$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10eee66f-24d2-4d20-b7f1-d2d46838c237.roa File: 10eee66f-24d2-4d20-b7f1-d2d46838c237.roa (raw, json) Hash identifier: +5OpGHodyK3pCcp/kLiUJ6u+5D07yTYJQ/z/jEj391Q= Subject key identifier: 47:0D:D1:DB:F5:98:A7:A3:30:8E:28:8D:22:C2:CE:FC:8C:84:3A:52 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 22AE64766CE86101DF25FAB3DA979484F87BBABC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10eee66f-24d2-4d20-b7f1-d2d46838c237.roa Signing time: Wed 02 Apr 2025 00:12:22 +0000 ROA not before: Wed 02 Apr 2025 00:12:22 +0000 ROA not after: Wed 07 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fef:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:ae:64:76:6c:e8:61:01:df:25:fa:b3:da:97:94:84:f8:7b:ba:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 2 00:12:22 2025 GMT Not After : May 7 23:59:59 2025 GMT Subject: serialNumber=894eb610d0885c791bde44c2df47afc7de368392c335ea1bb2e26a42dfe52f1b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:8a:64:63:50:03:ee:03:e2:1c:ab:e0:fd:84: 0b:82:e5:48:b2:99:d3:47:4d:9d:2b:f3:e0:fc:db: ad:39:ad:e4:e2:4d:f7:cd:d2:74:95:3e:92:5f:85: 85:19:4f:c8:cc:b5:68:9a:ca:e5:0a:c9:e5:1b:e3: 8f:08:84:f1:2f:4b:26:a3:16:01:e8:39:e3:47:3c: 71:55:03:28:29:cb:4d:91:ac:d8:b9:bb:43:80:bf: fa:02:da:fd:cf:cb:00:6b:0a:88:e8:eb:b7:c3:c9: e6:6c:ca:fb:0e:b8:63:d2:2a:65:62:ac:aa:b8:36: 1d:06:67:af:8c:86:a4:03:86:50:df:95:86:ca:b5: 6d:e6:0c:ff:5c:c1:6e:26:d6:98:4f:81:49:31:5c: 55:a4:4d:e3:5b:8a:60:fa:15:31:bd:42:a3:db:73: ef:5e:36:1b:e6:ab:2e:32:3d:79:b5:5b:10:8c:12: 2c:94:a8:eb:a8:7a:8d:ec:5b:60:a1:c9:8d:7f:31: fd:b6:0b:c7:3a:5b:ff:4d:5d:67:04:b9:17:4b:0f: b7:f2:f1:35:e0:ad:1b:a7:16:72:bd:65:6b:7c:7d: d1:85:ac:27:10:25:90:7c:38:02:d2:ba:97:25:40: fc:23:da:b0:e6:16:61:7a:09:a9:30:2d:8a:70:fa: 84:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:0D:D1:DB:F5:98:A7:A3:30:8E:28:8D:22:C2:CE:FC:8C:84:3A:52 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10eee66f-24d2-4d20-b7f1-d2d46838c237.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fef:2000::/40 Signature Algorithm: sha256WithRSAEncryption ad:0c:eb:62:f5:bf:f2:93:06:3a:39:a2:38:aa:8c:d6:4e:67: 89:82:b9:25:64:19:77:4c:12:f2:08:d2:4e:5a:88:4e:ac:fc: 3c:97:c4:90:87:ae:86:29:47:d1:82:18:5b:bc:88:e2:d3:78: e5:fd:fd:b7:ca:d8:8a:c1:ae:8e:cd:84:d7:60:5b:15:67:35: cb:ee:0e:17:80:3d:da:97:e7:72:ca:f4:21:5f:51:bf:22:a5: 9e:f3:53:6d:ef:e6:6b:ae:91:9b:f8:7d:1b:eb:1f:ad:68:50: 22:84:9e:9a:a8:ce:ea:e4:6f:91:83:4c:59:dd:49:b9:36:7a: 48:27:7c:85:80:0b:53:6a:39:9d:97:df:d4:e0:a7:a9:e0:dc: b1:20:b8:38:f8:aa:95:1c:60:af:55:e2:87:b0:a3:01:f6:c8: d0:67:06:1f:12:2d:5f:2a:5c:e8:8a:ef:d4:f4:13:e1:a6:34: e7:c4:8a:23:57:35:8f:04:9c:77:3b:41:0e:27:12:7c:db:25: 85:99:db:88:50:02:68:94:a6:c2:4d:95:77:76:3e:ff:87:90: c3:4e:35:1d:75:8f:56:76:17:10:41:6b:ce:fc:65:ee:03:d0: ff:e4:44:f4:31:c8:a7:6c:b4:65:e9:23:b2:78:cc:a8:20:f4: e8:b6:61:12 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUIq5kdmzoYQHfJfqz2peUhPh7urwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDAyMDAxMjIyWhcNMjUwNTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4OTRlYjYxMGQwODg1Yzc5MWJkZTQ0YzJkZjQ3YWZjN2Rl MzY4MzkyYzMzNWVhMWJiMmUyNmE0MmRmZTUyZjFiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHimRjUAPuA+Icq+D9hAuC5UiymdNHTZ0r8+D82605reTi TffN0nSVPpJfhYUZT8jMtWiayuUKyeUb448IhPEvSyajFgHoOeNHPHFVAygpy02R rNi5u0OAv/oC2v3PywBrCojo67fDyeZsyvsOuGPSKmVirKq4Nh0GZ6+MhqQDhlDf lYbKtW3mDP9cwW4m1phPgUkxXFWkTeNbimD6FTG9QqPbc+9eNhvmqy4yPXm1WxCM EiyUqOuoeo3sW2ChyY1/Mf22C8c6W/9NXWcEuRdLD7fy8TXgrRunFnK9ZWt8fdGF rCcQJZB8OALSupclQPwj2rDmFmF6CakwLYpw+oTFAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQURw3R2/WYp6MwjiiNIsLO/IyEOlIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEwZWVlNjZmLTI0ZDItNGQyMC1iN2YxLWQyZDQ2ODM4YzIzNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/vIDANBgkqhkiG9w0BAQsFAAOCAQEArQzrYvW/8pMGOjmiOKqM1k5n iYK5JWQZd0wS8gjSTlqITqz8PJfEkIeuhilH0YIYW7yI4tN45f39t8rYisGujs2E 12BbFWc1y+4OF4A92pfncsr0IV9RvyKlnvNTbe/ma66Rm/h9G+sfrWhQIoSemqjO 6uRvkYNMWd1JuTZ6SCd8hYALU2o5nZff1OCnqeDcsSC4OPiqlRxgr1Xih7CjAfbI 0GcGHxItXypc6Irv1PQT4aY058SKI1c1jwScdztBDicSfNslhZnbiFACaJSmwk2V d3Y+/4eQw041HXWPVnYXEEFrzvxl7gPQ/+RE9DHIp2y0ZekjsnjMqCD06LZhEg== -----END CERTIFICATE-----Generated at Sat Apr 26 18:38:23 2025 by rpki-client