$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4492468d-ade8-4955-9c65-98cc7b723380.roa File: 4492468d-ade8-4955-9c65-98cc7b723380.roa (raw, json) Hash identifier: cL7AaCJBJUj26hZ/ejvbOFiEdu48ld8j9Y173ve2ePo= Subject key identifier: E5:EE:EE:66:53:5D:AF:7E:8E:94:30:E6:6A:4A:26:4A:F5:47:70:9C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 74FE651A4DE0E0370567F18F7B795300F39C5E83 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4492468d-ade8-4955-9c65-98cc7b723380.roa Signing time: Tue 22 Apr 2025 15:32:56 +0000 ROA not before: Tue 22 Apr 2025 15:32:56 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:8000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:fe:65:1a:4d:e0:e0:37:05:67:f1:8f:7b:79:53:00:f3:9c:5e:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 15:32:56 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=1ac4d7806e616140d856a6d0947f5ea136e9469b41b5c4ef8ca5b42784fb6cbf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:5c:86:2d:23:2f:22:6d:dd:7f:21:99:ae:ac: d7:22:f1:12:3b:56:40:59:f7:38:30:86:12:a7:14: f3:18:10:d0:4c:b7:e3:88:9a:f5:24:fa:c3:6d:61: ee:48:70:ef:7c:8c:c2:2b:b1:11:29:3c:97:55:96: 6d:b8:73:b7:44:95:7d:8e:19:07:1e:49:a1:d8:b3: a3:73:20:77:ba:7f:01:fd:40:63:9e:e3:c5:9f:68: 70:d5:33:3c:92:c4:64:e3:df:77:d9:8d:e6:9c:b6: 1c:20:b0:ab:42:eb:5b:e0:7f:2c:6b:f2:e8:8f:3d: 29:05:e8:7c:99:e7:b9:07:95:c3:3b:90:19:f1:be: a5:db:ff:54:44:a3:c3:a5:84:5b:2a:4a:01:bf:14: df:a5:26:cf:bf:79:06:fc:e3:30:df:e1:dd:5f:68: 2e:a7:66:db:83:35:d5:da:47:b3:ee:78:f3:86:52: 41:db:2d:4a:0b:62:da:1d:7f:89:9d:b1:b9:f2:dc: 84:68:54:43:6e:87:53:00:72:04:22:f7:2c:93:2d: 88:3d:4a:35:ea:d3:dc:34:ef:79:29:52:98:33:7a: 7f:c7:b4:c9:72:8d:fc:0c:9f:fd:dd:b8:1b:d8:6c: 96:1c:58:64:99:03:b8:04:56:6f:42:79:5c:e4:38: 0f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:EE:EE:66:53:5D:AF:7E:8E:94:30:E6:6A:4A:26:4A:F5:47:70:9C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4492468d-ade8-4955-9c65-98cc7b723380.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:8000::/40 Signature Algorithm: sha256WithRSAEncryption 83:90:d5:52:93:97:31:90:b2:c0:98:c6:46:fd:0c:52:72:af: c3:60:c0:be:6d:dc:dc:9a:08:19:14:97:04:be:dd:83:64:30: 27:a4:15:31:50:66:1f:8c:d7:ac:8e:56:6e:3f:09:96:87:8b: 80:a8:5e:7f:99:7d:86:ed:a7:80:3f:13:9f:de:77:22:44:04: 37:9e:8b:41:b2:0b:6c:04:76:61:94:d7:6e:95:dd:06:3f:6c: f9:8b:2d:e4:a8:cf:12:9f:d5:f4:4f:78:ad:90:9a:f2:24:7b: 5f:e4:17:6a:e0:60:90:d1:b3:5d:38:34:d9:7c:53:b6:48:b8: 8d:d0:53:c5:32:4c:73:8c:79:a2:09:04:cf:2c:b4:93:d1:59: e8:ec:b5:19:2f:64:01:eb:2a:8b:df:d3:6e:37:03:b6:2f:ba: fb:08:09:d4:18:3f:a5:3a:1e:81:fe:fa:c8:3e:9e:ef:2d:7c: 6c:2f:e5:b7:c3:6b:37:d6:c4:4a:52:6a:2f:86:ae:50:84:61: 67:e9:cd:57:5f:1c:cc:61:9a:a8:b6:7f:7e:09:71:8a:64:91: 75:a3:39:fb:3f:b9:dc:d3:db:75:1b:a4:f3:58:25:db:ed:84: 15:53:59:60:17:3e:aa:68:d5:98:6b:25:ba:4c:67:12:71:c4: 24:83:6a:9e -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUdP5lGk3g4DcFZ/GPe3lTAPOcXoMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTUzMjU2WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYWM0ZDc4MDZlNjE2MTQwZDg1NmE2ZDA5NDdmNWVhMTM2 ZTk0NjliNDFiNWM0ZWY4Y2E1YjQyNzg0ZmI2Y2JmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZXIYtIy8ibd1/IZmurNci8RI7VkBZ9zgwhhKnFPMYENBM t+OImvUk+sNtYe5IcO98jMIrsREpPJdVlm24c7dElX2OGQceSaHYs6NzIHe6fwH9 QGOe48WfaHDVMzySxGTj33fZjeacthwgsKtC61vgfyxr8uiPPSkF6HyZ57kHlcM7 kBnxvqXb/1REo8OlhFsqSgG/FN+lJs+/eQb84zDf4d1faC6nZtuDNdXaR7PuePOG UkHbLUoLYtodf4mdsbny3IRoVENuh1MAcgQi9yyTLYg9SjXq09w073kpUpgzen/H tMlyjfwMn/3duBvYbJYcWGSZA7gEVm9CeVzkOA+bAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU5e7uZlNdr36OlDDmakomSvVHcJwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ0OTI0NjhkLWFkZTgtNDk1NS05YzY1LTk4Y2M3YjcyMzM4MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB//gDANBgkqhkiG9w0BAQsFAAOCAQEAg5DVUpOXMZCywJjGRv0MUnKv w2DAvm3c3JoIGRSXBL7dg2QwJ6QVMVBmH4zXrI5Wbj8JloeLgKhef5l9hu2ngD8T n953IkQEN56LQbILbAR2YZTXbpXdBj9s+Yst5KjPEp/V9E94rZCa8iR7X+QXauBg kNGzXTg02XxTtki4jdBTxTJMc4x5ogkEzyy0k9FZ6Oy1GS9kAesqi9/TbjcDti+6 +wgJ1Bg/pToegf76yD6e7y18bC/lt8NrN9bESlJqL4auUIRhZ+nNV18czGGaqLZ/ fglximSRdaM5+z+53NPbdRuk81gl2+2EFVNZYBc+qmjVmGslukxnEnHEJINqng== -----END CERTIFICATE-----Generated at Sat Apr 26 16:59:47 2025 by rpki-client