$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8c09eb33-9642-4506-acdc-cda09a75dedd.roa File: 8c09eb33-9642-4506-acdc-cda09a75dedd.roa (raw, json) Hash identifier: AcaC762/AddVlkXlp3CfRfQmG9kHNxt+OjbQwQcwDBI= Subject key identifier: 40:B2:28:15:C5:DB:0E:6A:77:16:1E:5E:B6:7D:46:E1:85:54:27:EF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0BE81CB45D067C4C77888D2901274C327A428888 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8c09eb33-9642-4506-acdc-cda09a75dedd.roa Signing time: Fri 28 Mar 2025 15:20:17 +0000 ROA not before: Fri 28 Mar 2025 15:20:17 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff2:1000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:e8:1c:b4:5d:06:7c:4c:77:88:8d:29:01:27:4c:32:7a:42:88:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 15:20:17 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b3:e4:a1:30:b8:65:7b:79:06:03:94:90:fe: cf:4e:20:5e:89:6e:f8:a0:32:ae:1c:e5:15:ad:b7: 15:0e:66:6f:32:10:f0:87:c6:1f:d6:8d:f5:46:76: df:62:7c:2f:2d:e1:05:2b:d4:9b:0d:28:6a:fa:11: ec:6e:0c:7f:c7:64:13:30:f5:f1:96:b9:c1:38:82: 37:b0:53:c5:bb:ba:47:05:4d:1d:e6:d7:a0:25:f3: ba:d3:bf:23:0a:e5:d8:2b:03:ed:18:98:22:0d:8f: 7f:6d:8a:c4:a2:2f:24:f4:9b:57:5e:76:ea:0c:46: e5:c0:3b:e4:36:33:63:b4:2d:d6:a6:5f:f2:c3:64: 7d:fd:3d:e5:69:a9:64:87:90:54:3b:f5:5c:6c:d1: 94:ce:35:b3:a9:1c:73:47:44:09:d5:42:2e:5b:a8: c0:c2:5a:8c:39:04:84:da:da:d7:c0:02:35:55:f0: ae:68:a4:90:af:61:b1:d7:c5:ea:94:e9:20:5f:01: 9d:86:f9:8e:04:5b:9a:82:4b:ec:f6:59:5a:4d:e3: 29:fe:c6:04:28:60:10:3b:51:5b:7c:f1:a6:91:ab: e0:e1:e9:04:59:bc:11:ce:f1:9c:5a:05:5c:65:98: ae:10:79:24:9c:1b:39:cb:83:5f:57:27:03:92:39: 73:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:B2:28:15:C5:DB:0E:6A:77:16:1E:5E:B6:7D:46:E1:85:54:27:EF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8c09eb33-9642-4506-acdc-cda09a75dedd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:1000::/40 Signature Algorithm: sha256WithRSAEncryption 88:e9:48:72:8d:b8:6c:2f:62:99:fc:56:fa:e3:94:fc:5c:e9: af:ac:c1:b1:d5:09:f3:69:ed:ed:37:0c:34:2f:1c:89:66:74: ee:04:39:5e:33:21:cc:cf:93:3f:08:40:f2:e5:60:ad:bc:38: 32:85:0b:65:82:87:f2:85:18:d2:7a:8d:96:c8:9c:e7:d8:5a: c7:75:6e:5b:e7:6e:bb:56:e1:ac:bf:95:ec:33:5d:52:f2:86: 68:8c:d2:46:79:0e:ba:93:97:fa:e8:6e:c9:7f:9a:98:03:3f: 3d:80:80:ce:b8:22:0d:95:13:c8:00:6f:82:31:49:18:21:54: 7b:be:0d:ca:bf:c4:7c:a8:b2:ce:79:44:70:a3:69:89:c0:98: f0:8b:e1:ba:62:93:35:01:5a:0f:20:ba:4f:d6:79:bd:16:7e: 13:2f:61:a6:cc:dd:fc:bd:76:f9:14:c0:6e:8c:01:3a:c3:58: 15:f7:ae:32:f1:a5:86:c7:f7:42:2a:02:02:48:cd:f0:49:0f: 20:49:f4:a3:3f:d0:fc:58:ec:8d:43:fd:d3:fb:92:fd:a2:bd: ab:d8:43:db:ed:72:3b:98:3b:69:7d:96:76:69:a3:94:8b:cb: 21:03:8e:32:de:ad:a6:e0:2b:ed:d6:da:9c:1c:1e:5d:de:62: 54:54:1f:87 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUC+gctF0GfEx3iI0pASdMMnpCiIgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MTUyMDE3WhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4OWY3ZWFhNDU3ZmRiYTdlN2RkMzg0MmJiNzU5YjVhZWNi ZWM2OTdlMWJmMzkwMDkzYzEzYzBkZTI5ZjkyYzUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0s+ShMLhle3kGA5SQ/s9OIF6JbvigMq4c5RWttxUOZm8y EPCHxh/WjfVGdt9ifC8t4QUr1JsNKGr6EexuDH/HZBMw9fGWucE4gjewU8W7ukcF TR3m16Al87rTvyMK5dgrA+0YmCINj39tisSiLyT0m1deduoMRuXAO+Q2M2O0Ldam X/LDZH39PeVpqWSHkFQ79Vxs0ZTONbOpHHNHRAnVQi5bqMDCWow5BITa2tfAAjVV 8K5opJCvYbHXxeqU6SBfAZ2G+Y4EW5qCS+z2WVpN4yn+xgQoYBA7UVt88aaRq+Dh 6QRZvBHO8ZxaBVxlmK4QeSScGznLg19XJwOSOXOdAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUQLIoFcXbDmp3Fh5etn1G4YVUJ+8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhjMDllYjMzLTk2NDItNDUwNi1hY2RjLWNkYTA5YTc1ZGVkZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/yEDANBgkqhkiG9w0BAQsFAAOCAQEAiOlIco24bC9imfxW+uOU/Fzp r6zBsdUJ82nt7TcMNC8ciWZ07gQ5XjMhzM+TPwhA8uVgrbw4MoULZYKH8oUY0nqN lsic59hax3VuW+duu1bhrL+V7DNdUvKGaIzSRnkOupOX+uhuyX+amAM/PYCAzrgi DZUTyABvgjFJGCFUe74Nyr/EfKiyznlEcKNpicCY8IvhumKTNQFaDyC6T9Z5vRZ+ Ey9hpszd/L12+RTAbowBOsNYFfeuMvGlhsf3QioCAkjN8EkPIEn0oz/Q/FjsjUP9 0/uS/aK9q9hD2+1yO5g7aX2WdmmjlIvLIQOOMt6tpuAr7dbanBweXd5iVFQfhw== -----END CERTIFICATE-----Generated at Sat Apr 5 11:12:43 2025 by rpki-client