$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/160933c3-b761-41a9-87a6-9e744a40b1ba.roa File: 160933c3-b761-41a9-87a6-9e744a40b1ba.roa (raw, json) Hash identifier: YOlvjWnARPRMb86Id9toElaBV0cT3mhlyWwoqc8Akdg= Subject key identifier: B5:97:87:AC:1E:55:0C:9F:66:97:A1:5B:4E:E8:28:A4:85:28:0F:2F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 317F4BD4522DC5D69E7285A85CF2B32D44B1A1D2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/160933c3-b761-41a9-87a6-9e744a40b1ba.roa Signing time: Mon 17 Mar 2025 15:11:09 +0000 ROA not before: Mon 17 Mar 2025 15:11:09 +0000 ROA not after: Mon 21 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fb8:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:7f:4b:d4:52:2d:c5:d6:9e:72:85:a8:5c:f2:b3:2d:44:b1:a1:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 17 15:11:09 2025 GMT Not After : Apr 21 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:9d:e6:9b:51:49:6a:23:a9:ad:a6:28:23:bb: c8:be:ac:21:8a:2e:ba:cd:ba:49:b2:35:f5:60:1d: 48:e5:6e:db:fe:78:70:a9:00:c6:36:4b:4b:c3:3c: e2:fa:80:95:89:25:7e:55:ea:d7:0a:ca:01:4d:db: 48:17:7b:a7:af:8b:5a:85:b4:fd:26:c8:97:f0:77: 63:ef:6a:a9:4d:bd:8e:cf:79:3a:5b:5d:38:e2:80: 69:c5:fc:b6:66:74:33:6a:6c:50:91:55:b1:53:1e: 9f:7d:4f:b4:4e:93:7b:22:5a:35:b8:e6:bd:ab:60: 16:ac:e9:47:df:d2:b1:0c:ce:89:a0:13:17:87:05: e7:cb:0d:f4:fd:5f:7c:e6:e1:72:ad:36:af:d1:2d: d5:c7:e5:17:6d:ab:d5:d7:45:66:89:36:86:38:70: 00:51:cc:d0:97:3e:78:bc:5b:b1:20:03:1f:c5:fe: 13:bc:02:77:01:25:f6:61:6f:f2:0b:61:30:93:6b: e9:09:db:84:80:01:1a:f9:cb:11:08:d1:e9:56:85: 10:0b:82:0c:22:38:64:e5:ac:7c:12:29:f1:d5:e7: 5d:ca:22:77:90:41:7f:33:3b:22:65:e1:47:46:0b: bc:f6:13:49:aa:0f:67:96:fc:52:1a:eb:85:6c:d1: 1e:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:97:87:AC:1E:55:0C:9F:66:97:A1:5B:4E:E8:28:A4:85:28:0F:2F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/160933c3-b761-41a9-87a6-9e744a40b1ba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb8:1000::/40 Signature Algorithm: sha256WithRSAEncryption 3c:bf:29:e8:54:ae:e9:e8:74:8e:9b:ff:4c:45:56:c0:06:26: ca:fe:6b:16:11:19:0d:7f:8c:04:62:74:a1:58:30:f6:85:41: cd:f8:f5:c4:c3:56:26:e1:e1:38:7c:a2:ee:36:fc:a8:4f:21: ff:af:8f:41:61:25:ec:10:f4:6d:e1:6d:09:59:9b:af:3b:37: 86:59:8c:b3:3b:6f:17:d7:a8:8c:b6:ab:3a:af:5c:b0:c8:3b: 23:ae:58:a0:86:15:31:35:c0:5e:4c:3e:82:5c:be:9d:31:60: 1f:d2:fe:c6:53:6b:bf:1f:e4:35:0a:dd:7c:33:fc:1b:f6:e8: 50:a6:cf:db:b5:64:8c:0e:50:4c:c7:80:f7:79:41:b2:cb:f7: 4a:da:3a:a6:c0:a3:93:2e:dc:c8:4e:be:60:e9:41:1f:b8:25: dc:79:01:9a:d9:fe:66:06:03:73:21:67:a8:a0:1f:af:07:1f: ee:b3:b2:81:4d:3e:b1:e7:e4:2c:76:5e:70:d9:fc:3b:59:22: cd:35:46:c7:a3:0b:e8:96:d3:59:8f:d6:ec:fa:2c:1c:ee:1f: 6e:e0:59:31:fc:7c:e1:fc:d5:58:cf:df:fd:ce:64:55:95:ed: c8:00:60:dd:48:2d:85:7a:67:2a:f6:10:86:42:21:5a:66:37: b1:02:71:df -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMX9L1FItxdaecoWoXPKzLUSxodIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzE3MTUxMTA5WhcNMjUwNDIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZTUyMDJkNjhhMzcxZDc1ZDJmNmE3MDE0ZWI4NmZiOWRk ODhmOWE3YWZjZGY4YjNmNjc1NGQ0Nzc4Njg1YTVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvneabUUlqI6mtpigju8i+rCGKLrrNukmyNfVgHUjlbtv+ eHCpAMY2S0vDPOL6gJWJJX5V6tcKygFN20gXe6evi1qFtP0myJfwd2PvaqlNvY7P eTpbXTjigGnF/LZmdDNqbFCRVbFTHp99T7ROk3siWjW45r2rYBas6Uff0rEMzomg ExeHBefLDfT9X3zm4XKtNq/RLdXH5Rdtq9XXRWaJNoY4cABRzNCXPni8W7EgAx/F /hO8AncBJfZhb/ILYTCTa+kJ24SAARr5yxEI0elWhRALggwiOGTlrHwSKfHV513K IneQQX8zOyJl4UdGC7z2E0mqD2eW/FIa64Vs0R5vAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUtZeHrB5VDJ9ml6FbTugopIUoDy8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE2MDkzM2MzLWI3NjEtNDFhOS04N2E2LTllNzQ0YTQwYjFiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+4EDANBgkqhkiG9w0BAQsFAAOCAQEAPL8p6FSu6eh0jpv/TEVWwAYm yv5rFhEZDX+MBGJ0oVgw9oVBzfj1xMNWJuHhOHyi7jb8qE8h/6+PQWEl7BD0beFt CVmbrzs3hlmMsztvF9eojLarOq9csMg7I65YoIYVMTXAXkw+gly+nTFgH9L+xlNr vx/kNQrdfDP8G/boUKbP27VkjA5QTMeA93lBssv3Sto6psCjky7cyE6+YOlBH7gl 3HkBmtn+ZgYDcyFnqKAfrwcf7rOygU0+sefkLHZecNn8O1kizTVGx6ML6JbTWY/W 7PosHO4fbuBZMfx84fzVWM/f/c5kVZXtyABg3UgthXpnKvYQhkIhWmY3sQJx3w== -----END CERTIFICATE-----Generated at Sat Apr 5 11:14:04 2025 by rpki-client