$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51483cb9-c790-4553-bf9f-798a406fc39f.roa File: 51483cb9-c790-4553-bf9f-798a406fc39f.roa (raw, json) Hash identifier: BluCvH3q76x4FKhiBKY5ncZgNjiH8/cs3fMS0aFIgEU= Subject key identifier: 25:26:09:51:57:23:1B:8E:80:BF:5E:4C:0D:87:3B:8A:6F:98:B3:DD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 45FBA612D389370A69548105EE6D62EAAA1A8235 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51483cb9-c790-4553-bf9f-798a406fc39f.roa Signing time: Mon 21 Apr 2025 18:11:09 +0000 ROA not before: Mon 21 Apr 2025 18:11:09 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f61:7480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:fb:a6:12:d3:89:37:0a:69:54:81:05:ee:6d:62:ea:aa:1a:82:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 21 18:11:09 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=0dfbe7e9bc0de3899553529f1af28a7bd0eccc61d4766f54a57c64cb4050d18d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9a:33:ce:52:1e:60:06:e3:2b:d4:df:de:c3: 1e:c1:d9:5f:b5:b3:44:d4:26:5c:22:61:69:7a:b0: 08:5f:4b:ee:81:66:97:e7:ef:95:46:78:3e:e3:2d: 44:b2:c9:89:9f:d3:b8:9c:cf:d8:56:29:51:f1:f7: 49:f1:2c:25:da:ff:bc:6f:43:9b:0d:d3:e9:7e:8d: 1d:aa:6c:7a:40:8f:b2:5f:f7:31:3a:bc:29:8a:97: 29:85:0e:68:87:d7:69:2a:31:2c:99:9e:bb:51:5e: 06:b0:a9:82:13:c9:14:ad:99:c6:cc:ec:ff:00:5c: 94:75:01:35:c1:68:33:d2:6c:6e:bd:4e:b1:a6:1a: b3:a5:7b:d4:10:10:73:11:0c:f5:63:ef:00:ac:0b: 20:32:d8:40:81:ea:06:3c:89:94:31:48:8b:74:5a: 19:07:00:b3:1b:45:7c:1a:a3:5a:12:a2:c0:b1:e1: 92:9c:e1:2f:2a:09:9f:8a:56:6a:16:a0:ec:f0:92: f3:d6:03:5e:4c:6d:28:1c:67:5c:3e:0e:22:80:d8: c4:9b:8c:cc:9e:f1:62:ff:cf:74:3d:9d:88:4a:ac: 95:59:61:8c:09:d9:47:18:73:ff:ff:89:5f:c4:3a: 5e:57:00:87:5c:01:1b:ca:52:ff:4c:63:e7:9b:45: 3b:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:26:09:51:57:23:1B:8E:80:BF:5E:4C:0D:87:3B:8A:6F:98:B3:DD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51483cb9-c790-4553-bf9f-798a406fc39f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:7480::/48 Signature Algorithm: sha256WithRSAEncryption 17:21:4d:84:e8:f9:8c:7a:81:b7:c8:f0:a0:e3:a2:c8:e3:3b: 78:fc:f2:23:77:ad:f8:76:fa:a3:ed:82:1d:c6:d5:20:76:23: 42:e1:a1:7a:2d:9a:fe:71:1c:07:7f:78:f7:48:84:2b:0d:dc: 4e:c6:cf:2a:db:ed:40:c8:0c:2d:de:f3:d3:26:91:97:cb:e6: 7b:3e:45:83:a3:a8:a1:81:91:e0:d1:ef:d8:d2:f8:d5:1d:c6: 1c:ed:84:69:0a:87:98:16:8c:4c:e5:99:25:1c:c9:fd:3c:a7: b4:9d:70:7c:94:7a:f3:39:a7:f8:06:01:b6:0c:0d:f1:fe:00: d2:be:ac:20:bd:39:2d:dd:b7:45:a0:46:84:85:43:16:32:54: 26:1e:6a:d2:e7:5f:49:ca:4d:4f:e2:0e:61:18:c8:81:b2:63: e9:ec:6f:05:96:26:78:1c:8c:d5:f2:68:e8:29:6f:dc:95:40: 4b:9a:74:46:7e:5e:52:0a:6a:a7:a6:f9:58:1e:fa:0b:7a:32: 51:d5:b8:ac:7d:e4:70:f2:85:06:88:e5:5c:3f:20:b0:3f:ef: 1e:ac:78:c9:1a:59:ec:a4:3c:76:cf:05:0b:79:07:82:0a:32: 7a:48:23:43:6e:82:c6:3f:c6:8c:3e:b5:3d:db:6a:0e:60:ae: da:20:91:5b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURfumEtOJNwppVIEF7m1i6qoagjUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIxMTgxMTA5WhcNMjUwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZGZiZTdlOWJjMGRlMzg5OTU1MzUyOWYxYWYyOGE3YmQw ZWNjYzYxZDQ3NjZmNTRhNTdjNjRjYjQwNTBkMThkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/mjPOUh5gBuMr1N/ewx7B2V+1s0TUJlwiYWl6sAhfS+6B Zpfn75VGeD7jLUSyyYmf07icz9hWKVHx90nxLCXa/7xvQ5sN0+l+jR2qbHpAj7Jf 9zE6vCmKlymFDmiH12kqMSyZnrtRXgawqYITyRStmcbM7P8AXJR1ATXBaDPSbG69 TrGmGrOle9QQEHMRDPVj7wCsCyAy2ECB6gY8iZQxSIt0WhkHALMbRXwao1oSosCx 4ZKc4S8qCZ+KVmoWoOzwkvPWA15MbSgcZ1w+DiKA2MSbjMye8WL/z3Q9nYhKrJVZ YYwJ2UcYc///iV/EOl5XAIdcARvKUv9MY+ebRTsTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUJSYJUVcjG46Av15MDYc7im+Ys90wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUxNDgzY2I5LWM3OTAtNDU1My1iZjlmLTc5OGE0MDZmYzM5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB9hdIAwDQYJKoZIhvcNAQELBQADggEBABchTYTo+Yx6gbfI8KDjosjj O3j88iN3rfh2+qPtgh3G1SB2I0LhoXotmv5xHAd/ePdIhCsN3E7Gzyrb7UDIDC3e 89MmkZfL5ns+RYOjqKGBkeDR79jS+NUdxhzthGkKh5gWjEzlmSUcyf08p7SdcHyU evM5p/gGAbYMDfH+ANK+rCC9OS3dt0WgRoSFQxYyVCYeatLnX0nKTU/iDmEYyIGy Y+nsbwWWJngcjNXyaOgpb9yVQEuadEZ+XlIKaqem+Vge+gt6MlHVuKx95HDyhQaI 5Vw/ILA/7x6seMkaWeykPHbPBQt5B4IKMnpII0NugsY/xow+tT3bag5grtogkVs= -----END CERTIFICATE-----Generated at Sat Apr 26 15:01:58 2025 by rpki-client