$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/1307ad8e-df0e-4abe-8f37-494ddc3554ec.roa File: 1307ad8e-df0e-4abe-8f37-494ddc3554ec.roa (raw, json) Hash identifier: xXUTKLKOPxsUPoouIDmKYaPspjRx911FG8XI8T3sWo4= Subject key identifier: 50:48:79:24:38:83:80:7E:48:E9:12:05:9F:E5:99:2B:83:23:B3:58 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 1F5F50A2AB3CE4E3648EFD9A78966FFFD4C4B4BD Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/1307ad8e-df0e-4abe-8f37-494ddc3554ec.roa Signing time: Wed 04 Jun 2025 00:40:13 +0000 ROA not before: Wed 04 Jun 2025 00:40:13 +0000 ROA not after: Wed 09 Jul 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2620:108:d000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 09 Jun 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:5f:50:a2:ab:3c:e4:e3:64:8e:fd:9a:78:96:6f:ff:d4:c4:b4:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Jun 4 00:40:13 2025 GMT Not After : Jul 9 23:59:59 2025 GMT Subject: serialNumber=17f31e4c27b7bb3e4409e026a726aebac8ebe64bd136f8ce92bad402b1da55ee, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:96:7b:7e:ab:08:5c:b7:f0:bb:11:9f:75:d4: 87:24:9c:9e:c8:0a:a4:ab:f6:3e:f4:d4:e7:90:d3: d0:e2:92:c8:fb:8e:c8:1a:f0:d3:a2:d2:77:2e:3f: 2f:3e:ca:d3:d6:c7:46:8c:7d:7c:13:b9:71:69:7a: be:7d:60:0c:5f:81:a0:45:8d:9b:1c:3d:f8:c8:a8: 1b:da:de:07:22:5a:5c:17:7a:04:6f:74:1f:03:4a: 3f:3b:3d:84:59:75:f5:55:62:98:40:e1:63:ec:01: 8e:10:47:d0:95:ea:d2:ee:01:86:d7:56:72:e8:89: 30:e1:90:92:89:e7:da:c9:d1:53:1c:9e:8a:00:89: ef:9a:a9:9a:0a:91:80:43:ef:84:d6:e9:38:0b:ef: 84:44:25:e6:f5:fb:5e:21:9b:fa:7c:48:cb:bd:29: 05:cd:6f:d0:f0:ea:fb:22:ee:cf:f3:dd:e3:4f:f8: e3:d5:8d:78:ee:e2:60:62:5f:85:f0:09:0b:a3:61: 25:5e:36:79:32:f2:03:72:56:f0:6d:bd:6e:47:6b: 9b:22:a1:dc:7c:8d:a0:ae:fd:53:20:0b:ba:20:6c: d2:66:1c:ab:b9:dc:77:37:00:26:da:54:97:b3:55: 66:5c:46:d9:f0:29:05:e1:de:db:37:a5:53:c8:ee: ee:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:48:79:24:38:83:80:7E:48:E9:12:05:9F:E5:99:2B:83:23:B3:58 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/1307ad8e-df0e-4abe-8f37-494ddc3554ec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:108:d000::/44 Signature Algorithm: sha256WithRSAEncryption 86:25:1e:a5:2d:86:d4:7f:98:38:df:ae:37:5d:94:28:be:2a: 19:1a:1b:ff:dd:d5:ee:fb:7d:55:a8:2e:c3:0d:54:95:9b:35: d1:b0:77:67:d0:83:7d:07:e0:28:45:28:c3:f8:df:be:56:1d: 40:51:d7:9d:ac:72:84:b4:14:69:4e:4c:44:55:39:fc:41:d3: 7b:b7:eb:e0:eb:51:ff:a9:b7:4c:36:8f:c6:9f:f1:7b:8b:5f: de:a5:58:78:f0:bc:51:bc:e5:f7:f6:0a:7b:5f:7b:d7:e8:e1: a8:6a:a4:9b:fd:f4:fe:7f:16:78:3c:19:7e:22:6f:66:d1:af: 94:3c:0d:8d:c5:6e:a1:02:c5:ca:8e:95:bd:85:4a:0b:e8:2d: 26:b3:08:a5:a5:eb:df:41:6f:b7:b9:ae:bc:11:f7:d5:59:17: 45:c5:0b:16:36:c6:e0:e4:f0:e7:da:6e:c1:fb:9b:03:7b:f8: a0:82:0e:3d:b3:6d:3e:90:54:02:b5:15:c3:04:52:82:ba:93: 4f:22:31:5b:8a:d1:68:b2:da:f3:2d:7d:ad:ae:0c:f0:47:22: dc:4e:78:b7:60:09:52:a4:fe:58:cc:7e:49:42:40:85:52:21: 82:5d:21:69:84:c3:6a:c4:cd:e5:6a:a2:10:e8:01:61:b7:3d: 43:29:c1:10 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUH19Qoqs85ONkjv2aeJZv/9TEtL0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNjA0MDA0MDEzWhcNMjUwNzA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxN2YzMWU0YzI3YjdiYjNlNDQwOWUwMjZhNzI2YWViYWM4 ZWJlNjRiZDEzNmY4Y2U5MmJhZDQwMmIxZGE1NWVlMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDplnt+qwhct/C7EZ911IcknJ7ICqSr9j701OeQ09Diksj7 jsga8NOi0ncuPy8+ytPWx0aMfXwTuXFper59YAxfgaBFjZscPfjIqBva3gciWlwX egRvdB8DSj87PYRZdfVVYphA4WPsAY4QR9CV6tLuAYbXVnLoiTDhkJKJ59rJ0VMc nooAie+aqZoKkYBD74TW6TgL74REJeb1+14hm/p8SMu9KQXNb9Dw6vsi7s/z3eNP +OPVjXju4mBiX4XwCQujYSVeNnky8gNyVvBtvW5Ha5siodx8jaCu/VMgC7ogbNJm HKu53Hc3ACbaVJezVWZcRtnwKQXh3ts3pVPI7u7fAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUEh5JDiDgH5I6RIFn+WZK4Mjs1gwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzEzMDdhZDhlLWRmMGUtNGFiZS04ZjM3LTQ5NGRkYzM1NTRlYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmIAEI0AAwDQYJKoZIhvcNAQELBQADggEBAIYlHqUthtR/mDjfrjddlCi+ KhkaG//d1e77fVWoLsMNVJWbNdGwd2fQg30H4ChFKMP4375WHUBR152scoS0FGlO TERVOfxB03u36+DrUf+pt0w2j8af8XuLX96lWHjwvFG85ff2Cntfe9fo4ahqpJv9 9P5/Fng8GX4ib2bRr5Q8DY3FbqECxcqOlb2FSgvoLSazCKWl699Bb7e5rrwR99VZ F0XFCxY2xuDk8OfabsH7mwN7+KCCDj2zbT6QVAK1FcMEUoK6k08iMVuK0Wiy2vMt fa2uDPBHItxOeLdgCVKk/ljMfklCQIVSIYJdIWmEw2rEzeVqohDoAWG3PUMpwRA= -----END CERTIFICATE-----Generated at Sat Jun 7 04:26:09 2025 by rpki-client