$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3ce31dd6-63e9-43c4-84fd-4bfdad505bc1.roa File: 3ce31dd6-63e9-43c4-84fd-4bfdad505bc1.roa (raw, json) Hash identifier: /hiE9jXeoDV332s8575xNhCkYlsnr59gpQPcoRXZBys= Subject key identifier: 30:7F:42:D6:3E:E3:A6:46:9A:5C:BB:8D:A1:42:AD:7E:18:06:C4:62 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 57AA669BFE19A9D9FC379E44D059BCC3A43018 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3ce31dd6-63e9-43c4-84fd-4bfdad505bc1.roa Signing time: Tue 15 Apr 2025 00:12:02 +0000 ROA not before: Tue 15 Apr 2025 00:12:02 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f60::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:aa:66:9b:fe:19:a9:d9:fc:37:9e:44:d0:59:bc:c3:a4:30:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:12:02 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=937b080d9aef4793562df4bafde492b12aa99ce26890db060ed38ee1a35383a0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:11:18:ad:d0:03:76:aa:d7:b5:60:75:05:7c: f7:26:46:7e:df:1a:9a:32:56:e1:5a:31:a4:42:cb: e8:14:f5:37:43:00:1e:af:f4:79:5a:01:ee:e8:46: b7:6c:51:22:cb:4b:00:c8:b8:12:45:f1:8f:b8:ed: 8c:13:c9:68:75:f3:ae:c4:33:8d:2a:73:09:20:bd: 61:17:11:73:7b:5f:1b:a2:7c:fe:11:a5:e2:f0:39: 82:b1:ec:32:04:dd:4e:07:67:c5:e0:b3:0e:10:ae: ae:ed:8e:2d:86:65:6a:3b:67:f6:a6:20:7d:3e:70: 6c:7e:19:e2:4c:0e:d1:42:24:13:47:14:dd:14:43: 59:d6:8d:18:ed:32:f4:74:f3:55:e7:bc:52:b3:54: 1a:e2:90:11:20:3f:09:08:34:04:96:fc:84:60:e6: 67:4a:05:ab:10:63:8d:20:f3:49:ba:7f:22:e4:4f: a6:85:fc:ab:f0:64:95:78:f2:91:31:d2:0f:79:a9: a1:8e:b3:b1:d1:70:46:09:49:c3:4e:69:b3:07:66: 5f:06:d7:68:c3:d2:c6:34:16:8a:d2:e0:57:38:87: 81:1a:a3:6b:4a:a1:3c:7f:53:78:80:ae:55:d1:bc: f5:bf:cd:b9:55:a6:a7:b9:8e:4c:33:f4:bb:d7:dd: 89:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:7F:42:D6:3E:E3:A6:46:9A:5C:BB:8D:A1:42:AD:7E:18:06:C4:62 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3ce31dd6-63e9-43c4-84fd-4bfdad505bc1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f60::/32 Signature Algorithm: sha256WithRSAEncryption 7d:1e:ba:d7:3b:38:28:fe:39:0c:87:80:f0:0b:34:97:f4:37: 8b:5c:fd:a1:5b:f9:21:8c:99:03:81:ff:1b:1c:0d:e5:7f:5d: 19:89:f1:2f:19:86:bb:5c:e1:00:65:1f:55:32:9a:72:18:3f: 8d:03:a2:ad:04:7a:03:49:38:cd:14:6f:c9:8b:01:ad:0d:89: bc:0c:0f:9a:87:16:cc:4c:eb:e8:75:6d:f8:5c:0a:d7:fc:01: e1:f5:1a:83:c9:52:1d:29:b4:98:3b:8b:0d:1c:50:8f:70:e6: 7e:eb:93:2f:e4:86:26:99:3e:95:50:ba:7c:04:29:94:f6:17: 38:90:ff:4e:7b:87:85:90:7a:5c:4c:86:0d:a1:1c:3b:b7:b9: 4d:74:dd:c2:3a:cc:2f:00:35:e5:df:0b:55:73:1b:8f:2b:5c: 5b:7b:6f:4a:d6:ad:52:fb:76:88:62:e7:23:47:d9:c8:b9:af: 55:f3:b6:c3:7c:97:6d:cb:3f:d8:c1:a0:e7:26:d8:e3:2e:ac: b7:ac:37:ea:2a:75:e3:1a:e0:c6:6d:69:ff:13:be:f1:94:9e: 90:45:44:96:ae:e2:33:c3:5a:62:fc:29:5a:bd:fb:28:8e:61: 90:43:d3:9b:32:2c:c4:7d:9d:d6:8f:1b:49:cc:c6:d9:cd:ee: f4:52:22:45 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgITV6pmm/4Zqdn8N55E0Fm8w6QwGDANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA0MTUwMDEyMDJaFw0yNTA1MjAyMzU5NTla MHoxSTBHBgNVBAUTQDkzN2IwODBkOWFlZjQ3OTM1NjJkZjRiYWZkZTQ5MmIxMmFh OTljZTI2ODkwZGIwNjBlZDM4ZWUxYTM1MzgzYTAxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAJwRGK3QA3aq17VgdQV89yZGft8amjJW4VoxpELL6BT1N0MA Hq/0eVoB7uhGt2xRIstLAMi4EkXxj7jtjBPJaHXzrsQzjSpzCSC9YRcRc3tfG6J8 /hGl4vA5grHsMgTdTgdnxeCzDhCuru2OLYZlajtn9qYgfT5wbH4Z4kwO0UIkE0cU 3RRDWdaNGO0y9HTzVee8UrNUGuKQESA/CQg0BJb8hGDmZ0oFqxBjjSDzSbp/IuRP poX8q/BklXjykTHSD3mpoY6zsdFwRglJw05pswdmXwbXaMPSxjQWitLgVziHgRqj a0qhPH9TeICuVdG89b/NuVWmp7mOTDP0u9fdicUCAwEAAaOCArIwggKuMB0GA1Ud DgQWBBQwf0LWPuOmRppcu42hQq1+GAbEYjAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvM2NlMzFkZDYtNjNlOS00M2M0LTg0ZmQtNGJmZGFkNTA1YmMxLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACYAH2AwDQYJKoZIhvcNAQELBQADggEBAH0eutc7OCj+OQyHgPALNJf0N4tc /aFb+SGMmQOB/xscDeV/XRmJ8S8Zhrtc4QBlH1UymnIYP40Doq0EegNJOM0Ub8mL Aa0NibwMD5qHFsxM6+h1bfhcCtf8AeH1GoPJUh0ptJg7iw0cUI9w5n7rky/khiaZ PpVQunwEKZT2FziQ/057h4WQelxMhg2hHDu3uU103cI6zC8ANeXfC1VzG48rXFt7 b0rWrVL7dohi5yNH2ci5r1XztsN8l23LP9jBoOcm2OMurLesN+oqdeMa4MZtaf8T vvGUnpBFRJau4jPDWmL8KVq9+yiOYZBD05syLMR9ndaPG0nMxtnN7vRSIkU= -----END CERTIFICATE-----Generated at Sat Apr 26 15:02:38 2025 by rpki-client