$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/e7874585-f99e-4906-afcf-7069fe104b33.roa File: e7874585-f99e-4906-afcf-7069fe104b33.roa (raw, json) Hash identifier: i5QI+ro+IfEWXxXYJTG9XHUDMtIPO7QPLSvoEpCmHu8= Subject key identifier: 73:3A:F2:83:90:C3:57:F5:FC:B7:2A:B1:0F:FE:E8:72:BC:39:11:A3 Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 7C042ACD05C73672DCFCCB5944880E1E6530F125 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/e7874585-f99e-4906-afcf-7069fe104b33.roa Signing time: Fri 11 Apr 2025 00:10:14 +0000 ROA not before: Fri 11 Apr 2025 00:10:14 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:300f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:04:2a:cd:05:c7:36:72:dc:fc:cb:59:44:88:0e:1e:65:30:f1:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Apr 11 00:10:14 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=86fc5a506fe8b61728e70c4ea13b7b5132cf60c7fc930a0a45f84b23ac020c9a, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:8e:53:c4:6d:77:7a:41:08:03:d4:e1:2e:30: 6f:48:e4:6a:58:22:61:88:1e:ff:eb:d8:7c:ca:f1: c0:32:15:13:e6:72:d0:b2:ec:34:82:5a:ae:c3:1f: 71:0d:5e:f0:f0:9c:ec:08:8d:ee:1d:b4:66:0d:e5: 6f:cc:6b:f4:2e:4f:c7:e7:0b:a5:fd:9a:15:26:dc: 39:88:d2:9c:9a:e9:49:8b:45:54:ea:0f:47:8e:1e: bf:19:d5:da:24:2c:0b:3f:af:b8:11:77:dc:ff:0e: 9e:cd:18:04:37:51:7c:fe:60:95:56:64:bd:08:d1: 28:12:12:94:b7:a9:f6:55:01:72:12:b8:b6:35:f0: 0b:07:78:5e:61:e4:92:13:71:ae:67:73:29:dc:0e: 0d:76:e6:6c:44:8e:c1:7a:0e:30:32:0c:ac:05:98: 86:3e:53:d8:50:f4:ca:bc:46:f3:91:e7:44:cb:7c: f2:5c:6b:68:92:1e:be:ff:85:ab:50:44:4f:06:ca: 6f:9b:74:64:71:d2:75:1e:97:9b:3a:fb:a2:f1:69: 27:67:78:a2:4d:86:29:5e:8b:56:8b:f3:68:af:a8: 3d:27:79:b1:76:39:34:51:4b:22:26:06:cf:27:ba: 72:7c:3e:61:8b:71:0e:38:95:46:9b:79:c1:05:36: 2b:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:3A:F2:83:90:C3:57:F5:FC:B7:2A:B1:0F:FE:E8:72:BC:39:11:A3 X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/e7874585-f99e-4906-afcf-7069fe104b33.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:300f::/48 Signature Algorithm: sha256WithRSAEncryption 89:6a:71:d6:f6:b4:df:ab:eb:40:18:96:f3:ce:ed:8d:98:3a: d6:f5:ba:d6:a9:84:80:86:9e:52:7f:62:72:88:34:45:81:19: cc:67:36:00:2b:18:d4:a8:15:76:af:cf:73:71:e2:37:b6:db: 89:94:20:14:33:f1:90:22:d3:85:9b:1a:e8:02:83:41:7f:a7: 89:50:1e:b4:3a:f1:41:41:2d:5b:c6:79:87:33:44:17:14:cd: a0:ca:3e:7b:25:a7:62:5e:4a:b1:4a:83:26:35:d8:ab:2a:55: 87:08:16:b2:f2:31:09:4e:e6:fa:25:e7:5f:4b:98:9e:cf:3a: d3:f3:3c:24:3c:cd:63:b4:7e:a0:40:91:d8:1e:0f:94:5c:3a: 98:3b:79:d5:87:5d:1a:0a:e6:e3:00:64:b2:8b:05:fc:97:06: 0b:e0:7c:a1:f7:b3:43:80:40:9e:49:54:5e:d5:cf:69:56:e4: 16:bf:0e:16:fd:38:82:43:84:7a:43:70:7b:37:7d:1c:e8:a4: be:4a:91:40:db:70:8b:7f:d7:9a:1c:c6:9e:f1:38:ce:bf:df: 16:a3:df:f8:51:26:11:6f:01:d2:b7:72:cb:92:48:44:62:88: 3a:15:98:e9:00:c2:30:35:b8:82:bc:8b:7e:42:28:c8:43:88: 0b:c9:90:88 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfAQqzQXHNnLc/MtZRIgOHmUw8SUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwNDExMDAxMDE0WhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NmZjNWE1MDZmZThiNjE3MjhlNzBjNGVhMTNiN2I1MTMy Y2Y2MGM3ZmM5MzBhMGE0NWY4NGIyM2FjMDIwYzlhMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfjlPEbXd6QQgD1OEuMG9I5GpYImGIHv/r2HzK8cAyFRPm ctCy7DSCWq7DH3ENXvDwnOwIje4dtGYN5W/Ma/QuT8fnC6X9mhUm3DmI0pya6UmL RVTqD0eOHr8Z1dokLAs/r7gRd9z/Dp7NGAQ3UXz+YJVWZL0I0SgSEpS3qfZVAXIS uLY18AsHeF5h5JITca5ncyncDg125mxEjsF6DjAyDKwFmIY+U9hQ9Mq8RvOR50TL fPJca2iSHr7/hatQRE8Gym+bdGRx0nUel5s6+6LxaSdneKJNhilei1aL82ivqD0n ebF2OTRRSyImBs8nunJ8PmGLcQ44lUabecEFNisnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUczryg5DDV/X8tyqxD/7ocrw5EaMwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjL2U3ODc0NTg1LWY5OWUtNDkwNi1hZmNmLTcwNjlmZTEwNGIzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmIAEHMA8wDQYJKoZIhvcNAQELBQADggEBAIlqcdb2tN+r60AYlvPO7Y2Y Otb1utaphICGnlJ/YnKINEWBGcxnNgArGNSoFXavz3Nx4je224mUIBQz8ZAi04Wb GugCg0F/p4lQHrQ68UFBLVvGeYczRBcUzaDKPnslp2JeSrFKgyY12KsqVYcIFrLy MQlO5vol519LmJ7POtPzPCQ8zWO0fqBAkdgeD5RcOpg7edWHXRoK5uMAZLKLBfyX BgvgfKH3s0OAQJ5JVF7Vz2lW5Ba/Dhb9OIJDhHpDcHs3fRzopL5KkUDbcIt/15oc xp7xOM6/3xaj3/hRJhFvAdK3csuSSERiiDoVmOkAwjA1uIK8i35CKMhDiAvJkIg= -----END CERTIFICATE-----Generated at Sat Apr 26 14:44:28 2025 by rpki-client