$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17c7f0c7-06dc-48f1-9024-2e064e010ed6.roa File: 17c7f0c7-06dc-48f1-9024-2e064e010ed6.roa (raw, json) Hash identifier: AIQs2qaHN/wopTx/MHhLo06j5tQIQ1+STOozKXE1GSw= Subject key identifier: 87:66:D5:FB:DE:7A:1A:F3:56:85:47:EF:D9:6A:A9:F4:55:F0:F6:10 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7E9E433C8F3ECEE8133B2E650617C75DB65F5E5D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17c7f0c7-06dc-48f1-9024-2e064e010ed6.roa Signing time: Mon 21 Apr 2025 17:50:56 +0000 ROA not before: Mon 21 Apr 2025 17:50:56 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f00:8160::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:9e:43:3c:8f:3e:ce:e8:13:3b:2e:65:06:17:c7:5d:b6:5f:5e:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 21 17:50:56 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=565439f8ef626677dc7c7dc890ee2e920519e15b67877080cad3d2f42a5bf08f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:e0:06:79:94:2e:13:b9:75:07:15:23:c3:e4: 90:f0:95:8d:db:78:10:99:69:59:b4:7b:b0:f1:75: 88:11:ef:2b:78:4a:f2:bd:13:2d:f9:b3:f0:2b:4a: 82:6d:24:9a:20:53:33:69:c2:29:a6:e4:53:f9:da: 5d:01:e0:0b:47:68:f3:9b:20:4b:42:8f:6d:0d:a3: af:2c:be:d7:70:f3:92:14:28:2f:b9:ad:02:02:76: 4a:40:4b:14:66:e9:1b:2c:75:b3:a4:3c:cc:3d:ed: 4a:a6:3f:0d:98:0c:7a:4e:d3:f0:d7:17:15:cb:c7: 34:dc:39:f5:30:59:0f:ad:be:13:4f:36:5b:3d:f1: 40:0b:5e:5d:7a:96:b6:e9:d8:dc:da:26:ce:96:45: b9:60:d1:6a:27:e0:06:d1:1e:df:d6:c1:5b:c3:4f: 29:74:c3:b2:68:d0:b5:fb:18:a8:22:18:3a:82:fc: 9d:a6:fb:68:83:02:3e:cb:ee:5e:a2:cc:a9:af:6e: ea:7a:6d:ba:43:9f:40:ff:36:14:0e:1a:9d:79:1c: 3b:8d:c6:ec:61:0a:5c:53:ab:1c:8b:b7:b0:cf:c5: c2:fa:11:b1:05:83:99:e6:b2:c9:95:1e:54:9c:19: 4d:91:3f:ff:7a:50:a3:93:38:30:6f:27:a0:58:e9: 27:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:66:D5:FB:DE:7A:1A:F3:56:85:47:EF:D9:6A:A9:F4:55:F0:F6:10 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17c7f0c7-06dc-48f1-9024-2e064e010ed6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:8160::/48 Signature Algorithm: sha256WithRSAEncryption 03:ae:f8:96:68:a7:45:8a:c7:c5:bc:54:2b:ee:49:32:af:7c: b0:6d:2b:68:02:43:16:54:13:78:f3:cb:ee:62:8f:52:5f:0c: 5c:4d:4d:62:42:5c:6c:f9:5b:7c:14:dc:f9:91:d6:e7:ad:dc: 9f:68:48:19:2c:c9:ed:8b:f9:ae:f8:69:95:c0:fb:60:70:4c: 05:08:10:34:8e:f3:b0:52:4f:2c:6a:ab:eb:33:d3:03:90:3b: 2d:2d:e3:41:2f:39:f6:9a:74:a8:33:d0:6f:0c:39:b3:9d:2d: c4:d0:65:2a:01:fc:93:8e:3a:98:69:71:f4:2e:4f:b9:9c:e5: a1:ed:ca:7d:4e:94:21:27:16:01:0f:6e:8f:e4:a4:99:3f:5d: d5:23:4c:d2:11:0e:90:07:99:fe:01:54:43:27:dc:7d:35:5f: 8d:01:19:e0:45:73:aa:e3:15:59:9c:3a:60:8a:5d:92:97:87: b4:cf:ae:ba:36:b2:79:5a:9b:36:46:a0:d5:2e:cc:67:6e:d2: 8d:45:05:88:fc:92:3c:85:1f:ca:ce:1f:d6:a7:17:cd:23:2f: 62:22:d8:39:6c:5c:2e:7f:2f:48:ac:58:70:90:6a:08:d6:84: ab:1e:cc:d2:cc:39:19:ad:e8:72:17:cf:35:a2:eb:d4:a6:09: 6f:06:2d:04 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfp5DPI8+zugTOy5lBhfHXbZfXl0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIxMTc1MDU2WhcNMjUwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NjU0MzlmOGVmNjI2Njc3ZGM3YzdkYzg5MGVlMmU5MjA1 MTllMTViNjc4NzcwODBjYWQzZDJmNDJhNWJmMDhmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCT4AZ5lC4TuXUHFSPD5JDwlY3beBCZaVm0e7DxdYgR7yt4 SvK9Ey35s/ArSoJtJJogUzNpwimm5FP52l0B4AtHaPObIEtCj20No68svtdw85IU KC+5rQICdkpASxRm6RssdbOkPMw97UqmPw2YDHpO0/DXFxXLxzTcOfUwWQ+tvhNP Nls98UALXl16lrbp2NzaJs6WRblg0Won4AbRHt/WwVvDTyl0w7Jo0LX7GKgiGDqC /J2m+2iDAj7L7l6izKmvbup6bbpDn0D/NhQOGp15HDuNxuxhClxTqxyLt7DPxcL6 EbEFg5nmssmVHlScGU2RP/96UKOTODBvJ6BY6SdjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUh2bV+956GvNWhUfv2Wqp9FXw9hAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE3YzdmMGM3LTA2ZGMtNDhmMS05MDI0LTJlMDY0ZTAxMGVkNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AgWAwDQYJKoZIhvcNAQELBQADggEBAAOu+JZop0WKx8W8VCvuSTKv fLBtK2gCQxZUE3jzy+5ij1JfDFxNTWJCXGz5W3wU3PmR1uet3J9oSBksye2L+a74 aZXA+2BwTAUIEDSO87BSTyxqq+sz0wOQOy0t40EvOfaadKgz0G8MObOdLcTQZSoB /JOOOphpcfQuT7mc5aHtyn1OlCEnFgEPbo/kpJk/XdUjTNIRDpAHmf4BVEMn3H01 X40BGeBFc6rjFVmcOmCKXZKXh7TPrro2snlamzZGoNUuzGdu0o1FBYj8kjyFH8rO H9anF80jL2Ii2DlsXC5/L0isWHCQagjWhKsezNLMORmt6HIXzzWi69SmCW8GLQQ= -----END CERTIFICATE-----Generated at Sat Apr 26 13:26:26 2025 by rpki-client