$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/943694fe-e278-4d76-b786-7df26f151dd9.roa File: 943694fe-e278-4d76-b786-7df26f151dd9.roa (raw, json) Hash identifier: 4xfcsQVMkfyGARIfGoHAC1hToaokZFa0gZjx/Ob9d68= Subject key identifier: 98:57:54:A1:BD:62:70:F6:4F:C7:67:1C:A2:83:95:46:CB:84:18:94 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 6F75AA488DF8E334943219165ECB1EA1EF4E5E1B Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/943694fe-e278-4d76-b786-7df26f151dd9.roa Signing time: Mon 17 Mar 2025 15:10:24 +0000 ROA not before: Mon 17 Mar 2025 15:10:24 +0000 ROA not after: Mon 21 Apr 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2606:f40:fffe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 07:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:75:aa:48:8d:f8:e3:34:94:32:19:16:5e:cb:1e:a1:ef:4e:5e:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Mar 17 15:10:24 2025 GMT Not After : Apr 21 23:59:59 2025 GMT Subject: CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:5d:58:c7:10:fb:4d:43:fa:6e:85:73:42:4b: f1:94:0f:21:5b:26:a8:95:cd:c0:53:d5:6e:35:67: 19:17:97:d9:ba:94:49:eb:85:8d:d0:89:e5:2b:ee: ed:18:41:56:d4:94:1a:c3:9b:2d:b4:a0:75:9a:ec: c1:a4:db:16:59:10:65:7c:6b:ba:8b:b7:65:39:48: 62:b3:73:a0:e4:54:ad:e4:f4:ee:c0:20:73:cc:37: 62:f6:94:88:03:f6:f5:ab:fc:00:0e:59:52:c4:ea: fd:fa:6c:7f:7b:9c:ae:e3:4b:78:31:db:0f:7d:7d: 71:e8:5e:b6:46:2b:80:3a:02:6d:a2:53:77:ea:bf: 88:3c:46:09:17:59:39:bc:bc:ab:a8:de:a2:0f:f5: 40:64:f5:f1:92:bd:36:4a:4f:68:49:f0:5b:de:45: 8a:f1:44:06:be:19:1d:52:51:0b:7f:66:5b:92:0b: d3:7f:33:78:ec:bb:0b:ec:8f:46:c2:6c:66:57:8f: 28:18:d0:36:37:22:73:e1:98:27:38:97:3b:4d:75: 74:ed:23:8a:e9:be:78:3a:03:c4:66:f3:30:b7:34: 8d:58:70:92:78:ac:5c:2c:ac:a9:2e:4f:74:0b:64: 1a:2a:61:f5:be:8e:2b:d6:cd:29:84:15:e0:98:f7: bd:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:57:54:A1:BD:62:70:F6:4F:C7:67:1C:A2:83:95:46:CB:84:18:94 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/943694fe-e278-4d76-b786-7df26f151dd9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:fffe::/48 Signature Algorithm: sha256WithRSAEncryption 1e:33:71:25:3f:dc:f9:d5:ce:a3:a8:da:ba:a2:b2:e0:53:2a: d4:84:21:b1:fb:6b:a0:dc:51:c6:9b:32:64:22:13:f6:24:c2: 0c:e6:36:53:fc:a5:35:47:09:64:7e:e0:28:32:8e:db:08:14: ee:b3:26:20:ce:ed:4d:67:b8:eb:1a:c0:45:c1:82:91:d7:b8: 36:1f:f7:96:83:6b:90:a5:18:7d:77:47:cd:88:5b:6c:24:b9: b4:4a:76:b6:eb:95:c7:b2:0c:b0:2d:b8:e0:ed:f9:53:4f:6f: 90:8c:a4:44:4c:73:c9:a4:21:19:19:c7:f7:bb:6f:01:5f:cc: 6e:b6:7e:48:82:4f:39:ca:4c:7e:1b:86:16:d2:6b:8a:b8:88: 8a:92:ad:84:73:33:c5:41:59:c6:d7:39:a5:42:5a:f4:46:ca: f9:5b:6d:4a:bb:20:a6:5a:05:5f:a3:77:91:b4:9a:b1:1d:6f: df:6c:49:c7:72:42:19:2a:f8:06:f5:d1:a2:8f:ae:f1:43:7a: 02:cf:87:b7:0f:ae:bb:56:63:81:c5:1f:10:ba:bf:b5:c9:47: 8f:7f:bd:2a:3e:d9:b8:33:48:50:02:ee:6b:e7:45:73:58:02: cb:0c:9d:80:bb:0a:79:5a:95:64:1e:2f:fa:5f:f3:22:32:4d: 11:a2:ad:6e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUb3WqSI344zSUMhkWXsseoe9OXhswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUwMzE3MTUxMDI0WhcNMjUwNDIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AxY2E2NWQyNTg2NDVlOTQyNGNmM2QzNTYxNzVkN2E4YzVm OTFkMTA4ZDFjYjhkODVhYzVjYmFlMTYwNzRmZThmMS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnXVjHEPtNQ/puhXNCS/GUDyFbJqiVzcBT1W41ZxkXl9m6 lEnrhY3QieUr7u0YQVbUlBrDmy20oHWa7MGk2xZZEGV8a7qLt2U5SGKzc6DkVK3k 9O7AIHPMN2L2lIgD9vWr/AAOWVLE6v36bH97nK7jS3gx2w99fXHoXrZGK4A6Am2i U3fqv4g8RgkXWTm8vKuo3qIP9UBk9fGSvTZKT2hJ8FveRYrxRAa+GR1SUQt/ZluS C9N/M3jsuwvsj0bCbGZXjygY0DY3InPhmCc4lztNdXTtI4rpvng6A8Rm8zC3NI1Y cJJ4rFwsrKkuT3QLZBoqYfW+jivWzSmEFeCY972PAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUmFdUob1icPZPx2ccooOVRsuEGJQwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjLzk0MzY5NGZlLWUyNzgtNGQ3Ni1iNzg2LTdkZjI2ZjE1MWRkOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBg9A//4wDQYJKoZIhvcNAQELBQADggEBAB4zcSU/3PnVzqOo2rqisuBT KtSEIbH7a6DcUcabMmQiE/YkwgzmNlP8pTVHCWR+4CgyjtsIFO6zJiDO7U1nuOsa wEXBgpHXuDYf95aDa5ClGH13R82IW2wkubRKdrbrlceyDLAtuODt+VNPb5CMpERM c8mkIRkZx/e7bwFfzG62fkiCTznKTH4bhhbSa4q4iIqSrYRzM8VBWcbXOaVCWvRG yvlbbUq7IKZaBV+jd5G0mrEdb99sScdyQhkq+Ab10aKPrvFDegLPh7cPrrtWY4HF HxC6v7XJR49/vSo+2bgzSFAC7mvnRXNYAssMnYC7CnlalWQeL/pf8yIyTRGirW4= -----END CERTIFICATE-----Generated at Fri Apr 4 23:32:42 2025 by rpki-client