$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fba6b008-4b15-445e-bf72-4181fbf88a82.roa File: fba6b008-4b15-445e-bf72-4181fbf88a82.roa (raw, json) Hash identifier: nJ+xp/8DKqv7wT8SUT65n8GOBhxluRbsrZ2G3sxfSho= Subject key identifier: 64:0B:3B:5C:CB:9C:26:34:5A:72:1C:DC:F4:AF:1A:25:3F:13:42:81 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 49EF27E64331CDB06616F2F86597131647E240DD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fba6b008-4b15-445e-bf72-4181fbf88a82.roa Signing time: Fri 28 Mar 2025 00:20:20 +0000 ROA not before: Fri 28 Mar 2025 00:20:20 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:6040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:ef:27:e6:43:31:cd:b0:66:16:f2:f8:65:97:13:16:47:e2:40:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 00:20:20 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b5:a2:c1:af:f7:a9:ce:4d:72:db:43:15:97: 43:1d:73:4e:c4:e6:32:85:74:7c:57:e6:fd:b9:bf: d4:45:a8:4f:dd:91:98:a0:c5:68:cc:aa:c4:b4:65: 0c:bb:b5:1b:22:82:a7:67:b1:d5:f2:d1:ea:44:76: 23:4d:54:67:56:90:81:cf:2c:d8:b7:2c:85:7c:1e: 11:a2:fb:1c:06:d3:70:0f:e7:79:87:20:7c:c5:b8: 95:eb:e4:a5:52:fd:3c:5f:6b:ab:5b:12:1e:c7:37: 55:b9:98:a0:27:74:8f:e0:65:89:74:d9:13:f2:18: 45:b3:3a:75:de:33:41:e9:34:fe:4e:fa:43:db:68: ad:74:7b:41:7b:aa:89:65:f6:76:c8:0a:fa:43:9f: 1f:9d:57:19:17:a9:a6:f8:3f:c7:26:38:7e:33:bd: 64:56:76:0d:80:4a:1c:ec:7b:1f:9b:d4:38:b1:fe: a6:ae:9e:2f:9e:7b:c7:fb:88:5d:e6:e9:63:5a:ef: 84:e9:57:c2:91:b9:39:4f:98:44:c6:bb:68:4a:51: ef:25:86:a9:c7:58:20:6d:77:ab:d7:f7:e5:b4:dd: b5:9d:8d:17:2c:4e:a6:c7:c0:06:29:61:0b:55:c0: 71:05:4e:1a:b6:33:d9:b6:41:53:53:b9:61:12:fb: 8c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:0B:3B:5C:CB:9C:26:34:5A:72:1C:DC:F4:AF:1A:25:3F:13:42:81 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fba6b008-4b15-445e-bf72-4181fbf88a82.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:6040::/48 Signature Algorithm: sha256WithRSAEncryption d0:e7:6d:15:e4:a8:74:8d:86:29:49:59:83:e6:7e:15:01:58: 1f:d9:a6:f9:e5:74:31:7c:ea:65:8e:19:50:13:f1:d7:22:a2: 72:bb:7c:e6:48:0c:05:ab:4c:09:0f:27:9b:75:8b:3c:b4:ee: 2d:a4:b9:c7:fe:12:fd:a0:4c:87:2f:20:e3:36:e8:e2:68:87: 16:80:ff:6e:59:8c:70:50:42:18:0e:fc:60:26:f9:2e:ad:3d: 65:81:64:54:9e:c4:a4:59:c2:7d:47:d4:37:b1:f3:81:f5:37: 70:31:b0:1d:b5:2e:28:fa:d1:27:03:fa:3e:ab:db:d1:6b:5e: 74:af:4c:e5:f9:02:cb:33:fb:63:04:5f:1e:4f:7a:5b:d7:5f: a6:37:07:07:bc:0c:31:98:d0:66:f0:98:39:f0:4a:4e:ce:05: 8c:98:9e:53:5e:36:01:58:ea:a5:14:3a:c9:12:e1:a3:e3:87: bd:75:f1:59:d8:b4:3c:7d:39:b4:29:2d:5e:86:14:42:67:01: b9:dd:db:b5:1c:70:72:b3:de:41:98:b3:2c:dc:9b:f7:75:3c: 13:8f:1e:f9:4a:7f:0a:ea:d1:5f:c6:7e:1a:50:8c:27:d3:1c: 17:72:5f:d9:d3:3d:3f:7b:ad:5b:20:47:58:bb:5a:86:4b:cd: 63:89:ad:a9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSe8n5kMxzbBmFvL4ZZcTFkfiQN0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MDAyMDIwWhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MWI1OGFmODU2Nzc2ZmJjZDFkYTdhZmU2MmQ5Y2VkNTIw ZmQ5NTU1Mjk0YzNkOWViY2ZlOWU1ZjQwZDRjNzhkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCtaLBr/epzk1y20MVl0Mdc07E5jKFdHxX5v25v9RFqE/d kZigxWjMqsS0ZQy7tRsigqdnsdXy0epEdiNNVGdWkIHPLNi3LIV8HhGi+xwG03AP 53mHIHzFuJXr5KVS/Txfa6tbEh7HN1W5mKAndI/gZYl02RPyGEWzOnXeM0HpNP5O +kPbaK10e0F7qoll9nbICvpDnx+dVxkXqab4P8cmOH4zvWRWdg2AShzsex+b1Dix /qauni+ee8f7iF3m6WNa74TpV8KRuTlPmETGu2hKUe8lhqnHWCBtd6vX9+W03bWd jRcsTqbHwAYpYQtVwHEFThq2M9m2QVNTuWES+4yhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZAs7XMucJjRachzc9K8aJT8TQoEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZiYTZiMDA4LTRiMTUtNDQ1ZS1iZjcyLTQxODFmYmY4OGE4Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AYEAwDQYJKoZIhvcNAQELBQADggEBANDnbRXkqHSNhilJWYPmfhUB WB/ZpvnldDF86mWOGVAT8dcionK7fOZIDAWrTAkPJ5t1izy07i2kucf+Ev2gTIcv IOM26OJohxaA/25ZjHBQQhgO/GAm+S6tPWWBZFSexKRZwn1H1Dex84H1N3AxsB21 Lij60ScD+j6r29FrXnSvTOX5Assz+2MEXx5PelvXX6Y3Bwe8DDGY0GbwmDnwSk7O BYyYnlNeNgFY6qUUOskS4aPjh7118VnYtDx9ObQpLV6GFEJnAbnd27UccHKz3kGY syzcm/d1PBOPHvlKfwrq0V/GfhpQjCfTHBdyX9nTPT97rVsgR1i7WoZLzWOJrak= -----END CERTIFICATE-----Generated at Sat Apr 5 11:19:39 2025 by rpki-client