$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b64a54c-d6fb-4229-9471-bd2ea024187f.roa File: 6b64a54c-d6fb-4229-9471-bd2ea024187f.roa (raw, json) Hash identifier: lkia/A8ND/pN2K4rkGoZf5x/Jr4T1y7YA5ZEk4TDgRk= Subject key identifier: F6:16:63:3B:6D:E5:11:B0:D8:BD:C0:BE:09:22:79:B8:F4:22:FD:EC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 69932F2F283347419A96583D93B06CD641A87882 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b64a54c-d6fb-4229-9471-bd2ea024187f.roa Signing time: Mon 19 May 2025 15:50:21 +0000 ROA not before: Mon 19 May 2025 15:50:21 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ffb:80a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:93:2f:2f:28:33:47:41:9a:96:58:3d:93:b0:6c:d6:41:a8:78:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 15:50:21 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=dbd3cd5dfc03f65fc6196fad88a66f2f9f1978254e5b32d4b450b2556134b418, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:92:79:8b:3b:cb:48:a2:3f:60:c0:42:fe:aa: 90:b6:a4:45:65:db:18:bd:69:dc:6b:8d:bc:e2:e9: f9:24:c1:db:5b:97:56:0f:c5:71:3d:c6:88:fb:06: d4:b3:7e:52:8f:bf:d9:fd:eb:89:61:8a:e6:61:37: d0:1e:9c:4d:2b:c1:bd:29:54:61:ee:1e:c7:41:66: 17:a1:c4:ac:81:76:05:1b:86:76:1b:37:91:fc:87: 9f:65:76:1b:c3:c6:fc:2d:82:20:cb:f4:1c:3a:2c: fd:c8:b1:fd:6a:08:bb:15:cf:25:15:62:04:49:c4: c3:06:50:2b:27:73:26:7a:56:ab:66:e1:bf:88:d5: 40:fd:17:6b:73:77:9f:34:da:67:91:c1:35:c1:ba: c7:b9:20:61:57:4c:ec:3a:d5:5b:4e:7d:67:ce:c9: e1:ff:df:01:4c:30:5f:f0:3a:6d:d6:73:4c:63:01: cd:98:38:20:ab:d7:37:53:f2:20:e1:4c:5c:ff:4a: f8:88:d0:68:c3:9f:66:b6:17:00:48:81:dc:13:5b: 91:5e:a4:ea:66:e8:cf:cf:5a:e8:f8:d7:e5:c2:5c: c7:01:e7:e7:7c:07:87:33:fb:a0:b9:56:fb:bd:58: 99:92:5b:20:54:f9:13:3c:5f:f5:fb:75:39:f8:26: 27:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:16:63:3B:6D:E5:11:B0:D8:BD:C0:BE:09:22:79:B8:F4:22:FD:EC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b64a54c-d6fb-4229-9471-bd2ea024187f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffb:80a0::/48 Signature Algorithm: sha256WithRSAEncryption 67:36:d4:6a:1f:98:26:d7:1e:7c:4e:f5:31:03:84:03:ce:d2: 6e:9e:43:f3:1b:08:ab:b0:1a:2a:ac:9e:e1:a9:55:d1:e4:dc: 20:e3:0e:88:5e:d8:cd:9a:0f:a9:ab:47:42:11:2d:3d:89:30: e2:d0:27:4c:94:fc:ac:2f:af:2a:b7:ee:a6:2d:2d:da:48:d4: bc:5a:14:55:21:81:59:36:1a:92:f5:d0:ef:95:9e:15:fd:b7: 0b:7c:47:38:0f:61:54:f2:2a:ee:74:30:ee:bc:e3:cd:0c:f5: e9:bc:29:ea:78:fd:11:7a:b4:a7:e5:4f:64:17:2b:8b:67:04: 56:41:a5:3d:79:f6:d4:a3:9e:97:35:37:58:1a:b1:4b:60:99: ff:0c:5b:10:b9:e1:68:06:c1:9b:cd:ee:de:a6:20:6c:83:13: 33:1c:bb:22:e1:93:a9:e2:db:e6:33:c9:98:e7:55:7c:81:aa: dd:60:5a:db:6a:f7:3c:6c:40:c9:29:7c:5c:85:ac:e9:9a:5a: 56:f4:2f:9c:60:b8:d1:9e:7f:6d:60:b9:2c:9e:86:c7:1b:f8: f1:6e:3c:2d:b4:dc:4f:d9:fa:7f:e3:22:b0:f6:c0:c9:f7:3d: f8:c0:21:62:be:38:e7:95:31:61:bd:c7:95:27:63:24:8b:31: 92:44:4f:93 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUaZMvLygzR0Gallg9k7Bs1kGoeIIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTU1MDIxWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYmQzY2Q1ZGZjMDNmNjVmYzYxOTZmYWQ4OGE2NmYyZjlm MTk3ODI1NGU1YjMyZDRiNDUwYjI1NTYxMzRiNDE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSknmLO8tIoj9gwEL+qpC2pEVl2xi9adxrjbzi6fkkwdtb l1YPxXE9xoj7BtSzflKPv9n964lhiuZhN9AenE0rwb0pVGHuHsdBZhehxKyBdgUb hnYbN5H8h59ldhvDxvwtgiDL9Bw6LP3Isf1qCLsVzyUVYgRJxMMGUCsncyZ6Vqtm 4b+I1UD9F2tzd5802meRwTXBuse5IGFXTOw61VtOfWfOyeH/3wFMMF/wOm3Wc0xj Ac2YOCCr1zdT8iDhTFz/SviI0GjDn2a2FwBIgdwTW5FepOpm6M/PWuj41+XCXMcB 5+d8B4cz+6C5Vvu9WJmSWyBU+RM8X/X7dTn4JidjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU9hZjO23lEbDYvcC+CSJ5uPQi/ewwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZiNjRhNTRjLWQ2ZmItNDIyOS05NDcxLWJkMmVhMDI0MTg3Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/7gKAwDQYJKoZIhvcNAQELBQADggEBAGc21GofmCbXHnxO9TEDhAPO 0m6eQ/MbCKuwGiqsnuGpVdHk3CDjDohe2M2aD6mrR0IRLT2JMOLQJ0yU/Kwvryq3 7qYtLdpI1LxaFFUhgVk2GpL10O+VnhX9twt8RzgPYVTyKu50MO68480M9em8Kep4 /RF6tKflT2QXK4tnBFZBpT159tSjnpc1N1gasUtgmf8MWxC54WgGwZvN7t6mIGyD EzMcuyLhk6ni2+YzyZjnVXyBqt1gWttq9zxsQMkpfFyFrOmaWlb0L5xguNGef21g uSyehscb+PFuPC203E/Z+n/jIrD2wMn3PfjAIWK+OOeVMWG9x5UnYySLMZJET5M= -----END CERTIFICATE-----Generated at Sun Jun 1 04:21:43 2025 by rpki-client