$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/332eb12c-32e8-4671-8362-1984f7006f09.roa File: 332eb12c-32e8-4671-8362-1984f7006f09.roa (raw, json) Hash identifier: jsEC+SAJnp+d9znP7Q/avepoPMS0pnMb0VYkqDByjYA= Subject key identifier: AB:9A:B2:6A:AF:1D:67:FF:3D:F1:EA:15:C6:39:0A:15:94:28:08:81 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7D95F1910C333BB017E16283DC5B147067B4B9BA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/332eb12c-32e8-4671-8362-1984f7006f09.roa Signing time: Tue 22 Apr 2025 16:40:34 +0000 ROA not before: Tue 22 Apr 2025 16:40:34 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f1e::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:95:f1:91:0c:33:3b:b0:17:e1:62:83:dc:5b:14:70:67:b4:b9:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:40:34 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=fef58892299dacd2259312472e6cf58a4c1a632c47041dea164ab24a8cc2cc87, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:67:42:3b:dd:71:90:4c:94:d4:48:09:cd:0b: a8:85:f7:cd:07:0b:bf:29:99:7d:a2:d6:2f:d7:64: 0d:55:f7:7f:ea:d3:50:5f:ab:e9:45:45:58:08:ba: e9:77:b8:e9:f0:04:c9:f9:49:28:93:44:9b:23:9f: 62:6d:12:74:99:bf:e8:37:b1:5f:1c:b2:e7:c0:2a: 04:80:d8:59:23:4d:de:d7:41:4d:99:69:9f:a4:7f: 16:3f:3c:47:26:87:1c:38:60:fa:8c:19:e9:05:4b: 9a:d9:8f:c0:5d:0b:7e:a6:9b:44:03:2e:64:8e:2e: bd:37:0b:31:c5:6b:c0:9e:45:5e:f7:68:47:78:6b: a4:c7:35:77:78:ed:d3:9a:89:38:73:24:fb:0c:66: 34:e2:fc:5f:0a:91:53:b4:8f:34:74:58:1f:28:f5: 34:49:b7:c0:2f:12:84:76:90:29:06:41:0c:f5:b1: 2f:53:ce:c5:ea:fb:a7:07:e5:10:fc:ef:41:c2:bd: 3e:d1:de:2a:02:59:2b:87:0e:5c:57:a2:6d:4c:27: 64:dd:6f:88:99:66:7b:56:02:db:29:6e:1c:1d:ab: 0d:31:e1:1a:fe:d1:c2:5d:17:2e:e6:d3:14:6e:a7: ad:c1:b2:0f:e7:f9:d8:78:c9:83:2e:02:3b:69:4a: 28:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:9A:B2:6A:AF:1D:67:FF:3D:F1:EA:15:C6:39:0A:15:94:28:08:81 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/332eb12c-32e8-4671-8362-1984f7006f09.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1e::/38 Signature Algorithm: sha256WithRSAEncryption 8e:6c:0a:7d:27:7e:96:13:bf:ea:71:7f:02:3d:9e:e6:88:48: 40:b1:df:d8:f3:ad:1f:21:3e:1d:f9:7a:3a:1d:19:60:10:85: 93:f3:9a:1c:fb:18:5b:ab:fc:20:87:5d:cf:e4:05:6e:c7:6f: a0:84:aa:0a:94:62:d6:44:4b:90:c7:d8:9b:d4:ce:be:da:ac: 58:23:2c:0d:96:e7:55:57:21:ca:bf:f0:49:30:21:11:9d:db: 75:c3:d0:c0:7a:b7:b2:a6:86:e3:b2:9e:f9:78:1c:67:51:a2: 8a:67:f3:a6:42:31:01:94:1b:3c:2a:a1:fc:23:13:c5:44:90: 90:bf:3e:9d:d6:54:ef:b6:41:fd:ac:6f:4c:4a:e0:e7:fa:0a: 54:48:c9:5d:6b:6b:4a:e3:2b:46:d7:e0:b3:33:87:93:76:8b: 6b:0b:24:ae:11:5a:0f:4a:9c:49:49:cb:ca:9d:6a:e4:20:00: ee:4c:b5:fb:bf:6f:a5:4f:df:26:43:68:0a:f9:85:68:4d:53: a9:59:58:35:45:92:34:8c:c5:a8:0b:e7:73:38:4c:e3:46:6f: 50:e7:e0:3c:b0:c5:a9:2a:7e:6f:4d:f9:ab:2e:d8:45:f5:cf: e5:05:49:b7:87:b2:42:29:e0:a8:ad:bb:ec:44:25:e2:83:f8: a0:25:c2:7a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUfZXxkQwzO7AX4WKD3FsUcGe0ubowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTY0MDM0WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZWY1ODg5MjI5OWRhY2QyMjU5MzEyNDcyZTZjZjU4YTRj MWE2MzJjNDcwNDFkZWExNjRhYjI0YThjYzJjYzg3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDaZ0I73XGQTJTUSAnNC6iF980HC78pmX2i1i/XZA1V93/q 01Bfq+lFRVgIuul3uOnwBMn5SSiTRJsjn2JtEnSZv+g3sV8csufAKgSA2FkjTd7X QU2ZaZ+kfxY/PEcmhxw4YPqMGekFS5rZj8BdC36mm0QDLmSOLr03CzHFa8CeRV73 aEd4a6THNXd47dOaiThzJPsMZjTi/F8KkVO0jzR0WB8o9TRJt8AvEoR2kCkGQQz1 sS9TzsXq+6cH5RD870HCvT7R3ioCWSuHDlxXom1MJ2Tdb4iZZntWAtspbhwdqw0x 4Rr+0cJdFy7m0xRup63Bsg/n+dh4yYMuAjtpSih5AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUq5qyaq8dZ/898eoVxjkKFZQoCIEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMzMmViMTJjLTMyZTgtNDY3MS04MzYyLTE5ODRmNzAwNmYwOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgImAB8eADANBgkqhkiG9w0BAQsFAAOCAQEAjmwKfSd+lhO/6nF/Aj2e5ohI QLHf2POtHyE+Hfl6Oh0ZYBCFk/OaHPsYW6v8IIddz+QFbsdvoISqCpRi1kRLkMfY m9TOvtqsWCMsDZbnVVchyr/wSTAhEZ3bdcPQwHq3sqaG47Ke+XgcZ1GiimfzpkIx AZQbPCqh/CMTxUSQkL8+ndZU77ZB/axvTErg5/oKVEjJXWtrSuMrRtfgszOHk3aL awskrhFaD0qcSUnLyp1q5CAA7ky1+79vpU/fJkNoCvmFaE1TqVlYNUWSNIzFqAvn czhM40ZvUOfgPLDFqSp+b035qy7YRfXP5QVJt4eyQingqK277EQl4oP4oCXCeg== -----END CERTIFICATE-----Generated at Sat Apr 26 14:54:30 2025 by rpki-client