$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a4e3641-232b-4b02-9878-4cdd10d4f1ed.roa File: 3a4e3641-232b-4b02-9878-4cdd10d4f1ed.roa (raw, json) Hash identifier: 49lC8tappGInh2Z2wnwrqfVvsapVzHPwYC7DlfeeRg8= Subject key identifier: DB:16:09:09:46:01:9C:34:D5:11:F4:48:B3:B1:BD:76:C2:AD:FD:17 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 51F26E37128F951F5A101E6715879D2C1C48EA3F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a4e3641-232b-4b02-9878-4cdd10d4f1ed.roa Signing time: Tue 22 Apr 2025 15:42:03 +0000 ROA not before: Tue 22 Apr 2025 15:42:03 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff7:7440::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:f2:6e:37:12:8f:95:1f:5a:10:1e:67:15:87:9d:2c:1c:48:ea:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 15:42:03 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=2a26eac5d3fc910d3849682a0aca603c63620d0a2074a5d046bee59f0b5fc419, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:50:a5:ed:3a:d6:19:8e:99:1e:6c:d2:47:c5: 24:8d:7f:5d:b8:34:39:53:58:90:6d:f4:62:61:78: 2d:d3:36:98:3e:6d:e8:25:8f:be:0a:73:0e:1a:89: a7:e8:04:9e:3a:0e:b4:6c:e9:2a:7d:a2:1f:4e:2c: 3c:9c:54:64:bd:c6:dc:38:db:22:5c:8b:de:11:4c: 22:66:c7:a0:e0:6f:00:93:3a:a4:41:09:25:10:fd: 5d:ad:d3:32:ef:3a:c3:0b:f0:91:d3:9b:db:e1:6f: 0f:a0:9e:cd:59:e3:57:ff:e7:62:77:c2:fb:9d:06: 1b:19:34:e4:ae:8a:36:bc:b8:27:ee:03:b4:c0:ac: 63:79:13:d9:f9:78:90:b5:7d:2d:a1:b2:73:d1:51: 86:2e:85:73:49:fb:d1:31:0c:58:c6:a4:6f:f5:24: ff:4b:dd:38:b2:f4:fe:e4:6f:1c:47:8f:a5:5d:c8: 21:78:f0:e4:56:02:29:cc:4b:71:9b:0b:68:4f:cf: 37:09:3e:ec:8f:8c:2c:bc:54:82:b5:a5:40:67:24: df:78:48:1a:42:bc:14:30:ed:0d:0e:70:4b:96:22: a8:e6:f9:ea:5f:e1:c6:83:f4:61:0d:3d:93:f7:55: 36:9d:80:62:78:d3:54:f2:38:7d:96:fb:cb:2c:0e: c4:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:16:09:09:46:01:9C:34:D5:11:F4:48:B3:B1:BD:76:C2:AD:FD:17 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a4e3641-232b-4b02-9878-4cdd10d4f1ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff7:7440::/46 Signature Algorithm: sha256WithRSAEncryption 12:a1:e3:94:c7:54:ab:84:f8:76:6e:7e:05:79:57:aa:7b:28: e6:78:cb:24:0d:d1:b6:2b:7d:16:fd:f1:66:0e:42:93:5c:85: e4:6f:e0:06:97:d9:67:6e:85:52:7d:b7:fc:d7:00:8c:89:c1: 8e:be:43:58:7f:bc:b0:3d:9e:a0:64:2a:51:ba:d2:24:09:3e: 0a:f2:70:1e:74:a8:d6:79:4f:8d:36:e9:72:a7:77:38:38:20: 23:b6:39:b2:b1:97:e6:c5:ea:a3:8b:20:b2:fb:27:69:b2:7d: 04:2d:85:42:70:f7:37:2d:6c:b5:fe:f2:fa:6f:03:30:df:0c: 1b:09:14:dd:8d:d9:8e:df:75:b9:08:e5:7f:d6:75:14:9b:f8: e7:21:28:8d:68:a1:8e:a3:cc:d5:d4:39:5e:66:60:47:de:b3: 49:cc:8f:d6:df:09:0c:c8:25:32:88:79:40:51:f6:41:98:bb: 67:53:5b:79:f4:7c:82:a7:f5:cc:19:8c:45:4b:01:84:4d:59: 65:9c:e5:6e:9d:3a:81:e2:80:ca:eb:29:d1:37:02:9c:98:f5: 58:0d:24:b9:ec:31:28:77:63:d3:b1:fd:59:4c:89:36:5f:39: de:86:3d:0e:74:1b:1f:0b:ba:17:cc:03:c1:59:33:d6:09:e6: ca:ab:57:0a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUfJuNxKPlR9aEB5nFYedLBxI6j8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTU0MjAzWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYTI2ZWFjNWQzZmM5MTBkMzg0OTY4MmEwYWNhNjAzYzYz NjIwZDBhMjA3NGE1ZDA0NmJlZTU5ZjBiNWZjNDE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTUKXtOtYZjpkebNJHxSSNf124NDlTWJBt9GJheC3TNpg+ beglj74Kcw4aiafoBJ46DrRs6Sp9oh9OLDycVGS9xtw42yJci94RTCJmx6DgbwCT OqRBCSUQ/V2t0zLvOsML8JHTm9vhbw+gns1Z41f/52J3wvudBhsZNOSuija8uCfu A7TArGN5E9n5eJC1fS2hsnPRUYYuhXNJ+9ExDFjGpG/1JP9L3Tiy9P7kbxxHj6Vd yCF48ORWAinMS3GbC2hPzzcJPuyPjCy8VIK1pUBnJN94SBpCvBQw7Q0OcEuWIqjm +epf4caD9GENPZP3VTadgGJ401TyOH2W+8ssDsQHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2xYJCUYBnDTVEfRIs7G9dsKt/RcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNhNGUzNjQxLTIzMmItNGIwMi05ODc4LTRjZGQxMGQ0ZjFlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/3dEAwDQYJKoZIhvcNAQELBQADggEBABKh45THVKuE+HZufgV5V6p7 KOZ4yyQN0bYrfRb98WYOQpNcheRv4AaX2WduhVJ9t/zXAIyJwY6+Q1h/vLA9nqBk KlG60iQJPgrycB50qNZ5T4026XKndzg4ICO2ObKxl+bF6qOLILL7J2myfQQthUJw 9zctbLX+8vpvAzDfDBsJFN2N2Y7fdbkI5X/WdRSb+OchKI1ooY6jzNXUOV5mYEfe s0nMj9bfCQzIJTKIeUBR9kGYu2dTW3n0fIKn9cwZjEVLAYRNWWWc5W6dOoHigMrr KdE3ApyY9VgNJLnsMSh3Y9Ox/VlMiTZfOd6GPQ50Gx8LuhfMA8FZM9YJ5sqrVwo= -----END CERTIFICATE-----Generated at Sat Apr 26 16:35:41 2025 by rpki-client