$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3356d24b-fc8c-4c45-9f79-7168e2b6ee25.roa File: 3356d24b-fc8c-4c45-9f79-7168e2b6ee25.roa (raw, json) Hash identifier: FoHj05V9+rZ+LtIhjEtVjlTHXCW2P5oXN07MOEOvjRI= Subject key identifier: 0D:D6:10:A2:DC:45:60:CB:DE:26:53:96:CF:55:39:4E:08:CA:E5:17 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 14C802338423F91646256E88383A5E91BE320FE6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3356d24b-fc8c-4c45-9f79-7168e2b6ee25.roa Signing time: Tue 22 Apr 2025 00:41:00 +0000 ROA not before: Tue 22 Apr 2025 00:41:00 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:4050::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:c8:02:33:84:23:f9:16:46:25:6e:88:38:3a:5e:91:be:32:0f:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 00:41:00 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=5d5312a74b497ffb50728de4d9504831ac558267205a135ba13aa7e7b1c8c52a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:b8:e6:79:8b:01:78:a6:17:88:25:62:23:21: 2b:76:38:82:44:0d:49:3d:24:29:61:57:33:b6:06: 00:82:d5:aa:c4:54:95:41:cd:99:95:47:f5:20:42: e7:bf:8d:fd:ef:c8:bf:0b:4f:e5:0a:bb:04:22:20: b4:d4:9c:bc:57:80:eb:3d:40:5c:c9:f3:c3:f9:4c: 81:47:4c:ff:7b:f1:d7:33:cd:a8:02:29:dd:03:e3: eb:56:fc:5d:d6:bf:6b:24:5c:8b:8d:32:10:68:dc: 85:04:a5:1d:9f:21:83:78:1c:7c:92:1d:18:bd:77: d4:15:de:fe:92:4d:4a:17:ed:7e:e6:bb:20:64:63: ad:21:78:0b:da:b7:54:e7:58:3e:84:49:af:75:e5: c9:b6:7b:cc:c3:95:b3:68:2a:4b:41:e9:64:bc:f0: e2:e2:67:e4:c8:64:91:a9:d3:d9:cf:66:fc:39:c0: 32:b2:17:6f:d2:a6:fa:5c:03:87:af:85:71:0f:26: d9:ae:72:78:9c:5b:1d:9c:50:3b:a3:79:05:3c:a1: f4:87:98:32:ba:54:ba:87:fe:7f:8e:57:f7:4e:f6: 03:ad:85:c9:4c:14:73:71:bd:7a:2d:04:7b:84:b2: 7b:05:3e:78:bb:cc:22:d7:a9:58:74:c7:6b:1d:44: fe:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:D6:10:A2:DC:45:60:CB:DE:26:53:96:CF:55:39:4E:08:CA:E5:17 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3356d24b-fc8c-4c45-9f79-7168e2b6ee25.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:4050::/48 Signature Algorithm: sha256WithRSAEncryption 0b:f7:28:1d:dc:03:f2:c4:41:10:11:33:b1:ef:ad:c3:dc:5b: 3c:7c:2c:53:b1:67:4a:c4:76:92:b8:73:d5:0e:0b:89:10:dd: f0:bb:40:16:b5:8d:fa:09:a9:4d:b3:84:d7:58:fc:7b:31:68: 40:e1:c1:88:b3:df:21:d3:1e:18:af:ac:68:ac:94:67:f7:c8: 69:27:c4:3a:d2:28:44:a8:6c:47:f8:ba:6f:f3:5a:df:55:52: 84:3f:f6:f0:36:99:00:c6:2f:c9:ce:c7:f6:3e:f8:09:d8:24: 8b:dc:50:a0:6f:9e:a7:e8:6a:5b:28:96:26:e1:d6:33:bc:05: 71:a7:de:2f:82:36:bc:18:a6:6b:11:0d:33:fc:5e:39:cc:19: 5a:c7:99:26:eb:61:4b:4f:0d:7d:f9:1a:1c:41:6d:0d:0e:7e: 3a:ca:74:a9:5a:e6:30:e5:6a:4e:13:fe:f6:4f:fd:de:3d:3b: 66:41:65:52:6d:e3:cc:09:eb:f8:aa:cf:7e:2b:17:6f:7d:43: ab:8e:61:ee:7e:ff:82:35:39:e3:3a:d3:6a:41:58:0a:09:05: c3:07:e2:9d:19:cf:6d:4c:2d:9b:2c:d9:2d:7f:ef:d3:3b:7d: dc:f6:3f:c7:41:0a:15:cb:1c:d6:d8:98:25:df:33:69:a5:6b: 31:a6:69:24 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFMgCM4Qj+RZGJW6IODpekb4yD+YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMDA0MTAwWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZDUzMTJhNzRiNDk3ZmZiNTA3MjhkZTRkOTUwNDgzMWFj NTU4MjY3MjA1YTEzNWJhMTNhYTdlN2IxYzhjNTJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiuOZ5iwF4pheIJWIjISt2OIJEDUk9JClhVzO2BgCC1arE VJVBzZmVR/UgQue/jf3vyL8LT+UKuwQiILTUnLxXgOs9QFzJ88P5TIFHTP978dcz zagCKd0D4+tW/F3Wv2skXIuNMhBo3IUEpR2fIYN4HHySHRi9d9QV3v6STUoX7X7m uyBkY60heAvat1TnWD6ESa915cm2e8zDlbNoKktB6WS88OLiZ+TIZJGp09nPZvw5 wDKyF2/SpvpcA4evhXEPJtmucnicWx2cUDujeQU8ofSHmDK6VLqH/n+OV/dO9gOt hclMFHNxvXotBHuEsnsFPni7zCLXqVh0x2sdRP7TAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUDdYQotxFYMveJlOWz1U5TgjK5RcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMzNTZkMjRiLWZjOGMtNGM0NS05Zjc5LTcxNjhlMmI2ZWUyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AQFAwDQYJKoZIhvcNAQELBQADggEBAAv3KB3cA/LEQRARM7HvrcPc Wzx8LFOxZ0rEdpK4c9UOC4kQ3fC7QBa1jfoJqU2zhNdY/HsxaEDhwYiz3yHTHhiv rGislGf3yGknxDrSKESobEf4um/zWt9VUoQ/9vA2mQDGL8nOx/Y++AnYJIvcUKBv nqfoalsolibh1jO8BXGn3i+CNrwYpmsRDTP8XjnMGVrHmSbrYUtPDX35GhxBbQ0O fjrKdKla5jDlak4T/vZP/d49O2ZBZVJt48wJ6/iqz34rF299Q6uOYe5+/4I1OeM6 02pBWAoJBcMH4p0Zz21MLZss2S1/79M7fdz2P8dBChXLHNbYmCXfM2mlazGmaSQ= -----END CERTIFICATE-----Generated at Sat Apr 26 14:54:13 2025 by rpki-client