$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f7e061b-ce73-4723-ae0d-5ea7afa3bea5.roa File: 9f7e061b-ce73-4723-ae0d-5ea7afa3bea5.roa (raw, json) Hash identifier: +PsTSbGnB+DGl0ANqSwsDQHaivIEKktZks+NuTiXblE= Subject key identifier: AA:2D:CE:D6:59:7A:2A:95:4B:9C:D8:59:32:FD:B6:49:70:1F:70:BC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 49160C06D59E0D8AAD61348895BFB86844BF15B3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f7e061b-ce73-4723-ae0d-5ea7afa3bea5.roa Signing time: Mon 21 Apr 2025 18:21:45 +0000 ROA not before: Mon 21 Apr 2025 18:21:45 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f38:4040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:16:0c:06:d5:9e:0d:8a:ad:61:34:88:95:bf:b8:68:44:bf:15:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 21 18:21:45 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=f9a4b33375398d8b321596971308e39edc364a4cd380bc24b00723011499b2a6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:2d:51:e9:70:20:17:5a:6e:78:52:88:26:8c: ed:fc:30:ad:0a:97:8d:38:a7:f7:7d:25:21:70:cd: 37:fe:ae:41:e3:6a:63:0c:3a:80:9a:d0:bf:2f:0f: 72:69:8e:d1:be:eb:7b:c3:f7:8e:d2:da:26:66:e8: cd:a0:a9:0f:5f:5f:4e:b4:c9:aa:19:c3:9e:d9:f9: 3d:af:ac:b0:7f:e3:58:ac:81:c7:2c:e3:30:3e:26: 90:b5:34:3a:fa:3b:3f:6f:a5:e1:8c:6b:34:00:9b: f6:df:52:c8:23:ce:1c:8b:d3:d1:03:9c:53:4f:83: f9:f6:58:6b:e5:e8:51:87:2b:9e:20:70:89:b0:9a: d5:ef:5c:af:76:4c:a2:f9:98:97:c8:55:f7:70:29: e5:b4:c6:bf:bc:3b:78:37:13:e9:da:2b:71:d8:4c: ca:48:5d:41:bc:64:a1:cb:e0:c7:ba:32:ec:2a:21: 64:aa:32:7a:9c:c0:dd:df:28:1f:db:b6:76:45:1e: bb:be:1c:52:df:7d:cd:6c:0a:b5:e6:96:98:32:26: 0a:d1:d5:4d:7a:15:ab:bc:5f:96:97:e9:73:27:7a: ea:21:c3:99:42:b4:6d:c8:b9:32:80:1b:61:8f:b7: bf:73:03:87:26:a5:71:34:22:76:eb:0c:49:c9:7f: b7:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:2D:CE:D6:59:7A:2A:95:4B:9C:D8:59:32:FD:B6:49:70:1F:70:BC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f7e061b-ce73-4723-ae0d-5ea7afa3bea5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f38:4040::/48 Signature Algorithm: sha256WithRSAEncryption 27:fb:91:1e:b2:e1:82:b3:30:58:de:89:9b:56:8b:24:d3:88: 69:f0:cb:38:15:23:b0:c2:19:94:be:94:46:3d:a8:44:9f:91: 2a:81:63:58:af:31:51:b0:f0:03:e2:38:af:e8:a6:a3:11:48: 70:92:14:09:ec:49:37:94:e1:00:24:45:30:e9:de:88:72:bb: 5d:0b:52:4f:ea:d9:7c:d2:60:6e:88:21:87:05:ca:b5:25:4d: 8d:08:f2:7a:31:ac:20:2c:22:25:a7:ef:a1:b9:cc:14:04:0c: ef:63:fc:cf:5d:7d:47:3a:35:d2:7a:d1:97:92:6a:f3:e9:8f: 74:1d:12:5a:0d:9b:24:b0:d9:43:f5:6c:dd:df:7a:78:a3:f7: 8e:ea:a1:57:8b:f6:f4:b5:29:51:7a:12:2f:57:09:21:56:05: 26:4f:13:a6:71:22:b6:ca:12:40:fd:ce:55:a1:32:68:e3:7e: a9:5b:73:d0:07:c6:bf:ce:e6:f8:2d:10:2c:e6:fb:07:bb:06: d3:74:77:e9:f0:2a:7f:56:d6:8d:08:b6:62:90:a7:85:14:3a: 21:ed:60:fa:2f:6a:e6:5d:06:81:aa:98:89:aa:20:a5:e2:59: 5c:de:c5:6a:ac:b5:91:09:50:a6:dc:d3:57:98:17:cf:75:dc: d7:1b:35:2a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSRYMBtWeDYqtYTSIlb+4aES/FbMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIxMTgyMTQ1WhcNMjUwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmOWE0YjMzMzc1Mzk4ZDhiMzIxNTk2OTcxMzA4ZTM5ZWRj MzY0YTRjZDM4MGJjMjRiMDA3MjMwMTE0OTliMmE2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6LVHpcCAXWm54UogmjO38MK0Kl404p/d9JSFwzTf+rkHj amMMOoCa0L8vD3JpjtG+63vD947S2iZm6M2gqQ9fX060yaoZw57Z+T2vrLB/41is gccs4zA+JpC1NDr6Oz9vpeGMazQAm/bfUsgjzhyL09EDnFNPg/n2WGvl6FGHK54g cImwmtXvXK92TKL5mJfIVfdwKeW0xr+8O3g3E+naK3HYTMpIXUG8ZKHL4Me6Muwq IWSqMnqcwN3fKB/btnZFHru+HFLffc1sCrXmlpgyJgrR1U16Fau8X5aX6XMneuoh w5lCtG3IuTKAG2GPt79zA4cmpXE0InbrDEnJf7enAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUqi3O1ll6KpVLnNhZMv22SXAfcLwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlmN2UwNjFiLWNlNzMtNDcyMy1hZTBkLTVlYTdhZmEzYmVhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB84QEAwDQYJKoZIhvcNAQELBQADggEBACf7kR6y4YKzMFjeiZtWiyTT iGnwyzgVI7DCGZS+lEY9qESfkSqBY1ivMVGw8APiOK/opqMRSHCSFAnsSTeU4QAk RTDp3ohyu10LUk/q2XzSYG6IIYcFyrUlTY0I8noxrCAsIiWn76G5zBQEDO9j/M9d fUc6NdJ60ZeSavPpj3QdEloNmySw2UP1bN3fenij947qoVeL9vS1KVF6Ei9XCSFW BSZPE6ZxIrbKEkD9zlWhMmjjfqlbc9AHxr/O5vgtECzm+we7BtN0d+nwKn9W1o0I tmKQp4UUOiHtYPovauZdBoGqmImqIKXiWVzexWqstZEJUKbc01eYF8913NcbNSo= -----END CERTIFICATE-----Generated at Sat Apr 26 16:50:12 2025 by rpki-client