$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/8f960b0d-c291-490f-aff5-abe964221bd2.roa File: 8f960b0d-c291-490f-aff5-abe964221bd2.roa (raw, json) Hash identifier: SiG5+GIVfY61v1pbLID9PNKST69+7ESvZYP1nq8ZT9I= Subject key identifier: 6F:C6:94:98:C7:84:A5:F4:3B:42:66:D3:51:3D:6C:B7:6D:BD:67:02 Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 518D7005FF00637C2906497A67E0274C4100B681 Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/8f960b0d-c291-490f-aff5-abe964221bd2.roa Signing time: Wed 04 Jun 2025 00:40:41 +0000 ROA not before: Wed 04 Jun 2025 00:40:41 +0000 ROA not after: Wed 09 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2620:108:7000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:8d:70:05:ff:00:63:7c:29:06:49:7a:67:e0:27:4c:41:00:b6:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Jun 4 00:40:41 2025 GMT Not After : Jul 9 23:59:59 2025 GMT Subject: serialNumber=70d2d01e029a5fe839d93229dfbace5ff2a20ff5ac1d8e9932bd762468ad143f, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:83:05:ed:91:7a:99:2c:41:1e:47:c8:58:0e: f6:be:ac:fd:05:85:e8:29:da:82:35:29:2f:4f:b7: c4:a1:2e:74:fb:c0:80:41:06:f8:01:52:b4:c8:1c: ad:87:c3:76:8c:a6:e0:0c:99:d4:ac:80:05:bb:71: 9b:a5:19:ab:60:c7:e1:38:b8:1f:52:f3:29:0a:d6: 57:fb:9a:bf:79:5c:e4:2c:9d:6a:73:1d:58:9f:ec: ef:22:99:fe:4d:31:ef:3c:cb:68:c6:03:b2:ff:4b: d8:5d:2b:30:5d:b2:0d:d8:63:df:99:e4:f7:d7:98: 4e:93:61:60:f8:d5:9c:df:d8:d3:68:0f:9a:78:53: 55:34:49:37:78:94:08:08:af:89:aa:13:c5:e7:e4: 1a:a8:78:62:f8:5f:3a:ff:3c:fe:7a:a1:b5:c9:8e: a6:f4:58:55:bd:88:39:6b:da:b7:74:1b:dd:06:d3: 7e:98:58:93:c5:6a:b0:84:b9:9d:1a:be:5e:53:41: 30:d2:ad:1d:c4:6a:a2:95:d8:f4:ef:1e:80:49:64: 0e:21:7a:d5:ea:69:9a:a7:40:c3:2e:34:5f:48:70: d0:e4:61:06:19:bd:15:ee:b3:d8:3b:0e:5d:05:56: 35:7c:da:18:9e:62:63:f8:1f:42:44:0a:fe:c7:1c: 1d:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:C6:94:98:C7:84:A5:F4:3B:42:66:D3:51:3D:6C:B7:6D:BD:67:02 X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/8f960b0d-c291-490f-aff5-abe964221bd2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:108:7000::/44 Signature Algorithm: sha256WithRSAEncryption 62:59:f6:d7:98:58:9d:de:3d:cc:18:cb:65:d7:8a:04:ef:e6: 67:50:6e:e9:e7:5e:ed:f0:1d:69:ea:bc:4b:11:d1:33:e3:ec: 0b:10:37:a4:a4:9c:8a:55:6d:98:f7:85:75:ea:de:63:65:ed: 3c:e2:4c:cc:68:4d:6a:58:02:5f:4a:46:75:4c:f7:66:ab:85: 28:eb:ad:2d:92:ad:96:92:1e:c6:4f:bc:c9:bf:a9:03:46:55: bf:c5:7b:d2:30:ef:40:7e:9c:95:2c:54:5e:b8:18:2d:8b:5c: c4:f7:1b:52:f1:2d:a7:f8:0f:bb:75:40:12:bb:28:7e:f6:70: 4a:17:7f:ff:db:24:b8:ce:95:1e:3b:ba:c0:d8:19:cb:26:24: 14:67:eb:d7:66:9b:b7:fc:a5:4a:fc:71:f2:0c:d4:0a:74:a0: b7:39:e8:ad:4a:d4:07:07:bc:2f:6b:2c:e9:9f:f6:96:ac:6b: ef:45:ec:81:d4:d2:49:c9:d4:fb:23:9a:e5:f6:e8:22:15:62: 88:50:08:b3:ed:41:68:1d:42:85:2e:8b:b4:b7:35:ae:10:6e: dd:e8:d2:09:6b:70:52:9b:0c:bb:47:0d:4d:fe:3f:02:e9:30: 97:26:87:35:68:70:bf:61:b1:12:8b:1a:2e:b1:34:98:d7:3c: ff:be:7a:7f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUY1wBf8AY3wpBkl6Z+AnTEEAtoEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUwNjA0MDA0MDQxWhcNMjUwNzA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MGQyZDAxZTAyOWE1ZmU4MzlkOTMyMjlkZmJhY2U1ZmYy YTIwZmY1YWMxZDhlOTkzMmJkNzYyNDY4YWQxNDNmMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+gwXtkXqZLEEeR8hYDva+rP0Fhegp2oI1KS9Pt8ShLnT7 wIBBBvgBUrTIHK2Hw3aMpuAMmdSsgAW7cZulGatgx+E4uB9S8ykK1lf7mr95XOQs nWpzHVif7O8imf5NMe88y2jGA7L/S9hdKzBdsg3YY9+Z5PfXmE6TYWD41Zzf2NNo D5p4U1U0STd4lAgIr4mqE8Xn5BqoeGL4Xzr/PP56obXJjqb0WFW9iDlr2rd0G90G 036YWJPFarCEuZ0avl5TQTDSrR3EaqKV2PTvHoBJZA4hetXqaZqnQMMuNF9IcNDk YQYZvRXus9g7Dl0FVjV82hieYmP4H0JECv7HHB1TAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUb8aUmMeEpfQ7QmbTUT1st229ZwIwHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5LzhmOTYwYjBkLWMyOTEtNDkwZi1hZmY1LWFiZTk2NDIyMWJkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmIAEIcAAwDQYJKoZIhvcNAQELBQADggEBAGJZ9teYWJ3ePcwYy2XXigTv 5mdQbunnXu3wHWnqvEsR0TPj7AsQN6SknIpVbZj3hXXq3mNl7TziTMxoTWpYAl9K RnVM92arhSjrrS2SrZaSHsZPvMm/qQNGVb/Fe9Iw70B+nJUsVF64GC2LXMT3G1Lx Laf4D7t1QBK7KH72cEoXf//bJLjOlR47usDYGcsmJBRn69dmm7f8pUr8cfIM1Ap0 oLc56K1K1AcHvC9rLOmf9pasa+9F7IHU0knJ1PsjmuX26CIVYohQCLPtQWgdQoUu i7S3Na4Qbt3o0glrcFKbDLtHDU3+PwLpMJcmhzVocL9hsRKLGi6xNJjXPP++en8= -----END CERTIFICATE-----Generated at Fri Jun 6 18:28:46 2025 by rpki-client