$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/c518c762-ddbf-4352-b9b9-1484318adaa8.roa File: c518c762-ddbf-4352-b9b9-1484318adaa8.roa (raw, json) Hash identifier: Hzt3XNB5uE29gQy24g9oM2efQhgT9rAodamhl8pG0vA= Subject key identifier: 6C:1C:DF:32:9E:65:92:0B:89:A0:F2:98:83:E9:B8:28:15:DB:56:BA Certificate issuer: /CN=6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267 Certificate serial: 44AC340B09575A3978DEA4A5CEB5DC17A928B721 Authority key identifier: 6D:CA:65:D0:71:4D:7E:F2:56:90:BC:09:13:D3:54:DB:AC:89:2A:5E Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/c518c762-ddbf-4352-b9b9-1484318adaa8.roa Signing time: Tue 20 May 2025 17:50:04 +0000 ROA not before: Tue 20 May 2025 17:50:04 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:c940::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/5d7wm5lPjPYLrYyQKcAGV3ULImc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/5d7wm5lPjPYLrYyQKcAGV3ULImc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/7276b2fa-548d-4970-8314-8d73945c34d8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/7276b2fa-548d-4970-8314-8d73945c34d8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:ac:34:0b:09:57:5a:39:78:de:a4:a5:ce:b5:dc:17:a9:28:b7:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267 Validity Not Before: May 20 17:50:04 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=769827b21ac9ab201dad444fadfec50df33b874e14519705167c661927e17ce3, CN=15f1683a-c0c2-4266-9a96-ecf9eba3239c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ad:09:ab:2e:b9:c0:de:cd:54:46:49:f9:72: 14:5d:50:6e:9c:52:e6:c2:e8:b5:58:8c:34:48:a2: 7f:ff:70:87:3f:a9:e3:11:4b:69:e3:d5:36:23:89: d6:93:2b:fb:aa:72:6e:17:6c:6f:35:7c:16:c2:9b: 08:89:57:c9:90:ca:e6:78:74:d0:86:06:47:2e:6c: cf:a7:de:ae:91:ad:00:f1:e3:9d:90:f6:e1:ff:a2: 3b:f2:39:1e:e7:e2:4f:fe:55:be:52:1c:17:d0:c8: 3e:21:56:e4:7d:32:dc:ae:22:02:b1:87:0e:53:c5: ee:48:c9:f1:37:b5:9a:49:95:0e:fb:9b:bb:39:94: ad:20:0b:ce:70:a6:98:12:b4:28:e9:b5:d0:7d:b0: 87:fe:94:2c:15:a4:c9:f9:47:11:78:3b:c1:41:20: 2e:ce:e8:7d:7c:b5:84:3d:4b:36:e6:fc:5d:50:1d: b9:47:fe:49:31:d9:db:cd:83:d7:c9:0a:5e:69:4b: 4d:2c:2f:d7:8c:d0:00:6e:3c:89:b1:4c:2f:c7:06: a0:2d:a3:37:69:df:3e:8d:29:33:81:26:63:d8:0b: b9:66:44:d5:5c:a0:89:a8:2a:d2:60:34:ab:67:68: 9a:59:1e:a8:bd:3e:96:a0:19:d2:8f:ec:47:70:5d: 58:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:1C:DF:32:9E:65:92:0B:89:A0:F2:98:83:E9:B8:28:15:DB:56:BA X509v3 Authority Key Identifier: keyid:6D:CA:65:D0:71:4D:7E:F2:56:90:BC:09:13:D3:54:DB:AC:89:2A:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/c518c762-ddbf-4352-b9b9-1484318adaa8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/5d7wm5lPjPYLrYyQKcAGV3ULImc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:c940::/32 