$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/e7956dbe-ff3b-4911-9492-89c3cd5a2947.roa File: e7956dbe-ff3b-4911-9492-89c3cd5a2947.roa (raw, json) Hash identifier: m9sVM9W3Z8a83EN54X27D26kXCnq8p7p8xyx9rZqcCo= Subject key identifier: B0:A9:A3:E3:54:14:4B:BD:29:91:85:34:C3:42:6F:20:2C:77:DD:BD Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 26D9FDE23613ECA80AAE0E49945FDDA6FB9C7DE5 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/e7956dbe-ff3b-4911-9492-89c3cd5a2947.roa Signing time: Fri 25 Apr 2025 15:20:06 +0000 ROA not before: Fri 25 Apr 2025 15:20:06 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:5210::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:d9:fd:e2:36:13:ec:a8:0a:ae:0e:49:94:5f:dd:a6:fb:9c:7d:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Apr 25 15:20:06 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=00716c3932e1d13782b6ae1200da9a06d8bbcf983ecd0a4be54a73ffa8c6304c, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b6:54:68:7a:dd:83:fa:59:28:28:bf:4e:50: 96:86:57:d6:18:79:be:c1:30:d6:09:da:8e:30:7f: 1f:38:97:2d:a1:23:50:13:cc:7c:78:6a:7d:df:de: 37:e1:74:1f:6f:a5:7d:ef:e7:6c:40:89:a6:44:d7: f8:ab:a1:31:29:2a:ee:db:54:4b:30:54:01:2d:f1: 00:56:0b:a1:00:d9:bd:c3:c6:55:37:23:4d:ff:7d: 97:7c:a7:98:a2:02:d9:22:d5:3d:b2:93:25:2d:87: e3:14:94:ed:8a:65:7b:e4:c8:41:05:31:11:26:19: 05:c2:d5:d5:b8:03:d0:ea:a2:ef:22:18:97:15:52: eb:03:14:50:c4:57:92:1e:d9:05:4c:35:3b:15:d5: 2e:86:96:8c:38:13:e2:37:b0:6a:2c:eb:2b:07:02: e4:0a:ee:78:c8:9d:88:3d:38:7b:5e:ea:4d:2d:18: f1:f4:e3:2a:0e:4c:1d:3b:b3:55:29:08:b8:60:6e: 05:b8:e5:f1:96:8e:a8:93:c9:e5:33:15:ac:64:7b: 87:e2:bf:84:f0:8e:9d:f0:52:97:43:90:fd:7f:9c: d2:c9:37:46:47:10:7f:af:8a:4a:7c:34:32:02:91: 26:ac:91:57:79:a6:8c:ed:a9:1b:8f:89:38:52:3b: 1d:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:A9:A3:E3:54:14:4B:BD:29:91:85:34:C3:42:6F:20:2C:77:DD:BD X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/e7956dbe-ff3b-4911-9492-89c3cd5a2947.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:5210::/48 Signature Algorithm: sha256WithRSAEncryption af:d1:f3:25:5d:ee:ba:96:fe:7a:52:e0:9c:77:db:ec:29:38: a4:d5:1a:09:5b:88:09:a0:eb:d6:38:ff:9a:61:db:71:d6:41: ce:b8:78:32:f0:da:69:de:1b:ea:49:27:f2:b8:55:9b:ca:0f: fe:01:61:b5:8f:ca:26:fa:62:18:90:3a:59:f0:1f:1e:2a:db: 30:b4:ad:bd:f3:89:40:ab:5a:74:ad:ab:3f:6a:a2:b9:b2:db: 9d:53:e4:d9:d0:3d:c1:a2:56:31:b8:dc:42:1c:15:83:2b:0e: 48:16:de:b4:da:fc:25:5b:79:dc:33:a5:90:50:00:50:47:b4: 62:d4:52:35:42:0f:d4:d2:1e:6a:a1:a6:f2:9b:c5:4a:95:6b: 76:e6:df:9a:a6:30:6b:ba:6d:32:9b:4d:45:ea:cf:26:00:5a: 89:79:40:b5:54:d6:24:06:15:bc:2b:a3:59:b9:50:42:f5:79: c0:3f:fe:6b:4a:c3:29:05:bb:0d:da:8e:9b:6f:e9:22:92:6c: de:78:53:24:b6:c6:60:77:20:ac:20:98:c9:f1:64:74:62:9c: c5:43:a9:6a:78:3f:23:9d:40:e8:a1:a5:05:69:9f:12:96:e1: 04:c2:86:09:af:97:14:75:77:e2:ad:6d:b5:39:7c:dc:c9:3a: 5c:bb:94:5d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJtn94jYT7KgKrg5JlF/dpvucfeUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwNDI1MTUyMDA2WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMDcxNmMzOTMyZTFkMTM3ODJiNmFlMTIwMGRhOWEwNmQ4 YmJjZjk4M2VjZDBhNGJlNTRhNzNmZmE4YzYzMDRjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6tlRoet2D+lkoKL9OUJaGV9YYeb7BMNYJ2o4wfx84ly2h I1ATzHx4an3f3jfhdB9vpX3v52xAiaZE1/iroTEpKu7bVEswVAEt8QBWC6EA2b3D xlU3I03/fZd8p5iiAtki1T2ykyUth+MUlO2KZXvkyEEFMREmGQXC1dW4A9Dqou8i GJcVUusDFFDEV5Ie2QVMNTsV1S6Glow4E+I3sGos6ysHAuQK7njInYg9OHte6k0t GPH04yoOTB07s1UpCLhgbgW45fGWjqiTyeUzFaxke4fiv4Twjp3wUpdDkP1/nNLJ N0ZHEH+vikp8NDICkSaskVd5poztqRuPiThSOx2tAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUsKmj41QUS70pkYU0w0JvICx33b0wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2U3OTU2ZGJlLWZmM2ItNDkxMS05NDkyLTg5YzNjZDVhMjk0Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAJAAUhAwDQYJKoZIhvcNAQELBQADggEBAK/R8yVd7rqW/npS4Jx32+wp OKTVGglbiAmg69Y4/5ph23HWQc64eDLw2mneG+pJJ/K4VZvKD/4BYbWPyib6YhiQ OlnwHx4q2zC0rb3ziUCrWnStqz9qormy251T5NnQPcGiVjG43EIcFYMrDkgW3rTa /CVbedwzpZBQAFBHtGLUUjVCD9TSHmqhpvKbxUqVa3bm35qmMGu6bTKbTUXqzyYA Wol5QLVU1iQGFbwro1m5UEL1ecA//mtKwykFuw3ajptv6SKSbN54UyS2xmB3IKwg mMnxZHRinMVDqWp4PyOdQOihpQVpnxKW4QTChgmvlxR1d+KtbbU5fNzJOly7lF0= -----END CERTIFICATE-----Generated at Sat Apr 26 12:53:42 2025 by rpki-client