$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/497c9f23-488b-464c-a6a0-2f9cf9d7daeb.roa File: 497c9f23-488b-464c-a6a0-2f9cf9d7daeb.roa (raw, json) Hash identifier: 7+1NdLH0dMd4Y71BIMcdom2qj3SyoIkYj21FHkcUYJo= Subject key identifier: 5A:40:02:70:25:E2:0A:A5:D5:56:62:C4:81:F0:C1:65:90:EF:E7:48 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 179BC8E29058F24C5C739D6851115F539400FF3D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/497c9f23-488b-464c-a6a0-2f9cf9d7daeb.roa Signing time: Tue 22 Apr 2025 16:01:17 +0000 ROA not before: Tue 22 Apr 2025 16:01:17 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff2:c080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:9b:c8:e2:90:58:f2:4c:5c:73:9d:68:51:11:5f:53:94:00:ff:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:01:17 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=e37e693c6e59d437eb6408512ebd3e648434fe8296c9d8f812a401cf39de632e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d6:80:09:36:b9:cf:20:32:b0:fd:c7:d6:8b: 65:fe:a3:ca:44:54:bb:1a:a4:fc:13:92:97:a1:1b: 19:29:b5:82:a4:bf:8f:c2:24:bb:f0:66:0a:56:e1: ee:29:89:06:8f:75:9a:8a:f7:ed:a0:48:58:11:0d: 2b:6e:e8:e3:be:d2:fb:81:f6:bb:c2:e5:37:a2:18: 0e:39:39:be:33:ec:7b:d9:9e:60:6d:92:3d:e8:85: 37:63:56:14:3b:21:81:6e:85:73:39:f6:a6:b9:74: 8c:10:b3:bd:ea:44:a9:52:e7:dd:ae:02:12:43:3b: 23:7f:e1:d6:7f:2c:ca:ad:b4:5a:2c:b2:8a:ec:c2: 33:f8:8b:b1:be:47:a8:03:15:a0:91:0d:02:84:19: 25:09:64:36:e6:0b:49:12:21:79:48:57:20:0f:a0: 51:21:f6:57:a9:8c:0a:99:59:16:cb:86:3e:5c:f3: 32:fa:50:4e:83:91:7b:b1:03:74:dd:e4:32:d4:e8: 78:9a:8b:32:27:10:5b:89:c4:c5:cc:18:fc:d3:5b: bf:63:d0:9b:ae:b0:81:e8:3d:c4:4f:9a:9d:4a:4c: ff:f6:f4:22:29:52:0c:43:37:6f:ce:d7:d4:02:17: 00:46:89:61:79:57:49:30:36:c0:eb:01:0d:53:85: 30:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:40:02:70:25:E2:0A:A5:D5:56:62:C4:81:F0:C1:65:90:EF:E7:48 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/497c9f23-488b-464c-a6a0-2f9cf9d7daeb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:c080::/48 Signature Algorithm: sha256WithRSAEncryption b4:f8:39:7d:1f:1a:fb:6f:96:c1:84:0f:04:a6:80:1d:37:f2: 2c:13:3d:96:48:50:b0:23:8b:bc:8e:77:0b:46:bf:d6:be:52: fe:66:f2:45:69:92:4d:73:26:f8:1e:a1:58:50:2c:17:90:79: f2:44:1b:ec:1b:36:14:9c:53:ed:ee:8b:f1:bb:fd:bc:1a:e1: a5:72:e9:66:82:b6:97:00:dd:70:ef:55:9f:85:81:e3:24:af: 5e:91:5a:7b:97:0f:5f:e9:04:c4:19:ed:45:0b:14:86:66:16: e4:bc:9d:63:12:98:b7:28:f0:46:b1:96:b7:35:e0:5f:06:91: 85:b1:f0:45:8b:33:03:44:78:53:ab:c8:e3:41:2e:39:c9:fa: 67:d2:df:ea:81:28:bd:9a:5c:8b:7f:8d:7a:9e:9c:65:dc:de: 74:b9:12:39:94:d9:15:f9:50:81:85:38:da:5f:38:cd:6a:8c: 1f:b8:eb:98:de:8c:0f:c0:5a:9e:06:b1:f9:b4:a7:68:3c:22: 12:07:09:74:18:4b:87:f1:fe:bf:04:9b:b5:7f:d7:58:70:eb: 39:5f:5a:25:cb:e8:d2:d5:b8:b7:2a:fe:43:56:14:6a:4b:a8: e4:40:73:fe:17:a2:29:23:ab:a4:3f:32:0b:5b:2b:77:f9:4e: 41:e2:48:f0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUF5vI4pBY8kxcc51oURFfU5QA/z0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTYwMTE3WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMzdlNjkzYzZlNTlkNDM3ZWI2NDA4NTEyZWJkM2U2NDg0 MzRmZTgyOTZjOWQ4ZjgxMmE0MDFjZjM5ZGU2MzJlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC61oAJNrnPIDKw/cfWi2X+o8pEVLsapPwTkpehGxkptYKk v4/CJLvwZgpW4e4piQaPdZqK9+2gSFgRDStu6OO+0vuB9rvC5TeiGA45Ob4z7HvZ nmBtkj3ohTdjVhQ7IYFuhXM59qa5dIwQs73qRKlS592uAhJDOyN/4dZ/LMqttFos sorswjP4i7G+R6gDFaCRDQKEGSUJZDbmC0kSIXlIVyAPoFEh9lepjAqZWRbLhj5c 8zL6UE6DkXuxA3Td5DLU6HiaizInEFuJxMXMGPzTW79j0JuusIHoPcRPmp1KTP/2 9CIpUgxDN2/O19QCFwBGiWF5V0kwNsDrAQ1ThTBzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUWkACcCXiCqXVVmLEgfDBZZDv50gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ5N2M5ZjIzLTQ4OGItNDY0Yy1hNmEwLTJmOWNmOWQ3ZGFlYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/ywIAwDQYJKoZIhvcNAQELBQADggEBALT4OX0fGvtvlsGEDwSmgB03 8iwTPZZIULAji7yOdwtGv9a+Uv5m8kVpkk1zJvgeoVhQLBeQefJEG+wbNhScU+3u i/G7/bwa4aVy6WaCtpcA3XDvVZ+FgeMkr16RWnuXD1/pBMQZ7UULFIZmFuS8nWMS mLco8Eaxlrc14F8GkYWx8EWLMwNEeFOryONBLjnJ+mfS3+qBKL2aXIt/jXqenGXc 3nS5EjmU2RX5UIGFONpfOM1qjB+465jejA/AWp4Gsfm0p2g8IhIHCXQYS4fx/r8E m7V/11hw6zlfWiXL6NLVuLcq/kNWFGpLqORAc/4Xoikjq6Q/MgtbK3f5TkHiSPA= -----END CERTIFICATE-----Generated at Sat Apr 26 14:46:47 2025 by rpki-client