$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d72dbbe-2b88-48a1-81f5-b55082aa8945.roa File: 5d72dbbe-2b88-48a1-81f5-b55082aa8945.roa (raw, json) Hash identifier: BzzXxQnCTsKeoQo9gD1XWL5nwZ4pchyWY6QQ7JEPsos= Subject key identifier: 38:C5:CA:F7:54:D9:8F:AF:B9:5F:A2:93:87:B0:69:DB:C1:E0:83:8A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 09798EF59A8DF49061989FCB2C52ECB5667F33AC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d72dbbe-2b88-48a1-81f5-b55082aa8945.roa Signing time: Fri 04 Apr 2025 00:01:07 +0000 ROA not before: Fri 04 Apr 2025 00:01:07 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:84af::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:79:8e:f5:9a:8d:f4:90:61:98:9f:cb:2c:52:ec:b5:66:7f:33:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 4 00:01:07 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:1f:62:96:9f:29:2b:b8:19:86:0f:d8:d3:3d: 7e:e0:31:fb:0d:29:ca:0e:5e:fc:66:1f:af:92:74: 7b:36:30:c4:62:20:cb:3c:60:aa:78:e9:9b:6b:8a: ea:e8:02:43:7a:f8:c0:e9:62:e1:b5:97:d6:6b:21: 92:1e:99:67:b0:ab:0c:64:84:92:56:61:6f:92:c9: ea:a8:ba:21:02:f9:37:d3:d1:30:8d:ff:fb:20:c8: 6d:f2:2d:5c:ea:17:96:2a:0d:ae:0d:ce:07:c3:10: ce:86:46:d0:78:44:ed:7c:f6:df:58:d1:cb:91:04: 2d:c3:09:f9:3f:cc:df:5c:69:6c:80:01:dd:8f:3f: eb:d6:b4:e3:22:12:29:bb:a7:71:b9:4e:a3:12:56: a2:3e:e9:98:1e:ef:4a:85:56:e0:ef:d2:34:7a:2e: 79:51:65:77:56:3d:eb:16:0a:2c:c7:f1:0e:0f:bc: 50:db:b4:db:b6:de:7e:9b:1f:d6:31:fa:a5:28:52: a7:3f:fb:58:e0:3b:51:55:a8:79:8b:0c:bd:f7:34: 82:2c:ce:08:56:99:5b:62:10:44:3f:8e:e8:f5:d2: 45:e5:06:e3:da:2b:aa:bc:da:70:53:92:87:ae:b4: 0e:01:94:9e:99:77:3c:4a:88:fe:97:74:42:6d:3b: 32:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:C5:CA:F7:54:D9:8F:AF:B9:5F:A2:93:87:B0:69:DB:C1:E0:83:8A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d72dbbe-2b88-48a1-81f5-b55082aa8945.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:84af::/48 Signature Algorithm: sha256WithRSAEncryption 53:32:b5:d6:70:df:b5:df:a7:be:27:bf:30:cd:54:0f:6b:27: 6b:69:99:24:74:41:e8:57:db:5f:9c:04:26:cb:13:68:84:b4: 59:c1:27:5a:af:a4:06:7a:31:a7:6f:70:82:81:bc:27:48:a4: b2:5b:e4:3c:bc:6c:4f:f1:e0:f6:78:af:1d:aa:1c:18:95:10: a0:f5:73:fe:24:d3:9e:cc:d1:94:0e:34:48:84:aa:24:6a:f4: 61:a3:b3:24:2a:27:75:39:c8:24:75:76:9e:9f:8b:29:a1:cd: a2:11:6f:14:26:a2:45:08:67:c0:bd:c4:d4:89:a0:bb:67:4a: bb:4b:b0:bb:be:7b:a5:c8:cf:4f:03:6f:ed:ce:1e:47:65:d1: 35:5c:4c:73:db:88:30:03:f6:28:a9:15:91:a7:64:a0:a1:50: d7:4d:dd:fc:44:20:c8:c2:d4:63:6a:9a:ae:c3:7d:66:55:7a: 0f:d1:76:ef:31:cf:20:db:9a:9c:48:2f:b3:05:6f:d8:e0:b9: ee:27:b2:16:55:02:35:0c:a6:7f:42:6d:2f:b9:0c:ef:44:88: c2:50:fb:a9:84:75:ed:4c:8b:0e:d2:64:04:3d:55:41:cb:e0: 93:f3:24:2c:5d:92:98:8a:ef:47:6e:f3:58:f6:a3:a7:3d:9e: d4:f4:03:3c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCXmO9ZqN9JBhmJ/LLFLstWZ/M6wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA0MDAwMTA3WhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYTQ5ODQ5MGEyYzdlNTgwNjY0YTU3ODUzZTIwZmZhNWJj ODY5ZTMwYzFiMTRhZjYwMDQyOGVjNWI1YzNiMGI4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJH2KWnykruBmGD9jTPX7gMfsNKcoOXvxmH6+SdHs2MMRi IMs8YKp46ZtriuroAkN6+MDpYuG1l9ZrIZIemWewqwxkhJJWYW+SyeqouiEC+TfT 0TCN//sgyG3yLVzqF5YqDa4NzgfDEM6GRtB4RO189t9Y0cuRBC3DCfk/zN9caWyA Ad2PP+vWtOMiEim7p3G5TqMSVqI+6Zge70qFVuDv0jR6LnlRZXdWPesWCizH8Q4P vFDbtNu23n6bH9Yx+qUoUqc/+1jgO1FVqHmLDL33NIIszghWmVtiEEQ/juj10kXl BuPaK6q82nBTkoeutA4BlJ6ZdzxKiP6XdEJtOzJhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUOMXK91TZj6+5X6KTh7Bp28Hgg4owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVkNzJkYmJlLTJiODgtNDhhMS04MWY1LWI1NTA4MmFhODk0NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9hK8wDQYJKoZIhvcNAQELBQADggEBAFMytdZw37Xfp74nvzDNVA9r J2tpmSR0QehX21+cBCbLE2iEtFnBJ1qvpAZ6MadvcIKBvCdIpLJb5Dy8bE/x4PZ4 rx2qHBiVEKD1c/4k057M0ZQONEiEqiRq9GGjsyQqJ3U5yCR1dp6fiymhzaIRbxQm okUIZ8C9xNSJoLtnSrtLsLu+e6XIz08Db+3OHkdl0TVcTHPbiDAD9iipFZGnZKCh UNdN3fxEIMjC1GNqmq7DfWZVeg/Rdu8xzyDbmpxIL7MFb9jgue4nshZVAjUMpn9C bS+5DO9EiMJQ+6mEde1Miw7SZAQ9VUHL4JPzJCxdkpiK70du81j2o6c9ntT0Azw= -----END CERTIFICATE-----Generated at Sat Apr 5 16:50:23 2025 by rpki-client