$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/2592ade6-505a-4e24-928b-9a1e71b309ae.roa File: 2592ade6-505a-4e24-928b-9a1e71b309ae.roa (raw, json) Hash identifier: 4umRChvd3BlgzdrKB13rCAYnbyF+p5KQOIluwMzFGKk= Subject key identifier: 8D:1C:65:52:89:A5:90:FF:63:BA:D1:B2:70:D1:C9:BA:53:41:A3:53 Certificate issuer: /CN=6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267 Certificate serial: 179A1E3EE618D5232FFEDB97A76D2FA4513BC51D Authority key identifier: 6D:CA:65:D0:71:4D:7E:F2:56:90:BC:09:13:D3:54:DB:AC:89:2A:5E Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/2592ade6-505a-4e24-928b-9a1e71b309ae.roa Signing time: Tue 20 May 2025 17:50:06 +0000 ROA not before: Tue 20 May 2025 17:50:06 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:c940::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/5d7wm5lPjPYLrYyQKcAGV3ULImc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/5d7wm5lPjPYLrYyQKcAGV3ULImc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/7276b2fa-548d-4970-8314-8d73945c34d8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/7276b2fa-548d-4970-8314-8d73945c34d8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 09 Jun 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:9a:1e:3e:e6:18:d5:23:2f:fe:db:97:a7:6d:2f:a4:51:3b:c5:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267 Validity Not Before: May 20 17:50:06 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=3145ba9ab2bf5f6cda0be8810c41a65fa1e0c0d2660256b76e1bdf95bfe45707, CN=15f1683a-c0c2-4266-9a96-ecf9eba3239c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a7:74:38:31:b8:1f:c2:35:23:25:0d:ce:76: eb:11:d0:ec:d1:9e:37:c2:21:be:f4:d5:87:ee:0b: f5:ed:2a:0d:cf:e4:0e:6e:b0:ce:e7:b9:34:40:49: ef:7f:aa:cb:3a:85:c3:c7:2a:46:53:28:54:bc:1f: 1c:91:10:da:db:a2:8a:3d:41:91:a4:e7:20:21:8f: fd:b6:3f:4a:0b:d8:90:46:e0:45:a0:92:75:4f:5b: ab:52:a3:2f:c5:15:18:db:46:70:09:25:64:0e:7c: d6:49:62:cd:75:ab:b1:93:00:b9:1c:c9:1b:33:74: dc:e3:10:55:25:f2:9a:25:2e:10:c4:81:88:60:52: af:96:fb:e4:53:15:9d:37:98:c8:82:71:dc:80:67: 4b:fc:00:6b:2f:d7:16:3c:63:98:c1:1a:12:bb:a3: 01:8b:77:f9:4b:5d:f8:9f:3d:5d:81:6f:55:f9:e4: db:80:8c:94:a8:d6:1b:ad:0e:c4:b0:53:82:1f:e1: 71:e4:33:bd:4f:67:86:f8:b1:8d:35:90:60:75:3e: f5:bc:31:25:b0:f0:ce:ac:a8:46:e2:d4:19:4c:80: b9:17:a4:b8:31:76:e6:05:e0:63:51:e1:07:86:84: 37:09:67:7a:75:22:42:00:fc:69:15:2a:b0:2f:73: c6:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:1C:65:52:89:A5:90:FF:63:BA:D1:B2:70:D1:C9:BA:53:41:A3:53 X509v3 Authority Key Identifier: keyid:6D:CA:65:D0:71:4D:7E:F2:56:90:BC:09:13:D3:54:DB:AC:89:2A:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/2592ade6-505a-4e24-928b-9a1e71b309ae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/5d7wm5lPjPYLrYyQKcAGV3ULImc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:c940::/32 