$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21c12458-40e0-4368-b79a-97b69e7070f9.roa File: 21c12458-40e0-4368-b79a-97b69e7070f9.roa (raw, json) Hash identifier: lIowj++L3u9rITjFzGBVkwUH2RObEkdw/Hip8FMnjck= Subject key identifier: 74:FD:21:39:B6:07:F4:1C:A0:2E:5B:00:C5:D9:70:DC:37:6C:42:0A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2018D5D4BE6F29E3AAC706C1E8CCEE1D2DDCB97D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21c12458-40e0-4368-b79a-97b69e7070f9.roa Signing time: Tue 22 Apr 2025 16:50:13 +0000 ROA not before: Tue 22 Apr 2025 16:50:13 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f11::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:18:d5:d4:be:6f:29:e3:aa:c7:06:c1:e8:cc:ee:1d:2d:dc:b9:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:50:13 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=c413e51121ac5852206e73388c6800f297926e1c07810749a6792612a95de88c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:62:85:e4:c7:bc:87:15:34:7d:d4:a1:51:0f: 04:b2:4d:cd:3a:8b:7f:81:a0:db:b6:a5:b2:59:fa: 69:5b:2f:5a:26:65:60:f2:60:23:0d:49:38:ac:c3: 47:80:1b:15:02:b3:1a:64:a8:f5:4e:d6:16:34:14: 32:8e:67:c4:2d:8b:4c:e9:07:54:29:cd:e5:22:35: 3b:9f:5b:c2:6b:1b:6e:4c:a2:a2:19:20:42:82:07: ea:ec:ee:0f:23:b9:7b:5d:f2:6d:67:40:1f:d6:e6: cf:48:0a:4a:fc:3d:2b:6b:bf:0b:88:ad:46:ed:2c: 08:55:96:9f:63:11:65:9a:9b:2e:92:e8:62:8a:04: 09:78:c3:d6:5b:5d:54:05:36:43:6f:2b:09:d5:c7: 6b:d1:f2:63:fd:58:03:a9:ca:aa:8b:f2:66:95:d0: e1:45:b4:af:b9:cd:4b:e5:73:ab:47:c5:fd:c1:a6: 50:99:1b:aa:d5:ff:62:69:bd:5b:c9:ae:d5:55:5e: df:a1:e5:d3:84:91:bf:90:f7:db:d8:2a:a2:9d:08: b7:83:51:04:3b:b2:7f:bb:42:d1:b5:f7:6e:4a:a7: 6d:54:c1:6e:ca:96:f8:64:e2:dc:dc:60:d9:1a:14: 06:cf:0a:a6:18:b6:5c:8c:97:7b:4b:72:cc:57:3c: fc:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:FD:21:39:B6:07:F4:1C:A0:2E:5B:00:C5:D9:70:DC:37:6C:42:0A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21c12458-40e0-4368-b79a-97b69e7070f9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f11::/36 Signature Algorithm: sha256WithRSAEncryption 6d:97:5e:d4:ad:da:1f:20:71:88:4a:3e:62:91:7c:e5:d9:26: fd:28:f4:9c:70:26:6b:0e:16:27:24:21:b3:22:0e:16:28:b1: 51:7b:9c:85:81:94:6a:9a:bf:e5:d5:e6:84:eb:8b:7c:65:b0: 81:97:c1:f1:1b:a6:f2:d8:fb:12:c3:19:62:7d:bd:f0:71:b3: 60:c0:5d:f7:a5:1b:07:b0:3e:d2:e2:b2:4b:4f:11:cd:20:2e: f6:61:dc:94:f0:99:e8:07:98:ed:3c:9c:5b:8b:68:dc:16:6c: 08:78:2b:ef:b8:27:2b:f8:bf:27:ef:48:ed:58:0e:fd:da:88: 42:b4:13:1f:3e:79:fb:ac:f0:e0:44:93:be:09:78:03:62:45: df:c5:62:d5:f8:86:cd:a1:8c:c1:26:ae:b8:2e:e4:5b:08:05: 56:91:d4:2a:67:fb:29:0b:ab:13:53:b7:a9:d0:b9:34:a0:54: 64:82:52:f2:36:22:83:69:11:bf:2c:2e:fc:a9:8a:4c:6c:f9: 7a:2b:8b:b9:30:5c:40:0b:a1:20:dd:83:2c:66:1d:78:66:2b: 43:68:6f:a7:dd:f8:40:08:9b:0d:1b:05:e9:2c:4e:6a:e8:9f: ec:98:08:59:11:88:c6:55:1e:3e:95:4c:13:4c:74:1f:b5:2e: 37:8d:17:cd -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUIBjV1L5vKeOqxwbB6MzuHS3cuX0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTY1MDEzWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNDEzZTUxMTIxYWM1ODUyMjA2ZTczMzg4YzY4MDBmMjk3 OTI2ZTFjMDc4MTA3NDlhNjc5MjYxMmE5NWRlODhjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDkYoXkx7yHFTR91KFRDwSyTc06i3+BoNu2pbJZ+mlbL1om ZWDyYCMNSTisw0eAGxUCsxpkqPVO1hY0FDKOZ8Qti0zpB1QpzeUiNTufW8JrG25M oqIZIEKCB+rs7g8juXtd8m1nQB/W5s9ICkr8PStrvwuIrUbtLAhVlp9jEWWamy6S 6GKKBAl4w9ZbXVQFNkNvKwnVx2vR8mP9WAOpyqqL8maV0OFFtK+5zUvlc6tHxf3B plCZG6rV/2JpvVvJrtVVXt+h5dOEkb+Q99vYKqKdCLeDUQQ7sn+7QtG1925Kp21U wW7Klvhk4tzcYNkaFAbPCqYYtlyMl3tLcsxXPPxhAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUdP0hObYH9BygLlsAxdlw3DdsQgowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIxYzEyNDU4LTQwZTAtNDM2OC1iNzlhLTk3YjY5ZTcwNzBmOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8RADANBgkqhkiG9w0BAQsFAAOCAQEAbZde1K3aHyBxiEo+YpF85dkm /Sj0nHAmaw4WJyQhsyIOFiixUXuchYGUapq/5dXmhOuLfGWwgZfB8Rum8tj7EsMZ Yn298HGzYMBd96UbB7A+0uKyS08RzSAu9mHclPCZ6AeY7TycW4to3BZsCHgr77gn K/i/J+9I7VgO/dqIQrQTHz55+6zw4ESTvgl4A2JF38Vi1fiGzaGMwSauuC7kWwgF VpHUKmf7KQurE1O3qdC5NKBUZIJS8jYig2kRvywu/KmKTGz5eiuLuTBcQAuhIN2D LGYdeGYrQ2hvp934QAibDRsF6SxOauif7JgIWRGIxlUePpVME0x0H7UuN40XzQ== -----END CERTIFICATE-----Generated at Sat Apr 26 16:32:28 2025 by rpki-client