$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e8bb9b8b-b8aa-4973-83fa-07987f338fc2.roa File: e8bb9b8b-b8aa-4973-83fa-07987f338fc2.roa (raw, json) Hash identifier: sJ7M1ZHgt5kIV1uycYn8AR9nrARlj8kkrEStCykIE2k= Subject key identifier: 57:1F:0E:93:04:5E:B2:0B:22:A0:62:7B:90:B0:F6:E6:01:31:4A:9A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2655E480D7673CD55FF9199A0FD9EC19A6165A7A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e8bb9b8b-b8aa-4973-83fa-07987f338fc2.roa Signing time: Tue 22 Apr 2025 16:40:19 +0000 ROA not before: Tue 22 Apr 2025 16:40:19 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:55:e4:80:d7:67:3c:d5:5f:f9:19:9a:0f:d9:ec:19:a6:16:5a:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:40:19 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=90dce2c8b40d6e5d3f25c30269439a883efcf2393b4772b60874bc2c9c46744b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:8a:15:f6:9a:70:92:22:8c:de:84:e4:65:79: 84:68:1f:31:07:0e:76:d6:4f:d9:c5:b5:a4:6c:f2: 9f:2c:25:f5:81:94:f9:75:47:f3:b3:15:7c:9c:17: 13:4e:b6:c5:f8:98:c0:e9:f4:6d:a4:ff:19:07:33: 58:f6:70:f2:65:89:8e:dd:58:f0:5b:75:03:62:8c: 41:29:ea:bd:18:5a:67:96:23:77:14:c0:7e:80:59: 39:51:99:02:c8:50:bb:da:72:4a:37:7c:25:0f:16: e7:a9:d3:fc:09:10:65:0f:e3:6a:dd:62:48:ec:bf: db:d4:86:e5:0c:b2:60:13:74:de:e8:2c:af:99:81: da:67:86:d7:2a:b4:e1:f3:78:29:10:30:c1:52:49: 30:43:50:47:0d:b9:66:36:ab:06:27:26:71:f6:44: 0d:7c:4b:2a:e4:20:9b:29:e6:b8:50:42:52:f4:80: fb:36:c6:d7:2c:19:78:0a:65:f7:28:27:31:ca:7a: 8c:87:b3:e8:d3:0d:8c:da:93:45:c7:49:df:f5:ec: 9f:32:a8:2b:ba:3a:3b:92:2d:65:49:35:e8:3d:6b: ba:09:bb:ae:c5:10:6d:2c:57:8f:e4:9a:4e:6c:e5: 5b:13:c4:16:e8:81:03:e6:8f:ad:34:6c:4e:a8:2e: 1c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:1F:0E:93:04:5E:B2:0B:22:A0:62:7B:90:B0:F6:E6:01:31:4A:9A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e8bb9b8b-b8aa-4973-83fa-07987f338fc2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff0::/32 Signature Algorithm: sha256WithRSAEncryption 2c:75:3e:a1:73:bd:bb:ed:8a:a5:30:d0:8d:de:fc:91:1c:dd: f6:32:1a:19:b4:5f:e9:ea:94:d6:79:bb:b7:63:11:d8:b4:a3: 3e:01:37:01:70:e5:22:4a:66:45:f4:ca:34:7c:55:c7:39:fb: 18:39:ff:10:fd:dc:fc:bd:37:f6:59:75:92:ba:ee:dc:38:29: 44:59:13:e7:64:ea:2d:8a:34:55:29:63:71:de:fa:cd:bc:95: 27:ac:76:ed:4e:3f:aa:35:14:d8:f4:54:5d:1e:69:20:fb:e6: 6c:82:bd:10:0f:94:65:f9:c6:35:ae:29:52:c9:60:e7:1e:c5: 56:af:b4:e9:ea:cf:4e:bf:3d:75:4e:5e:9e:3d:e4:36:7c:ac: cc:01:6a:61:e1:b3:2f:92:b8:b6:1b:f6:1f:14:88:4c:16:93: 88:78:7d:86:cc:a7:4f:82:80:60:71:72:6e:9b:4f:ff:1a:13: 48:df:a6:2d:65:8d:4e:38:94:50:b6:44:48:0f:55:e5:fc:26: c4:61:94:be:b5:b0:25:94:86:08:f0:07:78:e5:02:5d:8a:35: e2:36:0f:a7:0e:55:07:41:7c:8a:5d:66:8c:b8:7b:b0:db:de: b5:77:77:f6:c8:52:2b:01:9c:cc:8a:29:f4:84:d3:b2:70:02: 76:a9:6e:8b -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUJlXkgNdnPNVf+RmaD9nsGaYWWnowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTY0MDE5WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MGRjZTJjOGI0MGQ2ZTVkM2YyNWMzMDI2OTQzOWE4ODNl ZmNmMjM5M2I0NzcyYjYwODc0YmMyYzljNDY3NDRiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCOihX2mnCSIozehORleYRoHzEHDnbWT9nFtaRs8p8sJfWB lPl1R/OzFXycFxNOtsX4mMDp9G2k/xkHM1j2cPJliY7dWPBbdQNijEEp6r0YWmeW I3cUwH6AWTlRmQLIULvacko3fCUPFuep0/wJEGUP42rdYkjsv9vUhuUMsmATdN7o LK+ZgdpnhtcqtOHzeCkQMMFSSTBDUEcNuWY2qwYnJnH2RA18SyrkIJsp5rhQQlL0 gPs2xtcsGXgKZfcoJzHKeoyHs+jTDYzak0XHSd/17J8yqCu6OjuSLWVJNeg9a7oJ u67FEG0sV4/kmk5s5VsTxBbogQPmj600bE6oLhxfAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUVx8OkwResgsioGJ7kLD25gExSpowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U4YmI5YjhiLWI4YWEtNDk3My04M2ZhLTA3OTg3ZjMzOGZjMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmAB/wMA0GCSqGSIb3DQEBCwUAA4IBAQAsdT6hc7277YqlMNCN3vyRHN32 MhoZtF/p6pTWebu3YxHYtKM+ATcBcOUiSmZF9Mo0fFXHOfsYOf8Q/dz8vTf2WXWS uu7cOClEWRPnZOotijRVKWNx3vrNvJUnrHbtTj+qNRTY9FRdHmkg++Zsgr0QD5Rl +cY1rilSyWDnHsVWr7Tp6s9Ovz11Tl6ePeQ2fKzMAWph4bMvkri2G/YfFIhMFpOI eH2GzKdPgoBgcXJum0//GhNI36YtZY1OOJRQtkRID1Xl/CbEYZS+tbAllIYI8Ad4 5QJdijXiNg+nDlUHQXyKXWaMuHuw2961d3f2yFIrAZzMiin0hNOycAJ2qW6L -----END CERTIFICATE-----Generated at Sat Apr 26 16:46:13 2025 by rpki-client