$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/390a9ddd-ca1d-4e54-a3ea-f0be32b32d11.roa File: 390a9ddd-ca1d-4e54-a3ea-f0be32b32d11.roa (raw, json) Hash identifier: UupWttxIa8ot/lKJ9IEsDFAy1nKC8qWGHt59hWb7+ig= Subject key identifier: 5B:DE:52:BF:E8:40:23:18:F2:90:4A:CF:E3:BE:2B:83:5C:B8:1E:44 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3C98B844A7C5FE196A857B9E6D3C9519745ADEDB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/390a9ddd-ca1d-4e54-a3ea-f0be32b32d11.roa Signing time: Tue 22 Apr 2025 00:51:36 +0000 ROA not before: Tue 22 Apr 2025 00:51:36 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:8120::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:98:b8:44:a7:c5:fe:19:6a:85:7b:9e:6d:3c:95:19:74:5a:de:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 00:51:36 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=2843a2ff12150825f607e54cf6d74831b0bc9cab9bba53c523736073d7f16031, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:01:75:95:ab:22:ef:75:9f:6e:b4:87:64:86: bb:78:3b:04:dc:c8:bf:54:9e:6f:8d:51:34:1f:01: 7e:83:b8:1a:3e:aa:5d:28:ba:da:2e:25:91:df:5a: 09:de:e8:3f:46:6c:5a:bc:e1:c0:2c:e1:d8:31:7f: f8:52:4e:77:80:15:8c:3e:8a:9a:80:dc:9e:d1:c8: b4:b1:15:03:b8:d0:52:94:4e:f8:dd:c5:6d:57:9b: 2d:06:e9:95:24:48:81:77:af:9a:4d:63:ec:7f:23: d1:ca:c7:25:6f:eb:c9:8e:67:f9:39:cc:1e:0f:81: c3:2d:58:63:59:ab:1a:39:dd:f2:75:14:7f:ea:93: 05:9e:23:3a:12:5e:1a:de:07:6e:2e:0a:d2:15:73: 19:3f:5c:54:d1:01:97:52:49:24:58:b4:f2:ac:b0: c4:56:7d:0a:3d:49:f0:27:c0:ec:7a:42:25:57:dc: b5:5e:8f:0d:35:9b:59:74:16:b4:36:38:12:7a:08: 86:8d:52:5d:f6:4f:d5:f5:1b:71:2e:af:5e:7c:bc: 21:e7:67:8d:85:a4:dc:89:5a:33:31:e8:4e:07:c7: 52:c9:2a:fb:05:e8:75:77:4c:f7:9b:ab:23:18:73: e8:15:37:db:55:00:fb:da:5c:a2:8c:e4:f4:a4:34: 18:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:DE:52:BF:E8:40:23:18:F2:90:4A:CF:E3:BE:2B:83:5C:B8:1E:44 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/390a9ddd-ca1d-4e54-a3ea-f0be32b32d11.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:8120::/48 Signature Algorithm: sha256WithRSAEncryption 4c:4c:27:c7:b4:d3:a1:db:89:4c:89:ca:0d:0d:dd:7b:9f:87: b4:66:e9:f0:73:3d:38:c6:e8:33:58:60:9e:e1:04:a0:63:e6: 72:bc:e0:50:71:ab:f0:6f:35:95:f3:fc:71:6d:b1:14:cb:56: 82:68:0f:5f:69:5c:75:ac:81:fd:8c:dd:06:9e:c0:03:31:76: 15:72:02:86:3a:d2:d6:71:9f:d9:47:47:db:a4:8b:ec:20:c7: d7:16:74:81:ee:a0:58:82:12:bb:76:19:4c:fa:e5:d8:f0:19: 0a:39:87:76:1b:f1:07:3b:04:b1:11:78:c9:71:3f:13:60:98: e5:08:c8:6b:df:85:65:3a:14:13:4e:03:f7:b9:3b:53:46:1e: 53:9b:33:f5:7c:c9:3f:b4:3f:5a:1b:e2:52:ad:03:0f:90:6a: e9:08:ca:4d:b4:06:13:1e:46:66:37:57:3a:e6:b9:c8:2f:36: 8b:ea:3e:65:f6:c4:72:cc:5a:16:2f:2b:2f:36:b1:de:9b:d5: 72:52:ad:60:05:f8:02:ab:98:c5:8d:65:04:c1:f8:44:99:aa: ac:e7:80:f3:18:49:2d:68:ed:47:82:7a:3e:03:97:d7:0f:3d: b2:4e:d3:e8:ce:1f:31:91:90:c7:82:bf:d3:0d:a6:02:82:da: 79:36:7a:a4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPJi4RKfF/hlqhXuebTyVGXRa3tswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMDA1MTM2WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyODQzYTJmZjEyMTUwODI1ZjYwN2U1NGNmNmQ3NDgzMWIw YmM5Y2FiOWJiYTUzYzUyMzczNjA3M2Q3ZjE2MDMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOAXWVqyLvdZ9utIdkhrt4OwTcyL9Unm+NUTQfAX6DuBo+ ql0outouJZHfWgne6D9GbFq84cAs4dgxf/hSTneAFYw+ipqA3J7RyLSxFQO40FKU TvjdxW1Xmy0G6ZUkSIF3r5pNY+x/I9HKxyVv68mOZ/k5zB4PgcMtWGNZqxo53fJ1 FH/qkwWeIzoSXhreB24uCtIVcxk/XFTRAZdSSSRYtPKssMRWfQo9SfAnwOx6QiVX 3LVejw01m1l0FrQ2OBJ6CIaNUl32T9X1G3Eur158vCHnZ42FpNyJWjMx6E4Hx1LJ KvsF6HV3TPebqyMYc+gVN9tVAPvaXKKM5PSkNBinAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUW95Sv+hAIxjykErP474rg1y4HkQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM5MGE5ZGRkLWNhMWQtNGU1NC1hM2VhLWYwYmUzMmIzMmQxMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AgSAwDQYJKoZIhvcNAQELBQADggEBAExMJ8e006HbiUyJyg0N3Xuf h7Rm6fBzPTjG6DNYYJ7hBKBj5nK84FBxq/BvNZXz/HFtsRTLVoJoD19pXHWsgf2M 3QaewAMxdhVyAoY60tZxn9lHR9uki+wgx9cWdIHuoFiCErt2GUz65djwGQo5h3Yb 8Qc7BLEReMlxPxNgmOUIyGvfhWU6FBNOA/e5O1NGHlObM/V8yT+0P1ob4lKtAw+Q aukIyk20BhMeRmY3VzrmucgvNovqPmX2xHLMWhYvKy82sd6b1XJSrWAF+AKrmMWN ZQTB+ESZqqzngPMYSS1o7UeCej4Dl9cPPbJO0+jOHzGRkMeCv9MNpgKC2nk2eqQ= -----END CERTIFICATE-----Generated at Sat Apr 26 16:15:02 2025 by rpki-client