$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f86ba14-ad5b-430e-a38d-fd5a48004721.roa File: 9f86ba14-ad5b-430e-a38d-fd5a48004721.roa (raw, json) Hash identifier: 4G/G0MtTBaqdjb8LC79huwolhMi+raXEk6AqODYZy5U= Subject key identifier: BD:67:44:0C:46:5E:A9:8D:E7:E9:03:64:56:ED:36:EA:F1:0C:7F:FF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5CB94B49CAE6D4731E744193C9B99BBF546178D4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f86ba14-ad5b-430e-a38d-fd5a48004721.roa Signing time: Fri 04 Apr 2025 00:01:20 +0000 ROA not before: Fri 04 Apr 2025 00:01:20 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffe:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:b9:4b:49:ca:e6:d4:73:1e:74:41:93:c9:b9:9b:bf:54:61:78:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 4 00:01:20 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:7b:5d:04:98:78:98:61:87:7b:e7:e7:6d:3b: 56:49:88:b7:a2:d2:5a:bf:7d:df:5e:b1:f5:c2:15: 30:ca:99:42:36:03:3f:ca:68:48:8a:f5:92:bf:5b: 2e:61:cc:97:3a:1c:b5:63:63:d6:a8:be:98:54:f5: d2:bf:be:15:73:64:5a:4f:af:67:8d:ec:ad:58:24: f7:9b:3a:65:5f:e5:f3:bf:fe:bf:a4:a6:81:b5:55: 90:ca:ec:c5:de:b5:f0:a7:2b:59:62:0b:0a:e9:be: 1a:31:5f:72:70:25:6b:42:4a:e1:e2:64:64:56:bf: 00:fa:ab:05:29:2f:ec:63:bd:58:a2:81:66:f0:c5: ac:cd:90:34:56:99:28:00:b2:df:5b:a8:14:06:e6: 18:0c:7b:f1:be:fb:bb:d6:7f:06:ce:17:db:7e:74: 95:ac:a4:3d:8a:63:24:ce:e5:ac:27:32:d8:ac:e4: f0:52:aa:70:eb:14:72:0e:d4:5f:91:ea:9b:9d:17: 9a:d8:34:e1:53:d2:eb:60:ca:c6:fe:fb:d0:f4:cc: bd:b8:a1:d9:f5:9d:96:cc:de:02:11:cd:fd:44:89: 6e:57:14:3d:26:bb:00:3d:ae:4f:3f:e2:c9:08:67: 5f:cb:77:b3:c6:ac:99:38:33:d6:62:62:4b:f8:5f: d0:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:67:44:0C:46:5E:A9:8D:E7:E9:03:64:56:ED:36:EA:F1:0C:7F:FF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f86ba14-ad5b-430e-a38d-fd5a48004721.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffe:6000::/40 Signature Algorithm: sha256WithRSAEncryption 00:76:b7:54:9a:e9:fb:50:83:f3:29:a1:30:d7:56:7e:e3:eb: 72:f5:d6:a0:3a:87:b0:6c:bd:00:1b:38:28:ff:ca:6c:80:75: a2:9a:27:be:2a:bb:24:14:3e:d1:75:21:7b:3a:66:5d:70:ef: e9:c1:9c:e0:32:74:ca:77:d9:19:39:a1:6e:73:18:01:b5:fc: 03:09:ff:ae:9b:d7:e1:4c:a9:db:e9:11:76:a6:00:95:a0:f7: 6f:2e:5a:d4:f0:ed:ad:1a:f3:05:3d:84:49:a0:ed:00:21:6a: 14:35:2c:39:a0:9b:4f:61:63:7d:06:83:0f:05:38:f5:2d:bd: b8:41:05:01:7c:d7:23:84:db:1e:58:c3:60:92:58:ba:ce:a8: 5d:2b:a8:49:9f:0f:0d:95:7d:4b:f6:bd:76:5c:15:45:eb:32: 69:b4:a2:38:42:e4:8c:42:26:26:9c:bd:1f:76:9c:b2:03:80: c4:0a:14:ee:a7:be:26:f1:b1:55:b1:9a:95:ab:2b:c0:23:b7: 19:1f:2b:b2:58:fe:a8:14:3a:8b:13:68:f5:4a:ea:79:c6:8b: 25:5b:b7:a7:02:78:76:07:b7:df:98:7d:fa:31:ff:95:cd:43: fc:6b:b5:57:b4:51:45:d2:5a:f5:71:64:b7:e8:18:5d:0d:e6: 07:63:19:60 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUXLlLScrm1HMedEGTybmbv1RheNQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA0MDAwMTIwWhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMjkzMDg3ZmIwNGNhNzA0NzUwMGM4MjdhOTdjMDRlNjEw NjQ5YzMxMjA0NmY3YmFhOTQ5NzFiNDc0NDU3MzUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3e10EmHiYYYd75+dtO1ZJiLei0lq/fd9esfXCFTDKmUI2 Az/KaEiK9ZK/Wy5hzJc6HLVjY9aovphU9dK/vhVzZFpPr2eN7K1YJPebOmVf5fO/ /r+kpoG1VZDK7MXetfCnK1liCwrpvhoxX3JwJWtCSuHiZGRWvwD6qwUpL+xjvVii gWbwxazNkDRWmSgAst9bqBQG5hgMe/G++7vWfwbOF9t+dJWspD2KYyTO5awnMtis 5PBSqnDrFHIO1F+R6pudF5rYNOFT0utgysb++9D0zL24odn1nZbM3gIRzf1EiW5X FD0muwA9rk8/4skIZ1/Ld7PGrJk4M9ZiYkv4X9A9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUvWdEDEZeqY3n6QNkVu026vEMf/8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlmODZiYTE0LWFkNWItNDMwZS1hMzhkLWZkNWE0ODAwNDcyMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/+YDANBgkqhkiG9w0BAQsFAAOCAQEAAHa3VJrp+1CD8ymhMNdWfuPr cvXWoDqHsGy9ABs4KP/KbIB1oponviq7JBQ+0XUhezpmXXDv6cGc4DJ0ynfZGTmh bnMYAbX8Awn/rpvX4Uyp2+kRdqYAlaD3by5a1PDtrRrzBT2ESaDtACFqFDUsOaCb T2FjfQaDDwU49S29uEEFAXzXI4TbHljDYJJYus6oXSuoSZ8PDZV9S/a9dlwVResy abSiOELkjEImJpy9H3acsgOAxAoU7qe+JvGxVbGalasrwCO3GR8rslj+qBQ6ixNo 9UrqecaLJVu3pwJ4dge335h9+jH/lc1D/Gu1V7RRRdJa9XFkt+gYXQ3mB2MZYA== -----END CERTIFICATE-----Generated at Sat Apr 5 11:06:30 2025 by rpki-client