$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e37dce6-073c-42e1-9afc-071c9e360693.roa File: 3e37dce6-073c-42e1-9afc-071c9e360693.roa (raw, json) Hash identifier: 10C8W9WEd0mKX8feLyW4RUIF5p05o7tJlCJ4FhTeJBI= Subject key identifier: EF:74:B2:9D:E8:73:EF:AC:B9:4C:17:F0:B4:9F:91:0C:A9:94:0F:89 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0967D625223793AE1018DF1904140644C106C335 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e37dce6-073c-42e1-9afc-071c9e360693.roa Signing time: Tue 22 Apr 2025 16:51:45 +0000 ROA not before: Tue 22 Apr 2025 16:51:45 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f16::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:67:d6:25:22:37:93:ae:10:18:df:19:04:14:06:44:c1:06:c3:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:51:45 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=b740a027d2761cce7cd02f06540df08778d1a031477146a7c7f797a907aaa212, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:4e:33:66:e8:55:54:f7:8a:71:f8:2c:ad:19: 41:f1:2f:82:19:1d:10:22:23:27:79:6e:66:fe:79: e7:6b:05:f3:6d:54:83:24:18:0f:2b:0e:55:d7:5c: ed:75:13:c5:be:01:bd:bf:f3:a1:93:af:ce:39:7b: bb:83:fb:b9:75:45:41:e6:44:53:6b:1f:ad:7c:fe: 3d:f1:cc:0c:06:91:c8:ad:c0:d0:0b:64:8e:b5:16: 36:67:9f:6e:6f:93:b7:b1:c2:be:59:65:97:19:89: c9:b9:2d:f8:c4:65:c3:00:fe:4d:55:4d:c2:d0:f9: b4:90:37:58:d3:5e:bf:52:f4:fc:8f:0a:f6:8e:b9: 24:80:fe:e6:9b:cb:ea:b6:85:b4:b5:80:c7:d0:45: 0e:4b:54:26:3c:df:e6:e2:b5:aa:c6:69:b2:c9:30: be:da:40:4c:e7:71:8b:99:70:e2:49:5b:ed:cd:b1: 79:cb:a3:5d:9f:c4:dd:9d:9e:e5:72:8b:39:66:2f: 07:02:36:8e:cc:8e:92:2b:78:02:c8:6c:88:40:a5: 56:c8:f2:82:d7:ac:44:2f:cc:2d:65:f4:bb:ca:2f: 62:bf:34:65:2a:6e:ae:65:7f:05:51:df:e9:cb:14: 21:73:52:83:fa:bb:c6:64:72:f6:02:19:59:5f:b4: ee:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:74:B2:9D:E8:73:EF:AC:B9:4C:17:F0:B4:9F:91:0C:A9:94:0F:89 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e37dce6-073c-42e1-9afc-071c9e360693.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f16::/34 Signature Algorithm: sha256WithRSAEncryption 41:5b:bc:dc:3c:ee:dd:45:40:57:d0:0f:46:27:20:10:e6:3e: a7:6d:77:0e:0e:e4:ab:f7:5e:e5:e1:fd:9b:7a:30:bc:82:08: 6f:6f:a2:ab:4a:16:1e:4e:83:5d:b9:82:a6:36:4b:32:7e:1d: 65:25:fa:fe:74:5c:6b:4c:38:0b:9c:e5:4d:0e:db:f5:a1:c3: 23:2a:d5:06:28:14:53:7e:5e:2c:b8:8e:1c:6f:90:c9:f7:9b: 6b:47:16:9d:27:86:16:e9:eb:4b:5c:d4:7a:15:f3:c0:fd:e4: 8f:58:49:32:1b:4e:6e:68:04:81:fb:b4:aa:4a:28:78:06:92: f2:6e:6b:6d:3d:1d:8d:7a:5f:da:5b:5b:fe:e0:54:bc:8b:1d: 47:ab:93:b6:01:3c:52:26:ce:12:4e:b1:80:7e:df:60:c0:b2: 9e:4e:56:20:4e:db:79:27:4d:9a:07:89:2d:0b:87:1a:ae:68: d9:a0:4d:fd:79:a8:07:1a:30:97:e5:b7:84:59:53:6b:71:3f: f7:20:f8:8a:33:6c:0a:a4:73:bb:0b:c5:d6:86:c5:cd:bf:3c: 1b:4b:00:60:14:b1:f2:89:dc:9c:5a:2b:6d:f4:cc:a0:ea:9b: 7d:23:b9:7f:8c:9a:ab:f1:47:59:a6:e8:49:f2:a0:1e:ea:d2: b4:47:02:08 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUCWfWJSI3k64QGN8ZBBQGRMEGwzUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTY1MTQ1WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNzQwYTAyN2QyNzYxY2NlN2NkMDJmMDY1NDBkZjA4Nzc4 ZDFhMDMxNDc3MTQ2YTdjN2Y3OTdhOTA3YWFhMjEyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOTjNm6FVU94px+CytGUHxL4IZHRAiIyd5bmb+eedrBfNt VIMkGA8rDlXXXO11E8W+Ab2/86GTr845e7uD+7l1RUHmRFNrH618/j3xzAwGkcit wNALZI61FjZnn25vk7exwr5ZZZcZicm5LfjEZcMA/k1VTcLQ+bSQN1jTXr9S9PyP CvaOuSSA/uaby+q2hbS1gMfQRQ5LVCY83+bitarGabLJML7aQEzncYuZcOJJW+3N sXnLo12fxN2dnuVyizlmLwcCNo7MjpIreALIbIhApVbI8oLXrEQvzC1l9LvKL2K/ NGUqbq5lfwVR3+nLFCFzUoP6u8ZkcvYCGVlftO7NAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU73Synehz76y5TBfwtJ+RDKmUD4kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNlMzdkY2U2LTA3M2MtNDJlMS05YWZjLTA3MWM5ZTM2MDY5My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgYmAB8WADANBgkqhkiG9w0BAQsFAAOCAQEAQVu83Dzu3UVAV9APRicgEOY+ p213Dg7kq/de5eH9m3owvIIIb2+iq0oWHk6DXbmCpjZLMn4dZSX6/nRca0w4C5zl TQ7b9aHDIyrVBigUU35eLLiOHG+Qyfeba0cWnSeGFunrS1zUehXzwP3kj1hJMhtO bmgEgfu0qkooeAaS8m5rbT0djXpf2ltb/uBUvIsdR6uTtgE8UibOEk6xgH7fYMCy nk5WIE7beSdNmgeJLQuHGq5o2aBN/XmoBxowl+W3hFlTa3E/9yD4ijNsCqRzuwvF 1obFzb88G0sAYBSx8oncnForbfTMoOqbfSO5f4yaq/FHWaboSfKgHurStEcCCA== -----END CERTIFICATE-----Generated at Sat Apr 26 16:04:14 2025 by rpki-client