$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fa0cdf03-f696-40a7-847d-f9de13932c95.roa File: fa0cdf03-f696-40a7-847d-f9de13932c95.roa (raw, json) Hash identifier: +xnkiLY4zp3uk2RJvvGoxXe3w7XuaHzAiaWWwz2IVhk= Subject key identifier: C1:F7:A0:5A:CE:64:E6:9E:FD:27:64:05:1F:39:2F:17:17:4B:30:A3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 02ADBB36092B31CAF87B31E92BD9AB6216D52ADE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fa0cdf03-f696-40a7-847d-f9de13932c95.roa Signing time: Mon 21 Apr 2025 17:30:14 +0000 ROA not before: Mon 21 Apr 2025 17:30:14 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:8120::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:ad:bb:36:09:2b:31:ca:f8:7b:31:e9:2b:d9:ab:62:16:d5:2a:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 21 17:30:14 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=b967b1b92c50f8b20eb913e080126b615f6d8aee3a9c7b56095b31f80aa43602, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b3:f3:23:86:23:53:1a:ea:bd:60:e1:d3:ea: 96:7e:3e:d9:c2:d8:38:47:38:84:3e:e4:b3:72:81: be:c2:73:4f:c5:29:53:a9:b7:d2:4f:e7:02:9a:79: e4:b1:10:c7:a9:50:f1:c2:61:06:4e:5d:7f:b9:23: ad:bc:05:63:f5:a1:de:8a:5a:70:a9:af:2f:0d:39: 50:67:81:26:2a:4e:3d:12:8d:5d:01:bc:05:c4:00: 82:59:18:98:50:14:9e:55:c7:cf:8b:a4:50:f7:b9: 8b:1e:df:45:6e:a8:f9:e2:ea:f9:93:68:9f:88:75: 5e:72:f6:49:c9:b9:0a:f5:00:24:d6:d1:d2:6d:37: 7a:7c:e2:90:fd:c6:6f:5f:e8:13:74:93:32:b1:4a: 2e:38:8a:0f:ac:a2:ff:8c:6f:50:c6:d0:d1:df:a3: bf:bb:81:29:4a:84:ec:04:a1:a1:16:2a:ca:d2:b7: 01:27:d8:87:0b:0f:33:f8:9f:ed:89:03:df:ae:aa: 01:1f:a2:9d:2d:c9:3a:15:6b:eb:21:72:2f:8e:8c: 9f:84:ad:e5:7d:56:3f:44:7e:15:9f:db:4f:d4:aa: e9:e1:60:1a:7d:9e:d0:34:6b:44:9e:50:8e:34:91: bd:72:07:e9:a8:81:61:9a:d4:f4:16:89:70:e7:c3: bc:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:F7:A0:5A:CE:64:E6:9E:FD:27:64:05:1F:39:2F:17:17:4B:30:A3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fa0cdf03-f696-40a7-847d-f9de13932c95.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:8120::/48 Signature Algorithm: sha256WithRSAEncryption 01:02:07:7b:81:4f:51:dc:17:5b:f5:32:83:c1:44:3d:e8:2f: 92:2d:7d:c2:6b:ea:d0:d9:9e:21:71:00:0e:c9:15:76:b2:6c: 66:66:5f:2a:6f:cc:eb:5b:ec:1a:a5:a8:36:5c:7a:4a:66:f8: 1d:74:16:86:a1:5c:97:61:a7:27:ac:22:fc:5e:30:f3:4c:1c: 38:be:9e:89:95:95:f0:e4:3e:2f:07:ce:c7:e0:2d:61:f3:d9: 84:8c:b7:ff:74:45:e2:9c:c3:a7:33:7b:60:54:c3:bd:75:99: 8e:3d:49:28:d1:21:02:f8:b0:b3:49:6e:4d:fe:2e:23:5f:df: 8e:33:a3:d3:14:25:55:3a:ac:b4:cc:55:40:63:2a:64:5d:e4: aa:cd:a6:93:18:ab:88:5e:9a:28:b2:c1:e6:cf:2d:0e:8c:65: ae:ec:23:38:87:0e:7c:a9:f8:98:df:65:ea:06:ce:3c:d2:b7: be:a7:db:c0:3f:c5:50:a5:39:a9:0b:24:48:67:af:6b:e1:c0: f9:8d:71:2d:a4:f2:49:67:1a:57:10:e6:af:93:58:a9:6a:ce: be:cc:14:2c:c3:15:3e:3c:dc:52:04:ed:06:40:35:c0:77:50: 4b:dd:d9:a9:37:f6:13:f0:e9:de:19:0c:05:e1:f0:91:56:98: 47:e9:19:64 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUAq27NgkrMcr4ezHpK9mrYhbVKt4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIxMTczMDE0WhcNMjUwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiOTY3YjFiOTJjNTBmOGIyMGViOTEzZTA4MDEyNmI2MTVm NmQ4YWVlM2E5YzdiNTYwOTViMzFmODBhYTQzNjAyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFs/MjhiNTGuq9YOHT6pZ+PtnC2DhHOIQ+5LNygb7Cc0/F KVOpt9JP5wKaeeSxEMepUPHCYQZOXX+5I628BWP1od6KWnCpry8NOVBngSYqTj0S jV0BvAXEAIJZGJhQFJ5Vx8+LpFD3uYse30VuqPni6vmTaJ+IdV5y9knJuQr1ACTW 0dJtN3p84pD9xm9f6BN0kzKxSi44ig+sov+Mb1DG0NHfo7+7gSlKhOwEoaEWKsrS twEn2IcLDzP4n+2JA9+uqgEfop0tyToVa+shci+OjJ+EreV9Vj9EfhWf20/Uqunh YBp9ntA0a0SeUI40kb1yB+mogWGa1PQWiXDnw7xRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUwfegWs5k5p79J2QFHzkvFxdLMKMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZhMGNkZjAzLWY2OTYtNDBhNy04NDdkLWY5ZGUxMzkzMmM5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//gSAwDQYJKoZIhvcNAQELBQADggEBAAECB3uBT1HcF1v1MoPBRD3o L5ItfcJr6tDZniFxAA7JFXaybGZmXypvzOtb7BqlqDZcekpm+B10FoahXJdhpyes IvxeMPNMHDi+nomVlfDkPi8HzsfgLWHz2YSMt/90ReKcw6cze2BUw711mY49SSjR IQL4sLNJbk3+LiNf344zo9MUJVU6rLTMVUBjKmRd5KrNppMYq4hemiiywebPLQ6M Za7sIziHDnyp+JjfZeoGzjzSt76n28A/xVClOakLJEhnr2vhwPmNcS2k8klnGlcQ 5q+TWKlqzr7MFCzDFT483FIE7QZANcB3UEvd2ak39hPw6d4ZDAXh8JFWmEfpGWQ= -----END CERTIFICATE-----Generated at Sat Apr 26 14:52:23 2025 by rpki-client