$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c20c9451-0fd8-49b3-b2be-ad611f307fea.roa File: c20c9451-0fd8-49b3-b2be-ad611f307fea.roa (raw, json) Hash identifier: PcUIsQuKHXzPtB2H5UB9BmS147mqsiaEYRvQZoiQ+gE= Subject key identifier: 32:98:EA:52:2D:B2:D0:87:27:13:12:C5:B7:92:0A:D6:5F:DC:F9:1B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 512724E249D93F979889ACEE6CB38324045E78B9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c20c9451-0fd8-49b3-b2be-ad611f307fea.roa Signing time: Fri 28 Mar 2025 00:31:28 +0000 ROA not before: Fri 28 Mar 2025 00:31:28 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f61:6000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:27:24:e2:49:d9:3f:97:98:89:ac:ee:6c:b3:83:24:04:5e:78:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 00:31:28 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f2:f4:f8:d1:c3:26:3e:50:3d:61:0c:c7:e1: 67:0b:ab:bc:64:45:84:0a:6f:d4:67:45:8b:ee:fe: 9e:39:54:fe:87:80:73:46:64:fa:50:f3:0e:ff:c9: df:8a:eb:e2:bb:4b:d2:1f:24:88:45:de:dc:f8:fa: d5:4f:e6:d1:b8:a6:c8:d7:2b:05:09:2a:84:d3:6c: 36:69:60:b0:ce:dc:09:30:65:f8:12:63:1f:7e:61: 22:84:33:bd:69:e4:25:0a:a1:be:d7:20:4b:b8:9e: 6e:79:be:cc:68:2b:41:cb:5e:97:45:b5:29:b3:2c: 08:9f:f5:b1:ab:ed:a7:bd:8b:15:c5:3f:cc:e8:64: 62:e5:de:f4:f2:cd:7a:20:1b:42:ec:a3:cd:16:13: 66:6e:20:7c:55:40:d0:18:19:fc:43:18:e9:5b:ec: cd:55:9f:75:36:10:bb:8b:5d:da:03:e3:b8:cc:fb: 79:92:66:30:75:05:fe:64:b8:d6:b6:49:c3:fa:d5: 64:4c:70:5f:f3:da:08:26:65:49:1b:6e:bd:2c:cd: 01:36:9e:42:2e:47:20:e2:60:eb:bc:7d:a4:e0:38: f9:24:49:ae:50:9d:c8:b9:72:77:14:2f:a2:a3:4d: 50:d7:2b:99:a3:86:2b:19:35:dc:df:69:df:3b:6b: 05:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:98:EA:52:2D:B2:D0:87:27:13:12:C5:B7:92:0A:D6:5F:DC:F9:1B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c20c9451-0fd8-49b3-b2be-ad611f307fea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:6000::/40 Signature Algorithm: sha256WithRSAEncryption 0a:32:b0:fd:79:b7:52:a1:0d:b2:9c:ad:a1:c6:ac:ec:3c:60: 13:f9:97:bc:19:29:8b:20:ff:0b:9b:78:64:aa:84:a6:8f:9a: 64:10:06:39:b3:b1:5a:98:0d:e6:bb:66:1a:4f:71:74:de:43: 9a:a2:9c:79:56:25:c8:b2:94:da:83:d9:c5:17:e4:e3:8b:a9: 81:99:51:4f:3e:82:0b:f2:a5:23:10:14:b6:e8:95:60:79:21: 58:30:c1:e4:9c:c3:cb:14:46:a2:88:1c:b6:f3:e8:7a:6f:67: 96:a3:1a:83:06:d4:6c:02:e1:b1:49:da:bf:d5:b2:f0:ab:cd: 22:d4:d5:e8:eb:3e:7b:85:19:60:36:d7:f1:40:b5:69:25:61: aa:b5:ba:0e:4d:d5:6e:d0:e9:b6:4f:d3:e5:18:29:f7:f2:7f: d1:16:36:4a:4f:62:71:68:0a:44:3e:0c:bf:4f:0a:fe:49:e1: 85:b0:84:3a:07:d6:92:f8:72:eb:d0:dd:26:f3:0f:50:df:60: 45:81:cb:85:85:38:35:83:7d:5f:b3:9f:52:b0:56:bd:93:af: f1:15:7a:33:ea:80:39:8f:e9:44:3c:32:41:e8:c9:9c:44:9d: 20:9d:2c:36:c0:52:b7:13:25:91:ec:32:05:6b:a8:ea:dc:11: 1b:68:17:51 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUUSck4knZP5eYiazubLODJAReeLkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MDAzMTI4WhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3OTEwMzBhY2I2ZTQzMGEwNDljMTNlODk5MWExYmMzN2E0 N2YxYjNkYzA0MTgwMzNhODFiNjY0ZWJjOWMzZjUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC08vT40cMmPlA9YQzH4WcLq7xkRYQKb9RnRYvu/p45VP6H gHNGZPpQ8w7/yd+K6+K7S9IfJIhF3tz4+tVP5tG4psjXKwUJKoTTbDZpYLDO3Akw ZfgSYx9+YSKEM71p5CUKob7XIEu4nm55vsxoK0HLXpdFtSmzLAif9bGr7ae9ixXF P8zoZGLl3vTyzXogG0Lso80WE2ZuIHxVQNAYGfxDGOlb7M1Vn3U2ELuLXdoD47jM +3mSZjB1Bf5kuNa2ScP61WRMcF/z2ggmZUkbbr0szQE2nkIuRyDiYOu8faTgOPkk Sa5Qnci5cncUL6KjTVDXK5mjhisZNdzfad87awVLAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUMpjqUi2y0IcnExLFt5IK1l/c+RswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyMGM5NDUxLTBmZDgtNDliMy1iMmJlLWFkNjExZjMwN2ZlYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9hYDANBgkqhkiG9w0BAQsFAAOCAQEACjKw/Xm3UqENspytocas7Dxg E/mXvBkpiyD/C5t4ZKqEpo+aZBAGObOxWpgN5rtmGk9xdN5DmqKceVYlyLKU2oPZ xRfk44upgZlRTz6CC/KlIxAUtuiVYHkhWDDB5JzDyxRGoogctvPoem9nlqMagwbU bALhsUnav9Wy8KvNItTV6Os+e4UZYDbX8UC1aSVhqrW6Dk3VbtDptk/T5Rgp9/J/ 0RY2Sk9icWgKRD4Mv08K/knhhbCEOgfWkvhy69DdJvMPUN9gRYHLhYU4NYN9X7Of UrBWvZOv8RV6M+qAOY/pRDwyQejJnESdIJ0sNsBStxMlkewyBWuo6twRG2gXUQ== -----END CERTIFICATE-----Generated at Sat Apr 5 12:14:55 2025 by rpki-client