$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa4b93c4-5123-4d2f-a2e4-dd98abc19e76.roa File: aa4b93c4-5123-4d2f-a2e4-dd98abc19e76.roa (raw, json) Hash identifier: bknj9lj101poKWuP33k/WF8TGu4qCy9McaG/L9NPTY0= Subject key identifier: E1:27:BB:D0:9F:57:22:7D:BB:CB:7E:9D:65:39:EA:31:DC:F0:39:8F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4FB1B8433E00F68AA2144B4A035FD49F2E910F6D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa4b93c4-5123-4d2f-a2e4-dd98abc19e76.roa Signing time: Fri 28 Mar 2025 00:21:07 +0000 ROA not before: Fri 28 Mar 2025 00:21:07 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 7224 IP address blocks: 2600:1ffd:1008::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 13 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:b1:b8:43:3e:00:f6:8a:a2:14:4b:4a:03:5f:d4:9f:2e:91:0f:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 00:21:07 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f1:e2:f7:55:05:2c:ca:c6:c4:1a:43:42:d7: 9a:a2:dc:58:3d:db:fa:7f:f9:78:22:2b:4a:f1:1b: 97:08:4e:c5:5b:92:e8:3e:5c:3d:5b:e5:60:ae:00: f2:12:34:ef:55:73:d6:d3:ab:fe:7a:ed:ac:34:80: 0c:4a:59:b0:7a:9c:b4:d9:f9:68:2e:c3:31:4b:d8: 78:2e:92:d8:9b:e0:08:eb:99:1a:72:22:02:76:64: c9:55:d6:b4:5a:30:f2:c4:a4:4f:a3:e3:f4:57:1b: eb:36:c5:db:41:d2:47:51:1e:da:56:87:d9:fb:1e: 02:d5:b1:41:54:a6:df:70:2f:0b:c1:2d:8d:f9:ae: f9:22:0c:2f:48:09:de:62:ba:c1:7f:8f:7b:95:0a: 17:8f:70:66:88:d8:73:08:a3:ee:82:e7:47:62:c3: aa:43:41:43:b7:24:4d:c7:5f:db:92:20:58:16:d4: 7a:70:db:bf:5d:1c:27:2d:a6:81:0b:6d:8f:fb:c0: ab:67:5d:dd:de:54:ee:9b:86:66:54:78:57:81:a8: 7b:62:63:7b:fc:e3:2b:2d:4c:e4:ac:14:10:75:4d: 14:1a:a6:c8:da:86:a9:c5:e1:14:ab:2a:79:ea:9e: 25:49:e9:84:a4:79:9e:d1:13:a5:05:45:49:25:4c: 79:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:27:BB:D0:9F:57:22:7D:BB:CB:7E:9D:65:39:EA:31:DC:F0:39:8F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa4b93c4-5123-4d2f-a2e4-dd98abc19e76.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:1008::/48 Signature Algorithm: sha256WithRSAEncryption 6c:36:d6:ae:4a:ac:f9:1d:35:6e:5e:d7:53:f0:08:fe:92:75: 22:97:65:64:8f:06:98:ea:c6:69:75:5f:c8:df:57:95:6f:a0: b4:c4:51:f5:b1:14:4b:4e:97:26:33:a5:d0:92:57:85:86:1c: 92:18:36:68:e1:ba:26:45:42:e4:68:e9:86:d1:b5:81:a7:04: 62:76:c7:37:57:70:21:f4:6c:99:d9:c7:c9:6d:6d:24:78:22: 3e:77:90:23:cd:18:47:44:22:c5:8f:b1:ad:8c:7f:21:67:28: 83:47:32:20:aa:81:fa:3e:99:2e:fa:80:5a:e1:63:f3:d1:b8: ad:81:26:fd:0a:bd:06:f0:65:a8:7a:70:4d:53:4b:cd:98:31: 40:8b:0d:ad:b2:28:15:83:5b:0c:f8:8c:67:7b:20:43:d2:9f: 59:84:2a:ed:4b:93:8a:37:2d:29:36:17:5c:5c:6d:ae:4e:58: 3f:7e:cf:d7:a7:15:f0:38:d4:64:33:63:14:92:d1:af:30:fe: a4:70:d7:fe:4b:fc:63:4c:99:1e:c3:74:b7:97:04:55:fb:43: fe:27:47:f3:34:59:12:08:67:f1:7c:8c:4d:02:2b:84:88:d6: 3c:a1:5b:b1:ac:d4:e1:7a:50:b8:17:a9:11:98:44:93:9e:0c: ff:c8:ad:4d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUT7G4Qz4A9oqiFEtKA1/Uny6RD20wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MDAyMTA3WhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMDIwY2Q4NWY5NDFhMzRjYzIxMzEyNTA4ZmM1ZDkwNGRl NzM5ZWJhZDQ3Y2YxNDA1YTRhZjU4MzQxMTQxZGNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCu8eL3VQUsysbEGkNC15qi3Fg92/p/+XgiK0rxG5cITsVb kug+XD1b5WCuAPISNO9Vc9bTq/567aw0gAxKWbB6nLTZ+WguwzFL2Hguktib4Ajr mRpyIgJ2ZMlV1rRaMPLEpE+j4/RXG+s2xdtB0kdRHtpWh9n7HgLVsUFUpt9wLwvB LY35rvkiDC9ICd5iusF/j3uVChePcGaI2HMIo+6C50diw6pDQUO3JE3HX9uSIFgW 1Hpw279dHCctpoELbY/7wKtnXd3eVO6bhmZUeFeBqHtiY3v84ystTOSsFBB1TRQa psjahqnF4RSrKnnqniVJ6YSkeZ7RE6UFRUklTHntAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU4Se70J9XIn27y36dZTnqMdzwOY8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FhNGI5M2M0LTUxMjMtNGQyZi1hMmU0LWRkOThhYmMxOWU3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9EAgwDQYJKoZIhvcNAQELBQADggEBAGw21q5KrPkdNW5e11PwCP6S dSKXZWSPBpjqxml1X8jfV5VvoLTEUfWxFEtOlyYzpdCSV4WGHJIYNmjhuiZFQuRo 6YbRtYGnBGJ2xzdXcCH0bJnZx8ltbSR4Ij53kCPNGEdEIsWPsa2MfyFnKINHMiCq gfo+mS76gFrhY/PRuK2BJv0KvQbwZah6cE1TS82YMUCLDa2yKBWDWwz4jGd7IEPS n1mEKu1Lk4o3LSk2F1xcba5OWD9+z9enFfA41GQzYxSS0a8w/qRw1/5L/GNMmR7D dLeXBFX7Q/4nR/M0WRIIZ/F8jE0CK4SI1jyhW7Gs1OF6ULgXqRGYRJOeDP/IrU0= -----END CERTIFICATE-----Generated at Sat Apr 12 02:03:31 2025 by rpki-client