$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2da90c2b-8bea-40c6-8dc8-5765b67fc610.roa File: 2da90c2b-8bea-40c6-8dc8-5765b67fc610.roa (raw, json) Hash identifier: EhF9YQ1SobfJDZerqr5LS3D31/D9pP6E4evNq7tktDk= Subject key identifier: 05:1F:C7:20:3C:89:4E:87:E2:AF:E5:F7:FD:46:03:8F:99:32:58:D9 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 24F51FFCFC946BACDD299FA22FADF8359E62F8EE Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2da90c2b-8bea-40c6-8dc8-5765b67fc610.roa Signing time: Fri 04 Apr 2025 00:20:19 +0000 ROA not before: Fri 04 Apr 2025 00:20:19 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 699 IP address blocks: 2606:7b40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:f5:1f:fc:fc:94:6b:ac:dd:29:9f:a2:2f:ad:f8:35:9e:62:f8:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 4 00:20:19 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: serialNumber=d1cc484ea19e92d2f65298670cfc9f016d47c5557aeea2aa6b45f19ea0d5fcf5, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:9d:7c:14:f9:20:1d:c5:38:e9:89:90:7d:aa: e4:c6:56:0d:af:8f:f7:49:3f:b8:d0:fc:22:2f:f1: 7b:99:d5:1b:b1:1e:61:f4:65:3c:63:b3:7b:3d:35: b3:a3:e4:ea:3c:74:05:4a:5d:bb:c0:7e:47:cf:40: 2f:a0:50:12:76:b5:91:25:07:30:ed:77:09:19:a9: 8b:ed:88:9f:61:b5:e3:cb:11:68:43:89:b4:25:37: ea:c8:68:3b:08:b8:39:b1:47:e9:69:8d:90:99:59: 44:f8:28:6e:ea:95:88:1d:f2:4d:d9:64:40:e2:6c: 1d:05:08:1b:66:ae:0c:55:e7:35:3b:9a:ac:9f:73: e8:26:ff:e9:9c:a8:60:50:49:ac:9f:21:27:bd:ac: 7d:b0:52:f3:46:75:39:36:e8:bb:56:88:d4:53:55: 26:09:98:0e:8a:cb:3a:68:26:58:48:f8:31:a2:98: 2b:84:63:10:2b:68:4b:a3:9c:9f:28:fb:0f:aa:fa: b3:0e:18:8a:84:11:92:62:94:fb:16:7c:d2:3b:46: 34:bc:5a:14:7d:6c:3d:5c:79:82:b8:ab:3b:4a:c1: ee:fd:74:19:45:28:47:7f:1e:60:49:88:f2:09:6c: e6:2a:4d:be:30:80:5e:a3:47:84:0a:54:0f:e9:2f: e2:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:1F:C7:20:3C:89:4E:87:E2:AF:E5:F7:FD:46:03:8F:99:32:58:D9 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2da90c2b-8bea-40c6-8dc8-5765b67fc610.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:7b40::/32 Signature Algorithm: sha256WithRSAEncryption 83:95:82:ae:80:9a:4c:50:cf:32:e1:0a:6e:42:cf:8f:35:f9: ca:2a:df:d4:ad:2f:f9:c1:ce:3e:c2:3f:a7:8c:c7:08:08:88: c3:7c:91:a3:9a:8a:c8:12:00:46:8c:81:b1:b3:b0:3a:27:bc: d7:bc:6d:77:a5:b9:92:63:68:b4:eb:74:94:64:3b:8b:05:b7: b7:4f:d9:6a:53:19:6f:95:33:20:ad:1c:67:6c:24:9c:22:6d: 17:aa:e3:ec:7a:5c:c6:f4:38:73:47:3a:b2:af:a2:92:90:d6: 5f:92:d1:9b:6c:18:64:40:bc:bc:f4:d6:47:5e:39:ae:cb:48: 5c:de:82:80:8a:3d:ae:b1:34:f6:06:04:dc:03:21:d3:f3:9d: da:1f:f2:70:32:4d:cd:3a:1f:5d:09:63:86:14:83:0c:a0:61: a3:ca:03:ad:15:ab:cc:d1:1f:12:e4:ed:2a:fb:fe:28:63:e6: be:db:d8:ae:87:1f:d7:61:f5:25:da:6b:e6:67:05:79:ce:74: cc:64:6d:94:b4:41:82:79:f9:6c:73:6c:5b:b7:47:95:0c:b3: b9:39:7e:e7:81:2a:99:82:4d:c3:23:7b:e7:a8:9e:ff:49:ae: 06:34:31:e6:1b:54:0e:cf:36:a1:c0:9d:b1:1e:1c:5e:cf:45: ba:e5:21:68 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUJPUf/PyUa6zdKZ+iL634NZ5i+O4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNDA0MDAyMDE5WhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMWNjNDg0ZWExOWU5MmQyZjY1Mjk4NjcwY2ZjOWYwMTZk NDdjNTU1N2FlZWEyYWE2YjQ1ZjE5ZWEwZDVmY2Y1MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDknXwU+SAdxTjpiZB9quTGVg2vj/dJP7jQ/CIv8XuZ1Rux HmH0ZTxjs3s9NbOj5Oo8dAVKXbvAfkfPQC+gUBJ2tZElBzDtdwkZqYvtiJ9htePL EWhDibQlN+rIaDsIuDmxR+lpjZCZWUT4KG7qlYgd8k3ZZEDibB0FCBtmrgxV5zU7 mqyfc+gm/+mcqGBQSayfISe9rH2wUvNGdTk26LtWiNRTVSYJmA6KyzpoJlhI+DGi mCuEYxAraEujnJ8o+w+q+rMOGIqEEZJilPsWfNI7RjS8WhR9bD1ceYK4qztKwe79 dBlFKEd/HmBJiPIJbOYqTb4wgF6jR4QKVA/pL+IhAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUBR/HIDyJTofir+X3/UYDj5kyWNkwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzJkYTkwYzJiLThiZWEtNDBjNi04ZGM4LTU3NjViNjdmYzYxMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBntAMA0GCSqGSIb3DQEBCwUAA4IBAQCDlYKugJpMUM8y4QpuQs+PNfnK Kt/UrS/5wc4+wj+njMcICIjDfJGjmorIEgBGjIGxs7A6J7zXvG13pbmSY2i063SU ZDuLBbe3T9lqUxlvlTMgrRxnbCScIm0XquPselzG9DhzRzqyr6KSkNZfktGbbBhk QLy89NZHXjmuy0hc3oKAij2usTT2BgTcAyHT853aH/JwMk3NOh9dCWOGFIMMoGGj ygOtFavM0R8S5O0q+/4oY+a+29iuhx/XYfUl2mvmZwV5znTMZG2UtEGCeflsc2xb t0eVDLO5OX7ngSqZgk3DI3vnqJ7/Sa4GNDHmG1QOzzahwJ2xHhxez0W65SFo -----END CERTIFICATE-----Generated at Sat Apr 26 12:20:52 2025 by rpki-client