$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51335465-4299-4ca4-98a8-313b71c24ca6.roa File: 51335465-4299-4ca4-98a8-313b71c24ca6.roa (raw, json) Hash identifier: FG8t58LqHuiVzzbp+qBRvKi3dzx50sNi9THEK3ElS0Q= Subject key identifier: 48:16:FC:EC:3D:2E:C3:BC:BF:DB:BD:20:A2:0B:09:AC:08:3F:C3:3E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3AA26252292C746BF9343C326A81C1C08156B09C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51335465-4299-4ca4-98a8-313b71c24ca6.roa Signing time: Wed 09 Apr 2025 00:20:29 +0000 ROA not before: Wed 09 Apr 2025 00:20:29 +0000 ROA not after: Wed 14 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f14:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:a2:62:52:29:2c:74:6b:f9:34:3c:32:6a:81:c1:c0:81:56:b0:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 9 00:20:29 2025 GMT Not After : May 14 23:59:59 2025 GMT Subject: serialNumber=6e16f10d5875840418d083f06e86ac4f9d953dcf1fea0985fb3fd04987c0908f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:b5:e9:ea:a6:e1:63:d2:2c:48:10:71:1d:34: e1:5a:90:90:97:c3:34:8a:f6:b9:ba:fe:f9:43:b6: 08:fe:9b:9f:3b:80:c9:8a:a4:7e:f3:72:4c:b9:72: 00:77:da:f8:3d:8e:2c:62:09:2f:5f:97:4d:ed:e7: e4:1a:43:c7:b2:66:23:68:7b:a1:f8:81:28:35:d3: 80:eb:99:e4:f5:72:4f:ae:66:76:38:ac:44:bf:77: b9:93:f6:6b:cd:9a:8c:50:69:99:0a:b1:00:69:a3: ff:08:65:0d:29:7c:fc:83:d5:4b:97:40:d1:f4:57: 12:0e:8a:c8:16:68:30:cf:1a:3b:c7:ec:47:e0:6e: 14:d1:10:68:c1:38:fb:85:bf:fc:55:9a:05:9f:63: 9b:dc:1c:9c:be:ea:13:f4:bd:93:d4:50:5b:8a:d2: 58:a3:74:1b:dc:df:f7:4d:10:16:12:90:26:50:51: f9:ce:05:2c:e7:34:d5:e6:05:89:d6:2e:26:08:1b: 73:44:2e:05:42:39:8c:90:a1:ab:8b:6f:d4:66:17: 84:af:94:14:62:48:63:8d:d8:8e:5b:3a:d8:8e:21: 00:4c:50:17:6d:79:d0:16:1c:0f:46:98:b4:e9:ce: 77:be:a5:d7:fe:24:6a:02:23:9e:7c:a6:27:90:c8: d5:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:16:FC:EC:3D:2E:C3:BC:BF:DB:BD:20:A2:0B:09:AC:08:3F:C3:3E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51335465-4299-4ca4-98a8-313b71c24ca6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f14:8000::/36 Signature Algorithm: sha256WithRSAEncryption 3a:cc:90:52:69:b4:22:c0:b2:df:5e:91:a6:e4:52:dc:3a:15: 21:bf:6f:e4:6b:8d:cd:88:97:25:55:74:a8:ea:54:d4:ad:a1: b1:09:45:a5:71:75:54:dd:ae:2b:93:0b:f6:ae:0b:71:95:26: 6d:9f:c7:1c:46:57:8c:dc:d5:94:78:86:7b:d6:8a:00:2b:3f: 9c:03:ff:ad:82:44:30:1c:1a:77:fc:7e:91:79:ca:8f:38:c4: 1e:68:4d:6b:8d:8c:c6:1a:fb:08:42:1f:9e:c2:6e:30:46:6b: ff:56:3e:47:a9:63:1d:ab:46:bc:51:35:94:4f:25:61:57:d6: 88:39:03:87:7f:36:08:b4:78:55:12:bb:a7:82:3d:fd:3a:e7: f9:3a:4e:6d:47:08:a6:5b:28:33:f3:c4:17:a2:86:51:1c:e7: e4:12:d3:c0:06:8f:60:59:bc:89:39:28:52:98:db:ef:3e:c1: e1:d6:b7:ea:0b:99:be:48:4b:24:69:f7:48:86:2f:9c:c6:a1: 97:06:a1:b2:1e:36:1d:bf:51:9f:eb:b0:c6:60:8d:c0:84:af: da:0c:c3:89:2e:10:49:e6:81:03:a8:a4:fc:66:44:80:23:6a: 44:ec:ad:14:95:02:71:f8:2c:08:fa:a9:a2:a0:a9:fb:54:32: 57:67:22:18 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUOqJiUiksdGv5NDwyaoHBwIFWsJwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA5MDAyMDI5WhcNMjUwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZTE2ZjEwZDU4NzU4NDA0MThkMDgzZjA2ZTg2YWM0Zjlk OTUzZGNmMWZlYTA5ODVmYjNmZDA0OTg3YzA5MDhmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCitenqpuFj0ixIEHEdNOFakJCXwzSK9rm6/vlDtgj+m587 gMmKpH7zcky5cgB32vg9jixiCS9fl03t5+QaQ8eyZiNoe6H4gSg104DrmeT1ck+u ZnY4rES/d7mT9mvNmoxQaZkKsQBpo/8IZQ0pfPyD1UuXQNH0VxIOisgWaDDPGjvH 7EfgbhTREGjBOPuFv/xVmgWfY5vcHJy+6hP0vZPUUFuK0lijdBvc3/dNEBYSkCZQ UfnOBSznNNXmBYnWLiYIG3NELgVCOYyQoauLb9RmF4SvlBRiSGON2I5bOtiOIQBM UBdtedAWHA9GmLTpzne+pdf+JGoCI558pieQyNU5AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUSBb87D0uw7y/270gogsJrAg/wz4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUxMzM1NDY1LTQyOTktNGNhNC05OGE4LTMxM2I3MWMyNGNhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8UgDANBgkqhkiG9w0BAQsFAAOCAQEAOsyQUmm0IsCy316RpuRS3DoV Ib9v5GuNzYiXJVV0qOpU1K2hsQlFpXF1VN2uK5ML9q4LcZUmbZ/HHEZXjNzVlHiG e9aKACs/nAP/rYJEMBwad/x+kXnKjzjEHmhNa42Mxhr7CEIfnsJuMEZr/1Y+R6lj HatGvFE1lE8lYVfWiDkDh382CLR4VRK7p4I9/Trn+TpObUcIplsoM/PEF6KGURzn 5BLTwAaPYFm8iTkoUpjb7z7B4da36guZvkhLJGn3SIYvnMahlwahsh42Hb9Rn+uw xmCNwISv2gzDiS4QSeaBA6ik/GZEgCNqROytFJUCcfgsCPqpoqCp+1QyV2ciGA== -----END CERTIFICATE-----Generated at Sat Apr 26 16:55:07 2025 by rpki-client