$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27b37178-c8b2-446a-9459-9b54ee75e23e.roa File: 27b37178-c8b2-446a-9459-9b54ee75e23e.roa (raw, json) Hash identifier: AXBW0caVjRcq+T4SHxJTB0q/ljk/CGyjd943Z2HKpck= Subject key identifier: ED:05:F1:74:AB:D4:C2:9F:2B:27:F9:1C:78:AA:C3:A9:D3:1A:C5:BD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6F997D1F5F7A1D9AE0D5B140C208AEDE4A1EAAB6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27b37178-c8b2-446a-9459-9b54ee75e23e.roa Signing time: Tue 22 Apr 2025 15:00:26 +0000 ROA not before: Tue 22 Apr 2025 15:00:26 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:a440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:99:7d:1f:5f:7a:1d:9a:e0:d5:b1:40:c2:08:ae:de:4a:1e:aa:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 15:00:26 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=b9bd3ac379f46d5db6311a2b87d2b395496d9e8de02cf2a020e8f8d1d1fe2190, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:98:f4:6d:bf:10:d1:31:cc:b2:f0:2a:d4:96: 50:d3:f9:87:83:4a:d4:db:b6:81:e7:73:f9:94:f3: 2f:8d:8f:b6:3f:a8:b0:cf:57:25:7c:26:86:57:be: c5:a8:54:79:90:cd:8d:ab:fd:0e:e1:d4:5b:8f:a6: 3d:18:55:db:f8:93:9c:89:67:32:78:45:99:ca:30: cb:99:f6:ff:82:95:13:4d:2b:e3:a6:e9:3e:38:a1: cd:50:6d:4a:31:62:0f:c9:3e:84:c8:e7:92:b3:50: 85:18:cb:16:62:e9:c4:2f:84:db:d1:5c:74:e5:7a: f3:48:cc:42:0b:46:43:5b:21:99:b8:0d:e8:6d:92: 53:3e:c0:1a:90:fb:d0:61:69:56:7b:18:d9:65:da: f9:d0:47:43:2c:99:97:47:13:b0:92:0f:54:e6:96: f7:30:9e:ac:3d:2f:b1:20:45:58:3b:80:fd:e8:ac: 0b:86:fc:4a:4a:33:ea:f9:f9:01:2c:61:18:90:03: f6:32:40:39:2c:2f:49:74:c1:43:65:75:ba:32:21: d7:46:b7:b3:20:cd:f7:e3:f4:ac:dd:a5:3c:de:9a: a6:2b:40:00:9c:01:85:64:e4:4f:f7:0c:45:e6:af: 66:76:ad:bf:fc:ad:ac:83:b2:06:3b:f0:cd:29:07: 82:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:05:F1:74:AB:D4:C2:9F:2B:27:F9:1C:78:AA:C3:A9:D3:1A:C5:BD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27b37178-c8b2-446a-9459-9b54ee75e23e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:a440::/48 Signature Algorithm: sha256WithRSAEncryption 25:e5:fb:f2:7d:79:bc:f1:fb:d1:4f:52:e8:58:64:56:74:6d: 22:dc:65:07:c2:53:e5:e9:ee:e6:6d:c9:dc:b7:44:18:85:32: b7:d0:13:6b:b3:11:4e:4e:f5:b3:4b:25:90:a4:88:f4:f9:fd: 42:22:ab:7f:23:06:fb:12:d9:96:e3:ab:99:0f:42:14:ac:66: 30:4c:8b:d9:e8:cd:b2:ec:db:61:7e:1e:4c:a9:87:85:ee:8b: 8f:c0:7a:f7:e8:a3:42:58:6a:f4:04:62:60:82:6a:47:48:1e: a9:3a:64:e6:c4:60:2f:27:ea:1c:6f:6a:38:d6:68:ef:e7:02: ea:0c:48:3b:aa:d6:ad:1f:de:c8:de:ca:62:74:cd:4f:82:14: ce:39:0a:c1:0f:95:b8:1b:f4:b7:26:48:b4:25:fb:5e:a5:3d: 72:8e:50:49:19:3c:a6:26:27:1c:91:77:4e:d3:2f:51:46:97: 4d:83:56:04:e4:50:bf:48:0e:a8:61:6b:06:10:6e:cc:16:a5: 43:5f:50:42:96:7f:d3:4a:40:5c:e4:ec:b9:eb:33:e5:73:5b: 8a:29:48:eb:6a:d1:ad:c8:eb:d2:d6:69:6a:a9:11:53:7a:17: 8b:6b:17:07:90:c8:bb:41:9a:4a:c0:81:99:73:b4:91:b4:0d: 54:de:f2:28 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUb5l9H196HZrg1bFAwgiu3koeqrYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTUwMDI2WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiOWJkM2FjMzc5ZjQ2ZDVkYjYzMTFhMmI4N2QyYjM5NTQ5 NmQ5ZThkZTAyY2YyYTAyMGU4ZjhkMWQxZmUyMTkwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRmPRtvxDRMcyy8CrUllDT+YeDStTbtoHnc/mU8y+Nj7Y/ qLDPVyV8JoZXvsWoVHmQzY2r/Q7h1FuPpj0YVdv4k5yJZzJ4RZnKMMuZ9v+ClRNN K+Om6T44oc1QbUoxYg/JPoTI55KzUIUYyxZi6cQvhNvRXHTlevNIzEILRkNbIZm4 DehtklM+wBqQ+9BhaVZ7GNll2vnQR0MsmZdHE7CSD1Tmlvcwnqw9L7EgRVg7gP3o rAuG/EpKM+r5+QEsYRiQA/YyQDksL0l0wUNldboyIddGt7Mgzffj9KzdpTzemqYr QACcAYVk5E/3DEXmr2Z2rb/8rayDsgY78M0pB4LfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU7QXxdKvUwp8rJ/kceKrDqdMaxb0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI3YjM3MTc4LWM4YjItNDQ2YS05NDU5LTliNTRlZTc1ZTIzZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//pEAwDQYJKoZIhvcNAQELBQADggEBACXl+/J9ebzx+9FPUuhYZFZ0 bSLcZQfCU+Xp7uZtydy3RBiFMrfQE2uzEU5O9bNLJZCkiPT5/UIiq38jBvsS2Zbj q5kPQhSsZjBMi9nozbLs22F+Hkyph4Xui4/Aevfoo0JYavQEYmCCakdIHqk6ZObE YC8n6hxvajjWaO/nAuoMSDuq1q0f3sjeymJ0zU+CFM45CsEPlbgb9LcmSLQl+16l PXKOUEkZPKYmJxyRd07TL1FGl02DVgTkUL9IDqhhawYQbswWpUNfUEKWf9NKQFzk 7LnrM+VzW4opSOtq0a3I69LWaWqpEVN6F4trFweQyLtBmkrAgZlztJG0DVTe8ig= -----END CERTIFICATE-----Generated at Sat Apr 26 16:17:48 2025 by rpki-client