$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/218a520a-eb5d-45cb-ac7b-133e83914c16.roa File: 218a520a-eb5d-45cb-ac7b-133e83914c16.roa (raw, json) Hash identifier: MPQl9H2vh/9xKsJ7tDtxLUAs/df6fofQ/e387UrUQfo= Subject key identifier: 8B:7D:26:EE:BD:F9:19:7D:48:CC:DC:D6:29:74:EE:23:E7:9F:B3:BF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 78E339DB46EEC182607956C4F1AEEF942A9BBC95 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/218a520a-eb5d-45cb-ac7b-133e83914c16.roa Signing time: Mon 19 May 2025 16:21:19 +0000 ROA not before: Mon 19 May 2025 16:21:19 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f69:c080::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:e3:39:db:46:ee:c1:82:60:79:56:c4:f1:ae:ef:94:2a:9b:bc:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 16:21:19 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=bca03354c894edbf4a69f40469f6cd021143fa1015a839c4a50b5b8943ddf0c3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5a:cf:dc:71:b6:ae:a7:bd:e8:b6:49:25:19: 09:e3:42:c4:f0:6c:15:a3:4c:d5:35:e5:08:22:5c: e0:cd:ca:03:cf:e3:69:b6:5f:17:8a:7b:4f:fb:cb: 63:79:a8:45:dd:69:72:de:4a:17:bd:95:67:64:ea: 8c:f2:3a:f8:c4:24:f3:57:5f:ad:ec:41:69:78:72: 39:67:b6:31:67:ac:6f:86:09:cc:e6:70:3c:bf:98: bf:d5:0d:19:bb:fe:71:99:a8:73:8e:25:aa:9d:89: be:f8:fd:e3:b9:ed:bb:7b:a8:15:20:76:14:47:c2: e7:d1:e8:72:6f:b3:6b:52:bf:54:4d:07:a7:c5:d4: be:75:91:f4:e6:7c:2d:61:19:bc:8d:9f:ff:b4:01: 03:f9:03:47:28:ee:17:0e:73:76:4a:54:a6:77:7d: 68:34:f3:e6:71:1b:fb:5a:12:47:21:b5:ad:19:58: de:5f:65:e8:f5:ee:7c:21:2e:af:59:84:78:53:66: b8:db:5f:f9:f9:1a:ec:c0:3a:ff:bf:cc:37:fe:3a: eb:da:25:07:ba:37:ec:35:1a:ee:22:2f:33:f2:ff: d5:4e:cb:56:6a:e4:22:cc:df:60:9c:bb:54:62:37: fb:98:ce:07:c1:3f:7d:b2:da:48:fb:4d:61:7c:e4: a8:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:7D:26:EE:BD:F9:19:7D:48:CC:DC:D6:29:74:EE:23:E7:9F:B3:BF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/218a520a-eb5d-45cb-ac7b-133e83914c16.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f69:c080::/46 Signature Algorithm: sha256WithRSAEncryption 96:0b:c5:97:5d:42:5c:1a:0e:b6:82:2e:39:76:99:8a:1b:91: c3:5e:75:29:74:85:d9:17:28:b2:79:94:1a:fb:7c:58:09:f2: 54:ef:ab:2e:fe:25:f2:3e:b8:fd:1c:39:81:26:1a:c5:a7:f6: 66:7d:ae:90:03:20:f0:09:3b:2f:f2:c9:fb:66:87:3d:fb:80: e3:1d:7e:49:5e:f5:0a:49:8d:d6:d4:59:28:44:da:1a:7b:87: d7:be:45:c1:1f:23:f3:af:38:92:a2:a3:25:24:41:3c:6f:76: de:66:ef:46:9f:3c:aa:74:2d:af:3a:a4:4d:48:3b:53:5b:6c: a5:3e:d3:99:e9:02:05:ab:8e:49:13:1e:dc:41:b4:da:9f:f0: 3f:ca:a6:8e:ea:77:3b:1a:16:1a:c6:11:3c:77:73:d1:14:ec: c3:89:65:f0:80:f7:3c:16:78:f0:61:45:25:e2:7d:b6:2b:a8: 5f:b2:c5:fc:d8:58:96:8a:da:5c:bd:a4:bb:65:69:aa:55:e6: 5b:b8:fe:1c:c9:dc:b2:2d:ac:ae:52:22:e1:75:86:92:07:8e: 7f:96:3a:62:26:2a:45:96:af:53:a8:c7:e2:79:51:01:ab:80: 7e:21:58:78:f8:cf:73:3d:31:fa:de:f0:9b:c5:94:63:5d:9b: 66:f8:8f:42 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUeOM520buwYJgeVbE8a7vlCqbvJUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTYyMTE5WhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiY2EwMzM1NGM4OTRlZGJmNGE2OWY0MDQ2OWY2Y2QwMjEx NDNmYTEwMTVhODM5YzRhNTBiNWI4OTQzZGRmMGMzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCWs/ccbaup73otkklGQnjQsTwbBWjTNU15QgiXODNygPP 42m2XxeKe0/7y2N5qEXdaXLeShe9lWdk6ozyOvjEJPNXX63sQWl4cjlntjFnrG+G CczmcDy/mL/VDRm7/nGZqHOOJaqdib74/eO57bt7qBUgdhRHwufR6HJvs2tSv1RN B6fF1L51kfTmfC1hGbyNn/+0AQP5A0co7hcOc3ZKVKZ3fWg08+ZxG/taEkchta0Z WN5fZej17nwhLq9ZhHhTZrjbX/n5GuzAOv+/zDf+OuvaJQe6N+w1Gu4iLzPy/9VO y1Zq5CLM32Ccu1RiN/uYzgfBP32y2kj7TWF85KifAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUi30m7r35GX1IzNzWKXTuI+efs78wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIxOGE1MjBhLWViNWQtNDVjYi1hYzdiLTEzM2U4MzkxNGMxNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB9pwIAwDQYJKoZIhvcNAQELBQADggEBAJYLxZddQlwaDraCLjl2mYob kcNedSl0hdkXKLJ5lBr7fFgJ8lTvqy7+JfI+uP0cOYEmGsWn9mZ9rpADIPAJOy/y yftmhz37gOMdfkle9QpJjdbUWShE2hp7h9e+RcEfI/OvOJKioyUkQTxvdt5m70af PKp0La86pE1IO1NbbKU+05npAgWrjkkTHtxBtNqf8D/Kpo7qdzsaFhrGETx3c9EU 7MOJZfCA9zwWePBhRSXifbYrqF+yxfzYWJaK2ly9pLtlaapV5lu4/hzJ3LItrK5S IuF1hpIHjn+WOmImKkWWr1Oox+J5UQGrgH4hWHj4z3M9Mfre8JvFlGNdm2b4j0I= -----END CERTIFICATE-----Generated at Sun Jun 1 05:17:54 2025 by rpki-client