$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/254b4192-a38e-41eb-a28b-d01a7ee37964.roa File: 254b4192-a38e-41eb-a28b-d01a7ee37964.roa (raw, json) Hash identifier: dLhVb9yLmLLHBWXM4HekVqrqFxJowOOMYoeXHbPeNtk= Subject key identifier: FA:2F:3F:F5:FF:D9:6B:24:07:2B:67:44:4A:6D:3A:02:94:1F:77:55 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 370DDEF5CDD254977819E5845231242004AB8E40 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/254b4192-a38e-41eb-a28b-d01a7ee37964.roa Signing time: Wed 04 Jun 2025 00:40:12 +0000 ROA not before: Wed 04 Jun 2025 00:40:12 +0000 ROA not after: Wed 09 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2620:108:d000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:0d:de:f5:cd:d2:54:97:78:19:e5:84:52:31:24:20:04:ab:8e:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Jun 4 00:40:12 2025 GMT Not After : Jul 9 23:59:59 2025 GMT Subject: serialNumber=a4c969107dc880081bba4fd87415e0c16015427a97df17a2816ae459c47ccd71, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:6a:a9:99:78:7b:96:d5:a9:2c:ad:f0:4b:a2: 7c:1a:fc:65:3e:05:8b:3a:e2:e9:5a:c1:0e:99:b4: 0c:33:78:3d:a1:cb:6a:da:20:46:50:6f:45:91:ba: 20:fa:53:e7:b1:c3:35:dd:3a:59:74:60:38:f1:95: 5d:7a:eb:79:75:0f:3a:a7:56:17:a8:9b:ea:1c:93: 65:1c:38:6f:ad:00:63:84:e0:85:c7:f3:b3:40:74: c4:f2:37:90:a8:94:0c:a6:a5:d5:ce:91:57:21:92: 58:43:ad:8a:dd:2a:28:93:84:4a:b0:38:11:9b:98: 98:de:0f:25:43:cb:d8:d5:ea:b6:e1:2f:a0:05:ec: 3a:cb:19:65:d2:ed:aa:cc:fc:89:de:36:2b:36:b8: fc:3f:b6:ef:6f:74:25:ef:e5:4e:1b:60:4e:cf:a6: 7c:0c:c6:ea:02:df:2e:39:71:a7:c9:22:82:f0:25: e1:3f:40:e3:61:98:de:21:f3:fa:2a:01:e7:09:92: 8d:c8:c9:1c:0d:16:83:99:69:3d:2d:b0:7d:d3:02: d8:af:30:3c:47:4d:e4:d9:d0:f9:af:d6:8b:f2:7d: 02:02:39:e4:02:c1:e5:5c:a7:99:2a:1c:31:ae:4c: 7c:fd:0c:cc:6d:91:83:d6:70:9d:9a:81:b2:25:c4: c2:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:2F:3F:F5:FF:D9:6B:24:07:2B:67:44:4A:6D:3A:02:94:1F:77:55 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/254b4192-a38e-41eb-a28b-d01a7ee37964.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:108:d000::/44 Signature Algorithm: sha256WithRSAEncryption 60:00:b9:3e:7f:10:7b:a6:b5:f5:a5:dd:d3:77:fc:05:54:d4: 0f:b3:ca:57:8c:6f:2b:53:60:df:6f:ae:29:e7:75:00:96:76: c5:ae:53:8b:63:cb:c4:30:58:e5:6d:82:e4:f0:cd:77:9b:14: 87:37:ec:77:28:2c:47:7f:32:05:0f:5f:c7:77:ec:16:b3:db: b5:6d:55:7d:a2:9d:bc:1f:a3:b1:16:16:33:14:fe:85:85:d6: 28:cf:91:8f:db:10:cb:5e:99:14:36:76:a9:63:03:cf:81:8a: bd:d1:57:99:61:ef:6d:93:97:87:36:7f:5a:c1:ae:8c:9e:4c: d0:61:63:b6:d9:2f:7a:f6:63:38:32:0a:a4:ff:2e:3c:f8:3f: df:71:97:b8:f2:09:b4:81:ec:55:ef:1c:83:13:bf:13:2d:65: f5:5b:31:5d:27:92:28:ca:63:00:ee:16:3c:40:46:2d:16:1b: 66:80:86:cb:ad:68:1a:b3:45:9b:2e:e2:1b:b1:62:a1:7a:3e: 11:e1:48:fc:36:ca:98:b2:5e:55:dd:2b:e5:6f:fb:31:94:db: 31:a0:db:41:29:bf:3a:39:dc:fe:16:7a:22:3c:cc:89:97:ca: a6:d0:46:5b:ca:ea:6b:b8:9f:6a:4f:5d:4c:2b:a4:6a:e4:d9: 7f:9e:b2:41 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNw3e9c3SVJd4GeWEUjEkIASrjkAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNjA0MDA0MDEyWhcNMjUwNzA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNGM5NjkxMDdkYzg4MDA4MWJiYTRmZDg3NDE1ZTBjMTYw MTU0MjdhOTdkZjE3YTI4MTZhZTQ1OWM0N2NjZDcxMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDraqmZeHuW1aksrfBLonwa/GU+BYs64ulawQ6ZtAwzeD2h y2raIEZQb0WRuiD6U+exwzXdOll0YDjxlV1663l1DzqnVheom+ock2UcOG+tAGOE 4IXH87NAdMTyN5ColAympdXOkVchklhDrYrdKiiThEqwOBGbmJjeDyVDy9jV6rbh L6AF7DrLGWXS7arM/IneNis2uPw/tu9vdCXv5U4bYE7PpnwMxuoC3y45cafJIoLw JeE/QONhmN4h8/oqAecJko3IyRwNFoOZaT0tsH3TAtivMDxHTeTZ0Pmv1ovyfQIC OeQCweVcp5kqHDGuTHz9DMxtkYPWcJ2agbIlxMLlAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU+i8/9f/ZayQHK2dESm06ApQfd1UwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzI1NGI0MTkyLWEzOGUtNDFlYi1hMjhiLWQwMWE3ZWUzNzk2NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmIAEI0AAwDQYJKoZIhvcNAQELBQADggEBAGAAuT5/EHumtfWl3dN3/AVU 1A+zyleMbytTYN9vrinndQCWdsWuU4tjy8QwWOVtguTwzXebFIc37HcoLEd/MgUP X8d37Baz27VtVX2inbwfo7EWFjMU/oWF1ijPkY/bEMtemRQ2dqljA8+Bir3RV5lh 722Tl4c2f1rBroyeTNBhY7bZL3r2YzgyCqT/Ljz4P99xl7jyCbSB7FXvHIMTvxMt ZfVbMV0nkijKYwDuFjxARi0WG2aAhsutaBqzRZsu4huxYqF6PhHhSPw2ypiyXlXd K+Vv+zGU2zGg20Epvzo53P4WeiI8zImXyqbQRlvK6mu4n2pPXUwrpGrk2X+eskE= -----END CERTIFICATE-----Generated at Fri Jun 6 03:25:08 2025 by rpki-client