$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/757648fe-b9ed-4698-b882-bc956e1c2d7a.roa File: 757648fe-b9ed-4698-b882-bc956e1c2d7a.roa (raw, json) Hash identifier: TiO8ODAjfrlhzamPd125Nxa8StbElwkB0Jnagch+E/U= Subject key identifier: 70:4B:2F:FA:B9:A0:3A:3B:00:32:92:DE:9F:FE:54:0C:41:5D:55:91 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5E636BC8772BA18C9845FE05417B87164208E9FF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/757648fe-b9ed-4698-b882-bc956e1c2d7a.roa Signing time: Mon 19 May 2025 17:50:11 +0000 ROA not before: Mon 19 May 2025 17:50:11 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f11:400::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:63:6b:c8:77:2b:a1:8c:98:45:fe:05:41:7b:87:16:42:08:e9:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 17:50:11 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=c5dd8dbd10719ce76f72cb48781fac2281e3a3f88c34752ccfec380e515c58e5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:2a:ac:1c:93:2e:a5:ef:0c:0b:8c:76:1f:13: fe:96:c5:bc:37:2a:d5:e4:f4:08:e9:51:5b:58:07: b2:72:48:f8:67:e5:21:76:a1:7d:ae:f0:80:3b:27: c8:2c:d1:69:a0:00:77:f0:7d:b3:8a:16:5d:7f:08: ad:67:04:99:d6:84:7e:1b:34:70:56:21:9f:12:8a: cf:fd:71:8b:7b:dd:e0:bd:14:51:2e:c3:76:15:0b: dd:3d:6a:26:1d:4c:92:a3:71:40:a8:af:85:48:7d: fc:ed:f3:34:8e:a0:27:f4:0f:89:11:8d:33:47:db: c9:31:38:13:f6:42:e4:17:df:a2:e3:8e:1a:d8:e5: 6e:2b:18:a5:cd:82:1a:fb:a2:fe:b5:2e:7e:d2:2a: ac:ae:b3:ab:15:1c:1f:14:4b:82:f9:f4:40:ba:0e: 80:16:09:85:48:68:a7:76:d5:00:35:24:07:ef:d0: 2f:65:f2:a0:ab:87:b7:46:60:37:ee:27:3c:28:7a: f8:d1:1f:81:16:cc:b8:4c:be:77:b4:7f:d6:d9:2b: 6e:81:89:4f:5d:94:a1:96:9d:f4:2a:65:f9:59:f0: 3a:77:5d:ee:3c:c6:fb:58:b1:22:e2:a8:8c:a9:d3: 65:ce:21:db:58:ce:19:25:04:a6:cb:01:46:c0:c5: 0d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:4B:2F:FA:B9:A0:3A:3B:00:32:92:DE:9F:FE:54:0C:41:5D:55:91 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/757648fe-b9ed-4698-b882-bc956e1c2d7a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f11:400::/38 Signature Algorithm: sha256WithRSAEncryption a3:d0:29:ce:45:e5:f2:48:3f:7d:22:1e:51:ee:7d:ff:c7:1f: d9:ab:55:16:92:e4:da:93:6d:e9:78:d3:ed:bd:ab:36:d8:73: 12:4b:46:c3:6f:43:cd:61:c7:80:25:4a:39:e8:cf:8e:ec:96: e7:da:03:ae:8c:d8:43:d4:f9:dd:80:bd:3b:31:9f:29:c3:7c: 0f:b9:03:d8:7c:bc:91:70:67:d8:46:da:95:5c:2a:77:06:c8: 58:b6:f5:6f:89:9f:c0:5f:30:84:55:c3:23:d0:f4:2a:ab:1e: 4f:0c:25:56:fb:08:81:dd:0b:b9:42:3a:eb:68:1f:3d:d1:a3: a4:65:25:62:3e:bf:58:1d:35:d8:8b:1d:a0:e0:bc:36:0d:68: 24:41:28:5c:05:56:74:f1:19:1b:46:36:a5:47:4d:af:e0:fc: 5b:31:65:78:f7:49:fb:09:d4:59:0f:fd:35:bc:6f:33:8d:30: 8c:4d:a9:ed:2c:bb:77:57:b0:a5:01:aa:d4:9f:c9:9b:e0:5b: 55:e5:86:0b:30:01:5e:fb:63:3d:42:02:d6:8a:26:fd:55:3a: 2e:1e:91:dc:cb:4d:15:8f:2c:07:b1:80:99:16:68:15:41:23: 7f:a8:13:24:f5:ab:6e:0d:15:cd:69:0b:f8:4a:4c:77:c7:77: e9:e1:82:4d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUXmNryHcroYyYRf4FQXuHFkII6f8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTc1MDExWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNWRkOGRiZDEwNzE5Y2U3NmY3MmNiNDg3ODFmYWMyMjgx ZTNhM2Y4OGMzNDc1MmNjZmVjMzgwZTUxNWM1OGU1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxKqwcky6l7wwLjHYfE/6Wxbw3KtXk9AjpUVtYB7JySPhn 5SF2oX2u8IA7J8gs0WmgAHfwfbOKFl1/CK1nBJnWhH4bNHBWIZ8Sis/9cYt73eC9 FFEuw3YVC909aiYdTJKjcUCor4VIffzt8zSOoCf0D4kRjTNH28kxOBP2QuQX36Lj jhrY5W4rGKXNghr7ov61Ln7SKqyus6sVHB8US4L59EC6DoAWCYVIaKd21QA1JAfv 0C9l8qCrh7dGYDfuJzwoevjRH4EWzLhMvne0f9bZK26BiU9dlKGWnfQqZflZ8Dp3 Xe48xvtYsSLiqIyp02XOIdtYzhklBKbLAUbAxQ0nAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUcEsv+rmgOjsAMpLen/5UDEFdVZEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc1NzY0OGZlLWI5ZWQtNDY5OC1iODgyLWJjOTU2ZTFjMmQ3YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgImAB8RBDANBgkqhkiG9w0BAQsFAAOCAQEAo9ApzkXl8kg/fSIeUe59/8cf 2atVFpLk2pNt6XjT7b2rNthzEktGw29DzWHHgCVKOejPjuyW59oDrozYQ9T53YC9 OzGfKcN8D7kD2Hy8kXBn2EbalVwqdwbIWLb1b4mfwF8whFXDI9D0KqseTwwlVvsI gd0LuUI662gfPdGjpGUlYj6/WB012IsdoOC8Ng1oJEEoXAVWdPEZG0Y2pUdNr+D8 WzFlePdJ+wnUWQ/9NbxvM40wjE2p7Sy7d1ewpQGq1J/Jm+BbVeWGCzABXvtjPUIC 1oom/VU6Lh6R3MtNFY8sB7GAmRZoFUEjf6gTJPWrbg0VzWkL+EpMd8d36eGCTQ== -----END CERTIFICATE-----Generated at Sun Jun 1 05:14:53 2025 by rpki-client