$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c9031f2-c902-4233-a6bd-6c109e4ed033.roa File: 4c9031f2-c902-4233-a6bd-6c109e4ed033.roa (raw, json) Hash identifier: aTfEsPliyVsRNiMz2n6RFfnUrw3nN4s0dOGCCLxWJSs= Subject key identifier: CE:EF:33:61:04:D6:E3:F7:04:0D:E3:D9:A0:8D:2F:CC:0A:F9:A4:6C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3434C1936EB39F97854DA12887798F27D0DF9D7C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c9031f2-c902-4233-a6bd-6c109e4ed033.roa Signing time: Tue 22 Apr 2025 15:32:57 +0000 ROA not before: Tue 22 Apr 2025 15:32:57 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff4:20c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:34:c1:93:6e:b3:9f:97:85:4d:a1:28:87:79:8f:27:d0:df:9d:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 15:32:57 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=fb617e38339007b52f0911754e1cb89585594d81c72dcc34f754377208ede8f8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:2b:09:26:d0:97:0f:95:29:a8:d5:47:10:c1: b0:bf:26:90:a0:6c:2d:f8:e1:19:f0:e2:76:50:9c: fe:db:5e:1b:04:1a:6c:37:0c:1c:ce:5b:00:73:08: 7d:8e:a0:80:6c:4b:4b:7b:7d:de:af:98:d9:32:c9: c1:50:24:49:3f:07:5d:db:ff:1c:ca:a0:da:ff:67: 4f:6a:c6:ef:f1:4c:fb:57:47:85:b6:6f:03:28:4b: 4f:32:bd:35:35:28:5a:7e:58:63:10:d4:7a:84:c7: ee:f2:c8:ee:51:19:1f:41:50:42:20:59:2b:48:6d: 48:fc:50:72:b9:6b:cc:8f:37:d5:26:2d:48:76:9b: 11:b9:ae:1a:08:17:c3:e7:86:0f:2e:98:ab:bd:74: 9e:6c:15:6c:e5:d8:ac:dc:00:9a:35:bb:a1:f1:47: 6b:92:b6:65:4d:2a:42:a3:30:60:e9:02:16:93:52: a5:34:64:c7:3f:0b:9f:d3:ab:bc:cf:96:ab:6d:97: 5a:66:16:8a:8d:50:59:f0:ca:de:1a:10:ba:40:e4: a1:9d:5b:3a:fc:5a:bf:51:db:21:02:1f:a5:db:84: 8e:a0:e5:c3:6f:90:47:91:aa:78:b7:5f:eb:9f:08: 4f:ac:b3:86:51:06:72:41:b3:50:a2:b3:fd:52:34: 85:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:EF:33:61:04:D6:E3:F7:04:0D:E3:D9:A0:8D:2F:CC:0A:F9:A4:6C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c9031f2-c902-4233-a6bd-6c109e4ed033.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff4:20c0::/48 Signature Algorithm: sha256WithRSAEncryption 4e:26:f9:28:79:f7:15:0e:a6:82:d6:5c:8d:03:e8:73:d8:54: 0c:b9:d4:4f:1f:97:ed:43:5d:84:64:a0:40:1a:6f:9d:03:3b: 4b:b3:da:d8:31:10:af:e3:89:63:ad:ca:37:9d:7e:7b:f6:ea: 9c:17:0a:ee:bc:44:1c:6a:6b:34:d6:04:c0:f5:ec:3b:cc:17: e7:a6:23:e2:2b:a0:9f:54:94:fc:5b:f9:f7:e7:65:13:ca:54: d5:dd:86:b4:30:4c:69:4d:b3:92:b1:26:3a:72:4d:af:9a:dc: 3f:ac:a6:53:e2:da:9d:9a:2f:35:44:16:f8:e4:29:e4:2f:64: 17:77:94:ce:9c:3b:82:68:ad:d2:fe:f3:1d:df:7a:4d:e2:43: 52:e9:11:e8:de:0e:da:ef:85:6a:f9:e9:4a:de:79:6f:48:e0: 55:2e:6e:93:3d:ce:7f:aa:7b:cd:e6:d1:e6:41:5d:b5:d6:5d: 60:4a:75:32:32:49:33:3e:88:7e:df:7b:84:d6:85:59:52:8a: fa:24:62:61:ef:80:c6:85:5c:80:c3:8e:5b:e3:6c:75:5f:b9: e5:4c:4f:f0:02:52:f7:d4:61:d2:35:bd:98:ad:6d:fa:c5:e3: 67:49:5a:fe:87:7a:16:42:80:ee:af:78:08:3e:4a:0c:7e:35: ce:2a:16:57 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNDTBk26zn5eFTaEoh3mPJ9DfnXwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTUzMjU3WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYjYxN2UzODMzOTAwN2I1MmYwOTExNzU0ZTFjYjg5NTg1 NTk0ZDgxYzcyZGNjMzRmNzU0Mzc3MjA4ZWRlOGY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDlKwkm0JcPlSmo1UcQwbC/JpCgbC344Rnw4nZQnP7bXhsE Gmw3DBzOWwBzCH2OoIBsS0t7fd6vmNkyycFQJEk/B13b/xzKoNr/Z09qxu/xTPtX R4W2bwMoS08yvTU1KFp+WGMQ1HqEx+7yyO5RGR9BUEIgWStIbUj8UHK5a8yPN9Um LUh2mxG5rhoIF8Pnhg8umKu9dJ5sFWzl2KzcAJo1u6HxR2uStmVNKkKjMGDpAhaT UqU0ZMc/C5/Tq7zPlqttl1pmFoqNUFnwyt4aELpA5KGdWzr8Wr9R2yECH6XbhI6g 5cNvkEeRqni3X+ufCE+ss4ZRBnJBs1Cis/1SNIXZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUzu8zYQTW4/cEDePZoI0vzAr5pGwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRjOTAzMWYyLWM5MDItNDIzMy1hNmJkLTZjMTA5ZTRlZDAzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/0IMAwDQYJKoZIhvcNAQELBQADggEBAE4m+Sh59xUOpoLWXI0D6HPY VAy51E8fl+1DXYRkoEAab50DO0uz2tgxEK/jiWOtyjedfnv26pwXCu68RBxqazTW BMD17DvMF+emI+IroJ9UlPxb+ffnZRPKVNXdhrQwTGlNs5KxJjpyTa+a3D+splPi 2p2aLzVEFvjkKeQvZBd3lM6cO4JordL+8x3fek3iQ1LpEejeDtrvhWr56UreeW9I 4FUubpM9zn+qe83m0eZBXbXWXWBKdTIySTM+iH7fe4TWhVlSivokYmHvgMaFXIDD jlvjbHVfueVMT/ACUvfUYdI1vZitbfrF42dJWv6HehZCgO6veAg+Sgx+Nc4qFlc= -----END CERTIFICATE-----Generated at Sat Apr 26 14:54:53 2025 by rpki-client