$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5031d9a4-a084-4e9c-b383-362934d8042b.roa File: 5031d9a4-a084-4e9c-b383-362934d8042b.roa (raw, json) Hash identifier: GpTqOKB+6jn/xtuYX1C5DC/e8jpsZQNUwaaw9+gi6cQ= Subject key identifier: 20:03:E1:89:08:61:B8:74:55:F4:D9:2F:5E:C6:03:D7:38:86:DA:F1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2E1DEC147AB0A6E1CD0EC92CCB40D367BA545322 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5031d9a4-a084-4e9c-b383-362934d8042b.roa Signing time: Tue 22 Apr 2025 17:01:56 +0000 ROA not before: Tue 22 Apr 2025 17:01:56 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f11:4800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:1d:ec:14:7a:b0:a6:e1:cd:0e:c9:2c:cb:40:d3:67:ba:54:53:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 17:01:56 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=ac376ef7a057bf9a0a926239c5974795baab7ec745e673b34a593ae5137fac55, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2a:5d:5c:ec:7f:29:c6:54:1c:05:34:c3:bc: e8:a5:89:c9:19:36:d9:23:45:d8:09:5c:95:19:75: 5f:d5:71:1c:fb:55:ae:b3:fb:c5:3a:05:02:58:3e: a1:9a:c6:2a:72:ae:85:36:3a:56:a4:4d:aa:aa:40: 12:57:6b:72:34:19:16:78:bc:14:6b:55:8e:a9:e6: 44:fc:82:9a:1a:07:be:87:96:a7:2c:08:fa:e4:40: 43:d5:2e:66:6b:61:eb:94:73:2a:0d:c3:20:5c:38: fa:0a:81:e1:b5:99:31:51:8c:38:80:1f:88:af:c0: 2d:7e:3e:9d:62:4a:f7:ec:37:74:59:d2:0b:19:f3: 87:8a:30:25:43:fb:c9:7a:87:76:40:51:49:f8:19: e5:8f:89:c7:da:da:d5:d3:99:ee:9e:ea:33:1e:b0: ca:7c:f7:a2:7d:87:b6:da:85:db:bc:fe:ef:3a:0e: c3:ed:9f:8c:c0:d6:0d:7f:47:75:43:d5:cd:7e:3f: 7c:bb:1f:78:6f:45:ba:bf:a5:b6:ae:4f:d8:c1:81: 11:2e:e7:73:54:20:93:f5:7a:77:2b:49:48:ec:15: 54:b3:5f:17:0c:4f:f6:b4:16:fd:ff:45:9f:00:66: 17:39:fa:43:8b:28:cc:71:6a:36:e3:19:2b:8b:37: fc:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:03:E1:89:08:61:B8:74:55:F4:D9:2F:5E:C6:03:D7:38:86:DA:F1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5031d9a4-a084-4e9c-b383-362934d8042b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f11:4800::/37 Signature Algorithm: sha256WithRSAEncryption af:3a:b4:0a:e3:0b:05:e2:58:65:ce:4d:9e:22:72:d2:73:cc: 5b:d1:d9:d0:e3:ad:69:5e:d1:b1:1c:d5:56:67:50:3c:21:04: a8:25:4c:ea:cf:da:bb:f9:b8:5e:fe:94:a3:41:32:72:c6:24: 15:bd:13:63:66:e1:89:82:24:93:c3:13:3d:3b:74:0c:c8:8a: f1:2c:fd:c3:b2:67:03:58:f8:74:36:2a:56:69:7f:4c:ab:b4: 06:a7:9b:28:a6:b6:80:9a:e0:76:f2:25:ba:f6:26:97:f1:a3: d1:21:cd:fd:55:8d:c5:19:ec:ca:10:cd:69:1a:94:a1:dc:58: c6:96:9f:03:39:cb:29:f3:4d:ec:b1:de:46:06:a9:42:74:1e: d7:1a:2d:98:d3:91:c7:3b:42:fe:ff:44:0c:7b:1a:b2:ec:6b: e7:ae:79:1d:90:c1:20:d7:9b:12:af:45:af:5a:25:99:9f:aa: 69:43:d7:61:08:0c:1f:71:2d:47:e2:9e:c2:1c:eb:9f:24:33: d9:87:c3:ea:0b:bb:e6:1c:7a:ed:fa:74:73:9a:6d:53:3a:3c: 22:02:54:9a:01:6a:aa:ea:6c:43:29:7b:9f:50:53:f0:ab:da: 08:bd:0e:60:39:ee:94:96:aa:fc:8b:99:04:ea:e4:5e:3a:97: dc:b4:12:5e -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIULh3sFHqwpuHNDsksy0DTZ7pUUyIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTcwMTU2WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYzM3NmVmN2EwNTdiZjlhMGE5MjYyMzljNTk3NDc5NWJh YWI3ZWM3NDVlNjczYjM0YTU5M2FlNTEzN2ZhYzU1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKKl1c7H8pxlQcBTTDvOilickZNtkjRdgJXJUZdV/VcRz7 Va6z+8U6BQJYPqGaxipyroU2OlakTaqqQBJXa3I0GRZ4vBRrVY6p5kT8gpoaB76H lqcsCPrkQEPVLmZrYeuUcyoNwyBcOPoKgeG1mTFRjDiAH4ivwC1+Pp1iSvfsN3RZ 0gsZ84eKMCVD+8l6h3ZAUUn4GeWPicfa2tXTme6e6jMesMp896J9h7bahdu8/u86 DsPtn4zA1g1/R3VD1c1+P3y7H3hvRbq/pbauT9jBgREu53NUIJP1encrSUjsFVSz XxcMT/a0Fv3/RZ8AZhc5+kOLKMxxajbjGSuLN/w3AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUIAPhiQhhuHRV9NkvXsYD1ziG2vEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUwMzFkOWE0LWEwODQtNGU5Yy1iMzgzLTM2MjkzNGQ4MDQyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8RSDANBgkqhkiG9w0BAQsFAAOCAQEArzq0CuMLBeJYZc5NniJy0nPM W9HZ0OOtaV7RsRzVVmdQPCEEqCVM6s/au/m4Xv6Uo0EycsYkFb0TY2bhiYIkk8MT PTt0DMiK8Sz9w7JnA1j4dDYqVml/TKu0BqebKKa2gJrgdvIluvYml/Gj0SHN/VWN xRnsyhDNaRqUodxYxpafAznLKfNN7LHeRgapQnQe1xotmNORxztC/v9EDHsasuxr 5655HZDBINebEq9Fr1olmZ+qaUPXYQgMH3EtR+KewhzrnyQz2YfD6gu75hx67fp0 c5ptUzo8IgJUmgFqqupsQyl7n1BT8KvaCL0OYDnulJaq/IuZBOrkXjqX3LQSXg== -----END CERTIFICATE-----Generated at Sat Apr 26 13:26:43 2025 by rpki-client