$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a139d9b-2edc-4d9b-83ad-730bb081e4cc.roa File: 4a139d9b-2edc-4d9b-83ad-730bb081e4cc.roa (raw, json) Hash identifier: +qwvD3kWIB4OPjgyOFsznUpnprceqRXI+pjkmUjutfk= Subject key identifier: 98:5B:C6:81:D3:55:50:93:C2:FE:F7:A9:77:27:88:D6:05:F4:99:78 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 20FA00157106CF9D4BDCED36CE6B0520B5FB6F85 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a139d9b-2edc-4d9b-83ad-730bb081e4cc.roa Signing time: Fri 28 Mar 2025 00:01:52 +0000 ROA not before: Fri 28 Mar 2025 00:01:52 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:8066::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:fa:00:15:71:06:cf:9d:4b:dc:ed:36:ce:6b:05:20:b5:fb:6f:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 00:01:52 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:f0:65:42:4e:6e:ee:6e:89:21:b8:63:c4:ea: 62:48:ba:e5:8c:69:07:c0:90:9f:37:00:03:e4:bc: c0:01:32:ad:58:7c:ae:07:b2:d0:0d:f6:8f:4b:ae: ec:44:35:e6:85:0e:fd:80:37:e7:b8:ab:5b:b4:e2: 86:ee:f0:6e:95:00:38:67:1c:09:e0:8f:8b:78:b0: 98:18:cf:ec:f8:8b:28:22:9a:a5:f9:68:2f:5c:8d: bf:48:ff:66:ef:1e:a4:e0:7e:3d:10:8a:7a:7e:9f: 47:b3:9b:b4:28:08:27:bd:09:7a:d1:b3:94:52:bc: 83:0a:9e:e5:3e:37:db:a1:ec:24:bc:53:8d:a4:f5: 10:1a:80:43:8a:b5:2d:50:87:ed:b4:7b:83:05:15: fe:f3:39:f6:88:83:a8:ec:18:4e:9e:5b:b3:14:02: 86:28:60:58:55:d6:69:c0:ac:eb:5b:cd:7d:25:1c: b5:9b:5b:9a:35:be:eb:57:81:82:66:b7:17:50:8c: a0:9e:d8:61:92:66:8a:7c:a1:80:f0:49:b7:f1:0f: c6:fb:ae:e0:dd:53:b7:8a:98:51:6a:47:b0:63:f1: 03:af:df:8d:63:db:7a:25:7a:c5:85:d2:af:72:46: 70:26:e4:86:c0:12:5d:58:c5:e8:a2:17:84:e5:fc: 03:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:5B:C6:81:D3:55:50:93:C2:FE:F7:A9:77:27:88:D6:05:F4:99:78 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a139d9b-2edc-4d9b-83ad-730bb081e4cc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:8066::/48 Signature Algorithm: sha256WithRSAEncryption 57:ec:70:20:2a:43:4e:56:0d:1c:22:78:d7:2b:26:75:ed:a6: a4:0b:fd:3e:4b:79:64:7c:c2:d9:72:4e:34:57:7f:d5:ae:10: cc:24:be:91:79:2c:10:ae:6f:56:3b:3e:95:c3:2b:6a:f5:80: a3:18:3a:d2:ee:ce:1b:6e:00:47:01:df:b2:a6:cf:56:50:36: 56:37:05:1d:e0:7d:57:4e:0b:78:0b:e3:c4:00:07:b8:7f:f8: 7a:a0:65:f1:48:c2:03:4c:16:47:ff:1d:17:90:4e:dd:13:ad: 01:12:24:c6:7a:43:84:9b:46:48:e3:2f:7b:9d:27:bf:08:7b: 01:d7:c9:6f:b4:45:20:80:66:7f:6b:82:a4:6e:89:d9:de:72: cd:39:dc:fd:f3:90:b6:a2:1f:ff:50:34:12:c5:47:e9:94:a0: d3:26:26:f1:be:1a:df:62:2d:0a:f6:c1:3e:2a:5e:fd:00:d2: 0f:bb:3a:00:72:73:23:0b:7d:fa:46:ed:08:57:33:7a:e1:36: 25:bc:d1:13:57:df:4f:e2:22:01:3a:24:bb:7b:c6:0b:76:f6: 95:c7:00:ad:5b:16:fc:f3:14:48:86:68:95:72:9d:a2:82:1d: a6:7c:18:f3:32:68:1b:19:f7:70:85:0f:b1:21:0a:2a:9b:44: 0c:9e:90:6f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIPoAFXEGz51L3O02zmsFILX7b4UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MDAwMTUyWhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMzAzMWM0MTQxYzQzMmYzOWJiZDAxMjI1ZDZiMzU5MzNi M2E2YzNlNjNhZWRlMGIyOTMzZmYwMTlmOGQ3Yjg5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCa8GVCTm7ubokhuGPE6mJIuuWMaQfAkJ83AAPkvMABMq1Y fK4HstAN9o9LruxENeaFDv2AN+e4q1u04obu8G6VADhnHAngj4t4sJgYz+z4iygi mqX5aC9cjb9I/2bvHqTgfj0Qinp+n0ezm7QoCCe9CXrRs5RSvIMKnuU+N9uh7CS8 U42k9RAagEOKtS1Qh+20e4MFFf7zOfaIg6jsGE6eW7MUAoYoYFhV1mnArOtbzX0l HLWbW5o1vutXgYJmtxdQjKCe2GGSZop8oYDwSbfxD8b7ruDdU7eKmFFqR7Bj8QOv 341j23olesWF0q9yRnAm5IbAEl1YxeiiF4Tl/AOjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUmFvGgdNVUJPC/vepdyeI1gX0mXgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRhMTM5ZDliLTJlZGMtNGQ5Yi04M2FkLTczMGJiMDgxZTRjYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9gGYwDQYJKoZIhvcNAQELBQADggEBAFfscCAqQ05WDRwieNcrJnXt pqQL/T5LeWR8wtlyTjRXf9WuEMwkvpF5LBCub1Y7PpXDK2r1gKMYOtLuzhtuAEcB 37Kmz1ZQNlY3BR3gfVdOC3gL48QAB7h/+HqgZfFIwgNMFkf/HReQTt0TrQESJMZ6 Q4SbRkjjL3udJ78IewHXyW+0RSCAZn9rgqRuidnecs053P3zkLaiH/9QNBLFR+mU oNMmJvG+Gt9iLQr2wT4qXv0A0g+7OgBycyMLffpG7QhXM3rhNiW80RNX30/iIgE6 JLt7xgt29pXHAK1bFvzzFEiGaJVynaKCHaZ8GPMyaBsZ93CFD7EhCiqbRAyekG8= -----END CERTIFICATE-----Generated at Sat Apr 5 11:17:50 2025 by rpki-client