$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/379473a4-1fad-417b-8aa1-0054523c76bb.roa File: 379473a4-1fad-417b-8aa1-0054523c76bb.roa (raw, json) Hash identifier: y+oxOcAWeOTjimS8zn3kLEWYXOBsQampLW+YJarAhj4= Subject key identifier: DB:9D:FA:4A:93:56:7A:AD:8A:00:FF:60:D6:E8:6D:D4:72:DE:9C:E8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 43EABC80B143A34DCB4591866D7007EA75590E43 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/379473a4-1fad-417b-8aa1-0054523c76bb.roa Signing time: Wed 09 Apr 2025 00:22:06 +0000 ROA not before: Wed 09 Apr 2025 00:22:06 +0000 ROA not after: Wed 14 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:4002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:ea:bc:80:b1:43:a3:4d:cb:45:91:86:6d:70:07:ea:75:59:0e:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 9 00:22:06 2025 GMT Not After : May 14 23:59:59 2025 GMT Subject: serialNumber=e3d5fea64e367eadb674164b520e6c3a275d448d20dc0da060fd53ad00946d00, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:31:d3:e4:a0:37:65:05:0e:c5:40:ee:86:71: 02:71:c8:8d:53:e6:18:1d:ff:a2:3b:cd:fa:31:a7: 57:4f:6e:24:c4:b3:6f:03:bf:fe:72:12:1e:54:59: 9b:39:5d:4b:ee:2e:1f:55:8e:a2:fa:e6:83:51:93: 22:09:cd:c4:cb:f5:b6:c8:11:9f:2c:84:15:6c:89: fa:9b:ea:2a:e4:12:fd:d1:1f:e3:e6:90:c0:79:5c: 5e:f7:81:ae:58:9a:2f:4c:6d:3b:ed:9b:ac:6e:5c: f8:64:ab:f1:91:7a:f3:f8:38:a4:59:9c:21:74:8c: 52:1e:73:f9:ec:38:2c:26:93:84:4f:9b:e3:c4:71: fc:97:cd:03:3b:f0:67:00:7c:c4:1c:e2:d6:eb:59: 5c:cc:c5:46:e0:51:19:2b:34:11:b4:dc:7c:56:a6: 4a:a8:9d:5f:68:9e:2e:08:f2:59:f7:35:ee:04:7d: 34:0c:1c:0e:b5:8c:ff:72:c6:45:37:91:2a:37:13: f1:a3:53:e2:f2:96:86:9a:d2:7d:63:0c:11:ae:9e: 97:f8:b4:fa:6d:07:3b:8f:6e:8f:b2:55:68:95:c7: f0:d9:f5:cc:1e:65:1d:6c:cf:8b:40:3e:1d:df:7a: 85:b4:67:c8:bc:8a:7a:77:41:13:c2:1d:3e:2a:b2: 35:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:9D:FA:4A:93:56:7A:AD:8A:00:FF:60:D6:E8:6D:D4:72:DE:9C:E8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/379473a4-1fad-417b-8aa1-0054523c76bb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:4002::/48 Signature Algorithm: sha256WithRSAEncryption 72:21:7b:38:81:37:21:39:d7:6d:86:56:db:92:75:98:9a:6d: 92:93:ff:63:d3:be:90:25:f7:d2:b0:27:e9:0b:05:a2:00:83: 74:46:be:33:96:2d:44:74:c6:7e:ea:d4:6e:b1:44:8c:32:a2: 25:5b:f7:71:72:60:d3:bb:71:f3:af:e0:d4:bb:6b:b6:45:0b: c9:98:27:7e:7c:07:09:16:e4:be:e3:d1:67:9f:dd:92:d0:af: 2f:d7:75:cc:f7:35:66:07:b1:f2:42:a1:3c:89:6f:13:5a:af: 1a:c3:b0:a9:c3:a0:4f:c4:e7:35:45:60:f4:ea:17:96:31:60: c0:2f:9f:96:50:55:e6:77:71:7b:ad:94:9f:6a:89:2a:b9:aa: 13:02:35:49:cc:23:f5:97:76:cd:b1:fe:42:5f:48:61:37:bc: e2:3c:c2:06:fd:9e:65:69:5f:cd:e0:ba:d7:e9:36:52:19:50: f1:4e:d9:43:3a:16:ac:a8:96:e7:cc:01:68:c2:e0:75:68:2e: ba:34:1c:78:d5:4d:a2:0c:43:13:b0:bb:6f:60:c4:87:20:5e: fb:40:54:60:db:8e:b4:10:da:17:79:a6:ce:a6:ae:6e:83:08: 06:a7:41:12:79:4a:2c:03:d5:62:12:82:9e:62:89:49:5f:fe: b0:be:75:fd -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQ+q8gLFDo03LRZGGbXAH6nVZDkMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA5MDAyMjA2WhcNMjUwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlM2Q1ZmVhNjRlMzY3ZWFkYjY3NDE2NGI1MjBlNmMzYTI3 NWQ0NDhkMjBkYzBkYTA2MGZkNTNhZDAwOTQ2ZDAwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSMdPkoDdlBQ7FQO6GcQJxyI1T5hgd/6I7zfoxp1dPbiTE s28Dv/5yEh5UWZs5XUvuLh9VjqL65oNRkyIJzcTL9bbIEZ8shBVsifqb6irkEv3R H+PmkMB5XF73ga5Ymi9MbTvtm6xuXPhkq/GRevP4OKRZnCF0jFIec/nsOCwmk4RP m+PEcfyXzQM78GcAfMQc4tbrWVzMxUbgURkrNBG03HxWpkqonV9oni4I8ln3Ne4E fTQMHA61jP9yxkU3kSo3E/GjU+Lyloaa0n1jDBGunpf4tPptBzuPbo+yVWiVx/DZ 9cweZR1sz4tAPh3feoW0Z8i8inp3QRPCHT4qsjUDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2536SpNWeq2KAP9g1uht1HLenOgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM3OTQ3M2E0LTFmYWQtNDE3Yi04YWExLTAwNTQ1MjNjNzZiYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmIAEHQAIwDQYJKoZIhvcNAQELBQADggEBAHIheziBNyE5122GVtuSdZia bZKT/2PTvpAl99KwJ+kLBaIAg3RGvjOWLUR0xn7q1G6xRIwyoiVb93FyYNO7cfOv 4NS7a7ZFC8mYJ358BwkW5L7j0Wef3ZLQry/Xdcz3NWYHsfJCoTyJbxNarxrDsKnD oE/E5zVFYPTqF5YxYMAvn5ZQVeZ3cXutlJ9qiSq5qhMCNUnMI/WXds2x/kJfSGE3 vOI8wgb9nmVpX83gutfpNlIZUPFO2UM6FqyolufMAWjC4HVoLro0HHjVTaIMQxOw u29gxIcgXvtAVGDbjrQQ2hd5ps6mrm6DCAanQRJ5SiwD1WISgp5iiUlf/rC+df0= -----END CERTIFICATE-----Generated at Sat Apr 26 15:01:57 2025 by rpki-client