$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dd2490be-36b4-4ace-9cba-a26053204659.roa File: dd2490be-36b4-4ace-9cba-a26053204659.roa (raw, json) Hash identifier: 08SWCes7eIDNo7TzcyS/RZh2Ce3Nkh3NYcbveWAwMjA= Subject key identifier: F0:68:8F:2B:04:C2:D2:9A:E9:41:26:F2:C0:B4:44:A6:1B:CF:17:E5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 77553BFA6A6B8CEAF35FB80A467088EF6057545E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dd2490be-36b4-4ace-9cba-a26053204659.roa Signing time: Fri 14 Mar 2025 00:20:59 +0000 ROA not before: Fri 14 Mar 2025 00:20:59 +0000 ROA not after: Fri 18 Apr 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1f68:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:55:3b:fa:6a:6b:8c:ea:f3:5f:b8:0a:46:70:88:ef:60:57:54:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 14 00:20:59 2025 GMT Not After : Apr 18 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ea:a8:11:1e:9d:d4:4a:0e:ef:44:42:2a:de: 03:bc:b2:96:61:c2:1f:8f:aa:69:b7:8b:ea:7a:1f: 14:40:2d:ba:7c:41:a7:e8:8e:65:60:c3:34:97:16: 83:3e:5d:02:a2:84:af:59:6b:11:26:a0:b9:a2:87: 23:cd:d8:9f:ef:a2:5f:f9:f8:fe:a5:e4:be:e0:ef: 2c:bb:0b:24:8f:68:cc:7d:47:eb:87:76:be:a0:d0: 52:8f:85:a8:12:43:bf:10:41:0a:45:ba:2d:f3:e0: 32:64:af:10:77:04:1a:fe:1d:8a:42:26:7f:b8:8b: e2:10:f0:6f:e9:3c:cf:7d:68:42:29:0d:d0:8a:84: 57:56:41:37:15:a8:4b:16:41:2d:4e:a4:6d:e7:52: 4d:02:05:94:07:dc:21:81:91:c0:4b:3f:c2:80:d8: 28:07:c8:e1:3b:3b:23:f3:95:41:19:d0:4b:82:56: d2:d0:48:bc:1e:38:21:d5:9c:cb:13:de:a2:10:a3: 54:f8:e7:62:31:be:00:04:40:b5:54:b0:12:06:18: 51:df:b6:9f:92:7d:93:77:f4:f6:8e:d5:5b:11:cc: 65:92:9d:01:da:2b:6f:c2:98:78:7e:a9:10:b3:3f: 82:c7:50:e7:08:df:f2:83:9c:9e:f7:c8:b5:f6:85: 1e:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:68:8F:2B:04:C2:D2:9A:E9:41:26:F2:C0:B4:44:A6:1B:CF:17:E5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dd2490be-36b4-4ace-9cba-a26053204659.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f68:5000::/40 Signature Algorithm: sha256WithRSAEncryption 30:fb:23:5c:56:09:83:2a:16:a0:0b:91:01:50:56:ed:a5:c8: fe:20:58:d8:b4:55:b1:01:2c:44:50:87:46:50:bd:e5:9c:e2: f0:38:68:f0:e3:7f:48:29:49:ad:bb:31:a5:ed:04:a1:0b:cd: b7:ea:aa:d9:f1:d0:50:ea:e4:86:77:bc:56:bd:0c:74:12:c8: 76:da:bb:5d:93:bf:d4:3c:4b:8a:93:b8:9a:52:e7:96:69:bd: 70:ab:40:5e:2d:5c:1b:d8:74:cf:96:64:a5:15:ff:b5:bc:67: 8a:9f:58:1d:54:3b:54:14:85:7c:a3:89:56:ba:23:22:3a:3e: fb:6d:ab:31:de:4a:ad:48:ad:78:05:c8:ad:64:00:0d:4e:e9: 07:89:40:7a:d8:44:8e:b7:e9:23:8b:2c:8f:a4:73:c1:6b:98: 84:df:2a:54:23:07:6c:6e:0c:bb:5a:29:f3:53:f5:09:d3:7d: cb:c3:d4:49:46:bf:84:83:79:72:6e:76:1b:83:29:3e:c1:4a: 37:5a:0f:00:d2:72:e1:bc:90:d1:6d:71:c8:fa:74:b7:05:74: 4a:1c:5c:61:42:7c:04:57:d9:3c:2d:11:5e:e2:c0:a1:ea:da: 95:a1:c3:ad:e3:f7:6d:a2:8c:6a:db:1d:e3:37:9d:26:44:da: 59:ce:01:ca -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUd1U7+mprjOrzX7gKRnCI72BXVF4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzE0MDAyMDU5WhcNMjUwNDE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3OTM1MjAzNDRmNDFiNDE5OTYyZWVjNjhmNGZmMjZjMTg1 ODVkNTZlNmJhMzlmZjljM2ZlZjZjNGVjZGRlMWIzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCv6qgRHp3USg7vREIq3gO8spZhwh+Pqmm3i+p6HxRALbp8 QafojmVgwzSXFoM+XQKihK9ZaxEmoLmihyPN2J/vol/5+P6l5L7g7yy7CySPaMx9 R+uHdr6g0FKPhagSQ78QQQpFui3z4DJkrxB3BBr+HYpCJn+4i+IQ8G/pPM99aEIp DdCKhFdWQTcVqEsWQS1OpG3nUk0CBZQH3CGBkcBLP8KA2CgHyOE7OyPzlUEZ0EuC VtLQSLweOCHVnMsT3qIQo1T452IxvgAEQLVUsBIGGFHftp+SfZN39PaO1VsRzGWS nQHaK2/CmHh+qRCzP4LHUOcI3/KDnJ73yLX2hR6jAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU8GiPKwTC0prpQSbywLREphvPF+UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RkMjQ5MGJlLTM2YjQtNGFjZS05Y2JhLWEyNjA1MzIwNDY1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9oUDANBgkqhkiG9w0BAQsFAAOCAQEAMPsjXFYJgyoWoAuRAVBW7aXI /iBY2LRVsQEsRFCHRlC95Zzi8Dho8ON/SClJrbsxpe0EoQvNt+qq2fHQUOrkhne8 Vr0MdBLIdtq7XZO/1DxLipO4mlLnlmm9cKtAXi1cG9h0z5ZkpRX/tbxnip9YHVQ7 VBSFfKOJVrojIjo++22rMd5KrUiteAXIrWQADU7pB4lAethEjrfpI4ssj6RzwWuY hN8qVCMHbG4Mu1op81P1CdN9y8PUSUa/hIN5cm52G4MpPsFKN1oPANJy4byQ0W1x yPp0twV0ShxcYUJ8BFfZPC0RXuLAoeralaHDreP3baKMatsd4zedJkTaWc4Byg== -----END CERTIFICATE-----Generated at Sat Apr 5 07:31:24 2025 by rpki-client