$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ea431c8-e4df-4671-a74c-024b16849a0d.roa File: 1ea431c8-e4df-4671-a74c-024b16849a0d.roa (raw, json) Hash identifier: zQq+yfA8g8l5WVrVyOXAN6+RIt2UtsfaQyKhZImZJOM= Subject key identifier: F0:12:D2:96:BF:7E:44:EF:F2:95:22:F3:27:26:8D:5E:35:44:C3:74 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0CF9BC1DB7298E733FFABB0EBA48317020F5047D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ea431c8-e4df-4671-a74c-024b16849a0d.roa Signing time: Tue 22 Apr 2025 16:40:15 +0000 ROA not before: Tue 22 Apr 2025 16:40:15 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fb9:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:f9:bc:1d:b7:29:8e:73:3f:fa:bb:0e:ba:48:31:70:20:f5:04:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:40:15 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=a724659a640bd1af4ea8462bd00aeee034ad9394b70834b0e3e429f67d9d6a13, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a4:55:b9:27:1c:0a:e3:97:49:f1:58:77:ef: f8:0d:a1:db:03:f8:54:4b:fa:9a:2e:dd:51:8d:a9: 63:c7:a1:c4:b2:37:a6:e5:2e:c1:72:e8:91:3e:5b: cf:d1:23:3b:8c:53:13:4b:05:fd:13:bf:88:d1:b5: a1:d3:26:a3:43:bd:a8:12:fd:a2:a2:18:aa:bb:32: 36:6b:8c:89:ef:c1:8a:22:60:4e:f2:a5:06:6f:7c: ed:e7:93:d2:83:cc:9d:89:8f:f0:fe:ae:d0:b4:e1: 12:24:91:e3:dd:f3:8f:96:b3:fe:0b:d0:0f:c3:83: b6:45:7c:89:16:7d:e5:a6:06:2e:aa:85:53:10:46: e9:5c:2f:22:13:04:57:69:ba:ab:f0:f6:0e:12:b4: 26:03:b5:13:8b:74:53:d5:dd:b4:a0:cd:fe:d5:bd: 57:e6:e9:74:94:a3:4e:95:dc:53:8a:7a:5f:71:f8: d4:fa:95:42:f1:3b:96:52:6d:99:9f:43:6b:4e:05: 49:77:fd:46:8c:71:26:63:b8:b1:57:0d:a8:b4:b0: 9b:91:17:8e:d6:4b:32:90:89:24:46:84:da:05:67: bd:de:26:1c:b4:3c:52:a6:1f:2d:06:9e:19:2c:b1: 48:41:6f:91:0c:89:24:d2:4f:c4:b7:b7:cd:0d:b9: 96:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:12:D2:96:BF:7E:44:EF:F2:95:22:F3:27:26:8D:5E:35:44:C3:74 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ea431c8-e4df-4671-a74c-024b16849a0d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb9:8000::/39 Signature Algorithm: sha256WithRSAEncryption 0b:e8:10:d7:8f:0f:04:63:df:58:15:de:09:4d:96:36:31:07: 7e:88:1b:6b:9d:dc:e3:97:ae:74:9b:c9:b7:77:b5:3e:52:66: fd:fd:b1:80:30:59:dd:55:9e:e6:3c:42:25:04:31:cf:b6:70: 75:5c:f0:e2:fb:a4:0d:cb:a4:61:a1:8f:57:04:ff:1f:d6:0e: ca:a7:24:79:ed:40:c7:1a:c0:2a:93:70:e8:66:69:3d:c4:a0: 5c:52:8d:2f:7e:27:84:a1:87:b6:7d:f5:6b:88:52:22:e5:fc: db:27:e0:57:5b:ee:ba:54:ac:7f:82:45:59:42:c6:65:47:f5: 6b:01:f1:f4:ed:e2:bf:9d:8a:69:d5:17:70:11:8b:13:35:ae: 35:8a:74:65:d5:4b:ab:2c:f7:dc:d9:1b:2e:ce:ea:a1:f9:9f: f6:9a:e7:1a:b1:37:39:a2:55:c7:27:1e:17:93:dc:30:1a:2f: 79:c5:eb:ee:85:2d:d6:3a:94:79:7d:75:eb:90:6e:b5:25:55: dc:d9:7b:78:c3:c5:88:26:b2:26:84:ef:13:c8:66:c2:8b:af: 88:10:64:13:68:4d:ab:a1:74:36:44:de:f5:09:6a:eb:ce:49: e7:d7:0f:a8:e1:d4:22:4d:0e:14:9d:c2:65:5c:31:da:bd:e3: bb:55:67:b9 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUDPm8HbcpjnM/+rsOukgxcCD1BH0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTY0MDE1WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNzI0NjU5YTY0MGJkMWFmNGVhODQ2MmJkMDBhZWVlMDM0 YWQ5Mzk0YjcwODM0YjBlM2U0MjlmNjdkOWQ2YTEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBpFW5JxwK45dJ8Vh37/gNodsD+FRL+pou3VGNqWPHocSy N6blLsFy6JE+W8/RIzuMUxNLBf0Tv4jRtaHTJqNDvagS/aKiGKq7MjZrjInvwYoi YE7ypQZvfO3nk9KDzJ2Jj/D+rtC04RIkkePd84+Ws/4L0A/Dg7ZFfIkWfeWmBi6q hVMQRulcLyITBFdpuqvw9g4StCYDtROLdFPV3bSgzf7VvVfm6XSUo06V3FOKel9x +NT6lULxO5ZSbZmfQ2tOBUl3/UaMcSZjuLFXDai0sJuRF47WSzKQiSRGhNoFZ73e Jhy0PFKmHy0GnhkssUhBb5EMiSTST8S3t80NuZbVAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU8BLSlr9+RO/ylSLzJyaNXjVEw3QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFlYTQzMWM4LWU0ZGYtNDY3MS1hNzRjLTAyNGIxNjg0OWEwZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB+5gDANBgkqhkiG9w0BAQsFAAOCAQEAC+gQ148PBGPfWBXeCU2WNjEH fogba53c45eudJvJt3e1PlJm/f2xgDBZ3VWe5jxCJQQxz7ZwdVzw4vukDcukYaGP VwT/H9YOyqckee1AxxrAKpNw6GZpPcSgXFKNL34nhKGHtn31a4hSIuX82yfgV1vu ulSsf4JFWULGZUf1awHx9O3iv52KadUXcBGLEzWuNYp0ZdVLqyz33NkbLs7qofmf 9prnGrE3OaJVxyceF5PcMBovecXr7oUt1jqUeX1165ButSVV3Nl7eMPFiCayJoTv E8hmwouviBBkE2hNq6F0NkTe9Qlq685J59cPqOHUIk0OFJ3CZVwx2r3ju1VnuQ== -----END CERTIFICATE-----Generated at Sat Apr 26 13:26:35 2025 by rpki-client