haZjI 7nzxYbQNAKRIEYF8R1QLxBp6yFD5dssnXlcK1kGqdDhfitOdXgrs+1Ing0dTuJJL HwF0IZhC1wpk7BwDb2XE3D+l1UBP0GdRYf+hEt1zAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUww8koYeKv7qYT/xAbE93K/08UJkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRmMTczMDNlLWZiM2YtNDNkNS04MDY3LWRlODM2N2IxZmM2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/t4DANBgkqhkiG9w0BAQsFAAOCAQEAgejHs7Eoajj9xDSLVxmNBtJp 8dTvr+0J0t/fBTanqs6rLzLPE9nlhYGN+cBgbpGxXI4/itJJOTyIAD5+WaC3hjgT ld10smpH5FWRqe6K9uLuVzZfQUnnVIUvzH0bIOd20nD+JHYVn+XGcLCspBAx2vkW XB8+nUFDia+wZX8nKlKsHt0IFmFuAYzpDes73iIoq55/vB0hOl91Y/IxMuM1OEq6 Xagi4D0x7vCyhJlk3pslWBKaijeDObE+jYn9q1sCFRMcv007CruEsxmKXdZ09APE dtCyxhnQcqcsoBpZmsbkMRIDgBvsBH29gl8eRSz0q4QWDzIWVZOhCf1L+HmZaQ== -----END CERTIFICATE-----Generated at Sat Jun 14 07:02:17 2025 by rpki-client