$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/80d0e2ea-6a97-4531-ba66-c7d4d4ee82a7.roa File: 80d0e2ea-6a97-4531-ba66-c7d4d4ee82a7.roa (raw, json) Hash identifier: 8C+0M62wTeeNX5l6wCeiqyKlPQiwe3w7boA8YRN6vQQ= Subject key identifier: 34:22:0E:1A:2C:AF:0F:57:98:4D:55:DC:30:A5:EC:16:71:CE:49:A2 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 41C6CA6B0AC8D03868D560889DA7C5E686BACDDA Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/80d0e2ea-6a97-4531-ba66-c7d4d4ee82a7.roa Signing time: Mon 28 Apr 2025 15:30:18 +0000 ROA not before: Mon 28 Apr 2025 15:30:18 +0000 ROA not after: Mon 02 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2606:8140::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 15 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:c6:ca:6b:0a:c8:d0:38:68:d5:60:88:9d:a7:c5:e6:86:ba:cd:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 28 15:30:18 2025 GMT Not After : Jun 2 23:59:59 2025 GMT Subject: serialNumber=2da8c08cc0b2a21dbeb288fb46a0a2b5c6efb1eaca2ef880418fdd3fc9f7d66b, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ac:5b:e8:2d:7f:ca:c1:3f:a5:50:26:71:62: eb:e3:d8:e7:c9:72:86:84:a4:4a:fe:76:8d:79:b4: bc:64:f6:dd:22:a3:7b:4b:cd:84:7d:27:4d:6b:a7: a3:88:7c:72:c1:07:5c:e6:d7:d6:d7:32:cc:7e:dd: 74:ab:f6:15:2b:f6:e1:22:f8:de:99:41:1d:69:a9: 09:e9:9a:b9:e2:ed:4e:6b:03:a1:c2:b4:0a:12:13: 5d:a3:7a:00:65:bd:95:38:82:ba:86:af:a7:c8:0b: 50:69:36:7c:fd:0a:99:af:11:89:aa:13:f4:75:bd: 7e:ea:82:1d:aa:10:24:02:f7:77:ee:c0:db:ca:29: 93:ea:ed:e1:d2:0c:d1:7d:27:02:30:c5:df:fa:65: 74:a6:8f:4c:e0:4f:95:d8:75:5e:89:bd:b5:19:66: b6:08:0e:93:16:54:fe:52:1a:ac:4c:4b:4f:51:eb: 10:c2:bb:4f:16:da:7d:2a:35:50:d6:0e:fb:0a:3e: fa:42:1c:2a:4c:27:ea:18:63:e3:43:8c:57:d4:df: 88:20:4d:05:ff:b9:e1:c1:a9:45:3e:8e:90:06:75: 09:7d:6f:6e:f6:70:52:18:26:52:8b:85:61:79:af: 7a:ed:a3:d9:e1:ec:f5:31:de:d9:51:63:62:ab:61: 66:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:22:0E:1A:2C:AF:0F:57:98:4D:55:DC:30:A5:EC:16:71:CE:49:A2 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/80d0e2ea-6a97-4531-ba66-c7d4d4ee82a7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:8140::/32 Signature Algorithm: sha256WithRSAEncryption 32:b0:cf:f7:dd:52:b3:72:43:d7:24:c7:c6:70:fb:b0:4e:81: c0:e2:31:56:13:db:0a:c6:9d:3d:15:9d:d6:0d:1d:9d:03:aa: 11:55:c4:9e:4c:78:23:3c:d4:3c:b6:d1:b4:0a:eb:8b:4f:f4: aa:46:35:5b:ef:09:1d:78:20:12:55:24:64:76:a1:0a:95:04: 66:d1:8e:18:7a:59:52:21:26:bf:04:36:1a:16:c3:1b:e4:4d: 06:ae:d5:be:21:17:84:55:c7:64:5c:bc:45:25:df:8c:63:39: ba:98:59:c7:7f:32:14:78:80:b9:3b:6f:3d:69:63:e9:9e:1f: 76:3d:fa:fe:63:9e:ee:56:91:60:39:b9:db:93:d1:a2:43:e9: 2e:04:30:da:aa:66:9d:bd:df:83:5e:68:29:a5:d1:f3:a2:0a: 83:19:36:9a:20:47:85:d6:cc:e0:05:c3:1f:09:6d:c2:1c:47: ba:d5:88:94:44:e7:9a:df:bb:41:aa:0c:5d:5b:32:2e:5f:dd: a3:2e:77:6b:17:00:ce:92:72:9c:a0:36:e4:ec:5b:25:5b:ce: ac:49:e2:4b:28:e6:cd:51:16:7e:e9:9a:9e:ee:17:18:0e:8d: 9b:a2:fa:3d:44:b7:28:c8:bc:00:b1:27:b1:aa:fe:5a:45:1d: 98:7a:f5:e1 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUQcbKawrI0Dho1WCInafF5oa6zdowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNDI4MTUzMDE4WhcNMjUwNjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZGE4YzA4Y2MwYjJhMjFkYmViMjg4ZmI0NmEwYTJiNWM2 ZWZiMWVhY2EyZWY4ODA0MThmZGQzZmM5ZjdkNjZiMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSrFvoLX/KwT+lUCZxYuvj2OfJcoaEpEr+do15tLxk9t0i o3tLzYR9J01rp6OIfHLBB1zm19bXMsx+3XSr9hUr9uEi+N6ZQR1pqQnpmrni7U5r A6HCtAoSE12jegBlvZU4grqGr6fIC1BpNnz9CpmvEYmqE/R1vX7qgh2qECQC93fu wNvKKZPq7eHSDNF9JwIwxd/6ZXSmj0zgT5XYdV6JvbUZZrYIDpMWVP5SGqxMS09R 6xDCu08W2n0qNVDWDvsKPvpCHCpMJ+oYY+NDjFfU34ggTQX/ueHBqUU+jpAGdQl9 b272cFIYJlKLhWF5r3rto9nh7PUx3tlRY2KrYWatAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUNCIOGiyvD1eYTVXcMKXsFnHOSaIwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzgwZDBlMmVhLTZhOTctNDUzMS1iYTY2LWM3ZDRkNGVlODJhNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBoFAMA0GCSqGSIb3DQEBCwUAA4IBAQAysM/33VKzckPXJMfGcPuwToHA 4jFWE9sKxp09FZ3WDR2dA6oRVcSeTHgjPNQ8ttG0CuuLT/SqRjVb7wkdeCASVSRk dqEKlQRm0Y4YellSISa/BDYaFsMb5E0GrtW+IReEVcdkXLxFJd+MYzm6mFnHfzIU eIC5O289aWPpnh92Pfr+Y57uVpFgObnbk9GiQ+kuBDDaqmadvd+DXmgppdHzogqD GTaaIEeF1szgBcMfCW3CHEe61YiUROea37tBqgxdWzIuX92jLndrFwDOknKcoDbk 7FslW86sSeJLKObNURZ+6Zqe7hcYDo2bovo9RLcoyLwAsSexqv5aRR2YevXh -----END CERTIFICATE-----Generated at Tue May 13 22:31:51 2025 by rpki-client