$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2da90c2b-8bea-40c6-8dc8-5765b67fc610.roa File: 2da90c2b-8bea-40c6-8dc8-5765b67fc610.roa (raw, json) Hash identifier: 7H321YbnbXlcoCzEs4F3W2OD/r1/YuX2CIJ3XxK9aV0= Subject key identifier: B2:58:25:F9:A5:19:FB:1D:D7:39:21:07:2A:07:A5:C2:30:B9:C6:3A Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 2F370F3240237643F310DAB56839419A724B397A Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2da90c2b-8bea-40c6-8dc8-5765b67fc610.roa Signing time: Tue 29 Apr 2025 00:30:18 +0000 ROA not before: Tue 29 Apr 2025 00:30:18 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 699 IP address blocks: 2606:7b40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:37:0f:32:40:23:76:43:f3:10:da:b5:68:39:41:9a:72:4b:39:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 29 00:30:18 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=437a28bf0db2f86d1f3a541e468d3fef7e6f08a8d434384e2d6340ba149ed48f, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f9:e7:55:d8:86:4a:46:e0:5f:28:88:f3:b7: 79:3b:94:54:34:32:76:8f:8b:da:f9:5d:62:9f:a5: e4:3f:d9:45:10:32:05:f1:09:6f:80:20:33:ec:aa: 3b:43:d7:37:9c:af:87:ba:03:ec:48:6c:cf:bf:84: e1:b0:17:1e:3b:66:ec:5b:75:cd:da:3c:7a:24:26: 76:75:6b:2e:8b:7b:91:67:32:ad:6a:53:4e:0a:ce: 1e:4f:4e:eb:cb:3d:0d:4c:d3:35:a3:65:e0:88:f6: cb:f6:e6:c9:ad:c0:81:b0:1b:6f:1f:41:b1:8b:70: 6d:8b:17:dd:50:ad:6f:e3:d2:3e:cc:83:c9:32:8d: e0:5b:64:9b:f8:48:66:d0:89:e6:21:f6:f7:06:9c: 67:70:22:ed:ce:e5:bb:5f:7f:2e:3f:d8:79:13:26: 02:3d:a4:35:59:1b:bf:ed:7a:31:86:6b:c2:33:9a: 1d:68:ed:6a:8e:38:1d:f1:95:44:7c:cb:c8:9b:e9: c8:a6:8b:8b:04:9b:ee:eb:4e:0b:b7:14:68:34:7f: 8a:22:fd:17:e9:17:b1:30:fd:aa:2b:85:76:f9:4f: 89:1e:af:99:93:ea:cd:82:56:f0:a8:09:a2:c1:c5: e5:60:53:4d:38:ee:f6:e3:d6:69:95:8a:20:c2:71: 17:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:58:25:F9:A5:19:FB:1D:D7:39:21:07:2A:07:A5:C2:30:B9:C6:3A X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2da90c2b-8bea-40c6-8dc8-5765b67fc610.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:7b40::/32 Signature Algorithm: sha256WithRSAEncryption 69:0a:5b:c3:27:01:45:dc:43:09:fe:21:f7:cc:45:72:69:75: fb:c1:41:7f:25:5b:1f:31:75:91:8e:be:b9:97:fc:54:99:3d: 7e:2e:ee:13:78:be:42:a7:9a:6c:7d:ad:74:e1:22:18:5f:ff: f3:51:f5:88:47:29:2c:eb:06:1c:80:e2:db:c2:95:e9:c2:f5: 92:40:aa:b5:8f:4e:14:e6:98:f6:de:fa:a9:9e:38:f7:65:45: b6:a2:bc:9f:af:02:bf:47:e2:ef:45:fc:59:4b:a8:ad:2b:7a: 16:6b:c9:c8:4c:31:5a:85:79:9a:1a:2f:d0:39:e8:b8:6e:89: 8e:1d:c9:b5:be:f2:58:95:96:8b:80:ad:54:e2:1e:f3:7e:41: 81:b3:71:76:89:f7:54:44:af:c7:e7:3e:8a:a3:6b:38:91:87: a6:46:e4:cc:37:2c:bd:38:55:94:df:09:06:68:9c:e5:e3:a3: e4:06:26:34:6e:47:3a:04:43:44:1b:c0:7d:4d:7c:a5:43:64: d7:ab:20:35:a7:d2:a4:89:28:e5:e5:a7:40:30:b0:2c:2b:03: 8f:09:42:ba:68:c2:44:a1:e5:16:81:61:e6:6c:03:4d:ed:5c: ae:70:a6:8c:2a:a1:40:d4:32:b8:1b:b1:62:61:c0:e0:1e:6d: 7f:22:11:44 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIULzcPMkAjdkPzENq1aDlBmnJLOXowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNDI5MDAzMDE4WhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MzdhMjhiZjBkYjJmODZkMWYzYTU0MWU0NjhkM2ZlZjdl NmYwOGE4ZDQzNDM4NGUyZDYzNDBiYTE0OWVkNDhmMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCk+edV2IZKRuBfKIjzt3k7lFQ0MnaPi9r5XWKfpeQ/2UUQ MgXxCW+AIDPsqjtD1zecr4e6A+xIbM+/hOGwFx47Zuxbdc3aPHokJnZ1ay6Le5Fn Mq1qU04Kzh5PTuvLPQ1M0zWjZeCI9sv25smtwIGwG28fQbGLcG2LF91QrW/j0j7M g8kyjeBbZJv4SGbQieYh9vcGnGdwIu3O5btffy4/2HkTJgI9pDVZG7/tejGGa8Iz mh1o7WqOOB3xlUR8y8ib6cimi4sEm+7rTgu3FGg0f4oi/RfpF7Ew/aorhXb5T4ke r5mT6s2CVvCoCaLBxeVgU0047vbj1mmViiDCcRfrAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUslgl+aUZ+x3XOSEHKgelwjC5xjowHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzJkYTkwYzJiLThiZWEtNDBjNi04ZGM4LTU3NjViNjdmYzYxMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBntAMA0GCSqGSIb3DQEBCwUAA4IBAQBpClvDJwFF3EMJ/iH3zEVyaXX7 wUF/JVsfMXWRjr65l/xUmT1+Lu4TeL5Cp5psfa104SIYX//zUfWIRyks6wYcgOLb wpXpwvWSQKq1j04U5pj23vqpnjj3ZUW2oryfrwK/R+LvRfxZS6itK3oWa8nITDFa hXmaGi/QOei4bomOHcm1vvJYlZaLgK1U4h7zfkGBs3F2ifdURK/H5z6Ko2s4kYem RuTMNyy9OFWU3wkGaJzl46PkBiY0bkc6BENEG8B9TXylQ2TXqyA1p9KkiSjl5adA MLAsKwOPCUK6aMJEoeUWgWHmbANN7VyucKaMKqFA1DK4G7FiYcDgHm1/IhFE -----END CERTIFICATE-----Generated at Tue May 13 09:52:55 2025 by rpki-client