$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fbc2657-4f39-44e6-9df2-4b8132378814.roa File: 1fbc2657-4f39-44e6-9df2-4b8132378814.roa (raw, json) Hash identifier: l8tgV/KDOY2CcOvBDRRhkDVdl9jHdW4nNrpMgxs20hk= Subject key identifier: 07:43:6D:FB:CC:84:7D:11:B1:CE:09:DC:99:E4:46:B6:CB:6C:3C:A9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5AAD0FA35152F6B7285B8052ECF8207041838085 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fbc2657-4f39-44e6-9df2-4b8132378814.roa Signing time: Fri 28 Mar 2025 16:21:55 +0000 ROA not before: Fri 28 Mar 2025 16:21:55 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f32:a400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:ad:0f:a3:51:52:f6:b7:28:5b:80:52:ec:f8:20:70:41:83:80:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 16:21:55 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:50:b8:ea:e2:64:d2:81:bc:9b:21:37:34:3a: 5b:ff:6c:66:23:87:f4:9b:6a:13:15:80:3d:f7:89: f4:76:19:c6:0d:6f:03:62:7c:01:0b:d8:6e:b5:9b: 59:48:df:8b:ba:54:e9:60:61:ae:d3:be:65:44:27: 51:1b:ae:95:66:77:6d:97:cc:46:2e:0c:fc:a3:6f: 3d:3a:e5:6d:57:d5:b5:e5:14:21:2b:76:f6:9e:25: 43:d1:0d:ba:8b:c2:4a:5a:40:c6:e9:b5:2c:7f:4d: a5:d0:11:b5:3e:4d:c3:f9:cd:23:0b:82:ef:98:27: 59:e9:db:48:75:da:9e:e6:33:4a:04:2b:d0:1a:c8: 6d:8d:73:72:1d:69:36:36:58:0b:d0:5b:82:9d:04: 18:cf:f6:a1:ac:f0:27:03:0e:5f:b9:e2:44:0e:b0: b0:2e:e3:5d:b9:3a:ce:60:bc:ac:34:e8:8e:51:30: f0:dd:5f:71:75:5c:74:42:db:d3:c2:e4:03:b0:50: f2:65:28:cc:43:93:75:a5:52:15:fd:a2:cc:55:f6: 54:5a:0a:a3:35:5a:57:cb:96:b6:bc:dd:b4:b3:df: 74:42:66:90:b9:88:af:b1:d8:dc:11:91:00:1d:7e: 40:cc:19:69:44:db:90:ab:3d:ca:62:f9:88:b0:3d: eb:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:43:6D:FB:CC:84:7D:11:B1:CE:09:DC:99:E4:46:B6:CB:6C:3C:A9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fbc2657-4f39-44e6-9df2-4b8132378814.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f32:a400::/40 Signature Algorithm: sha256WithRSAEncryption 5b:e1:07:61:02:74:bd:9e:87:77:ed:93:14:4f:1b:54:fb:99: c8:9b:89:9f:d8:2e:7e:d0:00:78:e4:a4:5e:a2:b1:cb:99:6c: 7d:24:f1:02:25:37:83:33:a0:db:59:57:8d:aa:91:55:90:53: dc:40:b7:86:02:eb:e6:01:d0:0a:70:55:9c:73:ec:84:5d:99: 35:c1:06:c9:41:fa:06:26:cc:9a:8f:21:eb:f8:7b:31:7a:0e: db:bd:a1:7e:31:79:17:de:f7:75:af:1e:62:67:5a:34:f3:06: e3:0c:da:95:f0:1d:92:97:ad:2f:bc:85:df:b3:a3:2c:79:af: 42:7f:c3:9f:e8:81:24:08:07:b6:f1:46:30:15:6b:15:23:b7: e5:27:4c:71:00:b8:60:a2:86:11:66:22:c1:ec:de:ef:8d:cb: c6:a6:7b:02:b3:39:a4:f3:70:b5:ff:72:f0:30:a7:25:0e:72: a5:b6:8d:77:fe:75:05:d8:1e:10:67:10:2d:ab:13:a8:41:86: 6e:d3:0b:57:d5:3c:af:21:28:0b:a8:e6:b6:61:3a:9e:24:f2: 96:94:84:77:27:fd:70:48:c9:8c:97:63:33:c3:38:5e:b7:94: 23:78:bc:ec:f1:41:23:88:cc:4e:49:03:9b:2f:fc:6b:4a:3f: 09:fc:7c:89 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUWq0Po1FS9rcoW4BS7PggcEGDgIUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MTYyMTU1WhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZjhlMjE5M2RhMGUzN2MyY2NjMmIwOGEwYzFlOGM4MTRk Y2U3N2YwNDRkYWU0Njc4NmU4MWI3YjAxNWI5YWFiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcULjq4mTSgbybITc0Olv/bGYjh/SbahMVgD33ifR2GcYN bwNifAEL2G61m1lI34u6VOlgYa7TvmVEJ1EbrpVmd22XzEYuDPyjbz065W1X1bXl FCErdvaeJUPRDbqLwkpaQMbptSx/TaXQEbU+TcP5zSMLgu+YJ1np20h12p7mM0oE K9AayG2Nc3IdaTY2WAvQW4KdBBjP9qGs8CcDDl+54kQOsLAu4125Os5gvKw06I5R MPDdX3F1XHRC29PC5AOwUPJlKMxDk3WlUhX9osxV9lRaCqM1WlfLlra83bSz33RC ZpC5iK+x2NwRkQAdfkDMGWlE25CrPcpi+YiwPeuRAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUB0Nt+8yEfRGxzgncmeRGtstsPKkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFmYmMyNjU3LTRmMzktNDRlNi05ZGYyLTRiODEzMjM3ODgxNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB8ypDANBgkqhkiG9w0BAQsFAAOCAQEAW+EHYQJ0vZ6Hd+2TFE8bVPuZ yJuJn9guftAAeOSkXqKxy5lsfSTxAiU3gzOg21lXjaqRVZBT3EC3hgLr5gHQCnBV nHPshF2ZNcEGyUH6BibMmo8h6/h7MXoO272hfjF5F973da8eYmdaNPMG4wzalfAd kpetL7yF37OjLHmvQn/Dn+iBJAgHtvFGMBVrFSO35SdMcQC4YKKGEWYiweze743L xqZ7ArM5pPNwtf9y8DCnJQ5ypbaNd/51BdgeEGcQLasTqEGGbtMLV9U8ryEoC6jm tmE6niTylpSEdyf9cEjJjJdjM8M4XreUI3i87PFBI4jMTkkDmy/8a0o/Cfx8iQ== -----END CERTIFICATE-----Generated at Sat Apr 5 11:20:42 2025 by rpki-client