$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/cd3025ff-3653-4276-a530-1fa2eed87e53.roa File: cd3025ff-3653-4276-a530-1fa2eed87e53.roa (raw, json) Hash identifier: gGaiwso9vMp3qpdcQkMdUGCHIJynHwqs626JBUDN/zs= Subject key identifier: 85:BF:A0:D3:B7:0C:15:3F:97:DE:E4:AA:12:6A:E5:F3:34:77:BD:A2 Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 278DEAA6F4CA17ADAD0257E89F291FFD891E7BE9 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/cd3025ff-3653-4276-a530-1fa2eed87e53.roa Signing time: Sat 31 May 2025 00:20:04 +0000 ROA not before: Sat 31 May 2025 00:20:04 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:3000::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:8d:ea:a6:f4:ca:17:ad:ad:02:57:e8:9f:29:1f:fd:89:1e:7b:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: May 31 00:20:04 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=98cd5f11ae3922dae8103f97ee27731e7124a9e0876bc71db8cb6982f2e64c20, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:cb:e2:a1:6a:61:88:64:bd:33:2f:6e:58:ee: 1e:bf:91:e3:91:ee:30:fa:43:70:6e:03:f4:38:27: ba:40:e1:fc:30:6e:73:5f:18:a4:5a:de:8f:fb:9b: 59:95:87:fd:e2:da:31:2c:be:7b:54:e2:77:a5:9a: 63:7d:c5:60:32:63:d1:a3:95:fb:51:54:16:f3:ce: 27:5f:a1:19:6c:97:09:65:36:18:00:60:7e:e0:a3: 2e:6a:37:67:a8:9b:a5:a8:3a:6e:55:83:4c:93:04: 5e:b2:77:e0:a6:13:aa:35:22:a8:07:2d:1a:bc:8d: a2:75:f2:4b:e4:0a:58:45:9f:48:ea:d6:b2:15:66: ae:67:6c:18:57:3e:c5:7e:48:3b:39:67:ba:28:21: 2f:82:a3:09:d3:ed:46:4b:bb:6e:75:6a:3f:75:bb: 0b:d5:2a:71:02:33:db:f7:83:56:83:c6:9a:e4:cd: de:21:d0:97:98:36:39:a1:45:1f:a0:74:d1:10:92: 51:33:36:7e:6c:e7:d6:ea:16:86:ac:20:eb:c3:5b: ad:36:92:65:f1:97:38:ad:bb:5d:59:e0:f6:59:c8: 8a:e4:f3:48:da:f3:9f:e3:85:20:57:11:30:90:61: fa:5f:d2:7f:a0:3c:7e:db:a1:a9:7f:0a:8c:28:96: 37:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:BF:A0:D3:B7:0C:15:3F:97:DE:E4:AA:12:6A:E5:F3:34:77:BD:A2 X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/cd3025ff-3653-4276-a530-1fa2eed87e53.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:3000::/44 Signature Algorithm: sha256WithRSAEncryption 17:0a:56:1d:62:89:9e:8a:52:ef:42:26:c1:0f:a0:e5:c3:fc: 54:b8:92:73:b8:c7:05:91:1c:cd:db:1e:d6:8e:d2:82:73:5d: 85:28:dd:08:42:78:26:6e:1b:43:a2:4b:a0:19:e1:a1:e0:6c: ce:33:8e:fe:32:7d:b6:ec:6f:38:b1:5a:3d:73:01:e8:58:09: a0:1b:7f:b7:32:a4:54:ee:37:06:cf:f0:f4:61:4c:83:a7:f8: 2d:dd:7d:c4:8c:a6:5c:98:14:95:17:79:1e:23:f1:bb:21:16: 8d:7f:c5:6a:f3:ac:93:2a:20:5f:d8:91:84:08:cd:56:69:43: 09:db:47:ab:c8:92:a7:76:5c:a9:cb:67:07:f0:37:21:28:64: fc:57:3e:13:b1:d1:d2:96:88:9f:6c:99:ee:7d:43:30:19:e4: 20:92:c2:ce:ae:d4:a5:89:6c:2b:75:15:72:18:97:ff:3d:9b: f5:8a:ca:dc:ae:35:87:05:68:2a:08:b9:1d:e3:83:ed:5d:57: 65:99:e6:b3:96:89:87:4d:ee:af:ab:d0:79:f3:d5:2d:11:42: 19:40:bf:95:b7:fb:a2:e1:e0:87:89:12:97:bf:63:8a:8c:c2: 8c:7a:b9:6e:a7:da:7d:47:b2:07:a0:92:fe:ab:93:d5:0d:48: 68:5c:0c:ad -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJ43qpvTKF62tAlfonykf/Ykee+kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwNTMxMDAyMDA0WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5OGNkNWYxMWFlMzkyMmRhZTgxMDNmOTdlZTI3NzMxZTcx MjRhOWUwODc2YmM3MWRiOGNiNjk4MmYyZTY0YzIwMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9y+KhamGIZL0zL25Y7h6/keOR7jD6Q3BuA/Q4J7pA4fww bnNfGKRa3o/7m1mVh/3i2jEsvntU4nelmmN9xWAyY9GjlftRVBbzzidfoRlslwll NhgAYH7goy5qN2eom6WoOm5Vg0yTBF6yd+CmE6o1IqgHLRq8jaJ18kvkClhFn0jq 1rIVZq5nbBhXPsV+SDs5Z7ooIS+CownT7UZLu251aj91uwvVKnECM9v3g1aDxprk zd4h0JeYNjmhRR+gdNEQklEzNn5s59bqFoasIOvDW602kmXxlzitu11Z4PZZyIrk 80ja85/jhSBXETCQYfpf0n+gPH7boal/CowoljfJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUhb+g07cMFT+X3uSqEmrl8zR3vaIwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjL2NkMzAyNWZmLTM2NTMtNDI3Ni1hNTMwLTFmYTJlZWQ4N2U1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmIAEHMAAwDQYJKoZIhvcNAQELBQADggEBABcKVh1iiZ6KUu9CJsEPoOXD /FS4knO4xwWRHM3bHtaO0oJzXYUo3QhCeCZuG0OiS6AZ4aHgbM4zjv4yfbbsbzix Wj1zAehYCaAbf7cypFTuNwbP8PRhTIOn+C3dfcSMplyYFJUXeR4j8bshFo1/xWrz rJMqIF/YkYQIzVZpQwnbR6vIkqd2XKnLZwfwNyEoZPxXPhOx0dKWiJ9sme59QzAZ 5CCSws6u1KWJbCt1FXIYl/89m/WKytyuNYcFaCoIuR3jg+1dV2WZ5rOWiYdN7q+r 0Hnz1S0RQhlAv5W3+6Lh4IeJEpe/Y4qMwox6uW6n2n1Hsgegkv6rk9UNSGhcDK0= -----END CERTIFICATE-----Generated at Sat Jun 14 05:54:57 2025 by rpki-client