$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/434e9526-9e97-40e5-9178-9ac0395ab2f2.roa File: 434e9526-9e97-40e5-9178-9ac0395ab2f2.roa (raw, json) Hash identifier: Q29jFNoN420D6nTmLJJLnBbAl33ElCZ++wltrxphvtU= Subject key identifier: 3C:45:5E:D1:AD:0A:43:5F:55:54:CF:9C:5F:E1:E5:95:9A:11:96:2F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 26966FED56B2214F54E12BDF0E432CEAD203A098 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/434e9526-9e97-40e5-9178-9ac0395ab2f2.roa Signing time: Wed 16 Apr 2025 00:01:16 +0000 ROA not before: Wed 16 Apr 2025 00:01:16 +0000 ROA not after: Wed 21 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff6:5000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:96:6f:ed:56:b2:21:4f:54:e1:2b:df:0e:43:2c:ea:d2:03:a0:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:01:16 2025 GMT Not After : May 21 23:59:59 2025 GMT Subject: serialNumber=3ab34ab77ea8eda9ff978becaade385ffdb5e948f5360034b3b50767745d375e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:6c:0e:58:1b:10:e6:c1:b1:5d:d7:80:af:0e: c5:5a:30:d8:df:81:36:3b:fb:7e:00:15:63:81:d7: bc:98:44:b5:fb:e2:c1:87:4a:31:09:68:4e:e5:b0: 0e:b0:b8:82:34:04:06:0d:46:19:44:32:1b:33:37: ff:08:77:8a:e8:90:6d:63:e0:ae:51:06:4c:1f:5b: e7:6c:32:df:fc:f8:43:e5:9b:e2:d5:11:6f:59:ca: 98:23:55:57:b1:07:60:f5:49:bc:19:ba:b4:ab:6d: 99:8b:da:46:cc:b6:8f:b8:c7:f5:d3:6c:ba:4d:d9: e4:f9:d4:fb:6c:01:f6:e1:38:ca:9c:54:09:14:ee: ee:e6:76:de:d9:12:43:60:46:1d:5a:3d:f0:73:e8: dc:4f:1d:1c:79:95:d2:0a:6b:27:17:c8:95:e1:7d: ef:8c:74:1d:4b:99:a3:b9:2e:e5:35:1e:26:6d:e7: 48:f2:c6:11:68:5d:7b:43:80:7d:93:ee:db:7c:1a: 05:7b:20:f5:98:df:83:2b:cc:65:03:85:7b:71:81: b4:c2:93:dc:e5:c8:29:71:2d:3a:7f:ff:bd:55:3c: c4:92:57:0c:bb:da:88:27:28:5e:da:09:51:a3:43: f6:e9:28:91:79:82:3f:c7:ae:45:72:04:93:e2:eb: 6b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:45:5E:D1:AD:0A:43:5F:55:54:CF:9C:5F:E1:E5:95:9A:11:96:2F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/434e9526-9e97-40e5-9178-9ac0395ab2f2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff6:5000::/40 Signature Algorithm: sha256WithRSAEncryption 28:08:6b:01:c1:70:14:aa:2d:ab:fb:ea:11:e2:de:bb:c3:3a: dc:46:bc:c7:ac:cd:9d:de:c9:db:fd:94:07:e5:7f:8d:2e:55: ed:d6:01:b0:1d:be:de:f6:bf:5d:eb:b9:85:7e:ec:a2:87:19: 9f:ca:83:56:f6:b5:7b:7e:0b:7c:d7:c8:52:80:0a:a3:41:d6: ad:8f:af:c1:eb:24:44:61:e5:9d:d0:88:59:07:63:0a:84:0c: 85:7d:4b:e1:6d:17:5b:df:07:9a:8c:30:de:88:4d:44:8c:c4: 21:e7:15:07:d9:2f:21:ff:0f:80:19:75:ed:da:7e:2e:aa:e1: da:f6:e0:05:a5:27:37:51:e8:02:11:be:88:ab:ed:7d:65:12: 5d:4e:77:a8:cc:a9:9d:1c:57:78:55:99:5f:6f:35:cf:fc:d6: 9a:bf:93:76:1c:74:2b:85:5c:55:19:4c:99:03:60:3a:2d:c3: c3:5b:dd:8c:87:da:24:7d:9a:af:10:58:22:e2:a3:23:1e:ed: 3f:08:61:03:04:6c:ba:e2:60:2e:b6:0b:5b:a6:3d:de:d6:e2: 99:45:13:be:db:21:36:56:00:82:94:97:c3:67:db:90:e1:30: 35:c6:f9:9b:8b:bf:b5:6b:41:96:53:7a:88:9d:79:f5:42:53: c9:82:47:24 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUJpZv7VayIU9U4SvfDkMs6tIDoJgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE2MDAwMTE2WhcNMjUwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYWIzNGFiNzdlYThlZGE5ZmY5NzhiZWNhYWRlMzg1ZmZk YjVlOTQ4ZjUzNjAwMzRiM2I1MDc2Nzc0NWQzNzVlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCIbA5YGxDmwbFd14CvDsVaMNjfgTY7+34AFWOB17yYRLX7 4sGHSjEJaE7lsA6wuII0BAYNRhlEMhszN/8Id4rokG1j4K5RBkwfW+dsMt/8+EPl m+LVEW9ZypgjVVexB2D1SbwZurSrbZmL2kbMto+4x/XTbLpN2eT51PtsAfbhOMqc VAkU7u7mdt7ZEkNgRh1aPfBz6NxPHRx5ldIKaycXyJXhfe+MdB1LmaO5LuU1HiZt 50jyxhFoXXtDgH2T7tt8GgV7IPWY34MrzGUDhXtxgbTCk9zlyClxLTp//71VPMSS Vwy72ognKF7aCVGjQ/bpKJF5gj/HrkVyBJPi62uHAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUPEVe0a0KQ19VVM+cX+HllZoRli8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzNGU5NTI2LTllOTctNDBlNS05MTc4LTlhYzAzOTVhYjJmMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/2UDANBgkqhkiG9w0BAQsFAAOCAQEAKAhrAcFwFKotq/vqEeLeu8M6 3Ea8x6zNnd7J2/2UB+V/jS5V7dYBsB2+3va/Xeu5hX7soocZn8qDVva1e34LfNfI UoAKo0HWrY+vweskRGHlndCIWQdjCoQMhX1L4W0XW98Hmoww3ohNRIzEIecVB9kv If8PgBl17dp+Lqrh2vbgBaUnN1HoAhG+iKvtfWUSXU53qMypnRxXeFWZX281z/zW mr+Tdhx0K4VcVRlMmQNgOi3Dw1vdjIfaJH2arxBYIuKjIx7tPwhhAwRsuuJgLrYL W6Y93tbimUUTvtshNlYAgpSXw2fbkOEwNcb5m4u/tWtBllN6iJ159UJTyYJHJA== -----END CERTIFICATE-----Generated at Sat Apr 26 16:55:31 2025 by rpki-client