$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/984313af-1a59-4f57-8dec-958207f6c75c.roa File: 984313af-1a59-4f57-8dec-958207f6c75c.roa (raw, json) Hash identifier: 3w5P8vAqTrtmmQl96MRel34Ega/dU9iCA9q9oi7Y8vw= Subject key identifier: AC:12:C3:8F:30:20:90:EC:3C:5B:43:91:44:5D:02:3E:EA:F6:47:64 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7F6E31D2392208BF60D737226EA17A3B264104B8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/984313af-1a59-4f57-8dec-958207f6c75c.roa Signing time: Sat 17 May 2025 00:21:22 +0000 ROA not before: Sat 17 May 2025 00:21:22 +0000 ROA not after: Sat 21 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f38:6000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:6e:31:d2:39:22:08:bf:60:d7:37:22:6e:a1:7a:3b:26:41:04:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 00:21:22 2025 GMT Not After : Jun 21 23:59:59 2025 GMT Subject: serialNumber=b438802b34faa5bf3d6cc6fe16647f70fa57e5f32e5b9d0365cbf3bf2863915a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:71:c2:e9:56:7b:3a:3e:47:2b:64:97:bf:6f: 81:bd:5f:14:05:98:f4:24:f6:ae:2e:1b:31:2f:40: ff:cd:c0:3d:63:03:2d:1c:52:8b:e9:18:7a:f8:29: cc:7d:11:09:92:0b:a7:c4:f3:ef:66:16:18:f7:a3: ad:47:9b:2a:6f:d1:55:ae:0b:54:3d:7d:ce:44:8f: 9f:a5:79:9b:25:d1:ae:9a:10:cd:9b:0a:69:28:c0: d7:26:58:c4:29:7e:d3:d4:eb:75:5d:4b:c4:2c:78: 8b:96:b4:7e:d3:c7:8b:b3:b8:41:82:12:d6:9c:03: ec:d4:43:0a:4e:af:5b:d0:cb:45:12:81:3a:67:58: 1f:d7:73:dc:52:64:3f:97:0e:70:2b:1a:f2:fa:75: 91:d3:12:a8:0b:33:f2:4a:d3:2a:0f:40:af:14:b6: c6:83:5a:9a:cf:6e:d9:b5:0e:5c:11:32:e3:8f:f3: 99:e5:f0:7a:fa:9c:2e:02:f5:aa:bd:c9:ef:3a:37: 73:0f:ab:de:17:08:9d:cc:9c:a5:92:a1:c9:eb:1a: c5:c2:6d:3e:8d:1b:80:09:c8:19:be:39:63:c3:de: f7:1b:ef:52:3c:1a:7f:92:11:ff:9a:a7:ad:ea:9a: 71:e8:bf:e0:4a:9b:fe:29:bc:1b:fb:46:a5:17:3e: 3e:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:12:C3:8F:30:20:90:EC:3C:5B:43:91:44:5D:02:3E:EA:F6:47:64 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/984313af-1a59-4f57-8dec-958207f6c75c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f38:6000::/40 Signature Algorithm: sha256WithRSAEncryption 08:bf:91:29:b4:55:74:41:4e:88:01:7c:1e:f3:27:47:ac:43: 09:75:13:26:73:a1:d5:8d:0c:b1:4a:a2:e1:0c:d7:91:6a:7a: c0:3b:19:78:3d:4c:12:6b:94:60:33:bf:7d:e1:0b:f1:43:df: fd:f2:ac:eb:84:1a:61:92:86:0d:f7:30:7c:12:d7:1b:5f:43: 26:66:d3:22:9c:fc:6b:8e:47:89:eb:58:eb:1d:00:98:eb:dd: 68:39:7d:32:1b:52:43:7c:1d:1a:b4:ac:d1:59:e4:8b:93:12: 5e:af:58:2a:4e:39:d2:e1:51:5e:6f:b0:2a:8d:9f:2d:86:0d: 3d:ce:20:28:12:d4:da:fd:2a:c7:d2:81:40:05:3f:89:aa:ed: 6b:e5:ef:f4:37:54:18:d2:52:0e:f5:d0:8a:95:4d:d5:f4:43: aa:45:e7:3a:a5:e3:bc:c0:5d:af:02:c5:06:88:eb:88:bf:44: 86:f4:22:7b:cf:f7:cb:96:03:d7:9a:78:96:7e:11:04:94:6e: d7:1f:3d:71:fb:3f:54:a9:b2:f1:0f:38:ee:cf:f7:cc:fa:dc: dd:72:c5:80:e3:85:71:e6:bc:83:9a:1c:9e:ec:c1:e2:59:81: 81:4c:21:21:08:98:ce:8b:3f:94:65:d8:89:ad:f6:c4:3a:ef: dd:93:2f:c2 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUf24x0jkiCL9g1zcibqF6OyZBBLgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE3MDAyMTIyWhcNMjUwNjIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNDM4ODAyYjM0ZmFhNWJmM2Q2Y2M2ZmUxNjY0N2Y3MGZh NTdlNWYzMmU1YjlkMDM2NWNiZjNiZjI4NjM5MTVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcccLpVns6PkcrZJe/b4G9XxQFmPQk9q4uGzEvQP/NwD1j Ay0cUovpGHr4Kcx9EQmSC6fE8+9mFhj3o61Hmypv0VWuC1Q9fc5Ej5+leZsl0a6a EM2bCmkowNcmWMQpftPU63VdS8QseIuWtH7Tx4uzuEGCEtacA+zUQwpOr1vQy0US gTpnWB/Xc9xSZD+XDnArGvL6dZHTEqgLM/JK0yoPQK8UtsaDWprPbtm1DlwRMuOP 85nl8Hr6nC4C9aq9ye86N3MPq94XCJ3MnKWSocnrGsXCbT6NG4AJyBm+OWPD3vcb 71I8Gn+SEf+ap63qmnHov+BKm/4pvBv7RqUXPj71AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUrBLDjzAgkOw8W0ORRF0CPur2R2QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk4NDMxM2FmLTFhNTktNGY1Ny04ZGVjLTk1ODIwN2Y2Yzc1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB84YDANBgkqhkiG9w0BAQsFAAOCAQEACL+RKbRVdEFOiAF8HvMnR6xD CXUTJnOh1Y0MsUqi4QzXkWp6wDsZeD1MEmuUYDO/feEL8UPf/fKs64QaYZKGDfcw fBLXG19DJmbTIpz8a45HietY6x0AmOvdaDl9MhtSQ3wdGrSs0Vnki5MSXq9YKk45 0uFRXm+wKo2fLYYNPc4gKBLU2v0qx9KBQAU/iarta+Xv9DdUGNJSDvXQipVN1fRD qkXnOqXjvMBdrwLFBojriL9EhvQie8/3y5YD15p4ln4RBJRu1x89cfs/VKmy8Q84 7s/3zPrc3XLFgOOFcea8g5ocnuzB4lmBgUwhIQiYzos/lGXYia32xDrv3ZMvwg== -----END CERTIFICATE-----Generated at Sun Jun 1 04:41:46 2025 by rpki-client