$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09f53be8-3eb1-472a-9d79-dad807a72234.roa File: 09f53be8-3eb1-472a-9d79-dad807a72234.roa (raw, json) Hash identifier: x55jJZeHQoGaCugkRe4gwvBf4bWpKBzQxXUreUlHh/c= Subject key identifier: 18:AC:1D:F4:E6:F9:8F:22:9D:B7:39:F7:06:70:06:9D:38:8A:F8:D3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6C0A04F7F11E0D3A339736AA7654AD50D74B56B0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09f53be8-3eb1-472a-9d79-dad807a72234.roa Signing time: Tue 22 Apr 2025 16:30:31 +0000 ROA not before: Tue 22 Apr 2025 16:30:31 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f70:8000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:0a:04:f7:f1:1e:0d:3a:33:97:36:aa:76:54:ad:50:d7:4b:56:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:30:31 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=ee0e2c29aa9ba09f40b8a8acc8e18dc743ac18d87e511e7c5a608c74372266f8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b5:f1:7c:a5:23:d8:dd:1f:1b:8e:4a:d6:f0: 21:64:b9:89:96:88:85:29:36:5e:d4:88:b8:b3:8c: 09:e3:c6:01:63:46:04:2a:3e:1f:7e:b2:9d:77:f3: f9:f4:02:90:0e:6d:b3:2f:e6:c3:28:56:a3:74:79: 22:1b:91:7e:4e:86:af:aa:c3:31:d2:02:81:48:b8: c8:37:b1:17:63:c5:6e:91:19:25:3d:f9:1e:e7:b6: 2f:5a:24:80:16:79:17:42:6a:71:5b:82:48:ad:0e: 32:bc:ba:f6:b2:70:07:f9:6b:33:9c:70:74:83:ed: bf:e7:f8:4d:28:cb:ef:2f:af:61:29:04:80:0c:cc: e5:70:39:73:2c:b8:1e:5a:38:1e:4c:c8:f7:0d:80: 34:49:61:e7:a1:2d:70:77:d3:84:13:eb:27:df:e5: 5b:3e:36:88:f4:65:0e:e1:60:f2:a1:a2:43:40:ff: 11:cd:d4:df:ab:44:86:e1:64:30:ff:ea:f0:ae:53: d5:90:83:9b:75:b8:de:6c:1d:6f:b5:eb:40:71:7b: 11:84:d6:d6:7a:b6:c4:2f:ff:16:3d:f9:44:34:c3: 8f:fb:3d:93:65:47:de:ad:12:c1:dd:a8:3f:a2:8b: 34:30:c6:24:a6:49:e6:d7:ad:e8:9a:ff:2f:d7:3b: cb:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:AC:1D:F4:E6:F9:8F:22:9D:B7:39:F7:06:70:06:9D:38:8A:F8:D3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09f53be8-3eb1-472a-9d79-dad807a72234.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f70:8000::/40 Signature Algorithm: sha256WithRSAEncryption 05:77:e9:fb:c6:fe:67:43:6c:ea:c1:f7:63:88:8c:3a:c4:0c: b8:b4:5b:72:27:0d:1f:7b:2d:a1:a4:05:12:ea:a9:26:20:c6: 42:20:1f:aa:f4:9d:eb:53:a5:b7:95:09:0d:01:e9:34:8a:5f: 4d:9c:61:5e:0c:e0:da:ed:81:99:83:8c:54:a9:e4:7e:b1:26: 20:4a:11:03:a8:5b:da:1e:39:61:7c:f3:d6:d1:c4:7b:fb:53: e0:d0:5a:47:4a:3e:4b:37:49:42:cd:0d:2a:02:de:42:3b:e5: 85:9e:5f:33:7d:93:0c:aa:24:ec:13:23:aa:5f:ae:b7:46:5e: b1:54:d5:91:b6:d1:df:a4:14:89:09:74:f2:1f:92:c6:29:e2: 5a:38:a2:e0:41:97:63:43:75:a1:3e:cc:07:ce:49:ea:00:fc: 64:ad:39:e1:4b:13:96:51:b4:1a:74:b0:2c:a0:63:e6:62:70: d2:2d:d9:77:5a:1e:49:1e:78:ef:ca:f9:43:11:25:c6:6e:84: f4:e9:63:9b:7c:79:2c:1c:17:69:8f:6d:30:e9:d9:93:70:c2: 89:e8:90:4f:ac:02:11:9d:de:c2:90:3b:f8:f0:73:6d:3d:06: da:48:ad:cf:f0:c6:79:de:2f:16:43:4c:65:94:e9:8b:4a:ba: 7b:95:bf:ee -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUbAoE9/EeDTozlzaqdlStUNdLVrAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTYzMDMxWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZTBlMmMyOWFhOWJhMDlmNDBiOGE4YWNjOGUxOGRjNzQz YWMxOGQ4N2U1MTFlN2M1YTYwOGM3NDM3MjI2NmY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCptfF8pSPY3R8bjkrW8CFkuYmWiIUpNl7UiLizjAnjxgFj RgQqPh9+sp138/n0ApAObbMv5sMoVqN0eSIbkX5Ohq+qwzHSAoFIuMg3sRdjxW6R GSU9+R7nti9aJIAWeRdCanFbgkitDjK8uvaycAf5azOccHSD7b/n+E0oy+8vr2Ep BIAMzOVwOXMsuB5aOB5MyPcNgDRJYeehLXB304QT6yff5Vs+Noj0ZQ7hYPKhokNA /xHN1N+rRIbhZDD/6vCuU9WQg5t1uN5sHW+160BxexGE1tZ6tsQv/xY9+UQ0w4/7 PZNlR96tEsHdqD+iizQwxiSmSebXreia/y/XO8vdAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUGKwd9Ob5jyKdtzn3BnAGnTiK+NMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA5ZjUzYmU4LTNlYjEtNDcyYS05ZDc5LWRhZDgwN2E3MjIzNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9wgDANBgkqhkiG9w0BAQsFAAOCAQEABXfp+8b+Z0Ns6sH3Y4iMOsQM uLRbcicNH3stoaQFEuqpJiDGQiAfqvSd61Olt5UJDQHpNIpfTZxhXgzg2u2BmYOM VKnkfrEmIEoRA6hb2h45YXzz1tHEe/tT4NBaR0o+SzdJQs0NKgLeQjvlhZ5fM32T DKok7BMjql+ut0ZesVTVkbbR36QUiQl08h+SxiniWjii4EGXY0N1oT7MB85J6gD8 ZK054UsTllG0GnSwLKBj5mJw0i3Zd1oeSR5478r5QxElxm6E9Oljm3x5LBwXaY9t MOnZk3DCieiQT6wCEZ3ewpA7+PBzbT0G2kitz/DGed4vFkNMZZTpi0q6e5W/7g== -----END CERTIFICATE-----Generated at Sat Apr 26 16:41:36 2025 by rpki-client