$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aecb2898-1ea4-4169-a334-e907e8dc483a.roa File: aecb2898-1ea4-4169-a334-e907e8dc483a.roa (raw, json) Hash identifier: m1Zk1KDkRgMaVRUjaciLmmlRj2zkZ9WskPGhuZBrIBo= Subject key identifier: 81:BA:1C:93:EF:FC:90:CB:71:1A:15:A3:B2:97:EA:FD:9A:A2:94:29 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 35D022720767238B2C872F707F8405664138C949 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aecb2898-1ea4-4169-a334-e907e8dc483a.roa Signing time: Mon 19 May 2025 18:00:17 +0000 ROA not before: Mon 19 May 2025 18:00:17 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f17:4000::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:d0:22:72:07:67:23:8b:2c:87:2f:70:7f:84:05:66:41:38:c9:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 18:00:17 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=36a6f9a1f5f5b318d4441b2def5eb7405fa109b578f31d0c1cf967796e20c282, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:fd:17:a2:bd:7e:ec:99:47:71:47:8e:32:e3: cc:2d:2d:f8:7f:98:c4:4b:6b:20:f3:33:e2:c7:af: 3f:bd:88:61:f4:08:36:77:a3:66:1b:5f:26:8a:2f: 94:be:4c:08:e7:eb:3c:b3:7a:35:70:57:94:1c:4d: 22:ab:17:1f:ce:77:bb:c1:9c:55:b6:b5:b9:19:6c: 52:10:da:6c:ab:0b:9d:95:43:6f:e1:f4:7e:ec:b4: cc:56:07:de:77:52:90:58:6f:18:64:f8:d5:50:2c: ab:1b:49:8f:15:72:3c:f3:b7:16:09:0b:c5:26:17: cc:e4:eb:bd:67:ad:d3:d1:da:b8:7a:ef:f4:07:21: 86:ab:36:a7:c6:4f:cb:6f:e9:f1:90:63:cd:4a:d2: 62:19:e9:61:d6:35:68:31:8e:cd:2a:99:b2:42:49: 60:d1:b4:2d:2d:78:0c:3a:65:e5:3d:0a:d7:bf:49: f0:bd:31:5e:aa:e4:7a:2d:ee:60:f3:99:78:8c:00: f7:a7:78:41:75:5e:e0:3b:a1:c1:4f:63:e6:11:41: 5d:db:6a:7f:18:52:77:b1:ef:0f:d0:41:53:0d:c4: 8f:14:88:db:05:c6:dd:e1:8d:e8:6e:f9:6f:62:be: 33:83:65:5c:5c:8d:ce:be:0b:2e:ad:8e:c1:5c:7c: 83:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:BA:1C:93:EF:FC:90:CB:71:1A:15:A3:B2:97:EA:FD:9A:A2:94:29 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aecb2898-1ea4-4169-a334-e907e8dc483a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f17:4000::/38 Signature Algorithm: sha256WithRSAEncryption a4:f2:de:47:69:7a:ec:89:b9:7c:8b:cb:41:9a:13:b3:d0:7f: 11:c9:36:23:f8:f7:61:95:6a:1f:47:3a:28:a1:81:79:bf:67: 73:aa:45:e5:39:48:14:6b:ce:df:dd:2d:d8:52:86:f3:32:01: c4:f4:2f:d8:c3:5c:4e:af:6c:dd:02:92:31:13:58:94:fb:48: 47:a0:53:52:59:d2:03:82:e1:1c:76:5a:38:60:67:02:60:f5: a8:94:03:cb:f2:e8:fa:62:c4:91:95:1c:e8:30:d2:43:c3:9a: ea:ec:a6:74:2a:b6:77:7d:ea:33:db:68:82:e4:9e:77:80:5f: 18:51:82:7b:9d:b8:8e:56:62:11:a3:aa:8d:89:f7:80:ae:86: 13:4b:e5:cb:ec:be:1f:89:1d:1d:60:24:f4:2b:7f:aa:67:33: e2:33:67:95:91:6e:36:df:e2:de:8c:11:69:1e:3f:76:aa:2c: c0:3c:89:c0:88:87:98:8e:93:6f:fc:8f:78:59:03:7c:e0:66: 1c:8c:97:70:c3:18:8e:05:4c:1a:73:d8:1f:23:fe:e9:dd:99: 3b:a6:e9:06:3c:54:aa:ee:53:3b:7d:d4:83:fe:89:c3:b8:25: d2:90:92:e6:4a:94:88:59:06:68:01:b7:89:b2:be:bc:b9:ca: 75:a6:c4:bd -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUNdAicgdnI4sshy9wf4QFZkE4yUkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTgwMDE3WhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNmE2ZjlhMWY1ZjViMzE4ZDQ0NDFiMmRlZjVlYjc0MDVm YTEwOWI1NzhmMzFkMGMxY2Y5Njc3OTZlMjBjMjgyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCK/ReivX7smUdxR44y48wtLfh/mMRLayDzM+LHrz+9iGH0 CDZ3o2YbXyaKL5S+TAjn6zyzejVwV5QcTSKrFx/Od7vBnFW2tbkZbFIQ2myrC52V Q2/h9H7stMxWB953UpBYbxhk+NVQLKsbSY8VcjzztxYJC8UmF8zk671nrdPR2rh6 7/QHIYarNqfGT8tv6fGQY81K0mIZ6WHWNWgxjs0qmbJCSWDRtC0teAw6ZeU9Cte/ SfC9MV6q5Hot7mDzmXiMAPeneEF1XuA7ocFPY+YRQV3ban8YUnex7w/QQVMNxI8U iNsFxt3hjehu+W9ivjODZVxcjc6+Cy6tjsFcfIN3AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUgbock+/8kMtxGhWjspfq/ZqilCkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FlY2IyODk4LTFlYTQtNDE2OS1hMzM0LWU5MDdlOGRjNDgzYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgImAB8XQDANBgkqhkiG9w0BAQsFAAOCAQEApPLeR2l67Im5fIvLQZoTs9B/ Eck2I/j3YZVqH0c6KKGBeb9nc6pF5TlIFGvO390t2FKG8zIBxPQv2MNcTq9s3QKS MRNYlPtIR6BTUlnSA4LhHHZaOGBnAmD1qJQDy/Lo+mLEkZUc6DDSQ8Oa6uymdCq2 d33qM9toguSed4BfGFGCe524jlZiEaOqjYn3gK6GE0vly+y+H4kdHWAk9Ct/qmcz 4jNnlZFuNt/i3owRaR4/dqoswDyJwIiHmI6Tb/yPeFkDfOBmHIyXcMMYjgVMGnPY HyP+6d2ZO6bpBjxUqu5TO33Ug/6Jw7gl0pCS5kqUiFkGaAG3ibK+vLnKdabEvQ== -----END CERTIFICATE-----Generated at Sun Jun 1 05:12:14 2025 by rpki-client