$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9228b974-3dc7-4d13-adba-9444236c7f08.roa File: 9228b974-3dc7-4d13-adba-9444236c7f08.roa (raw, json) Hash identifier: 1ivnniqx0PfH5gXEZ1TA53meqB9FRFecPqy5W06iZSg= Subject key identifier: E4:A7:C1:99:B1:46:C4:70:71:07:28:24:1C:D2:5D:CA:51:9A:A5:00 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7CD808B11918E96C0E203BEC512E6E47CFF35DAD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9228b974-3dc7-4d13-adba-9444236c7f08.roa Signing time: Mon 21 Apr 2025 18:21:09 +0000 ROA not before: Mon 21 Apr 2025 18:21:09 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1f38:2040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:d8:08:b1:19:18:e9:6c:0e:20:3b:ec:51:2e:6e:47:cf:f3:5d:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 21 18:21:09 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=70266f2b4c31aa7fbf7929476191b2589c81f774ab49535534ffcbe8625c6094, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:15:b3:23:bd:0d:bd:5b:6c:02:2c:70:42:8c: 7e:6b:ba:54:d7:7f:7b:28:a1:fa:a7:e6:a8:5c:dd: fd:bb:80:3d:0d:55:dc:9f:ee:83:49:aa:bd:5c:51: 9a:ab:2f:44:fb:21:05:53:5c:06:39:d4:fc:22:9a: 20:31:91:39:8f:e0:1a:b3:a5:63:f0:52:39:52:70: ad:2e:35:56:12:1c:d8:59:b7:e7:17:fb:47:23:ef: b3:a3:9b:16:33:29:c3:88:ca:dd:59:4f:21:fb:bc: 47:3a:6d:07:61:57:a7:eb:b1:10:66:b9:d4:84:b2: c2:83:db:f2:89:3a:3d:e3:16:81:f0:2f:54:a8:57: 8b:c7:72:f4:36:93:04:53:d9:13:b7:d0:f7:38:2d: 5e:39:3d:ec:aa:26:9e:f2:6f:2d:a7:f7:aa:ba:eb: fb:60:01:e1:95:fc:23:17:30:6b:8f:27:00:8f:ed: ba:bd:19:0b:0a:25:2f:87:eb:68:5a:54:d9:45:15: 3f:40:47:29:8a:f5:00:4f:da:56:98:36:f4:fd:27: 66:86:07:e0:2d:f4:44:f4:82:a9:7e:0f:b1:f8:f9: 19:38:7c:f6:52:90:7c:bd:76:40:70:e9:0c:ff:7c: 3e:b2:e5:fa:eb:6c:91:61:24:1a:04:5f:c4:ce:8e: b9:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:A7:C1:99:B1:46:C4:70:71:07:28:24:1C:D2:5D:CA:51:9A:A5:00 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9228b974-3dc7-4d13-adba-9444236c7f08.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f38:2040::/48 Signature Algorithm: sha256WithRSAEncryption 56:e4:20:7b:8f:46:fd:85:21:84:9f:6c:1e:e1:88:5c:23:a4: 2c:41:d9:ee:fe:05:89:6e:52:2e:aa:14:f2:9d:f5:92:98:ba: bc:03:f4:53:23:c5:0d:9d:d1:ee:ee:33:14:17:b1:5d:38:6d: f3:e9:9c:b0:3e:54:c4:3e:b6:ec:92:45:20:ae:aa:ce:37:d8: b6:3f:c9:7e:e1:c2:bc:74:5a:c5:11:51:ee:67:2d:b5:7d:42: 6d:cf:5f:48:77:1b:30:c5:76:55:1b:af:2e:c2:e8:10:f6:35: 9c:f5:7f:25:8e:2b:84:d0:ea:f0:ab:b3:36:1f:70:e1:ec:8f: e1:ad:c2:bb:ff:5e:cd:c5:05:f3:b5:4a:db:b4:2f:b0:e5:9f: d9:af:40:53:62:25:e9:a5:e0:23:3c:7f:a1:eb:82:ad:3e:3c: a7:e5:de:f6:f3:1d:9b:c8:77:6e:39:fa:8f:8b:a3:f9:f2:c2: 18:7d:fa:6e:9a:71:ed:23:bc:33:0a:4a:5b:c1:c1:ab:5c:68: 59:07:c5:d3:59:c0:18:4a:f4:e3:b2:a7:6a:38:70:ae:c4:1e: 53:bf:63:74:b9:01:cb:61:3a:b3:b7:1e:54:5a:6b:be:03:57: 24:a6:07:77:bc:06:b2:4f:e7:8e:8e:94:51:e3:ec:1f:41:c4: a0:51:36:b1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfNgIsRkY6WwOIDvsUS5uR8/zXa0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIxMTgyMTA5WhcNMjUwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MDI2NmYyYjRjMzFhYTdmYmY3OTI5NDc2MTkxYjI1ODlj ODFmNzc0YWI0OTUzNTUzNGZmY2JlODYyNWM2MDk0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2FbMjvQ29W2wCLHBCjH5rulTXf3soofqn5qhc3f27gD0N Vdyf7oNJqr1cUZqrL0T7IQVTXAY51PwimiAxkTmP4BqzpWPwUjlScK0uNVYSHNhZ t+cX+0cj77OjmxYzKcOIyt1ZTyH7vEc6bQdhV6frsRBmudSEssKD2/KJOj3jFoHw L1SoV4vHcvQ2kwRT2RO30Pc4LV45PeyqJp7yby2n96q66/tgAeGV/CMXMGuPJwCP 7bq9GQsKJS+H62haVNlFFT9ARymK9QBP2laYNvT9J2aGB+At9ET0gql+D7H4+Rk4 fPZSkHy9dkBw6Qz/fD6y5frrbJFhJBoEX8TOjrnPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5KfBmbFGxHBxBygkHNJdylGapQAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkyMjhiOTc0LTNkYzctNGQxMy1hZGJhLTk0NDQyMzZjN2YwOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB84IEAwDQYJKoZIhvcNAQELBQADggEBAFbkIHuPRv2FIYSfbB7hiFwj pCxB2e7+BYluUi6qFPKd9ZKYurwD9FMjxQ2d0e7uMxQXsV04bfPpnLA+VMQ+tuyS RSCuqs432LY/yX7hwrx0WsURUe5nLbV9Qm3PX0h3GzDFdlUbry7C6BD2NZz1fyWO K4TQ6vCrszYfcOHsj+Gtwrv/Xs3FBfO1Stu0L7Dln9mvQFNiJeml4CM8f6Hrgq0+ PKfl3vbzHZvId245+o+Lo/nywhh9+m6ace0jvDMKSlvBwatcaFkHxdNZwBhK9OOy p2o4cK7EHlO/Y3S5ActhOrO3HlRaa74DVySmB3e8BrJP546OlFHj7B9BxKBRNrE= -----END CERTIFICATE-----Generated at Sat Apr 26 16:14:44 2025 by rpki-client