$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f7fd3545-77f1-4387-9569-710d9169bc6e.roa File: f7fd3545-77f1-4387-9569-710d9169bc6e.roa (raw, json) Hash identifier: 3I0qPB4NoxnLRNSH54kqlnYZJCzQH0gARUc0BgrcxsI= Subject key identifier: AB:9F:3A:23:FA:44:1D:4B:74:28:A0:90:C8:06:B3:B8:6D:30:EE:CD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 409E7E49F7B424B81327DDED48AEB20B71FCE855 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f7fd3545-77f1-4387-9569-710d9169bc6e.roa Signing time: Fri 04 Apr 2025 00:02:12 +0000 ROA not before: Fri 04 Apr 2025 00:02:12 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:8000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:9e:7e:49:f7:b4:24:b8:13:27:dd:ed:48:ae:b2:0b:71:fc:e8:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 4 00:02:12 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:22:83:22:24:2d:2b:e2:ec:f1:52:b3:b8:fa: ec:84:2e:a2:13:b8:c7:41:c4:2c:bf:e3:c5:7d:20: 26:ea:b0:2a:27:ce:44:b7:70:8b:69:d5:37:7b:49: 75:21:cf:72:ab:88:e7:3d:1e:e0:e3:1f:11:50:08: 3e:64:ef:e7:90:29:9a:ab:65:18:87:52:cd:dc:06: 16:6e:45:56:d8:51:e6:4b:f7:63:98:19:02:16:df: 48:e3:7f:e5:14:64:60:b9:b9:6d:6a:64:66:da:c2: f7:8d:bb:00:7e:9a:e0:1a:97:cc:5c:7b:b0:de:8e: 62:7c:7d:39:4f:0b:66:ec:5f:46:f8:93:7a:6c:6a: c1:31:26:6c:89:72:b6:89:4d:db:f7:03:a5:e3:dd: 45:82:04:bd:89:24:d8:4a:cf:e4:78:1f:4a:9c:41: 2e:b0:5e:f9:2e:b3:71:23:f3:97:7d:b9:ed:87:b7: b2:88:7e:6c:04:bf:29:f3:4f:e5:83:71:0c:a7:f3: 8c:d9:cd:68:00:3c:20:bb:01:cf:bc:c1:e4:09:7c: 7c:ac:cb:c0:18:01:23:25:d0:a9:f7:e9:6c:d8:dd: 37:6b:56:8f:dd:e6:d8:82:ec:ed:18:fd:1f:da:f2: 06:1d:62:fa:16:e2:5e:15:ce:8b:dc:d7:57:bf:26: 53:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:9F:3A:23:FA:44:1D:4B:74:28:A0:90:C8:06:B3:B8:6D:30:EE:CD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f7fd3545-77f1-4387-9569-710d9169bc6e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:8000::/36 Signature Algorithm: sha256WithRSAEncryption a0:26:7d:79:55:05:df:dc:5c:c2:ee:a0:e3:3d:d6:5c:f9:7c: 18:c2:c4:ff:58:dc:a3:51:46:16:c7:75:60:8d:54:f8:a9:66: 60:a4:f0:e2:b3:f8:ca:a6:82:ad:66:78:14:8b:25:ca:a6:f2: a2:64:c3:9c:ea:b9:0d:de:31:86:28:4c:c0:ea:58:f0:e8:50: 4b:20:d5:cf:73:0f:17:e7:9d:20:ae:d1:b8:3b:e8:c9:6c:d3: e9:0e:bb:d1:fe:b8:63:6b:47:92:f9:7c:7c:3b:56:ef:34:45: 52:6b:90:85:89:f2:8d:12:55:ac:46:60:e6:c4:9d:c8:60:d9: d3:ce:1a:82:9b:9f:d5:73:63:42:f9:10:57:76:05:54:1e:53: 61:9a:9a:be:45:ca:15:17:ae:55:53:76:09:25:40:a6:b0:00: ef:6a:4b:43:50:74:6c:2d:00:ac:ef:67:b3:47:07:a0:6d:70: 60:6c:84:07:62:cf:bc:49:df:bd:f0:51:c2:08:53:34:f4:5d: 41:1d:d9:b0:45:62:08:26:f8:cf:90:35:49:e8:50:02:bb:a8: af:fb:29:f8:7a:2a:ec:7d:71:20:c6:56:1d:a3:d2:65:b7:97: 2b:a2:b5:e5:fd:65:5a:2e:fe:4f:79:0e:00:88:5c:08:e8:03: 64:fd:97:29 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUQJ5+Sfe0JLgTJ93tSK6yC3H86FUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA0MDAwMjEyWhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZDdiYmYzYWMzYjMyNTgxNmFiODYzZTUyNjZhMzEwNzRh NGZiNzczZGE3MTEyZGVjNTkyYjQxNWFlYzIzNzFjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfIoMiJC0r4uzxUrO4+uyELqITuMdBxCy/48V9ICbqsCon zkS3cItp1Td7SXUhz3KriOc9HuDjHxFQCD5k7+eQKZqrZRiHUs3cBhZuRVbYUeZL 92OYGQIW30jjf+UUZGC5uW1qZGbawveNuwB+muAal8xce7DejmJ8fTlPC2bsX0b4 k3psasExJmyJcraJTdv3A6Xj3UWCBL2JJNhKz+R4H0qcQS6wXvkus3Ej85d9ue2H t7KIfmwEvynzT+WDcQyn84zZzWgAPCC7Ac+8weQJfHysy8AYASMl0Kn36WzY3Tdr Vo/d5tiC7O0Y/R/a8gYdYvoW4l4Vzovc11e/JlM9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUq586I/pEHUt0KKCQyAazuG0w7s0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y3ZmQzNTQ1LTc3ZjEtNDM4Ny05NTY5LTcxMGQ5MTY5YmM2ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB/9gDANBgkqhkiG9w0BAQsFAAOCAQEAoCZ9eVUF39xcwu6g4z3WXPl8 GMLE/1jco1FGFsd1YI1U+KlmYKTw4rP4yqaCrWZ4FIslyqbyomTDnOq5Dd4xhihM wOpY8OhQSyDVz3MPF+edIK7RuDvoyWzT6Q670f64Y2tHkvl8fDtW7zRFUmuQhYny jRJVrEZg5sSdyGDZ084agpuf1XNjQvkQV3YFVB5TYZqavkXKFReuVVN2CSVAprAA 72pLQ1B0bC0ArO9ns0cHoG1wYGyEB2LPvEnfvfBRwghTNPRdQR3ZsEViCCb4z5A1 SehQAruor/sp+Hoq7H1xIMZWHaPSZbeXK6K15f1lWi7+T3kOAIhcCOgDZP2XKQ== -----END CERTIFICATE-----Generated at Sat Apr 5 11:21:40 2025 by rpki-client