$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ce4e21b0-d401-42ee-a867-231a78f7cba0.roa File: ce4e21b0-d401-42ee-a867-231a78f7cba0.roa (raw, json) Hash identifier: AVZ2bSRRXl5xxp4EZsKMr3nX79vugIVh5Qy2PTc8He0= Subject key identifier: 85:BC:01:BF:D2:B9:C7:B5:EC:47:C8:B5:C8:D5:89:1A:AF:0F:A8:AC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 319FB8E3478E84F6185E871CCBAB50AD8458FE53 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ce4e21b0-d401-42ee-a867-231a78f7cba0.roa Signing time: Mon 21 Apr 2025 17:40:33 +0000 ROA not before: Mon 21 Apr 2025 17:40:33 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f61:8020::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:9f:b8:e3:47:8e:84:f6:18:5e:87:1c:cb:ab:50:ad:84:58:fe:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 21 17:40:33 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=9b6a94de41a3bf91336fda8a20808df577c9fcaab5a710ec58261618b298c563, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:de:74:b0:87:fe:73:77:22:c3:03:ee:36:33: 4f:69:2c:e9:50:07:b1:e3:c7:87:58:cc:5e:73:4a: 30:4f:8a:b5:48:93:b4:cb:ce:10:50:e4:f5:e4:19: b3:31:30:a8:6e:7a:c2:15:2e:30:ca:a4:97:af:51: 17:72:b5:15:21:19:47:df:e4:b3:38:fd:56:53:f4: e9:9f:b6:3d:a1:fd:bb:da:1d:30:04:be:86:60:9f: 33:c2:97:c0:de:86:33:6b:0b:ec:a6:9d:66:70:fc: b5:fc:de:e2:c4:81:e0:4a:be:e9:f5:42:0b:1c:d1: 1a:34:14:60:26:dc:af:c3:0c:bc:1b:98:3c:7c:18: 8e:0a:73:14:f0:68:24:c3:88:3f:09:e6:24:8b:13: 59:dc:09:6a:9c:a0:f8:01:11:1c:81:64:05:17:00: 03:7b:c6:11:d6:7b:3c:47:8b:95:81:dd:6d:06:e0: e6:0d:be:49:9c:99:3e:11:de:89:b9:18:48:e1:fe: fe:23:23:38:2a:c4:34:f8:a0:28:1b:1a:bb:8b:1a: c5:9c:13:57:9a:d2:1b:3b:a9:32:a8:b3:00:62:3d: ca:a9:87:b8:bf:dc:76:78:01:70:95:00:52:6f:56: 36:74:6a:28:e3:47:a5:42:f6:6d:be:7e:2b:00:02: 53:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:BC:01:BF:D2:B9:C7:B5:EC:47:C8:B5:C8:D5:89:1A:AF:0F:A8:AC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ce4e21b0-d401-42ee-a867-231a78f7cba0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:8020::/48 Signature Algorithm: sha256WithRSAEncryption d5:5c:c4:46:a0:cf:04:7f:62:48:ec:75:45:ca:e5:b6:71:ad: 52:c3:85:58:2a:9a:70:c8:7d:7b:7c:99:be:5c:32:eb:35:2b: 03:c9:61:26:ea:a7:71:69:67:13:b7:7c:c2:79:f9:58:4b:cc: 8e:0f:33:e0:26:df:73:35:f8:17:f4:6f:0b:68:58:c2:a4:16: c0:0f:72:3f:6d:e8:de:17:7a:e2:7c:9f:ec:55:e1:c3:69:96: a1:aa:b8:bd:5d:ce:29:24:37:5c:8a:bf:5d:f2:c0:35:6f:55: f9:3c:e9:93:55:29:9c:d6:f5:1c:72:d1:41:96:e8:8a:99:88: 79:a2:88:d0:93:8d:41:76:d3:07:6b:89:53:b1:20:7e:d8:0d: ed:7f:65:eb:b4:81:78:9e:24:8c:bb:1d:f4:ed:24:ba:3a:53: a0:50:3a:f6:64:3c:b6:a5:89:6f:ca:4e:79:33:36:c1:4e:61: 10:0c:b4:de:3d:9d:78:f0:5a:88:a5:30:26:cb:8c:0e:8c:51: 71:3d:a9:5c:48:c8:81:41:09:a9:d9:c3:8f:9c:1b:04:55:cc: 22:d9:ce:06:42:d5:fa:bd:85:75:27:28:b8:1c:3c:fe:fd:e8: 2e:8a:ed:25:c3:97:2b:aa:3f:b1:8b:df:b4:fd:6d:62:b5:e4: 62:70:04:54 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMZ+440eOhPYYXoccy6tQrYRY/lMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIxMTc0MDMzWhcNMjUwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YjZhOTRkZTQxYTNiZjkxMzM2ZmRhOGEyMDgwOGRmNTc3 YzlmY2FhYjVhNzEwZWM1ODI2MTYxOGIyOThjNTYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCk3nSwh/5zdyLDA+42M09pLOlQB7Hjx4dYzF5zSjBPirVI k7TLzhBQ5PXkGbMxMKhuesIVLjDKpJevURdytRUhGUff5LM4/VZT9Omftj2h/bva HTAEvoZgnzPCl8DehjNrC+ymnWZw/LX83uLEgeBKvun1Qgsc0Ro0FGAm3K/DDLwb mDx8GI4KcxTwaCTDiD8J5iSLE1ncCWqcoPgBERyBZAUXAAN7xhHWezxHi5WB3W0G 4OYNvkmcmT4R3om5GEjh/v4jIzgqxDT4oCgbGruLGsWcE1ea0hs7qTKoswBiPcqp h7i/3HZ4AXCVAFJvVjZ0aijjR6VC9m2+fisAAlMhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUhbwBv9K5x7XsR8i1yNWJGq8PqKwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NlNGUyMWIwLWQ0MDEtNDJlZS1hODY3LTIzMWE3OGY3Y2JhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB9hgCAwDQYJKoZIhvcNAQELBQADggEBANVcxEagzwR/YkjsdUXK5bZx rVLDhVgqmnDIfXt8mb5cMus1KwPJYSbqp3FpZxO3fMJ5+VhLzI4PM+Am33M1+Bf0 bwtoWMKkFsAPcj9t6N4XeuJ8n+xV4cNplqGquL1dzikkN1yKv13ywDVvVfk86ZNV KZzW9Rxy0UGW6IqZiHmiiNCTjUF20wdriVOxIH7YDe1/Zeu0gXieJIy7HfTtJLo6 U6BQOvZkPLaliW/KTnkzNsFOYRAMtN49nXjwWoilMCbLjA6MUXE9qVxIyIFBCanZ w4+cGwRVzCLZzgZC1fq9hXUnKLgcPP796C6K7SXDlyuqP7GL37T9bWK15GJwBFQ= -----END CERTIFICATE-----Generated at Sat Apr 26 15:58:38 2025 by rpki-client