$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3158624f-2713-4649-b6a7-25d17c953273.roa File: 3158624f-2713-4649-b6a7-25d17c953273.roa (raw, json) Hash identifier: IRYKbc0/mvJVXkbG61DiztGIqSv6fbCfn3SSw9ckL6g= Subject key identifier: 77:85:96:EC:FD:3E:94:8B:75:92:00:44:7A:E6:59:FF:1F:C0:36:24 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2D1E03EB37123210C4FB09B98921543497ED1CB0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3158624f-2713-4649-b6a7-25d17c953273.roa Signing time: Wed 28 May 2025 00:22:12 +0000 ROA not before: Wed 28 May 2025 00:22:12 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f2b:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:1e:03:eb:37:12:32:10:c4:fb:09:b9:89:21:54:34:97:ed:1c:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:22:12 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=c9daaaa0bbe33485fba53499f9bfa1f8fb8884dbd1abe29439cf7e91cc11e204, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0e:bb:07:c9:5d:7e:02:20:25:56:bc:6b:b5: 75:4d:5b:60:81:22:68:cf:ae:66:51:fa:3b:54:07: 1a:0f:42:a4:e0:6f:fd:1e:47:90:cf:ef:8d:cb:34: 8d:07:67:f9:95:bd:14:ff:f0:e9:37:29:db:60:6d: 9e:be:db:ac:25:34:f6:f3:d7:4a:d0:fc:e4:ca:58: ea:bd:83:73:40:a4:c8:0b:b5:b8:09:da:03:f8:c1: 97:71:75:5e:3e:55:f6:2a:25:15:38:c0:9a:64:84: 4b:43:62:f7:0b:3f:d8:80:6e:ee:8b:cb:3a:40:df: e5:2f:78:db:a8:6c:ff:69:28:3a:9f:f1:7c:38:aa: ba:c2:db:98:02:a9:51:73:0b:aa:52:d5:7f:42:c3: 6f:d8:24:ad:39:91:fb:8b:a4:f1:46:ca:ca:8b:a6: 5b:88:03:de:c9:7b:65:55:67:d5:f5:c1:7e:1f:83: e5:5a:09:50:69:3d:d4:59:3f:ae:43:bf:26:8d:3e: a5:31:12:f3:56:1d:14:3e:1c:36:64:48:54:38:0c: 92:4d:cd:d5:b6:55:9c:25:23:b6:63:52:e8:06:be: ca:1d:0c:77:01:0c:93:31:63:cb:9a:87:d1:77:44: cb:69:85:d7:9e:42:30:cb:e4:40:64:be:34:0e:59: c1:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:85:96:EC:FD:3E:94:8B:75:92:00:44:7A:E6:59:FF:1F:C0:36:24 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3158624f-2713-4649-b6a7-25d17c953273.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f2b:8000::/36 Signature Algorithm: sha256WithRSAEncryption cf:d0:08:7b:1f:8e:ac:57:16:1e:5c:d0:49:53:6a:8a:cb:8a: 9c:d4:52:43:1b:73:44:b6:e1:e5:5d:a1:5a:56:7a:8d:37:e8: 9c:bc:50:72:ca:fe:4d:39:be:15:47:2f:76:1a:7f:2c:5e:d8: 5d:1b:a1:61:9f:ab:5e:7e:fe:21:78:28:29:09:a4:88:3c:83: 45:db:00:55:66:33:aa:71:7c:bc:82:25:98:38:78:04:32:bf: fa:96:9a:e2:44:be:4c:03:17:2f:3e:4a:e1:63:a1:7f:2f:aa: 8c:01:dd:68:a9:fd:34:30:4b:b8:cd:ac:e0:c7:e9:c4:2c:7c: d6:f8:5a:fc:17:f6:c3:34:25:ba:52:2c:c3:26:dd:ed:4a:ca: ee:fa:48:0d:42:7b:2c:03:54:ec:56:d0:4e:02:ff:98:49:b4: 9c:c5:a5:3c:37:86:b8:40:aa:58:a6:90:b2:e4:5b:4e:2c:3b: 2e:34:12:d7:d1:d3:86:31:de:bc:ae:60:f3:3b:ce:45:21:ee: 96:87:d3:19:55:2f:7f:91:d2:a9:f4:76:b0:67:ce:ba:1b:f8: 20:c2:77:e9:ad:15:a8:0c:b4:ca:6a:60:90:85:69:88:ba:08: 8c:dc:00:8e:d8:c1:c0:23:63:a3:35:be:12:8a:ea:f9:5a:6b: 95:e4:5a:6c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIULR4D6zcSMhDE+wm5iSFUNJftHLAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAyMjEyWhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjOWRhYWFhMGJiZTMzNDg1ZmJhNTM0OTlmOWJmYTFmOGZi ODg4NGRiZDFhYmUyOTQzOWNmN2U5MWNjMTFlMjA0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEDrsHyV1+AiAlVrxrtXVNW2CBImjPrmZR+jtUBxoPQqTg b/0eR5DP743LNI0HZ/mVvRT/8Ok3KdtgbZ6+26wlNPbz10rQ/OTKWOq9g3NApMgL tbgJ2gP4wZdxdV4+VfYqJRU4wJpkhEtDYvcLP9iAbu6LyzpA3+UveNuobP9pKDqf 8Xw4qrrC25gCqVFzC6pS1X9Cw2/YJK05kfuLpPFGysqLpluIA97Je2VVZ9X1wX4f g+VaCVBpPdRZP65DvyaNPqUxEvNWHRQ+HDZkSFQ4DJJNzdW2VZwlI7ZjUugGvsod DHcBDJMxY8uah9F3RMtphdeeQjDL5EBkvjQOWcFdAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUd4WW7P0+lIt1kgBEeuZZ/x/ANiQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMxNTg2MjRmLTI3MTMtNDY0OS1iNmE3LTI1ZDE3Yzk1MzI3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8rgDANBgkqhkiG9w0BAQsFAAOCAQEAz9AIex+OrFcWHlzQSVNqisuK nNRSQxtzRLbh5V2hWlZ6jTfonLxQcsr+TTm+FUcvdhp/LF7YXRuhYZ+rXn7+IXgo KQmkiDyDRdsAVWYzqnF8vIIlmDh4BDK/+paa4kS+TAMXLz5K4WOhfy+qjAHdaKn9 NDBLuM2s4MfpxCx81vha/Bf2wzQlulIswybd7UrK7vpIDUJ7LANU7FbQTgL/mEm0 nMWlPDeGuECqWKaQsuRbTiw7LjQS19HThjHevK5g8zvORSHulofTGVUvf5HSqfR2 sGfOuhv4IMJ36a0VqAy0ympgkIVpiLoIjNwAjtjBwCNjozW+Eorq+VprleRabA== -----END CERTIFICATE-----Generated at Sun Jun 1 05:10:18 2025 by rpki-client