$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28bd6f98-f067-4fb1-ad83-83c73490e09e.roa File: 28bd6f98-f067-4fb1-ad83-83c73490e09e.roa (raw, json) Hash identifier: Atit1Gqz+EWP6eFs8n6eD2tIR6CqLu6IXhjRoFux5Us= Subject key identifier: 3B:87:83:3F:83:28:A2:5E:0A:AD:80:9F:1E:EB:AE:B5:0C:A2:6C:DD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6F5A89697640AD4DAE3E447AA95CD5EECAEB0390 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28bd6f98-f067-4fb1-ad83-83c73490e09e.roa Signing time: Wed 09 Apr 2025 00:10:58 +0000 ROA not before: Wed 09 Apr 2025 00:10:58 +0000 ROA not after: Wed 14 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffe:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:5a:89:69:76:40:ad:4d:ae:3e:44:7a:a9:5c:d5:ee:ca:eb:03:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 9 00:10:58 2025 GMT Not After : May 14 23:59:59 2025 GMT Subject: serialNumber=6ce95e87e650f4334345ab7f4c139860d9194fc4dad303faf004c46e8f5ea3f8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:9b:f3:ad:22:ff:f5:8f:8e:c9:36:c9:a1:08: 5f:ff:06:80:dd:a6:e3:6a:d8:96:d7:e1:56:f5:eb: 10:84:e4:03:ee:23:b4:55:8d:d2:1f:2f:92:39:e0: a0:6c:76:ea:ad:66:c7:c7:40:cd:4f:cd:ca:f3:e5: 62:c3:27:be:d9:c4:ea:f3:4d:22:77:63:3e:de:11: f2:34:11:dd:74:11:13:15:b7:dd:27:3e:57:4b:5e: aa:49:a7:1c:27:39:07:87:1d:ce:b8:24:22:a2:ed: e3:8e:0b:81:8b:6c:6a:84:6c:e8:54:17:ad:0a:99: f1:31:e5:19:5a:c0:34:43:43:f9:59:95:2a:fb:7e: 27:2a:01:e6:f6:d5:29:68:2c:20:33:90:1e:76:1f: 1e:18:05:0b:fe:d8:06:b9:89:1f:d8:80:fb:98:6a: b0:85:cb:d1:de:cd:3f:6f:ca:01:7c:4d:45:4d:7d: dd:ae:55:28:61:d3:07:7b:b5:b2:3f:31:17:db:ed: 6e:bb:c7:93:b2:fe:4d:c9:e3:07:3d:c9:f5:e8:e2: 05:4c:c8:79:d1:4a:c5:ca:d8:e4:cc:19:4b:bb:4d: 98:99:54:65:31:a1:e8:9a:31:bc:45:45:2b:b3:de: bf:d9:d8:3d:06:ad:60:3f:be:d9:1f:79:c4:d2:0e: fc:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:87:83:3F:83:28:A2:5E:0A:AD:80:9F:1E:EB:AE:B5:0C:A2:6C:DD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28bd6f98-f067-4fb1-ad83-83c73490e09e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffe:1000::/40 Signature Algorithm: sha256WithRSAEncryption 28:f7:78:a2:d2:99:de:b1:65:9e:ea:15:5e:61:87:0a:9b:ed: 1c:b3:95:e6:20:b4:4d:5a:d3:5a:c6:39:5a:59:4b:70:92:d6: a6:f1:71:48:c3:f6:d7:af:31:69:eb:ea:f8:bc:c5:78:c2:e7: e2:ae:a7:46:2f:93:9c:06:a8:35:90:6d:b3:0c:f5:fc:36:b0: 79:e6:f0:99:e6:c3:4b:88:60:34:eb:45:b2:42:ff:cd:3a:bf: 92:6e:32:92:19:9d:6a:da:ad:3f:bb:da:a1:98:47:a9:ba:ea: 60:c1:bb:ef:9e:48:0c:d6:d1:7a:ce:08:0c:f6:91:2e:ed:fe: eb:8c:6e:d4:31:02:00:0a:c1:38:4c:a5:22:aa:c0:d5:3f:a1: 6b:ec:10:94:21:23:ac:2e:6e:57:73:94:45:59:59:82:96:ba: 3e:23:21:b0:0a:73:22:54:b4:31:31:e5:28:a2:41:69:e8:dc: 37:27:b5:1b:4f:6b:40:da:12:b3:64:6a:f5:d6:6a:e5:0b:b7: 6a:0a:97:ed:d9:01:6b:35:43:3f:10:da:e9:a0:bf:e5:65:94: 08:88:14:77:ee:a7:20:3c:79:9d:6c:3a:8a:52:14:7e:c9:61: 81:c5:8c:eb:9f:d2:a4:80:89:ba:83:ac:24:ec:f6:ff:99:a3: 42:52:38:d7 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUb1qJaXZArU2uPkR6qVzV7srrA5AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA5MDAxMDU4WhcNMjUwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2Y2U5NWU4N2U2NTBmNDMzNDM0NWFiN2Y0YzEzOTg2MGQ5 MTk0ZmM0ZGFkMzAzZmFmMDA0YzQ2ZThmNWVhM2Y4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSm/OtIv/1j47JNsmhCF//BoDdpuNq2JbX4Vb16xCE5APu I7RVjdIfL5I54KBsduqtZsfHQM1Pzcrz5WLDJ77ZxOrzTSJ3Yz7eEfI0Ed10ERMV t90nPldLXqpJpxwnOQeHHc64JCKi7eOOC4GLbGqEbOhUF60KmfEx5RlawDRDQ/lZ lSr7ficqAeb21SloLCAzkB52Hx4YBQv+2Aa5iR/YgPuYarCFy9HezT9vygF8TUVN fd2uVShh0wd7tbI/MRfb7W67x5Oy/k3J4wc9yfXo4gVMyHnRSsXK2OTMGUu7TZiZ VGUxoeiaMbxFRSuz3r/Z2D0GrWA/vtkfecTSDvxZAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUO4eDP4Mool4KrYCfHuuutQyibN0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI4YmQ2Zjk4LWYwNjctNGZiMS1hZDgzLTgzYzczNDkwZTA5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/+EDANBgkqhkiG9w0BAQsFAAOCAQEAKPd4otKZ3rFlnuoVXmGHCpvt HLOV5iC0TVrTWsY5WllLcJLWpvFxSMP2168xaevq+LzFeMLn4q6nRi+TnAaoNZBt swz1/DaweebwmebDS4hgNOtFskL/zTq/km4ykhmdatqtP7vaoZhHqbrqYMG7755I DNbRes4IDPaRLu3+64xu1DECAArBOEylIqrA1T+ha+wQlCEjrC5uV3OURVlZgpa6 PiMhsApzIlS0MTHlKKJBaejcNye1G09rQNoSs2Rq9dZq5Qu3agqX7dkBazVDPxDa 6aC/5WWUCIgUd+6nIDx5nWw6ilIUfslhgcWM65/SpICJuoOsJOz2/5mjQlI41w== -----END CERTIFICATE-----Generated at Sat Apr 26 16:08:12 2025 by rpki-client