$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/02e8e3cf-8157-4c2c-8460-90cdfb690289.roa File: 02e8e3cf-8157-4c2c-8460-90cdfb690289.roa (raw, json) Hash identifier: B1Hku2HL2fwML4yEqHtuZPeQkKpcDKp7L4Rd7uLHSXM= Subject key identifier: B8:E8:83:1E:D4:14:DD:6D:A8:FC:94:FE:8E:5D:2F:21:32:82:B8:64 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0D52AE32E572680DA36A57213BADCB6EDB62E878 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/02e8e3cf-8157-4c2c-8460-90cdfb690289.roa Signing time: Fri 25 Apr 2025 15:20:06 +0000 ROA not before: Fri 25 Apr 2025 15:20:06 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000::/28 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:52:ae:32:e5:72:68:0d:a3:6a:57:21:3b:ad:cb:6e:db:62:e8:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Apr 25 15:20:06 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=9804e3700b11c27d848f6a91a4a96ea52af4d5a5a2acffd4aeb5a5e61c39f09f, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:56:96:cf:00:37:ab:0d:74:d1:5a:d6:75:d6: e5:fc:c8:da:0c:30:5a:1a:31:63:d2:b9:94:7a:c4: 5a:45:d8:51:85:a2:09:7d:11:9b:62:2d:c2:fd:0b: da:11:ae:63:d3:f7:e4:b9:11:1e:25:48:6a:2b:df: f1:35:8b:5a:a8:a8:8d:37:73:22:0e:4e:df:d8:4f: 08:f5:5a:1e:11:88:82:d6:31:57:24:ec:47:11:5f: 3d:4f:61:6e:ba:08:5c:23:46:73:3e:a2:2f:0b:9b: be:2a:d7:03:d8:be:0b:fa:7a:03:0a:78:20:04:b5: 74:92:62:6a:38:71:b8:55:ef:3f:10:12:af:1e:95: 79:ea:c7:ed:86:95:e9:7c:54:77:a3:45:c1:61:d5: ba:06:b0:70:0c:3a:3b:98:af:d1:98:71:c3:0b:9e: 16:0a:98:a4:31:c6:59:dd:7f:c6:30:06:1f:06:4d: 71:bc:2b:2f:c6:75:63:9a:6c:1b:f1:67:08:bc:7c: 40:22:e9:27:8d:e3:1c:9d:0b:9d:07:24:7d:de:6a: af:69:e7:31:33:c2:23:c3:6d:b2:61:4c:ad:30:a1: 6a:ad:c7:9b:de:19:da:78:0b:d5:93:52:30:5a:c2: a5:2d:4c:fa:cd:31:bd:d1:55:5e:05:f9:10:4b:d0: 94:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:E8:83:1E:D4:14:DD:6D:A8:FC:94:FE:8E:5D:2F:21:32:82:B8:64 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/02e8e3cf-8157-4c2c-8460-90cdfb690289.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000::/28 Signature Algorithm: sha256WithRSAEncryption 4f:b0:d1:c5:66:c5:d6:07:22:12:5c:99:5e:52:c2:65:00:75: f9:34:6d:01:db:d8:3a:47:9b:56:31:06:84:1c:15:55:30:5e: 13:53:71:ac:d3:fa:59:1f:9a:b5:2e:14:77:fc:db:c3:53:b4: c9:5f:53:f8:b4:23:53:49:1b:14:8c:c2:71:ad:87:8d:dc:fe: 9d:16:00:92:f2:5f:28:b8:7a:02:bd:e9:1c:47:9f:f7:c0:60: 74:0d:4c:dd:ac:5a:25:79:08:92:06:b7:57:e3:09:25:1f:3a: fe:4c:06:da:5f:76:3e:9c:2c:89:f2:5b:43:40:33:64:26:08: 6a:4d:0d:d9:93:e3:1a:9f:77:e7:fb:ae:ff:8b:a6:7f:1c:9a: 7d:68:fa:f3:0a:7c:d0:93:d4:0e:0f:88:5f:8a:27:3f:b5:8b: b8:f3:c2:ed:f8:93:3b:05:8b:03:1a:c8:fc:f0:35:d4:52:58: 51:e0:8e:9c:ae:e3:1e:e9:7f:52:09:af:e2:79:3f:21:38:d0: 07:4b:ad:02:11:4a:1b:cd:61:e3:82:83:de:f1:1c:b0:18:87: 28:99:a5:a0:b3:a9:54:95:94:58:74:0b:ad:4e:d6:a9:da:ec: b7:b0:ca:42:c5:ec:c1:ee:d3:34:ee:07:5b:6c:ab:67:84:e4: 99:91:94:65 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUDVKuMuVyaA2jalchO63Lbtti6HgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwNDI1MTUyMDA2WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ODA0ZTM3MDBiMTFjMjdkODQ4ZjZhOTFhNGE5NmVhNTJh ZjRkNWE1YTJhY2ZmZDRhZWI1YTVlNjFjMzlmMDlmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBVpbPADerDXTRWtZ11uX8yNoMMFoaMWPSuZR6xFpF2FGF ogl9EZtiLcL9C9oRrmPT9+S5ER4lSGor3/E1i1qoqI03cyIOTt/YTwj1Wh4RiILW MVck7EcRXz1PYW66CFwjRnM+oi8Lm74q1wPYvgv6egMKeCAEtXSSYmo4cbhV7z8Q Eq8elXnqx+2Glel8VHejRcFh1boGsHAMOjuYr9GYccMLnhYKmKQxxlndf8YwBh8G TXG8Ky/GdWOabBvxZwi8fEAi6SeN4xydC50HJH3eaq9p5zEzwiPDbbJhTK0woWqt x5veGdp4C9WTUjBawqUtTPrNMb3RVV4F+RBL0JRlAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUuOiDHtQU3W2o/JT+jl0vITKCuGQwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzAyZThlM2NmLTgxNTctNGMyYy04NDYwLTkwY2RmYjY5MDI4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQQmAJAAMA0GCSqGSIb3DQEBCwUAA4IBAQBPsNHFZsXWByISXJleUsJlAHX5 NG0B29g6R5tWMQaEHBVVMF4TU3Gs0/pZH5q1LhR3/NvDU7TJX1P4tCNTSRsUjMJx rYeN3P6dFgCS8l8ouHoCvekcR5/3wGB0DUzdrFoleQiSBrdX4wklHzr+TAbaX3Y+ nCyJ8ltDQDNkJghqTQ3Zk+Man3fn+67/i6Z/HJp9aPrzCnzQk9QOD4hfiic/tYu4 88Lt+JM7BYsDGsj88DXUUlhR4I6cruMe6X9SCa/ieT8hONAHS60CEUobzWHjgoPe 8RywGIcomaWgs6lUlZRYdAutTtap2uy3sMpCxezB7tM07gdbbKtnhOSZkZRl -----END CERTIFICATE-----Generated at Fri May 9 10:28:38 2025 by rpki-client