$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f545cb29-8814-4cd2-8474-142d37f94263.roa File: f545cb29-8814-4cd2-8474-142d37f94263.roa (raw, json) Hash identifier: y9BQeKWunHlgD/wHGzU0TWRb13li32/f+4osKrDwccc= Subject key identifier: A7:20:75:D7:0C:C9:7A:A0:B4:35:50:DE:BA:A7:0F:22:05:4C:B4:94 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 32DC8904D51BD2D2E4F00787189D2ACD71AB9FFE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f545cb29-8814-4cd2-8474-142d37f94263.roa Signing time: Tue 22 Apr 2025 16:41:07 +0000 ROA not before: Tue 22 Apr 2025 16:41:07 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f12::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:dc:89:04:d5:1b:d2:d2:e4:f0:07:87:18:9d:2a:cd:71:ab:9f:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:41:07 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=eba571ae59bcc1e1bf5fb30a7b50066df95d219ee3637c0778bd15d47f7d26e4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f1:fd:4e:28:91:b8:86:da:97:1f:e2:b5:b4: fc:ee:29:19:32:43:3f:de:b6:03:c6:47:ea:22:9f: db:60:d8:f2:c4:db:0e:02:1d:19:3f:75:ba:73:ac: 57:e6:26:cb:f2:62:49:5d:59:7f:e3:16:9c:21:fe: e2:69:53:91:e3:06:87:d7:5a:d4:da:18:01:0e:25: 5d:c7:f7:95:44:61:28:ad:71:e1:e6:4c:42:8c:bf: f5:f7:70:e8:b0:fb:c2:22:19:6b:3a:36:14:5a:61: bb:44:62:34:7a:ce:f8:5e:c7:5e:d6:33:e0:19:f1: be:58:f4:38:30:ff:74:08:d6:e5:d8:26:a4:14:5b: 43:8c:4a:f7:ce:3c:02:c9:d5:17:80:bd:18:19:db: cd:3a:10:d9:14:0d:7d:07:7f:27:5e:c9:41:d6:a2: 8f:1b:37:8c:06:7f:55:8f:dd:4b:7b:3c:41:d3:8c: 3d:4b:12:41:a1:7a:f5:b1:67:e6:15:d0:2a:13:b2: 85:3a:8c:73:fe:19:dc:00:c9:19:c4:65:63:48:1d: 75:7b:e8:c0:e4:45:03:87:d5:79:98:5c:63:26:06: 4c:fe:66:26:7a:98:6f:0b:d9:8e:b0:e6:a0:d8:6d: f6:7a:9c:bc:49:4d:16:83:09:58:69:43:b6:8e:f2: b7:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:20:75:D7:0C:C9:7A:A0:B4:35:50:DE:BA:A7:0F:22:05:4C:B4:94 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f545cb29-8814-4cd2-8474-142d37f94263.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f12::/38 Signature Algorithm: sha256WithRSAEncryption 99:f7:14:1a:71:22:39:e2:fa:59:8b:8f:6c:29:7e:ea:80:9c: 0b:38:31:7d:f6:b7:64:a8:eb:63:c8:f3:16:cb:74:c5:05:0f: cb:c9:ea:b4:a3:fe:c7:fd:c6:22:43:e4:50:55:17:75:b2:3f: ca:c5:a8:56:aa:2c:92:9c:8e:e4:3f:0c:95:d4:cb:6b:31:d4: c5:41:33:77:f2:39:5b:79:85:75:f8:4b:d3:55:d1:2a:68:61: a6:f1:a1:37:fd:5d:6b:ea:78:22:4d:f3:d7:23:e6:09:44:96: 93:2f:6a:84:9d:31:f7:6e:ca:49:da:a1:69:06:0b:21:cc:a7: b4:e6:48:f8:5b:a9:50:72:b0:7d:ef:5f:03:f5:a3:34:e8:8c: c4:f1:33:7e:c4:34:d7:fe:b6:ce:9e:aa:00:d9:51:47:ac:21: 62:8d:62:59:b6:0c:94:15:da:6f:b3:ad:16:35:3d:42:9d:6a: 7f:41:c7:33:1b:b3:2f:15:33:05:ec:ad:da:3c:90:8b:59:84: 32:b2:2f:3e:be:bb:65:9e:d8:59:cf:5b:4f:9e:1e:da:ba:2d: cc:4e:04:4d:9f:05:09:a8:71:ac:e3:2b:2d:10:d6:d4:a8:c7: 75:7e:d0:5f:26:42:2a:7d:9c:e1:0c:fd:ca:ad:e4:36:9a:46: 58:1c:41:ef -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMtyJBNUb0tLk8AeHGJ0qzXGrn/4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTY0MTA3WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYmE1NzFhZTU5YmNjMWUxYmY1ZmIzMGE3YjUwMDY2ZGY5 NWQyMTllZTM2MzdjMDc3OGJkMTVkNDdmN2QyNmU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC18f1OKJG4htqXH+K1tPzuKRkyQz/etgPGR+oin9tg2PLE 2w4CHRk/dbpzrFfmJsvyYkldWX/jFpwh/uJpU5HjBofXWtTaGAEOJV3H95VEYSit ceHmTEKMv/X3cOiw+8IiGWs6NhRaYbtEYjR6zvhex17WM+AZ8b5Y9Dgw/3QI1uXY JqQUW0OMSvfOPALJ1ReAvRgZ2806ENkUDX0HfydeyUHWoo8bN4wGf1WP3Ut7PEHT jD1LEkGhevWxZ+YV0CoTsoU6jHP+GdwAyRnEZWNIHXV76MDkRQOH1XmYXGMmBkz+ ZiZ6mG8L2Y6w5qDYbfZ6nLxJTRaDCVhpQ7aO8rd9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUpyB11wzJeqC0NVDeuqcPIgVMtJQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y1NDVjYjI5LTg4MTQtNGNkMi04NDc0LTE0MmQzN2Y5NDI2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgImAB8SADANBgkqhkiG9w0BAQsFAAOCAQEAmfcUGnEiOeL6WYuPbCl+6oCc Czgxffa3ZKjrY8jzFst0xQUPy8nqtKP+x/3GIkPkUFUXdbI/ysWoVqoskpyO5D8M ldTLazHUxUEzd/I5W3mFdfhL01XRKmhhpvGhN/1da+p4Ik3z1yPmCUSWky9qhJ0x 927KSdqhaQYLIcyntOZI+FupUHKwfe9fA/WjNOiMxPEzfsQ01/62zp6qANlRR6wh Yo1iWbYMlBXab7OtFjU9Qp1qf0HHMxuzLxUzBeyt2jyQi1mEMrIvPr67ZZ7YWc9b T54e2rotzE4ETZ8FCahxrOMrLRDW1KjHdX7QXyZCKn2c4Qz9yq3kNppGWBxB7w== -----END CERTIFICATE-----Generated at Sat Apr 26 16:50:17 2025 by rpki-client