$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/20755d60-bf66-4983-a6c3-090f1c287f3f.roa File: 20755d60-bf66-4983-a6c3-090f1c287f3f.roa (raw, json) Hash identifier: fwc3QwiMFuYT259s9xFvJigQmLmWE4A+Uj+zVSK2CzU= Subject key identifier: 1F:57:21:C3:FA:B1:6F:9F:F9:E3:EF:4A:22:D4:3E:5F:D1:76:C8:16 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 36D66BF53D28F3E43F34019C490E2F5CA40B25CE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/20755d60-bf66-4983-a6c3-090f1c287f3f.roa Signing time: Tue 22 Apr 2025 15:30:35 +0000 ROA not before: Tue 22 Apr 2025 15:30:35 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fff:8010::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:d6:6b:f5:3d:28:f3:e4:3f:34:01:9c:49:0e:2f:5c:a4:0b:25:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 15:30:35 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=fbc27032d8da76d72c4a5df5441e6d4b4691741aa204c9e4c1beeea6a01104e0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:6c:48:61:b0:5d:31:84:1c:73:37:7c:e1:56: 8e:5b:c2:f1:79:a1:78:67:bf:ee:28:df:4b:64:9c: 02:3b:f1:3c:aa:41:60:3a:f2:d7:72:82:81:6c:4a: 4f:be:24:7b:cd:3f:1e:e1:76:32:cb:41:75:a4:fb: 60:13:64:e7:96:2a:56:6c:bb:64:e1:3e:8a:87:c3: 79:61:30:06:aa:d3:5c:9a:ff:e9:36:87:dc:f4:da: 51:f1:31:44:52:19:43:0c:c6:38:33:c0:cc:1b:ba: fa:52:66:e6:ce:bd:4a:13:75:1d:27:62:b1:77:c0: fb:45:f7:b7:53:14:76:8d:4a:ea:a8:67:22:86:75: 3f:ff:8a:3b:76:8a:62:68:59:c8:44:b4:d5:b3:b9: d9:06:3e:5b:36:b2:bb:4a:17:fa:98:fc:33:26:1e: 0f:ae:0e:eb:42:70:9c:e9:21:9d:66:43:0f:12:ca: 66:59:36:fb:e3:ce:e6:0b:7d:63:bc:08:1c:d0:09: 31:b4:8e:a5:c6:a5:f2:95:fb:d9:25:02:f5:43:ad: 6b:f8:c6:3f:5e:d5:99:e7:c7:c5:db:0f:cd:3b:cc: 24:f9:2d:b9:6f:77:e7:92:5d:e4:4d:a2:fc:de:4f: 75:55:32:06:44:13:d1:1b:9b:fd:03:48:14:2b:ff: d2:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:57:21:C3:FA:B1:6F:9F:F9:E3:EF:4A:22:D4:3E:5F:D1:76:C8:16 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/20755d60-bf66-4983-a6c3-090f1c287f3f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:8010::/48 Signature Algorithm: sha256WithRSAEncryption 62:0a:2c:a1:ad:40:f0:f9:f5:0c:ce:6d:16:7f:13:89:08:53: ea:b7:52:54:e1:2e:c7:46:06:a6:75:0b:90:a8:e2:77:b5:49: 7f:23:35:a4:b9:54:c2:29:2a:ea:3d:a9:a0:7f:c5:7b:45:bc: 5c:14:86:4e:03:ac:bb:4f:34:0d:d4:d5:7d:ee:be:4b:b2:66: 5a:47:06:87:ac:ca:1d:37:96:36:fb:2b:b8:3c:19:02:15:70: 66:4e:70:e3:11:ea:47:7e:43:07:7b:b7:37:31:c4:8e:00:ee: c0:00:34:25:21:98:d2:06:56:43:b3:b3:d0:56:c6:59:2d:0b: 5b:bd:54:cc:48:c2:e3:c2:b3:ab:60:fe:49:f0:db:33:60:67: 0e:76:34:e6:fa:b3:55:5b:9f:36:ce:a6:dc:bd:4c:b4:13:87: ec:6b:d6:2a:9b:55:4e:77:56:eb:32:43:04:0b:4e:6a:55:e9: 8a:cc:48:93:d3:36:47:32:ce:ae:0b:1b:8f:73:26:89:10:f7: d3:da:db:36:30:2e:f2:af:b2:ff:8c:2a:24:73:5e:b0:30:55: 1a:13:9e:cc:cc:87:52:63:03:9d:e8:4c:92:82:da:a3:a3:37: 41:32:89:ca:cd:bf:81:fd:2e:63:58:16:a4:08:b3:72:3e:2f: 23:71:c6:c8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNtZr9T0o8+Q/NAGcSQ4vXKQLJc4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTUzMDM1WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYmMyNzAzMmQ4ZGE3NmQ3MmM0YTVkZjU0NDFlNmQ0YjQ2 OTE3NDFhYTIwNGM5ZTRjMWJlZWVhNmEwMTEwNGUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRbEhhsF0xhBxzN3zhVo5bwvF5oXhnv+4o30tknAI78Tyq QWA68tdygoFsSk++JHvNPx7hdjLLQXWk+2ATZOeWKlZsu2ThPoqHw3lhMAaq01ya /+k2h9z02lHxMURSGUMMxjgzwMwbuvpSZubOvUoTdR0nYrF3wPtF97dTFHaNSuqo ZyKGdT//ijt2imJoWchEtNWzudkGPls2srtKF/qY/DMmHg+uDutCcJzpIZ1mQw8S ymZZNvvjzuYLfWO8CBzQCTG0jqXGpfKV+9klAvVDrWv4xj9e1Znnx8XbD807zCT5 Lblvd+eSXeRNovzeT3VVMgZEE9Ebm/0DSBQr/9LPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUH1chw/qxb5/54+9KItQ+X9F2yBYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIwNzU1ZDYwLWJmNjYtNDk4My1hNmMzLTA5MGYxYzI4N2YzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//gBAwDQYJKoZIhvcNAQELBQADggEBAGIKLKGtQPD59QzObRZ/E4kI U+q3UlThLsdGBqZ1C5Co4ne1SX8jNaS5VMIpKuo9qaB/xXtFvFwUhk4DrLtPNA3U 1X3uvkuyZlpHBoesyh03ljb7K7g8GQIVcGZOcOMR6kd+Qwd7tzcxxI4A7sAANCUh mNIGVkOzs9BWxlktC1u9VMxIwuPCs6tg/knw2zNgZw52NOb6s1VbnzbOpty9TLQT h+xr1iqbVU53VusyQwQLTmpV6YrMSJPTNkcyzq4LG49zJokQ99Pa2zYwLvKvsv+M KiRzXrAwVRoTnszMh1JjA53oTJKC2qOjN0EyicrNv4H9LmNYFqQIs3I+LyNxxsg= -----END CERTIFICATE-----Generated at Sat Apr 26 13:29:53 2025 by rpki-client