Signature Algorithm: sha256WithRSAEncryption b9:de:b5:e8:82:04:fc:70:99:43:81:2c:e5:2a:26:c1:69:36: 44:ae:c1:00:13:00:48:2e:f5:cb:ba:f9:04:c8:60:4f:ca:45: 55:34:7a:57:d2:cf:f3:8e:3b:d9:67:b3:bc:a2:0b:cb:06:e8: 37:e1:87:5a:c1:df:90:34:57:05:e9:d9:ac:bb:0a:5d:d7:f2: 7d:f5:06:1b:d4:ab:38:7c:77:be:08:40:41:d8:78:c7:87:61: 81:cd:36:06:58:df:3c:56:99:9e:d9:b2:9e:7c:57:8d:56:5d: 72:02:e5:5a:c9:02:dd:2b:9b:19:7e:d3:a6:9f:da:99:01:fc: 29:b8:f4:e4:94:60:5f:60:34:86:34:69:60:09:f6:3d:e4:5e: d7:4a:3e:f4:e0:11:8d:9c:2e:90:1e:fb:02:b3:65:e8:fa:3e: e1:9d:10:07:c5:e8:07:e6:7c:80:6f:a0:09:80:a0:c0:66:97: 83:d0:26:7b:9d:66:be:67:ff:38:00:b2:b9:74:b6:52:60:e4: 6c:55:70:12:5e:24:16:6f:0c:5c:93:52:62:d4:dc:a1:fa:c2: 84:1f:6e:da:ea:d2:47:d8:61:74:cb:d8:4c:29:4c:53:51:a4: 95:e6:da:e8:7a:14:6a:42:72:72:cc:91:af:93:ad:af:ee:63: a5:d3:19:9e -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIURKw0CwlXWjl43qSlzrXcF6kotyEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmY5Yjk4NWIwZmU1ZGVmMDliOTk0ZjhjZjYwYmFkOGM5 MDI5YzAwNjU3NzUwYjIyNjcwHhcNMjUwNTIwMTc1MDA0WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3Njk4MjdiMjFhYzlhYjIwMWRhZDQ0NGZhZGZlYzUwZGYz M2I4NzRlMTQ1MTk3MDUxNjdjNjYxOTI3ZTE3Y2UzMS0wKwYDVQQDEyQxNWYxNjgz YS1jMGMyLTQyNjYtOWE5Ni1lY2Y5ZWJhMzIzOWMwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4rQmrLrnA3s1URkn5chRdUG6cUubC6LVYjDRIon//cIc/ qeMRS2nj1TYjidaTK/uqcm4XbG81fBbCmwiJV8mQyuZ4dNCGBkcubM+n3q6RrQDx 452Q9uH/ojvyOR7n4k/+Vb5SHBfQyD4hVuR9MtyuIgKxhw5Txe5IyfE3tZpJlQ77 m7s5lK0gC85wppgStCjptdB9sIf+lCwVpMn5RxF4O8FBIC7O6H18tYQ9Szbm/F1Q HblH/kkx2dvNg9fJCl5pS00sL9eM0ABuPImxTC/HBqAtozdp3z6NKTOBJmPYC7lm RNVcoImoKtJgNKtnaJpZHqi9PpagGdKP7EdwXVhrAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUbBzfMp5lkguJoPKYg+m4KBXbVrowHwYDVR0jBBgwFoAUbcpl0HFNfvJW kLwJE9NU26yJKl4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC83Mjc2YjJmYS01 NDhkLTQ5NzAtODMxNC04ZDczOTQ1YzM0ZDgvNmY5Yjk4NWIwZmU1ZGVmMDliOTk0 ZjhjZjYwYmFkOGM5MDI5YzAwNjU3NzUwYjIyNjcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjNmNmI2ODgtY2ZmNC00MDJmLTk3ZDUtMDJm NmYxODg2YjdlL2M1MThjNzYyLWRkYmYtNDM1Mi1iOWI5LTE0ODQzMThhZGFhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2IzZjZiNjg4LWNmZjQtNDAyZi05N2Q1 LTAyZjZmMTg4NmI3ZS81ZDd3bTVsUGpQWUxyWXlRS2NBR1YzVUxJbWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBclAMA0GCSqGSIb3DQEBCwUAA4IBAQC53rXoggT8cJlDgSzlKibBaTZE rsEAEwBILvXLuvkEyGBPykVVNHpX0s/zjjvZZ7O8ogvLBug34Ydawd+QNFcF6dms uwpd1/J99QYb1Ks4fHe+CEBB2HjHh2GBzTYGWN88Vpme2bKefFeNVl1yAuVayQLd K5sZftOmn9qZAfwpuPTklGBfYDSGNGlgCfY95F7XSj704BGNnC6QHvsCs2Xo+j7h nRAHxegH5nyAb6AJgKDAZpeD0CZ7nWa+Z/84ALK5dLZSYORsVXASXiQWbwxck1Ji 1Nyh+sKEH27a6tJH2GF0y9hMKUxTUaSV5troehRqQnJyzJGvk62v7mOl0xme -----END CERTIFICATE-----Generated at Mon Jun 2 16:49:16 2025 by rpki-client