$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34596f5f-17dd-4745-b0d3-0cdec552b218.roa File: 34596f5f-17dd-4745-b0d3-0cdec552b218.roa (raw, json) Hash identifier: F8Vqib01fSWPPm6n5luDWcq6OMwarvv51HbbnmdFGTM= Subject key identifier: 84:ED:AF:33:BF:77:81:FA:52:AB:C0:FA:69:10:52:2B:47:D1:94:5E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 643EE9EA1275CEC87D4CB170E2F8C152C946F895 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34596f5f-17dd-4745-b0d3-0cdec552b218.roa Signing time: Mon 19 May 2025 18:31:29 +0000 ROA not before: Mon 19 May 2025 18:31:29 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f14:c000::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:3e:e9:ea:12:75:ce:c8:7d:4c:b1:70:e2:f8:c1:52:c9:46:f8:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 18:31:29 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=030073e7d6d71cdeb10d92a59b8d0948c5e4e3e332cc53591f28108258988e10, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c4:15:0f:c1:04:36:cc:a2:90:73:d8:90:7a: f6:ee:cc:69:7a:3a:86:eb:f6:81:a0:4f:fe:d1:14: 91:39:f6:4f:71:f9:15:11:9c:a2:dc:1e:f3:2b:29: 13:61:de:e7:43:13:73:68:bb:58:46:6f:75:33:c6: 46:2d:7f:4d:96:18:d6:ee:73:6e:cd:e0:33:ed:01: a3:5d:28:f8:63:e2:40:6a:be:d2:9f:20:6d:eb:76: a2:c8:10:73:f6:95:7d:e0:e7:85:12:ab:f7:e9:f1: d0:3e:fc:85:9f:f8:40:90:19:6c:6a:ae:64:73:50: 8c:92:6d:27:a6:b3:0d:6f:7c:90:9e:fc:95:8d:6c: 92:54:8e:21:07:db:66:17:b0:2c:fd:d6:a3:29:2e: ed:07:1d:94:17:61:ca:4a:13:94:33:03:fb:85:26: 20:cf:89:d0:34:f0:80:b3:db:a3:25:a0:ec:64:7c: 08:2a:b3:27:3a:1c:c6:7c:ca:21:78:c8:7e:82:6d: 89:4c:99:2e:02:0e:58:d6:8e:48:b3:48:0a:d4:b7: a5:9e:8f:9d:ab:b3:db:01:81:98:e3:01:48:69:12: 47:94:cf:51:22:98:6d:f3:c3:51:89:9f:af:4d:0a: 0a:79:3b:cc:5d:8f:66:2e:37:b1:ab:e1:6d:89:39: 44:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:ED:AF:33:BF:77:81:FA:52:AB:C0:FA:69:10:52:2B:47:D1:94:5E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34596f5f-17dd-4745-b0d3-0cdec552b218.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f14:c000::/37 Signature Algorithm: sha256WithRSAEncryption 50:58:b9:c4:10:1f:e1:6a:be:04:6d:83:63:d5:46:25:7c:7f: 63:c5:6e:29:21:b1:07:d3:7d:ae:24:a4:3f:a4:b5:2f:1d:bc: cb:3b:09:70:6b:34:67:6a:21:b6:af:1e:0a:8c:0c:fb:98:aa: e2:3a:e4:c4:18:8d:22:6e:8e:91:03:d1:0a:74:83:36:fc:be: e9:d6:d1:06:06:58:14:04:53:3a:95:89:7a:80:02:e7:79:53: 76:55:64:ed:4b:b4:1d:7a:52:6c:7b:a5:1b:fc:26:19:ef:51: ed:4a:98:04:68:7b:8e:85:5c:cb:a6:6c:e8:53:ad:6d:8a:3c: f2:0d:fa:08:6c:5a:27:c5:2d:72:c6:2d:95:fd:f9:06:f9:18: 91:79:e5:1a:39:73:ed:bc:f1:f7:a3:d4:e3:4c:42:88:33:d1: b4:01:45:1f:4c:1f:ff:b5:4d:a3:36:39:7a:db:f3:25:f8:e6: 2c:02:f6:09:3d:df:73:da:bf:37:37:7a:5d:49:8d:4f:47:56: 97:2a:69:a0:ce:ce:a7:7b:46:7d:57:8a:37:32:dd:98:cb:43: eb:87:66:01:0e:d9:24:ea:c0:85:0d:cd:8d:a6:ba:b4:42:7b: 94:8c:71:5d:14:ce:33:05:fd:95:06:8a:f9:3d:a8:03:cb:6b: 23:59:48:5a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUZD7p6hJ1zsh9TLFw4vjBUslG+JUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTgzMTI5WhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMzAwNzNlN2Q2ZDcxY2RlYjEwZDkyYTU5YjhkMDk0OGM1 ZTRlM2UzMzJjYzUzNTkxZjI4MTA4MjU4OTg4ZTEwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmxBUPwQQ2zKKQc9iQevbuzGl6Oobr9oGgT/7RFJE59k9x +RURnKLcHvMrKRNh3udDE3Nou1hGb3UzxkYtf02WGNbuc27N4DPtAaNdKPhj4kBq vtKfIG3rdqLIEHP2lX3g54USq/fp8dA+/IWf+ECQGWxqrmRzUIySbSemsw1vfJCe /JWNbJJUjiEH22YXsCz91qMpLu0HHZQXYcpKE5QzA/uFJiDPidA08ICz26MloOxk fAgqsyc6HMZ8yiF4yH6CbYlMmS4CDljWjkizSArUt6Wej52rs9sBgZjjAUhpEkeU z1EimG3zw1GJn69NCgp5O8xdj2YuN7Gr4W2JOUQhAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUhO2vM793gfpSq8D6aRBSK0fRlF4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM0NTk2ZjVmLTE3ZGQtNDc0NS1iMGQzLTBjZGVjNTUyYjIxOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8UwDANBgkqhkiG9w0BAQsFAAOCAQEAUFi5xBAf4Wq+BG2DY9VGJXx/ Y8VuKSGxB9N9riSkP6S1Lx28yzsJcGs0Z2ohtq8eCowM+5iq4jrkxBiNIm6OkQPR CnSDNvy+6dbRBgZYFARTOpWJeoAC53lTdlVk7Uu0HXpSbHulG/wmGe9R7UqYBGh7 joVcy6Zs6FOtbYo88g36CGxaJ8UtcsYtlf35BvkYkXnlGjlz7bzx96PU40xCiDPR tAFFH0wf/7VNozY5etvzJfjmLAL2CT3fc9q/Nzd6XUmNT0dWlyppoM7Op3tGfVeK NzLdmMtD64dmAQ7ZJOrAhQ3Njaa6tEJ7lIxxXRTOMwX9lQaK+T2oA8trI1lIWg== -----END CERTIFICATE-----Generated at Sun Jun 1 04:58:40 2025 by rpki-client