$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/455d7b92-4c00-4985-ae91-ef6d61407b05.roa File: 455d7b92-4c00-4985-ae91-ef6d61407b05.roa (raw, json) Hash identifier: YQWk6jHnJW79h8TcruAH5NlhDQiqB/2rAVvf8e5geCo= Subject key identifier: 6D:C8:9D:4F:BC:63:19:F4:FE:9B:EE:5B:71:55:91:E4:E0:41:00:AF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 167E34BA40FEBED568A7C2D7EDE0F285A87DA51D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/455d7b92-4c00-4985-ae91-ef6d61407b05.roa Signing time: Tue 22 Apr 2025 00:42:01 +0000 ROA not before: Tue 22 Apr 2025 00:42:01 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:40d0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:7e:34:ba:40:fe:be:d5:68:a7:c2:d7:ed:e0:f2:85:a8:7d:a5:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 00:42:01 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=587b31649ed871de932a01cb92d50691168b2376f7ab925243a09a7040c44a07, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:74:30:2a:9f:3f:a3:cc:62:80:bc:43:02:ff: cf:ed:ed:78:b7:92:9a:71:c6:fe:f3:5b:85:2b:81: c3:bc:4b:cb:6f:e1:59:18:f5:b7:c6:93:d1:b4:62: 18:31:fe:27:e4:97:19:0c:b6:3f:a4:f2:54:b7:75: 95:a0:d0:1b:8d:69:1b:ff:c7:28:42:a0:b1:3b:d1: f7:0c:eb:23:a5:a1:09:26:4c:95:af:17:a9:52:68: a0:22:3f:94:3d:be:79:dd:a2:81:f3:7c:c0:62:ab: f6:c7:c7:59:14:15:99:d9:e8:f4:85:8b:c7:71:b3: ee:e4:8d:5a:43:96:b7:e2:a0:b9:a7:73:66:08:77: a3:2c:01:2b:87:a7:d8:e2:94:99:6f:13:c1:54:24: d7:4b:cf:0c:b2:a9:41:9b:02:8d:40:4e:af:ca:6f: 4d:fe:ba:cf:2a:16:36:cb:a6:8c:36:25:54:55:27: 85:72:49:87:50:8c:b2:76:30:f8:39:ca:d6:4f:bc: 91:4b:00:d2:36:c9:76:d1:05:48:c8:49:ea:89:04: 7d:37:4b:33:28:84:f4:4b:6f:b7:00:cc:cc:4c:09: 35:6d:11:01:0b:70:e3:35:98:d7:b4:51:fc:74:d3: 6d:b6:7c:e8:92:2c:40:25:24:3b:04:cb:2f:2c:8c: cf:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:C8:9D:4F:BC:63:19:F4:FE:9B:EE:5B:71:55:91:E4:E0:41:00:AF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/455d7b92-4c00-4985-ae91-ef6d61407b05.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:40d0::/48 Signature Algorithm: sha256WithRSAEncryption 95:1b:51:03:87:cd:76:a0:e7:4d:eb:75:8a:dc:78:06:58:f6: 28:96:2d:70:50:fd:06:0d:ac:27:e2:92:7a:53:0e:a3:7d:b2: 1c:5d:bc:75:41:5c:c7:9c:eb:d0:2b:b8:0c:4a:d2:c9:4e:6a: b9:30:01:7e:b1:00:81:4d:90:f8:a1:ad:13:35:5f:77:2f:d8: 57:63:00:0f:5c:ba:79:bb:41:38:55:7c:60:c3:3c:dd:c0:7c: ad:23:81:d1:e7:7e:67:3d:b8:6e:2f:56:86:3c:c9:e5:71:8c: c3:19:d7:77:60:4c:89:97:5c:00:fc:72:17:15:7f:52:2c:ad: ae:14:98:8e:84:67:92:d5:3d:f0:d4:1d:6d:f2:5b:eb:f7:bc: 98:97:8d:6e:13:fd:51:62:b0:19:a3:14:a6:ec:8e:3b:20:cf: 3f:61:36:99:0a:49:7b:19:74:ab:fe:69:56:a2:2c:68:60:8e: 37:a7:a1:dc:eb:f8:3f:39:e1:73:b3:c7:53:fe:e2:0d:80:36: 55:08:f7:55:24:60:28:c1:6e:73:ff:99:8e:7e:e0:d4:3c:77: a6:88:58:f1:07:de:06:7e:c7:09:81:23:9a:f3:d7:bf:f3:9a: 7a:45:b9:a0:8c:32:7e:65:c3:d1:57:da:2a:4a:34:22:a1:14: 6d:b2:8c:64 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFn40ukD+vtVop8LX7eDyhah9pR0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMDA0MjAxWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ODdiMzE2NDllZDg3MWRlOTMyYTAxY2I5MmQ1MDY5MTE2 OGIyMzc2ZjdhYjkyNTI0M2EwOWE3MDQwYzQ0YTA3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwdDAqnz+jzGKAvEMC/8/t7Xi3kppxxv7zW4UrgcO8S8tv 4VkY9bfGk9G0Yhgx/ifklxkMtj+k8lS3dZWg0BuNaRv/xyhCoLE70fcM6yOloQkm TJWvF6lSaKAiP5Q9vnndooHzfMBiq/bHx1kUFZnZ6PSFi8dxs+7kjVpDlrfioLmn c2YId6MsASuHp9jilJlvE8FUJNdLzwyyqUGbAo1ATq/Kb03+us8qFjbLpow2JVRV J4VySYdQjLJ2MPg5ytZPvJFLANI2yXbRBUjISeqJBH03SzMohPRLb7cAzMxMCTVt EQELcOM1mNe0Ufx00222fOiSLEAlJDsEyy8sjM9dAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUbcidT7xjGfT+m+5bcVWR5OBBAK8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ1NWQ3YjkyLTRjMDAtNDk4NS1hZTkxLWVmNmQ2MTQwN2IwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//QNAwDQYJKoZIhvcNAQELBQADggEBAJUbUQOHzXag503rdYrceAZY 9iiWLXBQ/QYNrCfiknpTDqN9shxdvHVBXMec69AruAxK0slOarkwAX6xAIFNkPih rRM1X3cv2FdjAA9cunm7QThVfGDDPN3AfK0jgdHnfmc9uG4vVoY8yeVxjMMZ13dg TImXXAD8chcVf1Isra4UmI6EZ5LVPfDUHW3yW+v3vJiXjW4T/VFisBmjFKbsjjsg zz9hNpkKSXsZdKv+aVaiLGhgjjenodzr+D854XOzx1P+4g2ANlUI91UkYCjBbnP/ mY5+4NQ8d6aIWPEH3gZ+xwmBI5rz17/zmnpFuaCMMn5lw9FX2ipKNCKhFG2yjGQ= -----END CERTIFICATE-----Generated at Sat Apr 26 15:04:06 2025 by rpki-client