$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7ffda98-bd67-4a18-9797-35aa2e04a2b3.roa File: a7ffda98-bd67-4a18-9797-35aa2e04a2b3.roa (raw, json) Hash identifier: 10BDASbe66+48bTeXaTfbvYMVpOWcr7epewtIgF4YC4= Subject key identifier: 78:83:D0:FA:F8:68:CC:11:82:F2:AA:C2:6F:80:DA:D7:0D:0D:6F:4B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 423F7BDC5C9F9E575152F771D881FF681AD11ABF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7ffda98-bd67-4a18-9797-35aa2e04a2b3.roa Signing time: Fri 21 Mar 2025 00:11:12 +0000 ROA not before: Fri 21 Mar 2025 00:11:12 +0000 ROA not after: Fri 25 Apr 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f60:3400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:3f:7b:dc:5c:9f:9e:57:51:52:f7:71:d8:81:ff:68:1a:d1:1a:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 21 00:11:12 2025 GMT Not After : Apr 25 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:76:e0:5b:30:8e:b6:ba:8c:28:53:83:07:d8: 32:ce:f9:39:af:3a:37:b7:5a:05:1b:b6:e2:ba:41: 60:72:6d:af:28:34:12:55:2e:af:14:77:83:91:80: 59:6d:34:82:eb:cd:f3:52:32:8a:13:63:86:d4:91: 99:a9:f2:57:2b:af:e1:02:84:32:c2:47:57:20:e3: 89:b3:15:03:05:8a:d5:9a:58:25:23:15:0d:90:2c: 60:71:dd:c8:de:de:af:40:6f:27:d6:5d:17:d6:ef: 8a:28:f2:ed:4a:75:e7:ef:ac:dd:1d:4d:3d:d4:ef: ee:3b:9d:bf:f9:40:ac:db:50:47:9b:08:08:d4:8b: 17:23:03:a6:ef:b6:7d:07:da:f5:cd:be:11:ea:2b: d3:e4:67:a9:94:99:33:0c:65:45:7a:a7:77:2c:18: 57:12:4f:03:b5:8f:cc:6d:37:35:4a:b7:28:7e:6d: 5d:97:73:89:fd:32:eb:be:1f:d2:7d:fd:8d:81:df: bd:3e:d7:04:ae:15:7f:bb:8a:bc:f0:d1:4d:a2:a7: 42:55:18:51:8e:39:fe:75:1a:f8:18:5a:9c:8e:3b: 2d:48:81:e4:db:56:13:f1:1d:76:23:1c:74:6d:3a: 58:3a:4c:fa:bb:a8:cf:13:63:46:70:61:06:8c:26: 1d:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:83:D0:FA:F8:68:CC:11:82:F2:AA:C2:6F:80:DA:D7:0D:0D:6F:4B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7ffda98-bd67-4a18-9797-35aa2e04a2b3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f60:3400::/40 Signature Algorithm: sha256WithRSAEncryption 79:44:ca:38:bf:5b:47:68:a4:de:25:75:07:77:29:61:07:8d: 4d:e1:90:1f:70:c3:c7:62:eb:68:25:fe:2d:6f:22:5b:f5:f6: 31:e6:e4:bd:d7:83:62:28:20:3b:74:16:03:8c:01:b1:dd:20: 38:61:97:7e:4f:00:c0:95:59:7c:de:66:21:57:95:7b:7e:b8: 1b:e7:62:e8:05:41:26:af:97:1d:63:9b:e2:63:74:11:a4:f7: 70:a1:4e:41:94:d4:da:d8:f9:40:d7:40:2c:02:e2:12:ce:bd: 6f:b7:aa:d4:94:aa:3d:ef:3e:81:d1:3d:b3:39:a8:a5:d4:c7: f7:78:96:67:68:63:56:66:5b:d6:4f:58:89:97:54:fd:c0:db: c4:eb:67:fa:6a:6b:b5:67:ea:c7:57:a8:be:66:21:3b:eb:e6: b9:56:88:49:b9:ce:a6:f7:aa:e5:b6:0e:ed:91:ff:09:05:5f: b7:75:0a:da:36:58:86:f6:03:f1:87:28:6a:1c:27:21:ef:e1: d0:46:19:80:97:23:62:7a:a7:c9:a8:72:9a:36:40:5a:d3:07: ee:4e:5d:39:68:8d:8f:93:95:12:69:f5:c9:a4:29:a3:ce:17: 6c:d0:9f:95:ec:96:fb:2d:f7:7a:6b:05:02:3e:75:1f:07:ca: ba:09:1d:cc -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUQj973FyfnldRUvdx2IH/aBrRGr8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzIxMDAxMTEyWhcNMjUwNDI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYWFhNjE3YmYxOWY5MWM3NTBlODIwZmRjODVjMDgwMmFh YTQyMDAwODFiMjhmZTFlMDlkMmM3NDM2YTE5MTU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDduBbMI62uowoU4MH2DLO+TmvOje3WgUbtuK6QWByba8o NBJVLq8Ud4ORgFltNILrzfNSMooTY4bUkZmp8lcrr+EChDLCR1cg44mzFQMFitWa WCUjFQ2QLGBx3cje3q9AbyfWXRfW74oo8u1KdefvrN0dTT3U7+47nb/5QKzbUEeb CAjUixcjA6bvtn0H2vXNvhHqK9PkZ6mUmTMMZUV6p3csGFcSTwO1j8xtNzVKtyh+ bV2Xc4n9Muu+H9J9/Y2B370+1wSuFX+7irzw0U2ip0JVGFGOOf51GvgYWpyOOy1I geTbVhPxHXYjHHRtOlg6TPq7qM8TY0ZwYQaMJh35AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUeIPQ+vhozBGC8qrCb4Da1w0Nb0swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E3ZmZkYTk4LWJkNjctNGExOC05Nzk3LTM1YWEyZTA0YTJiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9gNDANBgkqhkiG9w0BAQsFAAOCAQEAeUTKOL9bR2ik3iV1B3cpYQeN TeGQH3DDx2LraCX+LW8iW/X2MebkvdeDYiggO3QWA4wBsd0gOGGXfk8AwJVZfN5m IVeVe364G+di6AVBJq+XHWOb4mN0EaT3cKFOQZTU2tj5QNdALALiEs69b7eq1JSq Pe8+gdE9szmopdTH93iWZ2hjVmZb1k9YiZdU/cDbxOtn+mprtWfqx1eovmYhO+vm uVaISbnOpveq5bYO7ZH/CQVft3UK2jZYhvYD8YcoahwnIe/h0EYZgJcjYnqnyahy mjZAWtMH7k5dOWiNj5OVEmn1yaQpo84XbNCfleyW+y33emsFAj51HwfKugkdzA== -----END CERTIFICATE-----Generated at Fri Apr 4 23:47:52 2025 by rpki-client