$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0c4b3cc1-2758-4f84-93c3-9706e2d1a0b4.roa File: 0c4b3cc1-2758-4f84-93c3-9706e2d1a0b4.roa (raw, json) Hash identifier: aDgrVfo+7pXlCAq31RPmy6WZTYHW6GfXXB4PaE0T+xQ= Subject key identifier: 3B:58:0E:23:5A:5E:9A:70:8E:DD:08:80:AA:CC:AB:97:AB:F2:30:37 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 66D3054611933E17924187A14B133F1A50A0AC25 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0c4b3cc1-2758-4f84-93c3-9706e2d1a0b4.roa Signing time: Tue 22 Apr 2025 00:51:14 +0000 ROA not before: Tue 22 Apr 2025 00:51:14 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff6:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:d3:05:46:11:93:3e:17:92:41:87:a1:4b:13:3f:1a:50:a0:ac:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 00:51:14 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=4c64dee6b7d76b076e46d05fcaef027a818111a0317d1d1edb205289e79186dc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:63:5a:06:23:35:06:c7:2e:d0:d8:42:10:9b: 8e:d6:be:39:72:0b:91:84:31:c6:74:19:12:8c:f8: d6:bb:99:bc:50:77:71:2d:54:b3:bf:eb:79:4c:1e: e9:54:de:68:08:1e:96:50:3f:10:e6:fe:60:23:5c: bd:c3:cf:a1:c0:65:79:e3:e7:39:3c:70:35:c1:03: 19:dc:cf:65:a2:65:34:43:78:13:5d:dd:bb:f6:59: ec:7f:ec:55:46:20:e5:51:9a:96:af:d6:c9:32:31: 92:70:55:b9:6c:67:ee:09:16:96:13:aa:ec:d3:75: bd:ba:c9:c0:d2:50:76:a3:52:0b:4c:75:f9:49:53: b6:9e:a0:7e:0e:6c:d5:21:e3:34:65:db:34:7f:32: 42:eb:83:83:ef:16:67:e1:df:fe:2d:ac:d8:38:c4: 76:8c:8e:0d:7a:70:dd:01:cf:7e:e6:37:2c:f4:b2: cd:ff:8c:f4:5e:32:53:7b:81:02:67:ca:fb:65:f3: b8:f1:30:e9:f1:41:dc:64:19:e7:f7:9d:1c:90:4b: b1:9d:95:95:b0:42:7f:20:8e:43:2f:fb:41:eb:1e: 86:21:f8:9a:35:73:f2:1f:f8:25:90:61:89:53:9b: 18:87:71:11:83:33:f2:8f:6d:2c:35:25:8f:71:69: 57:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:58:0E:23:5A:5E:9A:70:8E:DD:08:80:AA:CC:AB:97:AB:F2:30:37 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0c4b3cc1-2758-4f84-93c3-9706e2d1a0b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff6:8000::/48 Signature Algorithm: sha256WithRSAEncryption 85:fc:95:4b:f8:12:6c:7a:2f:8b:21:d9:b4:d7:e9:ac:d4:68: 78:80:c1:85:46:be:18:89:70:67:34:20:65:73:38:4b:3c:65: d2:1f:2a:c0:2e:c9:2c:17:5d:99:a6:fe:8d:f7:49:46:d5:db: f7:6c:69:da:e8:15:06:13:b8:03:fc:32:53:40:f6:07:b5:9a: 5d:09:7d:ec:6a:0b:23:5d:47:f4:d4:90:d3:65:ed:3c:28:a4: 8e:d5:60:66:c7:30:28:cd:c3:09:89:d8:82:ce:98:cf:41:92: 1c:f4:01:80:5e:ed:13:87:18:36:7d:ba:f4:7a:e7:9e:e9:ff: ff:70:3e:1d:89:ea:f7:76:79:eb:98:f3:13:86:2f:47:17:97: 26:b4:b9:d6:b0:65:15:98:93:77:0f:95:af:33:01:59:d0:90: 98:7f:f1:b4:45:02:4a:0c:ba:9f:fc:10:ad:8b:f4:22:65:de: a3:33:26:aa:74:88:eb:44:77:49:8f:bc:95:a5:09:22:66:32: 80:96:8e:6b:5d:d6:dd:8f:e3:48:3d:78:66:c1:07:16:17:4d: 88:71:12:2c:d4:55:d9:07:15:21:68:36:f6:65:7b:ba:e7:6b: ad:e8:f8:4c:ec:e1:27:43:f5:4f:df:c4:3e:45:42:f2:56:57: 22:b2:c4:90 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZtMFRhGTPheSQYehSxM/GlCgrCUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMDA1MTE0WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YzY0ZGVlNmI3ZDc2YjA3NmU0NmQwNWZjYWVmMDI3YTgx ODExMWEwMzE3ZDFkMWVkYjIwNTI4OWU3OTE4NmRjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUY1oGIzUGxy7Q2EIQm47WvjlyC5GEMcZ0GRKM+Na7mbxQ d3EtVLO/63lMHulU3mgIHpZQPxDm/mAjXL3Dz6HAZXnj5zk8cDXBAxncz2WiZTRD eBNd3bv2Wex/7FVGIOVRmpav1skyMZJwVblsZ+4JFpYTquzTdb26ycDSUHajUgtM dflJU7aeoH4ObNUh4zRl2zR/MkLrg4PvFmfh3/4trNg4xHaMjg16cN0Bz37mNyz0 ss3/jPReMlN7gQJnyvtl87jxMOnxQdxkGef3nRyQS7GdlZWwQn8gjkMv+0HrHoYh +Jo1c/If+CWQYYlTmxiHcRGDM/KPbSw1JY9xaVePAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUO1gOI1pemnCO3QiAqsyrl6vyMDcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBjNGIzY2MxLTI3NTgtNGY4NC05M2MzLTk3MDZlMmQxYTBiNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/2gAAwDQYJKoZIhvcNAQELBQADggEBAIX8lUv4Emx6L4sh2bTX6azU aHiAwYVGvhiJcGc0IGVzOEs8ZdIfKsAuySwXXZmm/o33SUbV2/dsadroFQYTuAP8 MlNA9ge1ml0JfexqCyNdR/TUkNNl7TwopI7VYGbHMCjNwwmJ2ILOmM9Bkhz0AYBe 7ROHGDZ9uvR6557p//9wPh2J6vd2eeuY8xOGL0cXlya0udawZRWYk3cPla8zAVnQ kJh/8bRFAkoMup/8EK2L9CJl3qMzJqp0iOtEd0mPvJWlCSJmMoCWjmtd1t2P40g9 eGbBBxYXTYhxEizUVdkHFSFoNvZle7rna63o+Ezs4SdD9U/fxD5FQvJWVyKyxJA= -----END CERTIFICATE-----Generated at Sat Apr 26 14:56:33 2025 by rpki-client