$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c11eeb71-8e18-4bd6-95d9-c2a593f46f72.roa File: c11eeb71-8e18-4bd6-95d9-c2a593f46f72.roa (raw, json) Hash identifier: F4Npf+0gcsbVtYzqBMuQfsoP7LpNDdzobyLRU3RTjMM= Subject key identifier: 1D:78:E5:96:5C:F1:77:A4:E1:65:8B:BB:4E:50:DF:0D:7B:1E:C7:6E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 113149F00BDB841693439ACFDAC27526EF01F6CC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c11eeb71-8e18-4bd6-95d9-c2a593f46f72.roa Signing time: Tue 22 Apr 2025 16:11:25 +0000 ROA not before: Tue 22 Apr 2025 16:11:25 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff7:5000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 07 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:31:49:f0:0b:db:84:16:93:43:9a:cf:da:c2:75:26:ef:01:f6:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:11:25 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=dc48e1c3623726c7f3c20b9565eae0c2846ccf58de7ee8f42065ce9cad0e9eef, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:7f:ce:d9:99:0f:cd:9a:52:5e:c0:c3:68:7d: d9:ff:22:02:a2:6b:34:0d:e1:9b:18:c4:65:fc:e4: 78:2c:09:17:f9:15:8c:4a:31:64:8a:58:44:34:cd: 01:44:2a:41:4c:09:86:1b:7f:58:ce:c0:8a:52:9b: c6:96:e0:0b:46:28:13:ee:1a:b3:d7:03:6c:dd:9f: 6f:f3:b9:8b:8e:d1:6f:82:17:f2:bd:85:54:cd:22: f4:5c:76:23:69:8b:ab:c4:aa:6c:4a:63:96:9a:ea: c3:e9:68:d1:8f:ca:79:d5:2d:8c:a8:a2:6e:55:25: fc:38:5b:4d:e1:ae:a6:8a:7c:59:db:e0:fe:5f:13: 6a:75:a5:26:33:00:83:9c:da:46:63:fc:1f:19:a4: fe:1f:d6:ce:da:ef:be:ab:78:80:12:e3:f6:39:69: c9:cd:30:06:c6:7c:4b:78:58:82:1a:87:a0:45:2d: d6:dd:79:07:e7:b1:3d:95:28:56:1f:5a:8f:8b:c3: c7:b4:e0:57:6c:61:00:16:ff:0c:4e:a5:11:bf:45: 1a:6a:43:a6:c3:d7:4e:cd:ec:f2:97:2d:e0:05:7c: e1:f9:10:e4:19:a5:10:6c:9e:6f:b8:52:a4:76:6a: 9d:5a:ae:c0:cf:72:7a:a2:0b:c5:c6:79:5e:e7:b1: ad:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:78:E5:96:5C:F1:77:A4:E1:65:8B:BB:4E:50:DF:0D:7B:1E:C7:6E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c11eeb71-8e18-4bd6-95d9-c2a593f46f72.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff7:5000::/40 Signature Algorithm: sha256WithRSAEncryption 7b:d7:41:0b:57:59:db:d1:27:3c:1f:2c:2f:68:f9:d8:97:20: 2b:1e:d3:37:45:59:c5:e6:8a:0d:57:de:17:0c:89:83:a8:4c: c5:28:78:3c:83:b7:a1:09:3c:61:d2:54:48:0a:a5:f3:1e:ce: 2d:40:e6:1b:95:95:a6:ac:c0:73:71:fc:e8:30:bf:88:07:95: 5b:8f:67:e4:ec:d7:47:0e:3d:a4:9a:2b:b5:63:13:13:bb:b0: 85:75:84:95:dd:db:25:1b:37:61:51:ff:45:62:bd:75:83:43: 89:26:53:e5:bc:c4:30:f9:f0:a4:d4:1b:82:a1:86:0b:bf:25: e8:cc:6d:bd:a9:d1:eb:cc:b1:bc:95:d2:6b:12:f2:d4:84:38: ce:80:2c:3d:d2:a8:d6:0b:14:1d:5e:1f:b6:21:b0:69:ff:24: 7f:12:61:ed:ff:e3:10:08:ec:13:bc:5b:a2:3f:fa:0e:b3:17: 38:05:a5:09:08:6f:79:59:23:71:67:ef:14:dc:62:d3:3a:2d: 85:88:78:3c:6c:03:6b:6a:7a:e0:33:28:d6:3c:b5:ee:f7:f7: 4e:4d:77:fc:85:88:a5:d7:e9:00:ff:a8:aa:21:9f:b5:b5:87: ad:e4:77:48:72:bb:b7:79:94:7a:fd:e5:10:98:52:cf:12:0c: 7d:d1:b7:2a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUETFJ8AvbhBaTQ5rP2sJ1Ju8B9swwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTYxMTI1WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYzQ4ZTFjMzYyMzcyNmM3ZjNjMjBiOTU2NWVhZTBjMjg0 NmNjZjU4ZGU3ZWU4ZjQyMDY1Y2U5Y2FkMGU5ZWVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmf87ZmQ/NmlJewMNofdn/IgKiazQN4ZsYxGX85HgsCRf5 FYxKMWSKWEQ0zQFEKkFMCYYbf1jOwIpSm8aW4AtGKBPuGrPXA2zdn2/zuYuO0W+C F/K9hVTNIvRcdiNpi6vEqmxKY5aa6sPpaNGPynnVLYyoom5VJfw4W03hrqaKfFnb 4P5fE2p1pSYzAIOc2kZj/B8ZpP4f1s7a776reIAS4/Y5acnNMAbGfEt4WIIah6BF LdbdeQfnsT2VKFYfWo+Lw8e04FdsYQAW/wxOpRG/RRpqQ6bD107N7PKXLeAFfOH5 EOQZpRBsnm+4UqR2ap1arsDPcnqiC8XGeV7nsa2PAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUHXjlllzxd6ThZYu7TlDfDXsex24wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MxMWVlYjcxLThlMTgtNGJkNi05NWQ5LWMyYTU5M2Y0NmY3Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/3UDANBgkqhkiG9w0BAQsFAAOCAQEAe9dBC1dZ29EnPB8sL2j52Jcg Kx7TN0VZxeaKDVfeFwyJg6hMxSh4PIO3oQk8YdJUSAql8x7OLUDmG5WVpqzAc3H8 6DC/iAeVW49n5OzXRw49pJortWMTE7uwhXWEld3bJRs3YVH/RWK9dYNDiSZT5bzE MPnwpNQbgqGGC78l6MxtvanR68yxvJXSaxLy1IQ4zoAsPdKo1gsUHV4ftiGwaf8k fxJh7f/jEAjsE7xboj/6DrMXOAWlCQhveVkjcWfvFNxi0zothYh4PGwDa2p64DMo 1jy17vf3Tk13/IWIpdfpAP+oqiGftbWHreR3SHK7t3mUev3lEJhSzxIMfdG3Kg== -----END CERTIFICATE-----Generated at Mon May 5 18:16:50 2025 by rpki-client