$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/126efe78-9e9d-4572-92d2-fedc0e5c80fa.roa File: 126efe78-9e9d-4572-92d2-fedc0e5c80fa.roa (raw, json) Hash identifier: 1QICAOZR26a6za+tGJ3o8flVfdv0qzJy+NeI3bZf8TI= Subject key identifier: D9:93:71:B3:7B:8A:E7:38:16:57:95:B8:47:FF:2F:07:79:57:BA:AB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 711DD9BFEA35A473BAD6183AE71D40590B4B8CDE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/126efe78-9e9d-4572-92d2-fedc0e5c80fa.roa Signing time: Fri 28 Mar 2025 00:11:46 +0000 ROA not before: Fri 28 Mar 2025 00:11:46 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f61:8060::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:1d:d9:bf:ea:35:a4:73:ba:d6:18:3a:e7:1d:40:59:0b:4b:8c:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 00:11:46 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1f:0c:d8:17:6e:cd:d9:08:4c:60:ac:f1:c6: 26:22:a5:c6:c4:30:a5:45:68:48:e6:8e:e3:e9:22: a7:02:45:20:35:a2:a5:6d:d7:a6:76:f2:65:e1:ec: 77:73:4a:ea:bd:ce:11:ac:b1:25:1e:3b:b3:3b:f6: 85:1c:63:b1:9a:a4:39:12:3d:b9:a3:12:82:53:2c: 30:f4:d4:5d:8e:5c:63:41:81:b0:cb:9f:27:9d:98: 9a:7e:ee:6e:fa:bb:17:3c:e2:d6:bf:b8:a3:96:93: 0b:37:bf:ad:9e:12:53:2b:56:6e:5b:f7:96:cb:15: a6:f7:16:47:9a:76:28:a4:d0:86:df:58:7d:60:6b: 0a:99:00:f2:d4:2a:da:af:0a:ed:8a:9d:69:99:f2: 27:b2:49:d2:86:87:78:23:7f:5c:da:e6:0f:7c:04: 38:fb:40:0a:cb:c4:8c:14:6f:cb:50:6b:3e:c9:c7: 2a:74:bf:66:20:6f:3a:9c:ef:b6:22:64:bd:ee:5c: f4:ee:fe:f0:0a:a8:43:3d:92:42:00:39:63:99:de: d7:72:d0:7e:97:85:39:ff:f3:17:cc:6c:ae:b4:79: 6f:81:6e:84:db:ab:45:c0:cc:46:6f:64:5d:1a:51: 12:cc:92:6c:6b:d9:16:9d:a9:47:0b:88:a8:ae:27: ce:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:93:71:B3:7B:8A:E7:38:16:57:95:B8:47:FF:2F:07:79:57:BA:AB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/126efe78-9e9d-4572-92d2-fedc0e5c80fa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:8060::/48 Signature Algorithm: sha256WithRSAEncryption 23:ad:a0:62:11:23:b5:3c:2a:b7:51:cc:6b:1e:51:cc:38:89: 4e:fc:69:f7:02:44:fa:7f:4a:53:b4:0f:0f:08:66:1b:b0:82: cc:6c:9e:3a:3a:59:e0:7a:b8:05:15:f2:40:b9:6a:ab:84:26: 67:ce:56:a8:1d:c5:bf:cd:41:8e:67:26:c5:75:4a:39:99:f9: a0:0d:41:6b:52:b0:f5:d5:d3:2e:d2:65:74:41:7d:1d:c1:1f: be:cc:07:46:ec:22:ad:fa:67:0a:86:dd:28:07:f4:e4:91:06: f9:65:01:cd:3f:b4:0f:4c:0f:0e:62:0a:49:ee:37:45:3e:b4: 19:4e:32:bd:81:61:aa:99:5a:b2:53:e6:0b:11:ca:ca:78:23: 56:25:58:6d:bd:d9:10:e9:2f:6e:f7:c6:62:0b:59:e8:bf:a0: d6:92:4f:8e:c1:e6:c1:3b:67:ce:c2:23:86:3d:26:79:aa:6e: d0:ca:09:43:64:09:95:64:60:77:21:e2:95:0e:77:20:f6:c4: ab:8c:30:5f:82:91:2f:6c:40:72:ea:bd:19:d6:a6:45:f5:1b: db:2a:0b:32:64:0c:9b:29:d7:91:7b:4d:82:d3:fd:09:e5:cf: 38:e2:40:f3:33:35:94:71:09:08:57:c4:83:9e:59:be:13:11: 16:b9:ea:d2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcR3Zv+o1pHO61hg65x1AWQtLjN4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MDAxMTQ2WhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNTU2YzQxZTM2YmQyZjcyOGEyMzIwOTBlOWMyZGY1ZmFi OWRhYjkxODJjYTQ0ODQ0ZDc0NWY2ZGNhYTdiYTE3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6HwzYF27N2QhMYKzxxiYipcbEMKVFaEjmjuPpIqcCRSA1 oqVt16Z28mXh7HdzSuq9zhGssSUeO7M79oUcY7GapDkSPbmjEoJTLDD01F2OXGNB gbDLnyedmJp+7m76uxc84ta/uKOWkws3v62eElMrVm5b95bLFab3Fkeadiik0Ibf WH1gawqZAPLUKtqvCu2KnWmZ8ieySdKGh3gjf1za5g98BDj7QArLxIwUb8tQaz7J xyp0v2Ygbzqc77YiZL3uXPTu/vAKqEM9kkIAOWOZ3tdy0H6XhTn/8xfMbK60eW+B boTbq0XAzEZvZF0aURLMkmxr2RadqUcLiKiuJ87tAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2ZNxs3uK5zgWV5W4R/8vB3lXuqswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEyNmVmZTc4LTllOWQtNDU3Mi05MmQyLWZlZGMwZTVjODBmYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB9hgGAwDQYJKoZIhvcNAQELBQADggEBACOtoGIRI7U8KrdRzGseUcw4 iU78afcCRPp/SlO0Dw8IZhuwgsxsnjo6WeB6uAUV8kC5aquEJmfOVqgdxb/NQY5n JsV1SjmZ+aANQWtSsPXV0y7SZXRBfR3BH77MB0bsIq36ZwqG3SgH9OSRBvllAc0/ tA9MDw5iCknuN0U+tBlOMr2BYaqZWrJT5gsRysp4I1YlWG292RDpL273xmILWei/ oNaST47B5sE7Z87CI4Y9JnmqbtDKCUNkCZVkYHch4pUOdyD2xKuMMF+CkS9sQHLq vRnWpkX1G9sqCzJkDJsp15F7TYLT/QnlzzjiQPMzNZRxCQhXxIOeWb4TERa56tI= -----END CERTIFICATE-----Generated at Sat Apr 5 11:22:04 2025 by rpki-client