$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/803d1611-cfae-42ed-afe8-eb350ceb7987.roa File: 803d1611-cfae-42ed-afe8-eb350ceb7987.roa (raw, json) Hash identifier: w7WJUInQgunL81W+mSVbYk3z2lDLU0jekM6PtwX/92I= Subject key identifier: 71:6F:DD:8B:30:EA:DF:52:03:11:8E:15:8C:18:17:CA:52:50:15:D4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 118705213921E8372F1D05719AFDF2E60E0A0C7D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/803d1611-cfae-42ed-afe8-eb350ceb7987.roa Signing time: Wed 26 Mar 2025 19:38:18 +0000 ROA not before: Wed 26 Mar 2025 19:38:18 +0000 ROA not after: Wed 30 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fbb:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:87:05:21:39:21:e8:37:2f:1d:05:71:9a:fd:f2:e6:0e:0a:0c:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 26 19:38:18 2025 GMT Not After : Apr 30 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a2:5c:6d:b2:b2:6d:da:ba:79:9b:a9:89:2e: 5b:d2:62:e0:b3:2f:78:eb:c6:69:44:0f:90:79:ac: 27:23:69:f7:0f:1c:13:45:a5:de:2c:72:bf:c9:da: 68:d9:d4:1b:64:61:4c:a7:b3:f3:32:c0:5e:a3:18: 93:1d:8e:97:e2:1c:38:87:e8:fe:3a:07:d7:95:ed: 6d:88:31:4f:d8:19:48:14:e3:f7:50:6b:c0:7b:2d: 9e:57:f1:0e:ae:b6:f1:fd:d6:b1:90:af:f8:5f:82: 45:84:12:6b:4b:9b:4c:d2:8a:b4:27:50:fa:89:d0: ca:19:12:c4:0e:46:9d:d2:d0:90:72:a1:28:3b:cc: 78:31:78:9f:57:21:61:e5:6a:95:5a:c7:33:fe:10: 02:ad:e6:2d:56:19:23:57:8d:a7:a7:42:8e:2f:b5: 17:2e:7a:a9:ff:13:a5:a8:7e:67:54:47:da:93:02: c6:d4:2d:c5:9f:25:96:00:6c:1e:85:5d:b2:11:06: fa:0b:16:34:0b:f9:f5:45:1b:03:d7:24:9a:c0:42: 7c:5c:c8:14:53:7b:2e:b0:3f:24:52:bd:bd:aa:ed: eb:59:2d:07:c9:65:a2:46:db:4a:1d:bc:86:fd:3b: 7d:1e:54:4d:1c:c5:72:82:d3:a9:23:cd:2c:fe:2f: ba:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:6F:DD:8B:30:EA:DF:52:03:11:8E:15:8C:18:17:CA:52:50:15:D4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/803d1611-cfae-42ed-afe8-eb350ceb7987.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fbb:e000::/40 Signature Algorithm: sha256WithRSAEncryption 2e:04:6f:94:b3:02:62:7c:1c:ec:d3:08:77:93:35:34:24:77: 9e:cf:da:66:24:e2:b1:74:0c:68:c9:66:cf:94:e9:1e:65:1f: aa:de:b1:ca:1a:8f:cb:88:ae:35:27:9d:5c:af:3d:31:b1:bc: 15:59:35:48:9e:2f:86:2b:d4:6f:db:89:08:9e:ba:9d:97:3f: 21:62:29:a1:c2:ea:ea:0e:56:d9:c3:9a:c0:2e:de:0b:48:72: 91:b2:30:8e:f9:fe:a7:05:51:e6:8b:29:bc:fd:d0:53:8f:07: 90:7f:84:2a:57:59:a6:46:59:b0:53:a1:f8:50:fa:93:5a:5d: ef:21:1e:a8:88:ab:50:81:3c:d4:98:b7:58:ec:d6:4e:40:6a: e3:56:9c:e8:1e:3b:bc:ff:44:09:79:78:1c:6f:a3:e4:33:24: 65:7a:fa:38:31:e0:ee:c9:06:9f:9b:50:c1:81:be:d8:ca:0c: 23:2a:e1:ae:f9:dd:f5:ff:ae:e9:f2:d6:c7:98:97:5e:4b:f4: 23:a2:16:5e:50:74:2b:bc:6a:07:43:31:93:a8:ab:df:35:79: 69:3e:fa:7e:76:d4:f3:a5:a5:e9:94:33:e7:92:12:cf:4b:89: 68:aa:6c:21:1d:44:c0:42:63:22:4b:cb:ec:3b:e9:8b:ec:6f: 1a:4f:ab:6d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUEYcFITkh6DcvHQVxmv3y5g4KDH0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI2MTkzODE4WhcNMjUwNDMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNjhhNDc0Yzc4ZWFiYmM2YTlhZTc3MTgzN2E5YWYwODcy M2E1ODJkY2ZlMWI3MjhiM2Q3NDIzNDE5ODVjYjcyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDolxtsrJt2rp5m6mJLlvSYuCzL3jrxmlED5B5rCcjafcP HBNFpd4scr/J2mjZ1BtkYUyns/MywF6jGJMdjpfiHDiH6P46B9eV7W2IMU/YGUgU 4/dQa8B7LZ5X8Q6utvH91rGQr/hfgkWEEmtLm0zSirQnUPqJ0MoZEsQORp3S0JBy oSg7zHgxeJ9XIWHlapVaxzP+EAKt5i1WGSNXjaenQo4vtRcueqn/E6WofmdUR9qT AsbULcWfJZYAbB6FXbIRBvoLFjQL+fVFGwPXJJrAQnxcyBRTey6wPyRSvb2q7etZ LQfJZaJG20odvIb9O30eVE0cxXKC06kjzSz+L7q5AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUcW/dizDq31IDEY4VjBgXylJQFdQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgwM2QxNjExLWNmYWUtNDJlZC1hZmU4LWViMzUwY2ViNzk4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+74DANBgkqhkiG9w0BAQsFAAOCAQEALgRvlLMCYnwc7NMId5M1NCR3 ns/aZiTisXQMaMlmz5TpHmUfqt6xyhqPy4iuNSedXK89MbG8FVk1SJ4vhivUb9uJ CJ66nZc/IWIpocLq6g5W2cOawC7eC0hykbIwjvn+pwVR5ospvP3QU48HkH+EKldZ pkZZsFOh+FD6k1pd7yEeqIirUIE81Ji3WOzWTkBq41ac6B47vP9ECXl4HG+j5DMk ZXr6ODHg7skGn5tQwYG+2MoMIyrhrvnd9f+u6fLWx5iXXkv0I6IWXlB0K7xqB0Mx k6ir3zV5aT76fnbU86Wl6ZQz55ISz0uJaKpsIR1EwEJjIkvL7Dvpi+xvGk+rbQ== -----END CERTIFICATE-----Generated at Sat Apr 5 11:19:38 2025 by rpki-client