$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f89be87-45c1-410c-99ee-05d9e524cb54.roa File: 0f89be87-45c1-410c-99ee-05d9e524cb54.roa (raw, json) Hash identifier: iHgeitwQhwTAqb0by9laLIEoSnoF4zaEdPYbOd28K5U= Subject key identifier: 9C:22:B0:FA:DC:BC:53:40:C2:7C:E6:9F:83:78:AE:07:D5:6E:49:7E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3921CD745372368AB16231930C93A888FBEAA21F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f89be87-45c1-410c-99ee-05d9e524cb54.roa Signing time: Wed 16 Apr 2025 00:01:25 +0000 ROA not before: Wed 16 Apr 2025 00:01:25 +0000 ROA not after: Wed 21 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff6:a400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:21:cd:74:53:72:36:8a:b1:62:31:93:0c:93:a8:88:fb:ea:a2:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:01:25 2025 GMT Not After : May 21 23:59:59 2025 GMT Subject: serialNumber=183b27dcae1de6293939853920dc3c57fe3ee87ff3f0cb95e4245a29f813ebe6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b3:30:56:26:0a:8f:d2:ba:ad:80:98:65:1f: f8:3a:05:a7:5d:61:ee:9a:42:94:80:c2:e2:a4:7f: 5a:c4:2b:13:fb:d4:6c:5a:97:1e:65:37:58:32:2a: 87:73:f3:b8:b8:0d:8f:3f:56:f8:88:b7:00:01:d3: de:db:96:85:58:bf:e5:3a:c9:61:13:ee:64:d4:57: f4:b9:6a:bf:d1:a5:0b:c3:50:32:9b:6e:3e:a2:1e: eb:8c:19:f3:5d:e5:c2:e8:52:ef:67:3d:19:13:4c: b7:c2:b8:4b:9a:23:af:21:ee:2a:98:a5:b5:f0:55: 4c:ed:8b:1f:16:a1:1b:7c:fb:10:ec:37:4b:c1:6c: 47:d6:3b:a5:b5:ae:73:ba:8e:5e:dc:11:79:a1:48: c2:27:62:da:70:71:bc:b2:84:46:23:2e:74:e5:ee: 5c:85:b6:84:9a:d7:ce:a5:ca:fd:74:38:fa:57:64: 23:66:9e:c6:f9:c3:6c:3c:45:8b:89:a9:94:77:a6: 16:7e:02:85:aa:c8:41:82:2e:77:25:23:06:52:fa: e6:f5:c2:eb:bb:23:0f:e0:fb:11:56:3b:69:4b:5c: 9d:1e:d2:0e:6a:a9:cf:16:cd:cc:5e:e6:78:4b:64: ce:d3:62:e0:a4:38:a5:54:b4:45:1e:74:2a:e5:5c: 79:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:22:B0:FA:DC:BC:53:40:C2:7C:E6:9F:83:78:AE:07:D5:6E:49:7E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f89be87-45c1-410c-99ee-05d9e524cb54.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff6:a400::/40 Signature Algorithm: sha256WithRSAEncryption 30:e1:0a:ec:a6:c9:a8:ca:52:85:38:f0:bb:b9:7f:e2:c4:35: 9a:4b:8e:c0:38:8c:13:bb:bf:9c:13:b4:ee:57:b8:8a:3d:e3: 2e:cb:38:99:bd:dd:7d:ea:df:66:13:82:bd:ea:c2:7a:8f:33: c4:3a:35:10:44:a4:f0:6b:c8:aa:d6:76:e8:5f:4b:d8:2e:2e: a8:05:aa:b9:75:2b:1e:bf:42:82:1e:5f:2e:d5:6d:ec:f8:e4: 9a:22:59:a9:b0:da:fd:c8:e2:65:23:3b:2c:c1:6e:50:8b:b6: 31:8b:b1:af:12:a1:5f:31:19:8e:53:07:9f:7d:b1:7f:ab:b7: 38:c7:6b:8e:7d:c3:82:c7:1b:a0:4e:f6:93:7c:e7:b4:fb:00: b8:a2:b6:72:70:c7:6d:8c:ad:37:83:e5:18:83:8b:58:a3:c0: 93:11:b2:7d:9e:e9:eb:ad:7e:72:a4:74:4b:d7:37:9a:e3:f5: 52:54:33:86:d3:63:60:e1:6e:eb:aa:8c:07:c9:f7:07:aa:58: 57:7b:3a:cd:a9:3d:9a:53:bd:59:ae:ef:19:9f:91:ec:c9:e4: 73:a6:ff:72:7d:32:7d:b8:5d:22:60:f6:e7:9f:fe:df:49:8b: 0c:24:a3:e5:20:b5:91:1d:84:79:70:48:31:0b:54:96:b0:b6: a4:f9:88:a9 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUOSHNdFNyNoqxYjGTDJOoiPvqoh8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE2MDAwMTI1WhcNMjUwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AxODNiMjdkY2FlMWRlNjI5MzkzOTg1MzkyMGRjM2M1N2Zl M2VlODdmZjNmMGNiOTVlNDI0NWEyOWY4MTNlYmU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6szBWJgqP0rqtgJhlH/g6BaddYe6aQpSAwuKkf1rEKxP7 1Gxalx5lN1gyKodz87i4DY8/VviItwAB097bloVYv+U6yWET7mTUV/S5ar/RpQvD UDKbbj6iHuuMGfNd5cLoUu9nPRkTTLfCuEuaI68h7iqYpbXwVUztix8WoRt8+xDs N0vBbEfWO6W1rnO6jl7cEXmhSMInYtpwcbyyhEYjLnTl7lyFtoSa186lyv10OPpX ZCNmnsb5w2w8RYuJqZR3phZ+AoWqyEGCLnclIwZS+ub1wuu7Iw/g+xFWO2lLXJ0e 0g5qqc8Wzcxe5nhLZM7TYuCkOKVUtEUedCrlXHkFAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUnCKw+ty8U0DCfOafg3iuB9VuSX4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBmODliZTg3LTQ1YzEtNDEwYy05OWVlLTA1ZDllNTI0Y2I1NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/2pDANBgkqhkiG9w0BAQsFAAOCAQEAMOEK7KbJqMpShTjwu7l/4sQ1 mkuOwDiME7u/nBO07le4ij3jLss4mb3dferfZhOCverCeo8zxDo1EESk8GvIqtZ2 6F9L2C4uqAWquXUrHr9Cgh5fLtVt7PjkmiJZqbDa/cjiZSM7LMFuUIu2MYuxrxKh XzEZjlMHn32xf6u3OMdrjn3DgscboE72k3zntPsAuKK2cnDHbYytN4PlGIOLWKPA kxGyfZ7p661+cqR0S9c3muP1UlQzhtNjYOFu66qMB8n3B6pYV3s6zak9mlO9Wa7v GZ+R7Mnkc6b/cn0yfbhdImD255/+30mLDCSj5SC1kR2EeXBIMQtUlrC2pPmIqQ== -----END CERTIFICATE-----Generated at Sat Apr 26 16:50:03 2025 by rpki-client