Signature Algorithm: sha256WithRSAEncryption 63:9a:c4:14:21:58:77:cc:a3:79:d5:02:b2:f3:b4:cf:1b:c7: 7e:e8:17:b5:82:b8:36:83:38:e0:c2:d2:92:a8:70:74:a8:88: 90:fd:db:f1:c2:10:6e:9f:3c:04:49:8c:04:4c:92:14:28:4c: b2:db:e9:b8:b5:c6:35:97:01:14:2e:a5:64:55:1a:90:cd:57: 45:a1:5d:ad:20:8b:42:df:17:b5:04:36:69:c1:9a:30:12:87: c4:e2:78:7b:57:15:36:0d:40:f4:82:09:c9:81:af:5e:8a:6b: 75:80:46:00:9f:12:40:a6:82:11:b5:c7:dd:83:a4:d0:1f:f7: 27:d5:40:51:27:3d:bd:4b:ea:ff:e1:7c:e7:60:32:dd:2b:bf: 89:f0:0e:5e:a6:20:0d:cd:6b:80:09:5e:f1:42:84:40:bc:83: 13:f9:36:8e:29:11:9e:e6:63:37:40:9f:71:cc:22:58:d8:01: ce:62:b6:e8:0f:37:38:34:b3:ae:03:9a:ef:71:46:cc:e3:ce: 63:e1:fc:93:b2:bc:5c:2e:e9:b0:98:27:87:d5:0f:41:c0:51: a1:21:60:e2:cd:c9:0c:3c:b5:5e:26:ce:cf:34:3b:5e:fa:95: 15:10:34:d8:e3:a7:62:53:10:b4:d1:9b:f8:24:e3:91:1a:8d: a8:74:7e:95 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUF5oePuYY1SMv/tuXp20vpFE7xR0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmY5Yjk4NWIwZmU1ZGVmMDliOTk0ZjhjZjYwYmFkOGM5 MDI5YzAwNjU3NzUwYjIyNjcwHhcNMjUwNTIwMTc1MDA2WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMTQ1YmE5YWIyYmY1ZjZjZGEwYmU4ODEwYzQxYTY1ZmEx ZTBjMGQyNjYwMjU2Yjc2ZTFiZGY5NWJmZTQ1NzA3MS0wKwYDVQQDEyQxNWYxNjgz YS1jMGMyLTQyNjYtOWE5Ni1lY2Y5ZWJhMzIzOWMwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7p3Q4MbgfwjUjJQ3OdusR0OzRnjfCIb701YfuC/XtKg3P 5A5usM7nuTRASe9/qss6hcPHKkZTKFS8HxyRENrbooo9QZGk5yAhj/22P0oL2JBG 4EWgknVPW6tSoy/FFRjbRnAJJWQOfNZJYs11q7GTALkcyRszdNzjEFUl8polLhDE gYhgUq+W++RTFZ03mMiCcdyAZ0v8AGsv1xY8Y5jBGhK7owGLd/lLXfifPV2Bb1X5 5NuAjJSo1hutDsSwU4If4XHkM71PZ4b4sY01kGB1PvW8MSWw8M6sqEbi1BlMgLkX pLgxduYF4GNR4QeGhDcJZ3p1IkIA/GkVKrAvc8YzAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUjRxlUomlkP9jutGycNHJulNBo1MwHwYDVR0jBBgwFoAUbcpl0HFNfvJW kLwJE9NU26yJKl4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC83Mjc2YjJmYS01 NDhkLTQ5NzAtODMxNC04ZDczOTQ1YzM0ZDgvNmY5Yjk4NWIwZmU1ZGVmMDliOTk0 ZjhjZjYwYmFkOGM5MDI5YzAwNjU3NzUwYjIyNjcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjNmNmI2ODgtY2ZmNC00MDJmLTk3ZDUtMDJm NmYxODg2YjdlLzI1OTJhZGU2LTUwNWEtNGUyNC05MjhiLTlhMWU3MWIzMDlhZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2IzZjZiNjg4LWNmZjQtNDAyZi05N2Q1 LTAyZjZmMTg4NmI3ZS81ZDd3bTVsUGpQWUxyWXlRS2NBR1YzVUxJbWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBclAMA0GCSqGSIb3DQEBCwUAA4IBAQBjmsQUIVh3zKN51QKy87TPG8d+ 6Be1grg2gzjgwtKSqHB0qIiQ/dvxwhBunzwESYwETJIUKEyy2+m4tcY1lwEULqVk VRqQzVdFoV2tIItC3xe1BDZpwZowEofE4nh7VxU2DUD0ggnJga9eimt1gEYAnxJA poIRtcfdg6TQH/cn1UBRJz29S+r/4XznYDLdK7+J8A5epiANzWuACV7xQoRAvIMT +TaOKRGe5mM3QJ9xzCJY2AHOYrboDzc4NLOuA5rvcUbM485j4fyTsrxcLumwmCeH 1Q9BwFGhIWDizckMPLVeJs7PNDte+pUVEDTY46diUxC00Zv4JOORGo2odH6V -----END CERTIFICATE-----Generated at Sat Jun 7 04:54:51 2025 by rpki-client