$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3f91ab4-930a-4958-b6c8-811feb211be7.roa File: b3f91ab4-930a-4958-b6c8-811feb211be7.roa (raw, json) Hash identifier: 7JwDOQp65X0Uaj4+DREdxLKjhjVyM2bJFEVF0kO3Sr4= Subject key identifier: 05:1E:43:E4:63:7F:3D:6B:D7:57:81:C4:AB:F2:C6:EE:C1:09:1E:89 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 31ACA5666D82554DB2ECC149C09EA2AE9E3AA1B3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3f91ab4-930a-4958-b6c8-811feb211be7.roa Signing time: Fri 28 Mar 2025 17:21:01 +0000 ROA not before: Fri 28 Mar 2025 17:21:01 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f10:c800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:ac:a5:66:6d:82:55:4d:b2:ec:c1:49:c0:9e:a2:ae:9e:3a:a1:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 17:21:01 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:75:14:fc:3d:cf:91:73:29:b7:a5:6e:ba:8b: e1:9f:8a:86:50:80:d8:8b:bf:2e:7a:cc:4e:a8:7d: f6:98:17:72:19:6b:b6:e2:01:6a:3e:cc:73:48:a5: e2:85:fa:b8:ea:cb:da:fa:c6:20:95:7f:8e:f1:a3: e6:8f:36:40:5f:1c:8e:b5:df:11:d4:9d:03:02:61: 99:4e:10:22:7c:32:6b:69:71:0f:d1:c1:47:c2:4b: c3:34:9a:cb:c9:08:e0:69:d7:08:9e:52:1e:22:5a: 9e:49:c2:63:c0:e5:69:f8:e3:39:4d:c7:c5:05:cd: 0c:32:00:1c:1b:af:25:7f:37:1c:2e:9a:28:5e:52: ae:03:9f:12:2f:96:08:55:f4:78:79:71:33:15:ee: 35:3e:85:8b:f1:85:45:7c:29:71:aa:16:e0:06:29: c3:31:0e:3a:d5:3a:76:da:f9:e5:3e:7e:04:3e:f8: d5:b1:85:7a:a8:3d:1e:9f:ce:83:f9:be:44:37:57: 03:ae:70:b2:91:28:00:e2:73:59:dd:f0:7d:a8:07: 76:55:93:9b:48:69:89:0f:62:b0:3a:15:eb:ac:12: fe:64:e0:c7:9a:cb:4a:d9:86:9a:d7:2c:79:dc:33: 78:6a:2e:69:a8:e8:e5:c5:05:4b:05:e4:09:d6:dd: 18:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:1E:43:E4:63:7F:3D:6B:D7:57:81:C4:AB:F2:C6:EE:C1:09:1E:89 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3f91ab4-930a-4958-b6c8-811feb211be7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f10:c800::/37 Signature Algorithm: sha256WithRSAEncryption 78:4a:d5:1e:22:71:93:4c:f9:65:e5:4e:6b:02:50:b8:1a:c8: b4:34:b1:d3:17:33:46:c4:62:f4:3a:49:b8:69:ba:02:04:6b: 8c:1b:dc:03:08:88:85:11:25:16:7e:ad:1d:34:59:67:d0:30: 7c:9b:bb:68:f3:fa:62:8c:ec:11:dc:5e:61:9f:da:00:60:8a: 6f:62:e9:5e:e9:eb:fb:36:71:05:6e:8f:d8:00:c9:27:d3:a5: 67:00:6f:25:aa:22:23:90:64:c9:8f:68:07:c9:a4:77:9c:f4: 42:b5:09:df:a7:70:d9:78:d7:b7:8a:c4:54:c9:09:d3:14:bb: 18:53:1b:ee:78:70:36:ff:f4:bf:40:90:2c:a7:36:1d:52:03: a1:bc:a7:64:a7:77:67:aa:b4:6d:6a:ec:80:2b:9c:22:ff:2e: ff:92:e8:f1:4f:ea:41:bd:21:9d:6c:3f:d9:4b:8d:b5:f7:62: 05:f5:b5:a0:e5:0e:d3:34:6e:e9:b6:e1:50:b1:57:89:f5:0e: 4d:87:17:30:c1:33:85:cb:f0:8b:26:90:6f:0b:c7:40:60:fb: 59:bd:96:92:cd:46:f6:cc:18:69:ec:bd:80:41:bd:25:98:f0: 95:54:3a:59:8c:74:59:db:84:47:23:fb:4c:09:12:09:74:8a: 6b:2d:3c:8d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMaylZm2CVU2y7MFJwJ6irp46obMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MTcyMTAxWhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMzMyOWEzZmM3MGFkMDgxYzVhNDUzMjAyZjYwZDYzM2I1 YThlZjM2ZjMzMzM2OThlZmVmYWIzYjUyMjE1M2FlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgdRT8Pc+Rcym3pW66i+GfioZQgNiLvy56zE6offaYF3IZ a7biAWo+zHNIpeKF+rjqy9r6xiCVf47xo+aPNkBfHI613xHUnQMCYZlOECJ8Mmtp cQ/RwUfCS8M0msvJCOBp1wieUh4iWp5JwmPA5Wn44zlNx8UFzQwyABwbryV/Nxwu miheUq4DnxIvlghV9Hh5cTMV7jU+hYvxhUV8KXGqFuAGKcMxDjrVOnba+eU+fgQ+ +NWxhXqoPR6fzoP5vkQ3VwOucLKRKADic1nd8H2oB3ZVk5tIaYkPYrA6FeusEv5k 4Meay0rZhprXLHncM3hqLmmo6OXFBUsF5AnW3RgRAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUBR5D5GN/PWvXV4HEq/LG7sEJHokwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IzZjkxYWI0LTkzMGEtNDk1OC1iNmM4LTgxMWZlYjIxMWJlNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8QyDANBgkqhkiG9w0BAQsFAAOCAQEAeErVHiJxk0z5ZeVOawJQuBrI tDSx0xczRsRi9DpJuGm6AgRrjBvcAwiIhRElFn6tHTRZZ9AwfJu7aPP6YozsEdxe YZ/aAGCKb2LpXunr+zZxBW6P2ADJJ9OlZwBvJaoiI5BkyY9oB8mkd5z0QrUJ36dw 2XjXt4rEVMkJ0xS7GFMb7nhwNv/0v0CQLKc2HVIDobynZKd3Z6q0bWrsgCucIv8u /5Lo8U/qQb0hnWw/2UuNtfdiBfW1oOUO0zRu6bbhULFXifUOTYcXMMEzhcvwiyaQ bwvHQGD7Wb2Wks1G9swYaey9gEG9JZjwlVQ6WYx0WduERyP7TAkSCXSKay08jQ== -----END CERTIFICATE-----Generated at Sat Apr 5 11:15:26 2025 by rpki-client