$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb96d250-5246-4bf9-ab64-c99916885173.roa File: cb96d250-5246-4bf9-ab64-c99916885173.roa (raw, json) Hash identifier: 92GcXlEHxpcxoI41/ApJGPsbry3xfmT416be9ydd+m4= Subject key identifier: 5C:87:32:A9:31:04:5B:0B:9D:C7:87:BD:B2:4F:07:D8:85:03:B7:9A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 02C78AA541C6B58AE5521E7ADBB2783E8681DF3A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb96d250-5246-4bf9-ab64-c99916885173.roa Signing time: Sat 31 May 2025 00:10:21 +0000 ROA not before: Sat 31 May 2025 00:10:21 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fa0:3400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:c7:8a:a5:41:c6:b5:8a:e5:52:1e:7a:db:b2:78:3e:86:81:df:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 31 00:10:21 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=574cb1ca8eacc7ee3e854ff6a09b340e824c948065f525570a729de183c3a7fe, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2f:59:20:ed:50:01:38:bf:28:a2:41:c2:5a: 40:18:43:93:a5:5b:73:5c:d0:de:8f:cf:ae:dc:21: 63:bc:d3:78:66:4c:c9:eb:1c:54:74:e0:44:f2:54: 51:aa:63:bb:6c:6a:93:26:fa:5b:1e:79:94:f8:46: 39:c2:7b:38:d1:e3:ba:c5:74:8c:69:59:ad:40:d3: 2c:f2:60:ca:5e:19:6a:04:ff:d4:28:0b:86:83:be: 7b:3e:25:1e:c0:63:cb:21:b2:2c:fb:3a:d5:fb:4b: 15:9d:90:ff:d1:25:04:9f:eb:ee:17:1d:69:1f:a9: bf:b0:04:76:6a:57:23:28:97:22:e6:44:b8:ce:e1: 9a:06:3d:5d:7a:19:5b:0c:1e:a9:98:89:0a:fd:8c: b7:33:b5:4e:57:8b:f8:1f:67:98:48:28:70:91:60: 36:56:22:65:90:86:00:bb:f0:d0:87:53:86:a9:75: 53:89:49:09:8c:2b:e0:88:89:6e:2f:51:5e:5e:6d: c2:d0:39:86:5b:68:83:a7:18:1a:72:ed:28:31:22: 39:85:f6:c0:d1:bf:06:b1:7c:b8:54:9a:7f:cf:54: 56:e9:9d:65:7d:9f:dd:3d:70:0b:f2:03:d9:0e:58: 00:c3:38:82:67:da:64:ea:2f:b3:5a:4a:5e:ed:cf: a3:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:87:32:A9:31:04:5B:0B:9D:C7:87:BD:B2:4F:07:D8:85:03:B7:9A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb96d250-5246-4bf9-ab64-c99916885173.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fa0:3400::/40 Signature Algorithm: sha256WithRSAEncryption 00:92:40:51:8b:1e:f6:14:bb:0b:48:6f:22:af:b2:80:35:a8: ef:5f:07:bb:ea:72:e9:07:3a:96:21:3b:ba:14:de:d3:1d:8c: 94:19:78:9f:96:bf:1d:31:27:4c:74:76:92:3e:f9:0c:ae:6f: fa:7e:e3:bf:30:33:b8:2d:d4:98:01:f0:5f:1b:45:2e:59:21: 1a:22:3d:45:27:d3:79:94:f3:09:b8:77:f6:c6:5d:05:0a:ec: d4:58:df:e3:ea:31:7b:ea:20:58:de:4e:b0:13:2d:d6:e1:b0: 3b:e8:82:0c:72:29:e5:cf:40:56:95:bf:ea:01:31:cd:9d:1d: e6:98:9f:70:fd:8c:52:55:b5:51:1d:bc:2d:33:8e:8f:c4:b7: fb:ae:d5:ab:48:58:78:70:29:16:46:28:98:8f:2d:ac:de:37: 6b:ca:c9:a2:3d:17:2c:ca:f2:d1:6f:df:aa:4c:e8:90:7c:4e: 47:2a:58:e1:7a:08:01:ee:2e:9c:09:b8:cd:0b:e0:97:be:63: 81:87:25:9f:5d:20:70:0f:35:18:64:c7:bf:12:11:ff:1a:aa: 40:aa:26:18:bf:f9:3b:78:01:a1:ce:19:56:a9:79:2f:4c:b9: 69:ca:0a:f4:fa:9d:62:58:bc:bb:1d:6e:6b:62:bd:ee:16:75: a5:29:54:9c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUAseKpUHGtYrlUh5627J4PoaB3zowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMxMDAxMDIxWhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NzRjYjFjYThlYWNjN2VlM2U4NTRmZjZhMDliMzQwZTgy NGM5NDgwNjVmNTI1NTcwYTcyOWRlMTgzYzNhN2ZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+L1kg7VABOL8ookHCWkAYQ5OlW3Nc0N6Pz67cIWO803hm TMnrHFR04ETyVFGqY7tsapMm+lseeZT4RjnCezjR47rFdIxpWa1A0yzyYMpeGWoE /9QoC4aDvns+JR7AY8shsiz7OtX7SxWdkP/RJQSf6+4XHWkfqb+wBHZqVyMolyLm RLjO4ZoGPV16GVsMHqmYiQr9jLcztU5Xi/gfZ5hIKHCRYDZWImWQhgC78NCHU4ap dVOJSQmMK+CIiW4vUV5ebcLQOYZbaIOnGBpy7SgxIjmF9sDRvwaxfLhUmn/PVFbp nWV9n909cAvyA9kOWADDOIJn2mTqL7NaSl7tz6NJAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUXIcyqTEEWwudx4e9sk8H2IUDt5owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NiOTZkMjUwLTUyNDYtNGJmOS1hYjY0LWM5OTkxNjg4NTE3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+gNDANBgkqhkiG9w0BAQsFAAOCAQEAAJJAUYse9hS7C0hvIq+ygDWo 718Hu+py6Qc6liE7uhTe0x2MlBl4n5a/HTEnTHR2kj75DK5v+n7jvzAzuC3UmAHw XxtFLlkhGiI9RSfTeZTzCbh39sZdBQrs1Fjf4+oxe+ogWN5OsBMt1uGwO+iCDHIp 5c9AVpW/6gExzZ0d5pifcP2MUlW1UR28LTOOj8S3+67Vq0hYeHApFkYomI8trN43 a8rJoj0XLMry0W/fqkzokHxORypY4XoIAe4unAm4zQvgl75jgYcln10gcA81GGTH vxIR/xqqQKomGL/5O3gBoc4ZVql5L0y5acoK9PqdYli8ux1ua2K97hZ1pSlUnA== -----END CERTIFICATE-----Generated at Sun Jun 1 05:29:01 2025 by rpki-client