$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3734e7db-8f22-40e0-b2cc-489f2d6365f3.roa File: 3734e7db-8f22-40e0-b2cc-489f2d6365f3.roa (raw, json) Hash identifier: kYqMborCCK0AzXNfz8sE/23E8ybcEo7hYSQcEbhDt6I= Subject key identifier: 35:75:B1:A2:33:7D:51:6D:C3:FE:44:17:4F:04:C4:6A:39:48:FD:FA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3E32330D90968375B2D70AF690332BCA8286CCBB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3734e7db-8f22-40e0-b2cc-489f2d6365f3.roa Signing time: Tue 22 Apr 2025 15:00:33 +0000 ROA not before: Tue 22 Apr 2025 15:00:33 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:c040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:32:33:0d:90:96:83:75:b2:d7:0a:f6:90:33:2b:ca:82:86:cc:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 15:00:33 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=1ab667e4915dc6c6a1bb510b980965bcad312c2d58338597dc5b7f5a947df7ed, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:30:66:c8:bd:4f:87:80:fa:53:33:5b:30:16: 82:d6:cf:2e:17:c5:53:9c:b7:0b:ef:21:ac:86:fd: e8:1a:ac:01:4b:f5:56:71:72:65:27:ca:2c:e6:3a: 57:49:db:99:f0:5f:4e:d6:94:40:53:b9:c9:43:98: a5:b0:83:c2:62:3b:5d:21:16:52:f9:0e:7c:62:dc: c9:8b:09:b6:cb:90:92:56:54:72:e2:e3:55:ad:cb: de:54:f3:90:0b:25:aa:c9:e1:34:77:6e:d7:a2:d0: 22:98:01:68:4d:1b:4d:fe:1a:38:a2:6d:e0:fd:c2: d9:c3:a1:8c:a2:89:69:64:f2:4d:9b:05:48:ad:17: 06:9c:06:bb:2f:65:1c:03:21:c0:ed:01:5e:ee:04: 08:2f:47:9c:e1:9b:53:16:ac:34:84:7e:be:cb:16: 99:7f:1f:cc:00:3c:bf:eb:11:13:a1:10:3c:4a:b8: 07:38:9b:bc:c8:8b:a0:80:7b:34:f3:fe:b9:63:a6: 59:dc:05:2e:f8:66:f3:29:58:9c:46:14:7f:e8:de: 9b:fb:4b:04:22:12:3a:e7:cd:e7:2a:1b:d1:c5:66: e1:c3:ba:ca:33:88:50:e9:8e:16:c3:b5:c8:59:f8: c5:c2:53:96:ae:b1:97:7a:e9:c1:ec:7d:c9:47:10: ee:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:75:B1:A2:33:7D:51:6D:C3:FE:44:17:4F:04:C4:6A:39:48:FD:FA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3734e7db-8f22-40e0-b2cc-489f2d6365f3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:c040::/48 Signature Algorithm: sha256WithRSAEncryption a0:19:af:7a:06:1c:46:c4:55:e6:95:92:e4:67:1f:64:17:05: 2b:e8:c3:30:45:23:c3:cf:cf:3e:d4:3e:e6:79:d6:9e:0b:69: c3:37:67:34:38:5f:d3:35:bd:fe:39:f5:59:79:b7:43:25:79: 61:1d:08:96:a9:f9:72:f1:2e:7e:0d:44:43:a9:07:7a:bb:a8: 4a:b0:53:c9:5c:51:76:5a:9d:60:20:34:0d:9a:9a:1d:5c:ee: 6f:3b:ba:a1:3c:30:7c:91:03:62:dd:5d:68:14:99:d0:b7:e0: 22:ee:cf:4c:31:26:cf:44:8c:72:92:e5:fe:f4:20:44:48:f9: 32:6e:8a:50:bf:4f:51:1a:1e:49:bb:9d:ab:1d:6d:fb:82:c8: b2:44:f5:5d:af:e0:aa:eb:25:bd:36:07:e8:16:df:28:61:20: 33:47:f4:8f:1f:bb:fa:8b:67:45:9a:42:f2:fa:f3:27:19:5d: 70:82:23:9c:45:1a:19:0f:82:e0:ad:0c:11:aa:7c:4f:ad:cc: 90:f7:14:56:3d:e6:7b:7f:e7:62:71:3f:9e:da:a3:3d:97:d1: 79:a9:92:ab:4a:60:be:f8:65:1f:b2:a1:72:4e:76:e2:68:d7: 6f:ba:ab:03:b5:a3:bd:24:73:6f:49:c3:51:ca:99:9f:f4:ae: 57:ea:33:a7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPjIzDZCWg3Wy1wr2kDMryoKGzLswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTUwMDMzWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYWI2NjdlNDkxNWRjNmM2YTFiYjUxMGI5ODA5NjViY2Fk MzEyYzJkNTgzMzg1OTdkYzViN2Y1YTk0N2RmN2VkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXMGbIvU+HgPpTM1swFoLWzy4XxVOctwvvIayG/egarAFL 9VZxcmUnyizmOldJ25nwX07WlEBTuclDmKWwg8JiO10hFlL5Dnxi3MmLCbbLkJJW VHLi41Wty95U85ALJarJ4TR3btei0CKYAWhNG03+GjiibeD9wtnDoYyiiWlk8k2b BUitFwacBrsvZRwDIcDtAV7uBAgvR5zhm1MWrDSEfr7LFpl/H8wAPL/rEROhEDxK uAc4m7zIi6CAezTz/rljplncBS74ZvMpWJxGFH/o3pv7SwQiEjrnzecqG9HFZuHD usoziFDpjhbDtchZ+MXCU5ausZd66cHsfclHEO7zAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUNXWxojN9UW3D/kQXTwTEajlI/fowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM3MzRlN2RiLThmMjItNDBlMC1iMmNjLTQ4OWYyZDYzNjVmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//wEAwDQYJKoZIhvcNAQELBQADggEBAKAZr3oGHEbEVeaVkuRnH2QX BSvowzBFI8PPzz7UPuZ51p4LacM3ZzQ4X9M1vf459Vl5t0MleWEdCJap+XLxLn4N REOpB3q7qEqwU8lcUXZanWAgNA2amh1c7m87uqE8MHyRA2LdXWgUmdC34CLuz0wx Js9EjHKS5f70IERI+TJuilC/T1EaHkm7nasdbfuCyLJE9V2v4KrrJb02B+gW3yhh IDNH9I8fu/qLZ0WaQvL68ycZXXCCI5xFGhkPguCtDBGqfE+tzJD3FFY95nt/52Jx P57aoz2X0XmpkqtKYL74ZR+yoXJOduJo12+6qwO1o70kc29Jw1HKmZ/0rlfqM6c= -----END CERTIFICATE-----Generated at Sat Apr 26 14:53:23 2025 by rpki-client