$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78f8258c-1030-4218-97f3-976654699349.roa File: 78f8258c-1030-4218-97f3-976654699349.roa (raw, json) Hash identifier: aVT/jHY0WYwhMQjSrar43EIsfC5SRakJSYVQRWHta8A= Subject key identifier: 6C:88:3E:0D:05:4B:A0:BD:CC:2D:D1:9B:A9:B4:2C:AC:F3:CE:D5:61 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7E48D7408D5AFB733E9103EB68D489FE44560D17 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78f8258c-1030-4218-97f3-976654699349.roa Signing time: Mon 21 Apr 2025 17:12:05 +0000 ROA not before: Mon 21 Apr 2025 17:12:05 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ff2:5040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:48:d7:40:8d:5a:fb:73:3e:91:03:eb:68:d4:89:fe:44:56:0d:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 21 17:12:05 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=29ce44df78bed7ca0f2efa4556bcc64859a5c8fed132260be07be6ad6878a503, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c2:26:49:5c:ca:e9:15:a4:76:2b:b2:8e:4e: d3:0b:ba:e7:9a:c5:ed:0b:d4:71:d1:ce:a5:50:b7: ca:35:ef:99:4b:cf:84:10:e9:14:72:dd:56:79:3f: a9:9d:ef:f3:52:fb:dd:f4:b0:1f:cb:bd:b4:f9:b6: 96:3d:cf:88:a6:fd:b1:e0:51:d6:f6:0c:c8:ce:f7: b9:e8:cc:df:38:66:5f:44:99:13:2b:5e:06:36:9d: aa:7e:aa:f4:5b:2c:8e:59:d6:b8:29:16:db:a7:14: 04:1d:75:4d:b5:b3:c9:5e:8c:c5:74:85:4f:83:fb: 51:c0:78:73:3f:00:0f:0b:9e:48:34:76:23:cb:6d: 89:27:94:0d:08:5d:73:ad:15:b9:72:97:c1:fc:34: e9:35:e5:a3:aa:00:39:78:e2:f3:67:bd:27:3a:83: 60:d0:4a:75:99:b4:e1:48:4b:2d:62:90:e7:6e:45: c0:cf:c1:45:65:35:4a:09:85:a1:0b:cc:a8:1c:1e: 7d:31:d3:fc:b8:6b:e0:9b:20:ae:3b:06:7a:ea:85: 31:7f:ee:85:05:5c:3d:a7:c0:ba:4a:78:d4:e0:61: 9d:66:12:e0:ee:71:4e:d7:2c:fb:4c:dc:59:f1:35: 4b:22:69:5e:f7:b7:b0:de:93:0e:1b:12:9e:9b:b5: 45:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:88:3E:0D:05:4B:A0:BD:CC:2D:D1:9B:A9:B4:2C:AC:F3:CE:D5:61 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78f8258c-1030-4218-97f3-976654699349.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:5040::/48 Signature Algorithm: sha256WithRSAEncryption ce:9d:46:50:1d:17:d7:72:0a:42:bc:92:79:79:8c:7c:a8:f4: e2:18:38:02:f4:51:93:31:78:b7:cb:39:71:b6:7f:db:68:ce: 32:df:34:86:8a:89:fb:3e:2a:e6:6b:9c:9e:92:38:f4:47:72: 4c:a6:b7:d9:59:e5:bd:04:52:16:bf:30:43:05:2d:58:be:2b: 5f:cd:7a:3b:2f:6e:ca:28:67:6d:b6:78:e3:99:d3:0e:92:a3: 85:3f:c9:5b:b7:bd:1c:12:38:d4:32:54:89:cd:0b:09:ec:7f: 16:ac:60:34:d5:05:83:e5:d4:a2:9c:8c:b5:8a:c3:54:27:6a: 8b:7e:c9:2c:24:78:00:39:74:96:13:2a:bc:cf:a7:99:7b:f3: 74:2f:5d:24:d3:76:fa:29:99:a6:84:14:bb:2d:a5:53:18:20: e6:f1:44:44:89:37:e7:ca:71:f1:fc:9d:0d:fe:70:9b:41:ea: 7e:c4:9a:12:04:4b:4a:59:8b:d9:a6:98:56:d6:29:a7:27:4d: aa:09:40:e4:15:20:2a:56:bd:d4:98:22:22:37:a4:9f:6d:5b: b9:9a:80:58:74:b6:7e:06:21:1d:84:6c:c8:38:64:ce:90:17: 99:c1:fc:8f:d8:c2:80:00:d2:96:9c:0a:53:ce:77:f0:3d:f2: ac:86:d9:40 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfkjXQI1a+3M+kQPraNSJ/kRWDRcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIxMTcxMjA1WhcNMjUwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOWNlNDRkZjc4YmVkN2NhMGYyZWZhNDU1NmJjYzY0ODU5 YTVjOGZlZDEzMjI2MGJlMDdiZTZhZDY4NzhhNTAzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7wiZJXMrpFaR2K7KOTtMLuueaxe0L1HHRzqVQt8o175lL z4QQ6RRy3VZ5P6md7/NS+930sB/LvbT5tpY9z4im/bHgUdb2DMjO97nozN84Zl9E mRMrXgY2nap+qvRbLI5Z1rgpFtunFAQddU21s8lejMV0hU+D+1HAeHM/AA8Lnkg0 diPLbYknlA0IXXOtFblyl8H8NOk15aOqADl44vNnvSc6g2DQSnWZtOFISy1ikOdu RcDPwUVlNUoJhaELzKgcHn0x0/y4a+CbIK47BnrqhTF/7oUFXD2nwLpKeNTgYZ1m EuDucU7XLPtM3FnxNUsiaV73t7Dekw4bEp6btUVfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUbIg+DQVLoL3MLdGbqbQsrPPO1WEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc4ZjgyNThjLTEwMzAtNDIxOC05N2YzLTk3NjY1NDY5OTM0OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/yUEAwDQYJKoZIhvcNAQELBQADggEBAM6dRlAdF9dyCkK8knl5jHyo 9OIYOAL0UZMxeLfLOXG2f9tozjLfNIaKifs+KuZrnJ6SOPRHckymt9lZ5b0EUha/ MEMFLVi+K1/NejsvbsooZ222eOOZ0w6So4U/yVu3vRwSONQyVInNCwnsfxasYDTV BYPl1KKcjLWKw1Qnaot+ySwkeAA5dJYTKrzPp5l783QvXSTTdvopmaaEFLstpVMY IObxRESJN+fKcfH8nQ3+cJtB6n7EmhIES0pZi9mmmFbWKacnTaoJQOQVICpWvdSY IiI3pJ9tW7magFh0tn4GIR2EbMg4ZM6QF5nB/I/YwoAA0pacClPOd/A98qyG2UA= -----END CERTIFICATE-----Generated at Sat Apr 26 16:47:33 2025 by rpki-client