$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6053747c-2d18-4318-b6f0-8cc795ce2a12.roa File: 6053747c-2d18-4318-b6f0-8cc795ce2a12.roa (raw, json) Hash identifier: QjPGSdhvQnG3srenCeRxObg/7Plp04QgyHKOcSqt698= Subject key identifier: C7:D2:B2:FC:C8:4B:DC:31:F0:BA:A5:D3:1E:5E:91:63:B1:98:2B:A6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6B25BF3249D5962C4A8BE1316747020DE8AD7081 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6053747c-2d18-4318-b6f0-8cc795ce2a12.roa Signing time: Tue 22 Apr 2025 16:31:50 +0000 ROA not before: Tue 22 Apr 2025 16:31:50 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fb8:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:25:bf:32:49:d5:96:2c:4a:8b:e1:31:67:47:02:0d:e8:ad:70:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:31:50 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=0660c5c67800dcf9b4dd307cb0d2d810a1014028c132ce077d42b3216bf96637, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:ff:90:d5:18:91:47:1c:09:fe:25:35:00:2c: 2e:2c:47:0a:74:eb:4a:fa:0c:6e:45:10:13:86:05: 5c:26:7e:1d:94:28:52:02:07:c5:84:08:2f:4a:f4: ad:64:83:9a:36:26:66:71:f5:e6:99:4c:9d:47:d6: 42:9c:9f:91:13:ae:f0:23:38:b2:51:ac:d3:05:b0: 65:10:f6:f7:0c:14:82:01:6f:33:09:ce:90:96:46: e1:71:14:af:fc:ea:23:74:ec:aa:c9:d8:7c:67:01: 8d:9a:b7:b3:2e:d3:0c:a5:fd:14:c1:8a:67:d6:11: 23:db:0e:e6:9e:62:5b:24:6d:cc:9c:7d:63:da:9e: 8e:af:ff:f2:8b:d0:e7:d6:b6:23:95:66:e3:03:cb: 5d:9e:54:86:a8:d1:1c:f9:52:46:b6:78:c0:fd:23: f3:66:c5:eb:0e:cf:d0:90:85:e0:62:c5:fa:17:40: e9:0d:f4:e0:b4:68:76:6d:72:5c:45:ee:c7:a2:ad: f5:80:2b:04:57:30:f1:71:2d:83:ed:53:0f:f9:32: 9d:73:f4:c4:08:c2:fa:22:7e:32:28:fb:6f:5a:05: 1e:76:91:08:95:ee:ed:2e:a4:c8:6e:97:eb:6a:1e: de:33:9b:eb:c1:a1:05:23:48:21:b8:41:6f:8d:66: 48:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:D2:B2:FC:C8:4B:DC:31:F0:BA:A5:D3:1E:5E:91:63:B1:98:2B:A6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6053747c-2d18-4318-b6f0-8cc795ce2a12.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb8:8000::/40 Signature Algorithm: sha256WithRSAEncryption 25:0f:dc:86:ed:00:48:d7:45:93:c7:ce:b0:a3:09:e1:0e:3b: 67:5e:b6:a1:3a:32:68:79:37:2c:e2:91:b7:e4:ca:46:2f:47: 32:6e:14:43:cf:d1:f2:46:1b:de:43:92:1d:39:03:2b:4e:b8: ac:bf:e1:f2:4a:1d:f3:21:47:52:1a:9e:35:39:57:0d:9d:50: 2e:4d:5e:6d:67:ff:c1:53:ff:16:ad:a9:22:41:c9:1d:a8:32: 7c:f4:80:bb:ba:52:4e:0b:44:40:9c:75:42:7b:70:2f:3f:cc: 8f:ba:2f:13:ce:dd:4c:33:66:32:ea:e5:94:fe:ee:cf:f8:8f: 95:ee:9f:83:5e:a9:04:40:87:c0:e4:bf:73:9a:a0:1d:8c:08: 56:4c:bf:38:28:92:5b:a1:f9:27:95:0a:74:cb:b8:7d:21:d3: 3e:7b:8f:ca:29:b4:9e:e9:43:ce:82:d5:7e:a1:4c:d6:06:08: 86:d6:d2:3c:01:ca:44:59:c8:11:da:4e:29:17:2a:57:12:c0: 9b:52:d0:aa:61:84:12:8f:3b:12:1c:d7:44:c1:bc:1e:ff:da: 81:e7:28:29:c2:f9:27:27:f3:99:61:ca:93:4c:3e:50:80:cc: 4c:6a:07:83:52:bc:4c:aa:4a:66:66:82:18:b7:8f:bf:0a:8a: 72:d4:ef:e6 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUayW/MknVlixKi+ExZ0cCDeitcIEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTYzMTUwWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNjYwYzVjNjc4MDBkY2Y5YjRkZDMwN2NiMGQyZDgxMGEx MDE0MDI4YzEzMmNlMDc3ZDQyYjMyMTZiZjk2NjM3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDq/5DVGJFHHAn+JTUALC4sRwp060r6DG5FEBOGBVwmfh2U KFICB8WECC9K9K1kg5o2JmZx9eaZTJ1H1kKcn5ETrvAjOLJRrNMFsGUQ9vcMFIIB bzMJzpCWRuFxFK/86iN07KrJ2HxnAY2at7Mu0wyl/RTBimfWESPbDuaeYlskbcyc fWPano6v//KL0OfWtiOVZuMDy12eVIao0Rz5Uka2eMD9I/NmxesOz9CQheBixfoX QOkN9OC0aHZtclxF7seirfWAKwRXMPFxLYPtUw/5Mp1z9MQIwvoifjIo+29aBR52 kQiV7u0upMhul+tqHt4zm+vBoQUjSCG4QW+NZkijAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUx9Ky/MhL3DHwuqXTHl6RY7GYK6YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYwNTM3NDdjLTJkMTgtNDMxOC1iNmYwLThjYzc5NWNlMmExMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+4gDANBgkqhkiG9w0BAQsFAAOCAQEAJQ/chu0ASNdFk8fOsKMJ4Q47 Z162oToyaHk3LOKRt+TKRi9HMm4UQ8/R8kYb3kOSHTkDK064rL/h8kod8yFHUhqe NTlXDZ1QLk1ebWf/wVP/Fq2pIkHJHagyfPSAu7pSTgtEQJx1QntwLz/Mj7ovE87d TDNmMurllP7uz/iPle6fg16pBECHwOS/c5qgHYwIVky/OCiSW6H5J5UKdMu4fSHT PnuPyim0nulDzoLVfqFM1gYIhtbSPAHKRFnIEdpOKRcqVxLAm1LQqmGEEo87EhzX RMG8Hv/agecoKcL5JyfzmWHKk0w+UIDMTGoHg1K8TKpKZmaCGLePvwqKctTv5g== -----END CERTIFICATE-----Generated at Sat Apr 26 16:37:31 2025 by rpki-client