$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cc3a0052-f8b3-4e86-9960-877be5899f62.roa File: cc3a0052-f8b3-4e86-9960-877be5899f62.roa (raw, json) Hash identifier: OxX3c082IxGxb0S+7ogggSTW2Wz8mjsKXHFE82RE6P8= Subject key identifier: 1B:51:7B:F2:9B:EF:7F:5D:7C:46:74:CA:4C:E2:A1:EC:E8:CA:C1:93 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3B4920A9DF4B4385456F0350882A050BF3A06536 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cc3a0052-f8b3-4e86-9960-877be5899f62.roa Signing time: Fri 28 Mar 2025 15:40:26 +0000 ROA not before: Fri 28 Mar 2025 15:40:26 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff4:6000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:49:20:a9:df:4b:43:85:45:6f:03:50:88:2a:05:0b:f3:a0:65:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 15:40:26 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:66:9d:1e:6e:06:fa:13:68:8b:b1:c6:c9:3c: 52:63:46:01:b4:82:8a:7a:fc:8f:06:fb:88:35:38: 19:33:e0:a4:5e:f9:65:fd:3f:d1:8d:23:6e:c3:58: d0:ad:07:03:05:25:31:f4:0d:18:91:76:d2:40:47: 21:1e:18:32:53:5e:6a:c4:a5:fe:8f:72:e0:af:5a: ba:b0:39:76:6e:72:a5:15:9f:94:1d:ab:9f:d2:4f: 85:26:10:4b:ae:06:5c:1e:11:f4:1d:e3:ce:09:9a: 01:a6:70:c6:e9:81:eb:9d:ac:95:c9:99:4c:84:27: 0b:bb:b8:23:a2:1d:4b:13:43:89:e1:2a:6b:f1:4f: b8:5f:a5:27:bd:e4:47:d5:90:ee:76:6c:cf:ad:b7: e2:26:86:a6:3c:15:a4:1b:93:df:2e:22:9b:78:f0: 4b:0d:da:2f:85:81:db:18:16:19:28:c2:63:fd:01: 5b:d8:eb:40:7c:ce:00:aa:49:f9:43:10:9d:c5:96: 23:21:0b:07:cc:bc:0f:10:39:4f:fc:86:94:b5:7e: 2c:07:5c:cb:5b:76:42:36:92:69:39:d1:46:69:71: 61:a2:64:f3:ea:3e:31:57:2a:80:cc:90:33:0e:27: 8c:0e:1d:c5:1c:36:5b:b3:38:d1:ae:8a:c7:99:51: 6d:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:51:7B:F2:9B:EF:7F:5D:7C:46:74:CA:4C:E2:A1:EC:E8:CA:C1:93 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cc3a0052-f8b3-4e86-9960-877be5899f62.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff4:6000::/40 Signature Algorithm: sha256WithRSAEncryption 69:55:24:04:12:17:c7:9d:bf:ea:e9:4d:a4:ee:a0:77:8b:e9: 95:7d:e2:08:ba:76:63:11:fb:5e:f0:66:8e:ee:af:51:e0:90: 44:e3:48:9f:24:5c:2f:bc:ea:f3:41:11:e3:e2:ea:32:b5:b1: 13:8f:71:96:8c:67:22:fe:e8:70:d2:bc:b2:39:c1:ea:2b:19: 52:64:95:57:91:55:5d:0e:89:1c:b8:d9:76:dc:33:56:4f:25: 74:ba:05:91:be:82:c6:11:d3:68:5a:df:ec:5f:14:b2:fc:a9: 98:06:c5:84:28:49:ec:8c:8c:19:5d:50:91:82:f4:34:f3:fd: 9d:66:0d:de:91:02:79:10:1c:8b:a1:1c:58:f8:c4:fd:38:dc: 2a:09:3e:6b:4f:cf:2f:d3:f0:60:b3:69:66:21:a3:12:31:22: 00:cd:a4:8b:82:37:f3:99:52:53:49:79:3c:6c:23:5d:36:52: 15:d5:51:69:74:11:ed:e9:e8:cf:84:0f:af:23:36:de:d9:7c: ee:d1:e8:5c:0f:42:e1:b5:af:40:0a:9a:61:46:8a:d0:52:f1: 37:ba:8a:44:87:1c:f2:04:b5:90:3e:a0:e5:81:ee:ed:41:6f: 38:38:16:de:9b:69:98:be:ef:94:71:89:22:2b:97:08:43:59: 0f:a0:cb:c1 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUO0kgqd9LQ4VFbwNQiCoFC/OgZTYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MTU0MDI2WhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyN2IyMTk1MzU2ZTFjOTgzYzYzM2MzOWZjYTM0MGZlNGMz YmY4YmFkNmI5ZWRiNjhjZThhNWE2YmI2NDRjYjM5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDhZp0ebgb6E2iLscbJPFJjRgG0gop6/I8G+4g1OBkz4KRe +WX9P9GNI27DWNCtBwMFJTH0DRiRdtJARyEeGDJTXmrEpf6PcuCvWrqwOXZucqUV n5Qdq5/ST4UmEEuuBlweEfQd484JmgGmcMbpgeudrJXJmUyEJwu7uCOiHUsTQ4nh KmvxT7hfpSe95EfVkO52bM+tt+ImhqY8FaQbk98uIpt48EsN2i+FgdsYFhkowmP9 AVvY60B8zgCqSflDEJ3FliMhCwfMvA8QOU/8hpS1fiwHXMtbdkI2kmk50UZpcWGi ZPPqPjFXKoDMkDMOJ4wOHcUcNluzONGuiseZUW2XAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUG1F78pvvf118RnTKTOKh7OjKwZMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NjM2EwMDUyLWY4YjMtNGU4Ni05OTYwLTg3N2JlNTg5OWY2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/0YDANBgkqhkiG9w0BAQsFAAOCAQEAaVUkBBIXx52/6ulNpO6gd4vp lX3iCLp2YxH7XvBmju6vUeCQRONInyRcL7zq80ER4+LqMrWxE49xloxnIv7ocNK8 sjnB6isZUmSVV5FVXQ6JHLjZdtwzVk8ldLoFkb6CxhHTaFrf7F8UsvypmAbFhChJ 7IyMGV1QkYL0NPP9nWYN3pECeRAci6EcWPjE/TjcKgk+a0/PL9PwYLNpZiGjEjEi AM2ki4I385lSU0l5PGwjXTZSFdVRaXQR7enoz4QPryM23tl87tHoXA9C4bWvQAqa YUaK0FLxN7qKRIcc8gS1kD6g5YHu7UFvODgW3ptpmL7vlHGJIiuXCENZD6DLwQ== -----END CERTIFICATE-----Generated at Sun Apr 6 16:17:54 2025 by rpki-client