$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/80d0e2ea-6a97-4531-ba66-c7d4d4ee82a7.roa File: 80d0e2ea-6a97-4531-ba66-c7d4d4ee82a7.roa (raw, json) Hash identifier: 7IYQjUW+fMDUOG5hbaHzAZzPsF4RIVx/A2y/lw6iGIY= Subject key identifier: 3B:20:FE:AF:FF:D9:82:11:97:09:38:0E:81:71:54:79:83:3F:EE:73 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 750E4D8BAA02DEE52C92B3704C0D2143CF7324BF Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/80d0e2ea-6a97-4531-ba66-c7d4d4ee82a7.roa Signing time: Fri 23 May 2025 00:30:22 +0000 ROA not before: Fri 23 May 2025 00:30:22 +0000 ROA not after: Fri 27 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2606:8140::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:0e:4d:8b:aa:02:de:e5:2c:92:b3:70:4c:0d:21:43:cf:73:24:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 23 00:30:22 2025 GMT Not After : Jun 27 23:59:59 2025 GMT Subject: serialNumber=453e5892ec147f05a4a3f45f922683d28b3f85df9ecb04694b5c25e97a7bc295, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:02:d7:2f:7f:4f:2a:9d:ad:b9:ee:01:14:38: 3e:29:ab:0e:ef:b2:f3:f9:70:f4:e2:7c:8a:00:a7: cf:75:34:83:04:12:32:67:77:ed:3c:62:94:c1:5c: 23:04:b2:e7:9b:cf:a2:44:b0:73:dc:26:61:53:3b: 33:5a:15:de:06:ea:7d:c7:39:b2:6b:d0:f5:9a:1e: 05:b5:83:7a:78:66:77:b5:20:c1:f5:82:17:2d:6f: 89:ee:c9:83:ab:a5:00:d8:eb:6d:33:fe:7b:27:0a: cf:5a:d5:83:39:1c:82:01:9d:21:df:66:54:66:30: c3:bf:87:e8:2e:cb:58:a4:09:73:45:7d:56:25:ae: b5:c1:9a:3b:ec:45:82:1c:15:c4:48:c7:80:15:76: 5f:39:ca:42:d6:aa:12:f0:69:cd:be:f3:d4:fa:11: 3b:fc:98:d8:fa:cc:5d:63:45:dd:7b:af:ac:f4:e2: e1:52:70:38:5e:fd:99:14:17:3d:5f:a6:b4:7e:59: f4:ef:7e:17:6f:77:73:9b:0f:52:64:b1:70:52:37: 44:0c:ff:99:9f:a6:55:52:97:9c:5d:ee:e2:d5:f6: 70:73:db:0e:1f:5a:af:2c:56:f6:c7:6f:34:67:78: 6a:9c:a8:0b:74:56:0b:2f:54:84:09:55:e1:fc:0a: 4d:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:20:FE:AF:FF:D9:82:11:97:09:38:0E:81:71:54:79:83:3F:EE:73 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/80d0e2ea-6a97-4531-ba66-c7d4d4ee82a7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:8140::/32 Signature Algorithm: sha256WithRSAEncryption 2b:bb:c9:cb:29:79:20:d1:fa:98:9b:2a:92:b1:6f:7b:c2:2e: 8c:79:1a:8c:3c:a7:5b:c4:cf:43:05:3f:d4:af:96:05:9e:15: 7d:ca:f0:25:42:e5:59:4b:75:f8:d1:4e:ba:3a:af:a3:8d:9b: 6a:96:16:0c:31:d0:34:69:48:e7:87:b9:89:d5:65:f4:63:d4: af:49:b1:61:5a:4a:96:a4:b5:eb:65:c7:5d:e5:07:e3:eb:f6: 20:b7:2c:1c:d9:fb:c5:15:00:a0:8e:f0:13:54:0b:a6:76:0a: af:d0:e9:0e:7a:a0:a1:17:bd:5a:c2:27:f4:77:54:44:13:a1: b0:ab:e0:cc:ca:b8:92:11:18:2e:24:87:60:6a:56:f6:2a:a7: f6:02:5d:cc:80:80:66:95:75:9e:15:80:5a:f6:5c:9c:9c:39: d7:0f:c3:00:50:f6:da:21:b2:78:e8:8f:c8:68:eb:7d:4e:fc: d4:3e:53:fa:8c:5e:14:e3:67:f5:7d:83:ad:7a:7e:4d:3a:5b: 0f:e4:75:3c:88:e1:55:ca:ce:07:68:19:5c:9a:33:fc:21:71: c3:d3:43:64:70:59:62:90:0d:ac:95:0a:f5:41:65:4a:a2:21: d1:95:62:50:8b:50:c9:f7:09:19:4e:73:c7:ae:b4:db:6c:b9: 7f:26:db:c2 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUdQ5Ni6oC3uUskrNwTA0hQ89zJL8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTIzMDAzMDIyWhcNMjUwNjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NTNlNTg5MmVjMTQ3ZjA1YTRhM2Y0NWY5MjI2ODNkMjhi M2Y4NWRmOWVjYjA0Njk0YjVjMjVlOTdhN2JjMjk1MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQAtcvf08qna257gEUOD4pqw7vsvP5cPTifIoAp891NIME EjJnd+08YpTBXCMEsuebz6JEsHPcJmFTOzNaFd4G6n3HObJr0PWaHgW1g3p4Zne1 IMH1ghctb4nuyYOrpQDY620z/nsnCs9a1YM5HIIBnSHfZlRmMMO/h+guy1ikCXNF fVYlrrXBmjvsRYIcFcRIx4AVdl85ykLWqhLwac2+89T6ETv8mNj6zF1jRd17r6z0 4uFScDhe/ZkUFz1fprR+WfTvfhdvd3ObD1JksXBSN0QM/5mfplVSl5xd7uLV9nBz 2w4fWq8sVvbHbzRneGqcqAt0VgsvVIQJVeH8Ck1BAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUOyD+r//ZghGXCTgOgXFUeYM/7nMwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzgwZDBlMmVhLTZhOTctNDUzMS1iYTY2LWM3ZDRkNGVlODJhNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBoFAMA0GCSqGSIb3DQEBCwUAA4IBAQAru8nLKXkg0fqYmyqSsW97wi6M eRqMPKdbxM9DBT/Ur5YFnhV9yvAlQuVZS3X40U66Oq+jjZtqlhYMMdA0aUjnh7mJ 1WX0Y9SvSbFhWkqWpLXrZcdd5Qfj6/Ygtywc2fvFFQCgjvATVAumdgqv0OkOeqCh F71awif0d1REE6Gwq+DMyriSERguJIdgalb2Kqf2Al3MgIBmlXWeFYBa9lycnDnX D8MAUPbaIbJ46I/IaOt9TvzUPlP6jF4U42f1fYOten5NOlsP5HU8iOFVys4HaBlc mjP8IXHD00NkcFlikA2slQr1QWVKoiHRlWJQi1DJ9wkZTnPHrrTbbLl/JtvC -----END CERTIFICATE-----Generated at Wed Jun 4 11:29:14 2025 by rpki-client