$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1550332d-5bb8-49e9-8b4d-5938de6455c1.roa File: 1550332d-5bb8-49e9-8b4d-5938de6455c1.roa (raw, json) Hash identifier: I4Q5kMSVYjv8jrRqwDesGT9FeOB3sFFnYpRbtk3pne4= Subject key identifier: 18:52:4F:EE:77:11:A2:FB:92:68:34:39:7D:50:6C:43:B5:C1:96:0B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2D201ED27FA2F0829A255A389EC497C85A350612 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1550332d-5bb8-49e9-8b4d-5938de6455c1.roa Signing time: Tue 20 May 2025 00:30:36 +0000 ROA not before: Tue 20 May 2025 00:30:36 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f28:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:20:1e:d2:7f:a2:f0:82:9a:25:5a:38:9e:c4:97:c8:5a:35:06:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:30:36 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=21fccc07a4a50ae6a0c3d8b42e1f675d032621553cc70d37cf40889772a13ff5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:27:15:99:1b:12:36:af:00:f7:63:0d:ad:05: e0:ae:8f:4e:dd:7f:9f:f4:1d:56:5e:ce:16:d8:3a: b0:ad:f4:14:67:dd:98:bb:98:ba:b7:2c:e7:3f:20: 10:ac:b0:12:5b:ca:00:9a:64:2c:3c:5e:f8:7f:c1: 32:e7:ca:03:d0:83:27:f6:d4:a1:09:a1:66:95:63: 31:6c:cb:e4:47:96:d7:fe:0e:5b:ab:02:a6:5e:b0: 21:9f:5c:3b:64:59:d8:10:e9:33:a1:01:68:62:5a: 8d:3d:16:d7:84:2f:98:0e:50:94:90:2b:cb:6c:e4: 0a:74:8f:9a:1e:dd:06:6e:a0:e7:ee:17:2d:2c:0a: 37:d7:22:51:74:7c:40:60:cd:5d:3d:0b:d6:f4:4c: e9:bf:8f:4e:f4:bb:e9:ef:20:84:9b:55:86:ab:09: b8:ed:78:35:e1:94:4a:55:34:0c:79:9c:04:51:9c: 99:40:e0:54:ed:ee:d5:47:50:52:eb:1e:d6:07:bd: bb:95:4c:3e:42:e2:37:4a:17:43:f0:73:40:64:16: 83:c5:07:aa:db:6b:3b:0c:38:32:0c:9d:fd:82:9e: 44:27:ef:db:1f:62:f1:2b:ba:c3:dd:cc:50:8d:aa: 9a:62:39:85:88:a6:ce:39:d2:f9:59:f5:9b:42:ff: c0:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:52:4F:EE:77:11:A2:FB:92:68:34:39:7D:50:6C:43:B5:C1:96:0B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1550332d-5bb8-49e9-8b4d-5938de6455c1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f28:8000::/36 Signature Algorithm: sha256WithRSAEncryption 2d:f6:a2:fa:fc:a4:f9:0e:88:36:04:8f:36:19:b2:46:c8:74: 39:72:0f:4f:f2:13:db:43:02:f5:ae:30:62:3a:4a:72:c5:b9: 2d:18:f8:16:09:fb:e1:84:f3:d2:9b:e4:87:35:02:5f:f5:13: c4:ff:1f:50:99:f5:27:69:ca:fb:30:e1:3e:b8:21:e5:bc:a6: 6b:ff:67:69:fb:a8:d6:f5:3a:01:0e:b0:08:86:6c:e0:b8:6a: b9:8c:d9:7c:31:cf:06:38:14:6a:12:44:57:ca:31:fa:28:91: f0:45:39:c8:4a:de:ce:33:9a:f0:0f:5c:a8:d4:9d:24:fd:ef: 60:9a:de:ec:ce:7b:08:7d:85:0f:49:d1:d2:3b:d8:a9:24:f6: 26:11:d8:4d:79:53:44:55:7d:3a:75:ab:d0:b8:92:fa:f9:47: 34:f9:ec:93:5a:86:7f:a1:21:79:8b:91:18:98:ca:1b:65:9a: d9:40:0c:07:15:8b:20:7f:68:85:67:79:21:80:0e:7c:fb:18: a7:65:41:d7:58:36:f3:0d:9c:b1:c2:9d:f7:5a:8c:b4:11:41: ad:4c:2a:91:21:81:d3:c2:b4:ec:6d:34:35:f6:dc:f4:e6:ba: 6f:0e:d4:06:9a:c8:99:37:c7:ee:dc:ef:c6:e7:da:9a:b1:27: 59:ae:ca:68 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIULSAe0n+i8IKaJVo4nsSXyFo1BhIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDAzMDM2WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMWZjY2MwN2E0YTUwYWU2YTBjM2Q4YjQyZTFmNjc1ZDAz MjYyMTU1M2NjNzBkMzdjZjQwODg5NzcyYTEzZmY1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCOJxWZGxI2rwD3Yw2tBeCuj07df5/0HVZezhbYOrCt9BRn 3Zi7mLq3LOc/IBCssBJbygCaZCw8Xvh/wTLnygPQgyf21KEJoWaVYzFsy+RHltf+ DlurAqZesCGfXDtkWdgQ6TOhAWhiWo09FteEL5gOUJSQK8ts5Ap0j5oe3QZuoOfu Fy0sCjfXIlF0fEBgzV09C9b0TOm/j070u+nvIISbVYarCbjteDXhlEpVNAx5nARR nJlA4FTt7tVHUFLrHtYHvbuVTD5C4jdKF0Pwc0BkFoPFB6rbazsMODIMnf2CnkQn 79sfYvErusPdzFCNqppiOYWIps450vlZ9ZtC/8AbAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUGFJP7ncRovuSaDQ5fVBsQ7XBlgswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE1NTAzMzJkLTViYjgtNDllOS04YjRkLTU5MzhkZTY0NTVjMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8ogDANBgkqhkiG9w0BAQsFAAOCAQEALfai+vyk+Q6INgSPNhmyRsh0 OXIPT/IT20MC9a4wYjpKcsW5LRj4Fgn74YTz0pvkhzUCX/UTxP8fUJn1J2nK+zDh Prgh5byma/9nafuo1vU6AQ6wCIZs4LhquYzZfDHPBjgUahJEV8ox+iiR8EU5yEre zjOa8A9cqNSdJP3vYJre7M57CH2FD0nR0jvYqST2JhHYTXlTRFV9OnWr0LiS+vlH NPnsk1qGf6EheYuRGJjKG2Wa2UAMBxWLIH9ohWd5IYAOfPsYp2VB11g28w2cscKd 91qMtBFBrUwqkSGB08K07G00Nfbc9Oa6bw7UBprImTfH7tzvxufamrEnWa7KaA== -----END CERTIFICATE-----Generated at Wed Jun 4 11:17:11 2025 by rpki-client