$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/35d0a7ea-9635-49d3-ac69-ce3bbcf5fdc7.roa File: 35d0a7ea-9635-49d3-ac69-ce3bbcf5fdc7.roa (raw, json) Hash identifier: DPiKz1QnE6/GoSqWU39KBshJ7Lk7VnMpgfGXgssDJv8= Subject key identifier: 20:AD:76:AD:B4:11:D3:49:DF:46:8E:47:E4:B3:C1:F2:21:B2:56:21 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 02F04DDD397F628E42984FC3956EBFD41D7E86BE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/35d0a7ea-9635-49d3-ac69-ce3bbcf5fdc7.roa Signing time: Tue 22 Apr 2025 15:02:23 +0000 ROA not before: Tue 22 Apr 2025 15:02:23 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:c000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:f0:4d:dd:39:7f:62:8e:42:98:4f:c3:95:6e:bf:d4:1d:7e:86:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 15:02:23 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=0ee3b07bfe0a6d344962a258e3f2538afc5eb395b2d8905a36cc3cc1ed25dc69, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2c:2f:3b:7b:a3:7b:a8:23:48:a5:53:aa:c9: ff:09:24:74:e5:57:38:45:97:48:b2:e1:d8:23:0a: 3b:f3:04:42:90:8b:87:25:e6:db:6e:16:c3:8e:12: 1a:fe:54:4e:8a:3e:60:7d:d1:09:70:ea:1a:ab:5c: 7c:21:0e:52:dc:3f:12:f4:c8:68:81:98:58:fc:07: 32:78:66:75:62:0b:7f:ee:8c:89:35:b2:90:fb:bb: c6:a0:d0:25:e6:7b:75:a0:f5:08:e6:f2:bd:3e:b9: fb:b4:05:ab:0c:a1:d9:a5:19:15:6f:45:f5:06:8b: c1:71:3d:17:fe:a3:ca:d1:db:20:23:7b:e2:d4:db: a9:fc:e9:d1:0d:11:ce:8c:9c:35:12:ed:eb:cd:47: 1a:fc:7e:07:56:5b:67:61:c0:36:fd:2a:8d:95:a2: ac:10:f8:4f:63:5e:ad:b8:c4:98:75:30:94:00:26: f7:39:83:df:05:39:8c:3b:e2:c7:98:12:50:54:a5: 27:dc:20:96:bc:fb:9c:58:ba:1f:5f:24:5a:3e:0c: 86:9a:60:1c:25:ab:fb:74:47:7d:38:eb:c8:cd:4a: 2f:0e:95:50:d1:dc:66:8c:4e:95:d9:1c:4e:ba:a5: ad:17:08:96:85:9f:97:a2:68:a1:04:26:a7:82:03: a5:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:AD:76:AD:B4:11:D3:49:DF:46:8E:47:E4:B3:C1:F2:21:B2:56:21 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/35d0a7ea-9635-49d3-ac69-ce3bbcf5fdc7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:c000::/40 Signature Algorithm: sha256WithRSAEncryption 12:f0:61:8c:24:01:bc:66:02:b9:bb:37:1a:dd:d1:f3:56:c8: 87:8e:0b:9b:a4:09:40:31:42:ea:89:d2:25:25:b4:12:3f:9d: ae:a3:04:dd:94:ef:bb:57:69:82:6d:9e:20:24:5d:fb:2c:89: ef:40:1f:84:e4:f8:7d:cb:45:cb:64:b2:6f:41:28:a9:b1:18: 31:3d:78:52:e4:c1:56:76:17:b8:6a:16:52:ea:ed:3c:b6:12: 6f:20:2b:f2:92:0c:68:5b:a6:71:ed:e1:90:52:30:48:33:8a: eb:85:45:64:b1:60:38:c9:ee:4b:5e:a1:fd:1b:6a:2c:71:87: 99:8a:c5:7a:70:cc:81:96:2d:ab:fc:26:dc:b7:66:70:aa:35: 99:3a:d0:28:aa:87:dc:55:bc:48:27:8b:29:f8:fd:80:19:da: fa:f1:b3:6f:32:72:f8:0f:38:43:de:a8:32:53:62:0c:e2:3a: c7:cb:a4:3a:7b:33:b2:73:26:84:cb:a4:62:92:2d:ca:4e:ca: 66:be:50:d1:9d:da:c5:7e:71:8c:fb:44:bb:7d:ec:ec:93:1e: 3e:ce:a2:42:ba:24:03:86:56:f0:d8:f9:3c:2e:a2:4f:cf:c0: 3c:28:0b:13:5e:fd:e7:d1:f7:89:73:54:47:2b:6e:9e:4f:4a: 0d:12:90:a5 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUAvBN3Tl/Yo5CmE/DlW6/1B1+hr4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTUwMjIzWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZWUzYjA3YmZlMGE2ZDM0NDk2MmEyNThlM2YyNTM4YWZj NWViMzk1YjJkODkwNWEzNmNjM2NjMWVkMjVkYzY5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwLC87e6N7qCNIpVOqyf8JJHTlVzhFl0iy4dgjCjvzBEKQ i4cl5ttuFsOOEhr+VE6KPmB90Qlw6hqrXHwhDlLcPxL0yGiBmFj8BzJ4ZnViC3/u jIk1spD7u8ag0CXme3Wg9Qjm8r0+ufu0BasModmlGRVvRfUGi8FxPRf+o8rR2yAj e+LU26n86dENEc6MnDUS7evNRxr8fgdWW2dhwDb9Ko2VoqwQ+E9jXq24xJh1MJQA Jvc5g98FOYw74seYElBUpSfcIJa8+5xYuh9fJFo+DIaaYBwlq/t0R30468jNSi8O lVDR3GaMTpXZHE66pa0XCJaFn5eiaKEEJqeCA6XdAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUIK12rbQR00nfRo5H5LPB8iGyViEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1ZDBhN2VhLTk2MzUtNDlkMy1hYzY5LWNlM2JiY2Y1ZmRjNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB//wDANBgkqhkiG9w0BAQsFAAOCAQEAEvBhjCQBvGYCubs3Gt3R81bI h44Lm6QJQDFC6onSJSW0Ej+drqME3ZTvu1dpgm2eICRd+yyJ70AfhOT4fctFy2Sy b0EoqbEYMT14UuTBVnYXuGoWUurtPLYSbyAr8pIMaFumce3hkFIwSDOK64VFZLFg OMnuS16h/RtqLHGHmYrFenDMgZYtq/wm3LdmcKo1mTrQKKqH3FW8SCeLKfj9gBna +vGzbzJy+A84Q96oMlNiDOI6x8ukOnszsnMmhMukYpItyk7KZr5Q0Z3axX5xjPtE u33s7JMePs6iQrokA4ZW8Nj5PC6iT8/APCgLE17959H3iXNURytunk9KDRKQpQ== -----END CERTIFICATE-----Generated at Sat Apr 26 14:57:48 2025 by rpki-client