$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33a8e79a-f50b-45fa-87c0-dad918540ac7.roa File: 33a8e79a-f50b-45fa-87c0-dad918540ac7.roa (raw, json) Hash identifier: qick3ZykqM6CwRRwr/j31B9BznjnYVydXkC9e70fHA0= Subject key identifier: 23:4B:F4:CD:9F:E9:35:D6:F3:E4:E1:A5:AF:15:F8:5B:55:7A:F9:14 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0E74E247EA3ED195AB7903C6FF222D7F6C61D72B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33a8e79a-f50b-45fa-87c0-dad918540ac7.roa Signing time: Tue 22 Apr 2025 16:51:56 +0000 ROA not before: Tue 22 Apr 2025 16:51:56 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f15::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:74:e2:47:ea:3e:d1:95:ab:79:03:c6:ff:22:2d:7f:6c:61:d7:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:51:56 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=e26830bbee5e2c5d7e752debfc4fe1578e3bf71425b184a9130e1404d76a1d7b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d9:c7:24:14:b7:3d:ca:d5:73:67:a5:74:0f: 19:af:14:7a:7c:5f:4a:88:bb:39:25:13:93:40:e2: e2:d1:79:9c:7d:9b:7a:ab:fe:df:52:1f:7e:96:a7: 7f:af:74:0c:61:61:1b:c6:38:59:9a:5e:6b:14:1b: 96:0b:ab:dc:95:f7:bf:9e:66:7d:05:af:47:ef:a7: 96:5a:ef:41:74:cc:b2:57:76:c2:b8:96:77:64:9b: 2b:06:4c:9b:30:93:0e:01:81:d7:33:5a:0e:99:59: cd:be:a4:2b:af:c2:f2:55:f7:fc:e4:75:69:6e:99: b2:10:10:0a:4c:a4:3e:18:93:f3:ac:c0:eb:2d:df: f2:52:60:06:17:c8:4a:a2:bb:1d:ea:3f:12:90:a9: 6d:f9:f6:75:20:84:41:1d:0b:14:09:a7:2b:78:00: 6f:d9:f4:05:93:c1:12:bb:4a:2a:60:cd:12:85:17: fe:21:08:3b:cd:60:53:5a:e9:e0:f4:e4:ee:15:86: c9:39:a2:09:e3:4f:c9:10:c9:6f:9a:ab:55:2c:e0: 21:a5:d7:40:ee:3f:33:3e:ab:3c:a0:cf:ad:1c:68: d4:40:de:d5:eb:97:97:07:5f:9c:f4:40:d1:9a:e9: 97:fc:f8:9e:1a:8c:27:60:5c:59:4d:ce:6d:28:c9: 04:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:4B:F4:CD:9F:E9:35:D6:F3:E4:E1:A5:AF:15:F8:5B:55:7A:F9:14 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33a8e79a-f50b-45fa-87c0-dad918540ac7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f15::/36 Signature Algorithm: sha256WithRSAEncryption 63:48:ac:4e:72:48:ae:86:ca:a4:e2:79:74:8d:b7:15:bd:b6: fd:14:f3:c1:4f:11:3a:18:30:01:ec:35:9e:c0:28:54:c7:d2: 9f:d7:ba:c7:81:62:a3:44:b4:a2:18:e2:a7:1b:72:42:e3:5b: 89:3c:f8:b1:cb:b0:f4:25:41:9d:10:15:39:ca:31:2a:06:03: eb:07:d4:11:4c:bc:39:4a:0a:20:58:e8:de:21:f7:84:6d:06: 02:68:89:c7:ea:a9:75:63:1a:fc:52:c1:f9:8a:6c:4a:d8:31: 4d:fa:99:62:cf:bb:48:a4:7f:22:d0:44:9b:ad:31:76:09:35: dd:fb:7c:46:73:b9:6d:9e:b2:a0:af:ea:66:a9:bc:89:c3:43: 65:34:11:19:33:b4:29:2e:ab:61:b7:12:c7:9d:b9:d5:01:db: 0e:fe:5b:20:59:72:64:42:a6:09:9f:c8:ff:96:a4:fb:d5:c2: 9d:ba:ad:00:56:d2:53:5c:0c:e9:b9:c6:88:6b:9c:6d:c7:fe: 8b:ee:92:f4:ee:63:df:45:3c:35:13:ce:b8:18:d0:de:4d:d5: a8:50:84:c7:85:ec:07:41:40:5b:fc:75:bd:4d:99:72:e0:37: 34:6c:91:e3:7e:fb:6e:2b:80:5c:fb:86:02:86:e7:c1:32:c7: 02:6b:a0:f8 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUDnTiR+o+0ZWreQPG/yItf2xh1yswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTY1MTU2WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMjY4MzBiYmVlNWUyYzVkN2U3NTJkZWJmYzRmZTE1Nzhl M2JmNzE0MjViMTg0YTkxMzBlMTQwNGQ3NmExZDdiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDO2cckFLc9ytVzZ6V0DxmvFHp8X0qIuzklE5NA4uLReZx9 m3qr/t9SH36Wp3+vdAxhYRvGOFmaXmsUG5YLq9yV97+eZn0Fr0fvp5Za70F0zLJX dsK4lndkmysGTJswkw4BgdczWg6ZWc2+pCuvwvJV9/zkdWlumbIQEApMpD4Yk/Os wOst3/JSYAYXyEqiux3qPxKQqW359nUghEEdCxQJpyt4AG/Z9AWTwRK7SipgzRKF F/4hCDvNYFNa6eD05O4Vhsk5ognjT8kQyW+aq1Us4CGl10DuPzM+qzygz60caNRA 3tXrl5cHX5z0QNGa6Zf8+J4ajCdgXFlNzm0oyQTvAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUI0v0zZ/pNdbz5OGlrxX4W1V6+RQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMzYThlNzlhLWY1MGItNDVmYS04N2MwLWRhZDkxODU0MGFjNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8VADANBgkqhkiG9w0BAQsFAAOCAQEAY0isTnJIrobKpOJ5dI23Fb22 /RTzwU8ROhgwAew1nsAoVMfSn9e6x4Fio0S0ohjipxtyQuNbiTz4scuw9CVBnRAV OcoxKgYD6wfUEUy8OUoKIFjo3iH3hG0GAmiJx+qpdWMa/FLB+YpsStgxTfqZYs+7 SKR/ItBEm60xdgk13ft8RnO5bZ6yoK/qZqm8icNDZTQRGTO0KS6rYbcSx5251QHb Dv5bIFlyZEKmCZ/I/5ak+9XCnbqtAFbSU1wM6bnGiGucbcf+i+6S9O5j30U8NRPO uBjQ3k3VqFCEx4XsB0FAW/x1vU2ZcuA3NGyR4377biuAXPuGAobnwTLHAmug+A== -----END CERTIFICATE-----Generated at Sat Apr 26 14:58:36 2025 by rpki-client