$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21aa0dd7-3715-4fba-9058-ff15105f4485.roa File: 21aa0dd7-3715-4fba-9058-ff15105f4485.roa (raw, json) Hash identifier: pW5tBv/rPMTgwSr5nU9f+xbmQFeOSRbQraVdle1INAc= Subject key identifier: 49:49:B3:96:4C:98:31:6A:6E:32:BC:34:F4:73:47:97:DA:3A:4B:67 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7421F47853B3E778DE6EADA0A31C623B3A970532 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21aa0dd7-3715-4fba-9058-ff15105f4485.roa Signing time: Mon 21 Apr 2025 17:20:21 +0000 ROA not before: Mon 21 Apr 2025 17:20:21 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:10c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:21:f4:78:53:b3:e7:78:de:6e:ad:a0:a3:1c:62:3b:3a:97:05:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 21 17:20:21 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=bef5c0fc1beae9daae257a8fcb56829f6fda7bb341d0f7e16f2836ff6cb06c2e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:39:bd:e2:37:c2:18:51:f4:13:7a:78:f1:b0: 3b:a8:22:b6:56:ee:1a:72:aa:17:96:c6:9a:d3:4f: 6e:7c:98:09:46:05:61:67:96:61:93:46:b1:04:ec: a4:74:d2:92:f5:40:b2:a5:11:aa:37:ce:cd:08:92: 58:5c:ba:96:c7:f4:92:d9:73:db:60:a5:54:59:5e: 57:82:fb:e8:ef:4e:d5:3c:97:68:6e:3d:a4:79:b4: 5e:42:91:4d:ff:f1:44:73:1f:00:bc:4a:b0:fb:31: 73:c2:64:a5:9d:66:4d:20:b6:ed:d1:64:7b:ba:8e: d7:f9:7a:33:33:20:17:cf:5d:cb:42:3d:45:3f:27: 5e:1f:68:37:dc:37:06:12:51:d0:a8:6b:72:62:3a: b2:d4:d9:2c:c3:b5:58:a3:01:74:7a:e1:a3:66:84: df:05:f0:bb:6a:6e:72:fe:57:2f:7a:84:87:d3:0b: 87:4f:53:d2:52:6b:25:2a:77:cb:88:0c:0e:14:10: b1:1b:8f:cf:d1:27:44:99:69:8b:78:51:79:a5:5b: 8f:4c:bd:6c:7f:c6:60:a6:20:da:9e:51:5f:53:04: 55:e9:4a:cd:8e:f4:56:c0:22:8b:26:1a:a1:61:b9: f4:07:61:bd:f1:91:8e:b9:ef:8f:85:69:2d:2a:82: ae:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:49:B3:96:4C:98:31:6A:6E:32:BC:34:F4:73:47:97:DA:3A:4B:67 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21aa0dd7-3715-4fba-9058-ff15105f4485.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:10c0::/48 Signature Algorithm: sha256WithRSAEncryption 5a:1b:c3:f8:f2:db:77:26:68:78:a8:44:0d:af:48:72:21:7d: 6b:86:c3:2e:d2:35:3f:1d:10:9d:dd:e1:bf:2a:08:c5:95:46: f0:64:d1:f8:97:de:b7:9b:bc:96:38:84:aa:f3:f4:55:a7:0d: 98:a7:08:60:9d:4c:7b:8b:9f:2c:87:cc:24:59:9e:4a:ec:05: 35:34:d3:53:73:f9:90:60:d9:79:ab:c8:7e:8a:3d:cd:ff:54: 70:a6:bb:33:72:75:45:c5:0b:a7:cf:f7:52:92:cf:3e:f6:37: b7:2f:83:6f:07:e3:92:cf:39:25:1f:88:87:ae:f7:9f:fb:60: 5a:5d:f0:04:69:95:76:e5:37:cb:29:d3:2d:1c:d0:30:37:f6: fa:13:b0:e9:27:ca:e6:f3:1e:24:67:85:40:b9:30:b0:35:10: 4c:04:a6:31:11:00:9c:5f:4a:8e:1b:bd:cc:49:d9:61:c5:d9: 35:3b:ee:66:b0:bf:a8:22:78:78:dd:24:04:d8:4f:e0:84:fa: de:d2:75:5d:cc:8d:c0:76:04:f8:75:dc:6c:b7:f0:e1:ce:22: 2c:03:97:56:f0:a2:9c:ef:4c:22:10:8c:cb:99:1b:43:a9:5b: 1d:1c:0f:d4:05:52:b3:a7:e5:00:d3:b4:71:a0:e4:8e:43:6a: 15:5d:08:ab -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdCH0eFOz53jebq2goxxiOzqXBTIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIxMTcyMDIxWhcNMjUwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZWY1YzBmYzFiZWFlOWRhYWUyNTdhOGZjYjU2ODI5ZjZm ZGE3YmIzNDFkMGY3ZTE2ZjI4MzZmZjZjYjA2YzJlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChOb3iN8IYUfQTenjxsDuoIrZW7hpyqheWxprTT258mAlG BWFnlmGTRrEE7KR00pL1QLKlEao3zs0IklhcupbH9JLZc9tgpVRZXleC++jvTtU8 l2huPaR5tF5CkU3/8URzHwC8SrD7MXPCZKWdZk0gtu3RZHu6jtf5ejMzIBfPXctC PUU/J14faDfcNwYSUdCoa3JiOrLU2SzDtVijAXR64aNmhN8F8LtqbnL+Vy96hIfT C4dPU9JSayUqd8uIDA4UELEbj8/RJ0SZaYt4UXmlW49MvWx/xmCmINqeUV9TBFXp Ss2O9FbAIosmGqFhufQHYb3xkY6574+FaS0qgq6HAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUSUmzlkyYMWpuMrw09HNHl9o6S2cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIxYWEwZGQ3LTM3MTUtNGZiYS05MDU4LWZmMTUxMDVmNDQ4NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AEMAwDQYJKoZIhvcNAQELBQADggEBAFobw/jy23cmaHioRA2vSHIh fWuGwy7SNT8dEJ3d4b8qCMWVRvBk0fiX3rebvJY4hKrz9FWnDZinCGCdTHuLnyyH zCRZnkrsBTU001Nz+ZBg2XmryH6KPc3/VHCmuzNydUXFC6fP91KSzz72N7cvg28H 45LPOSUfiIeu95/7YFpd8ARplXblN8sp0y0c0DA39voTsOknyubzHiRnhUC5MLA1 EEwEpjERAJxfSo4bvcxJ2WHF2TU77mawv6gieHjdJATYT+CE+t7SdV3MjcB2BPh1 3Gy38OHOIiwDl1bwopzvTCIQjMuZG0OpWx0cD9QFUrOn5QDTtHGg5I5DahVdCKs= -----END CERTIFICATE-----Generated at Sat Apr 26 16:46:32 2025 by rpki-client