$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/803f3a95-a624-4af0-8fbd-52c2e78f6985.roa File: 803f3a95-a624-4af0-8fbd-52c2e78f6985.roa (raw, json) Hash identifier: kVMShMvyqRImKP/KV5BpZDhQ/cWxAzCnSjxTwx5nJ0g= Subject key identifier: 33:55:69:40:7F:64:F5:C0:F4:90:74:17:19:CF:3D:E6:25:CC:E9:C0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 218F914BFB36AC8E07A1F2270A3FA2BDE52D37BF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/803f3a95-a624-4af0-8fbd-52c2e78f6985.roa Signing time: Fri 28 Mar 2025 16:51:11 +0000 ROA not before: Fri 28 Mar 2025 16:51:11 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f18:c800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:8f:91:4b:fb:36:ac:8e:07:a1:f2:27:0a:3f:a2:bd:e5:2d:37:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 16:51:11 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:56:58:4f:ac:45:ed:65:56:a1:b3:fd:d7:cb: cc:4e:6e:39:60:52:6f:3e:7f:11:55:5e:4c:77:a1: ae:da:60:68:21:27:4f:97:19:b3:d4:2e:bb:15:0b: 66:7e:9b:ec:2d:2a:b0:47:0a:49:a7:aa:f4:d0:20: 0f:d2:59:c4:06:e4:06:d7:52:f4:84:2a:e6:77:db: 86:89:b2:cc:c2:2f:71:dd:9a:8c:25:bc:a4:19:ca: 7f:73:24:e3:2c:74:6a:c1:c0:de:20:03:5a:55:bd: 70:91:13:1e:7c:8e:a7:cf:d4:5f:66:38:44:ed:4c: 5d:6c:d9:a7:53:2d:0f:fe:60:88:fb:af:e6:3c:49: 45:74:7c:9d:50:88:92:dc:04:a6:f7:95:3b:88:55: 12:71:40:90:f9:32:09:72:20:e3:a5:cf:3d:30:69: df:8a:6c:ca:06:e9:e1:8e:96:f1:22:1a:36:4f:84: 0c:c7:54:ba:55:21:9c:9e:bd:36:47:56:16:26:85: b7:cd:f4:a9:5b:8d:fe:4e:ec:00:57:8d:be:68:31: a9:7a:fc:51:a8:55:64:c2:8f:ad:bf:b6:9a:54:a0: fa:30:8a:ca:46:6e:97:3d:0a:25:ed:ce:34:26:cb: 46:09:6e:05:ce:2a:37:85:48:98:14:f5:a7:81:b5: ee:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:55:69:40:7F:64:F5:C0:F4:90:74:17:19:CF:3D:E6:25:CC:E9:C0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/803f3a95-a624-4af0-8fbd-52c2e78f6985.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f18:c800::/37 Signature Algorithm: sha256WithRSAEncryption 72:e3:2c:4e:93:dd:74:cb:c2:9f:e2:8a:e5:86:56:90:bd:10: b6:a2:08:b5:88:38:c4:0d:17:70:09:67:da:86:a1:3b:27:bc: 63:d7:3b:aa:db:98:f7:fd:d3:a6:45:c4:e3:23:9f:68:64:77: bc:b9:32:74:66:29:0d:d2:44:a9:f6:00:9f:de:c3:bf:1e:a3: 2b:08:df:10:5a:71:15:cd:ab:57:c2:0c:5a:51:63:6d:36:e9: 74:bb:84:de:6c:78:b1:46:08:5c:18:f7:ac:d7:af:d8:9f:a0: 6c:61:eb:be:8e:46:06:4d:c5:ed:f4:ff:54:69:12:a2:41:a9: e3:f5:c8:ea:3d:a7:0a:7f:a9:da:a7:6e:65:21:52:74:6c:cf: dc:89:b7:d6:00:af:20:ad:f2:10:53:68:99:63:10:08:3a:d2: ad:51:c4:eb:e3:eb:8a:cf:35:50:cc:ae:fe:29:52:a8:69:e7: 4c:7d:1a:8f:b5:02:7b:0d:00:5c:72:06:ce:f9:63:99:39:f0: 03:01:19:c4:9d:14:bc:25:90:e1:fb:48:df:ab:ee:b1:6a:a6: 67:dc:f1:6e:2d:1f:35:88:c8:15:a1:7f:76:ee:8a:9f:c6:50: a0:dc:0f:7d:a7:48:00:9a:56:e0:1d:b0:33:d1:87:15:54:4d: 0e:b1:7f:08 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUIY+RS/s2rI4HofInCj+iveUtN78wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MTY1MTExWhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NjkxYWEyYzJiMGZhMWE4ZTM3MDBhMTc2M2ZmZDg5MWYx ZjE3MTZhNDYzYTAyMWI1Yjk3MjQ1MmIwYTAyODE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0VlhPrEXtZVahs/3Xy8xObjlgUm8+fxFVXkx3oa7aYGgh J0+XGbPULrsVC2Z+m+wtKrBHCkmnqvTQIA/SWcQG5AbXUvSEKuZ324aJsszCL3Hd mowlvKQZyn9zJOMsdGrBwN4gA1pVvXCREx58jqfP1F9mOETtTF1s2adTLQ/+YIj7 r+Y8SUV0fJ1QiJLcBKb3lTuIVRJxQJD5MglyIOOlzz0wad+KbMoG6eGOlvEiGjZP hAzHVLpVIZyevTZHVhYmhbfN9Klbjf5O7ABXjb5oMal6/FGoVWTCj62/tppUoPow ispGbpc9CiXtzjQmy0YJbgXOKjeFSJgU9aeBte4HAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUM1VpQH9k9cD0kHQXGc895iXM6cAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgwM2YzYTk1LWE2MjQtNGFmMC04ZmJkLTUyYzJlNzhmNjk4NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8YyDANBgkqhkiG9w0BAQsFAAOCAQEAcuMsTpPddMvCn+KK5YZWkL0Q tqIItYg4xA0XcAln2oahOye8Y9c7qtuY9/3TpkXE4yOfaGR3vLkydGYpDdJEqfYA n97Dvx6jKwjfEFpxFc2rV8IMWlFjbTbpdLuE3mx4sUYIXBj3rNev2J+gbGHrvo5G Bk3F7fT/VGkSokGp4/XI6j2nCn+p2qduZSFSdGzP3Im31gCvIK3yEFNomWMQCDrS rVHE6+Pris81UMyu/ilSqGnnTH0aj7UCew0AXHIGzvljmTnwAwEZxJ0UvCWQ4ftI 36vusWqmZ9zxbi0fNYjIFaF/du6Kn8ZQoNwPfadIAJpW4B2wM9GHFVRNDrF/CA== -----END CERTIFICATE-----Generated at Sat Apr 5 11:19:38 2025 by rpki-client