$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/554be722-ed7e-4a33-8be9-7a3925c9c6c5.roa File: 554be722-ed7e-4a33-8be9-7a3925c9c6c5.roa (raw, json) Hash identifier: ZPAnFDohQhF8FCBvUKwhrhAQYnuBs9yFSsSxXLjMMSM= Subject key identifier: A8:25:E1:CE:15:6C:3D:3C:6B:81:82:6E:DC:C3:F1:BB:F3:6D:E6:BD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 320EAFBE229C1411CA56C65D45720578387EED68 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/554be722-ed7e-4a33-8be9-7a3925c9c6c5.roa Signing time: Mon 21 Apr 2025 17:21:42 +0000 ROA not before: Mon 21 Apr 2025 17:21:42 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f38:6040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:0e:af:be:22:9c:14:11:ca:56:c6:5d:45:72:05:78:38:7e:ed:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 21 17:21:42 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=7598060233396f33207c33745b606615069741fa394c1435745cdc8897bf5d6e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f8:66:49:49:c4:4f:f7:15:0d:11:33:04:80: 9f:9b:28:e4:50:51:4b:d0:f2:5c:e9:c1:8c:02:0f: 9a:cc:86:c8:67:ff:76:08:c2:d5:e0:de:c3:9c:fa: f0:83:c7:dd:99:94:4b:a7:2f:1a:35:00:0d:5e:80: b8:e0:64:c2:a2:45:9f:91:c1:7d:fa:5b:3b:f2:91: 3b:22:6d:56:e1:28:7c:cb:20:4d:f2:1e:d2:f4:f7: 34:80:42:c9:eb:37:fe:46:55:aa:04:6b:56:72:a2: 5d:79:d4:bf:2e:27:f9:a4:ca:b8:23:9a:7a:5e:8c: 2e:20:6e:90:ba:a9:52:be:34:ee:73:a2:2f:4d:68: ef:64:c8:bc:b5:b6:83:b0:f2:54:ea:a1:e6:8e:89: ae:12:0c:6c:94:43:da:2c:86:5f:dd:eb:0a:8a:7e: 52:b6:dd:2b:b1:7f:76:f9:d7:7d:77:2e:b5:06:d1: 66:7d:d8:bb:19:32:e3:20:90:e0:a2:6d:ce:12:6a: b8:4b:79:65:86:72:30:7b:52:8d:90:ca:55:35:ec: 16:8f:c2:c1:7f:26:09:8f:5a:36:5d:c8:d9:49:2f: 18:26:41:fd:a2:c5:38:cd:ed:70:ae:25:f9:4a:89: e8:0b:40:d2:94:de:22:48:e8:5d:7c:00:da:69:41: 4b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:25:E1:CE:15:6C:3D:3C:6B:81:82:6E:DC:C3:F1:BB:F3:6D:E6:BD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/554be722-ed7e-4a33-8be9-7a3925c9c6c5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f38:6040::/48 Signature Algorithm: sha256WithRSAEncryption 0c:8f:79:15:0c:b4:43:71:4c:ad:af:c4:26:f8:bf:f6:d2:47: 9b:10:f4:f1:0c:a0:57:3f:bf:7c:e3:67:d0:e1:2e:de:b0:3c: a8:d8:a9:b2:6c:6b:b7:1c:dd:87:aa:4a:bb:79:72:b7:7f:27: bf:c8:fa:69:2f:e0:55:ea:d5:7c:c4:2d:3d:5e:c8:4a:32:2d: a8:fc:59:ef:f3:e2:29:a7:f8:e3:4b:8c:d3:9e:f6:29:53:f2: 31:2c:4e:5d:0c:b4:f5:9b:66:05:35:bd:74:f0:5b:c8:18:ed: cb:e6:3e:3d:a9:4e:08:c6:fb:32:7b:2b:df:0f:55:d9:4a:ab: 88:00:07:90:a7:6b:b6:99:fe:dc:c8:c4:cb:4a:30:c5:ba:ed: 94:e6:41:b2:bf:3b:e0:c4:56:86:71:43:7a:5a:4c:4c:89:b7: 88:ca:7f:34:d9:a3:27:a2:7e:9a:32:57:8b:8a:bb:19:19:3f: fe:03:cc:75:bb:3b:a7:d2:76:73:5e:95:e5:fa:9a:f7:a9:7b: 41:d2:99:ce:8e:41:90:6b:4c:c4:5a:bb:53:da:12:63:39:66: 9a:63:72:15:bc:07:f8:4a:0d:08:ec:5b:28:87:8f:9c:23:ee: d2:a2:44:93:42:94:18:e0:f7:1b:da:04:c1:c8:b7:fb:98:49: de:f8:d7:0f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMg6vviKcFBHKVsZdRXIFeDh+7WgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIxMTcyMTQyWhcNMjUwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NTk4MDYwMjMzMzk2ZjMzMjA3YzMzNzQ1YjYwNjYxNTA2 OTc0MWZhMzk0YzE0MzU3NDVjZGM4ODk3YmY1ZDZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCe+GZJScRP9xUNETMEgJ+bKORQUUvQ8lzpwYwCD5rMhshn /3YIwtXg3sOc+vCDx92ZlEunLxo1AA1egLjgZMKiRZ+RwX36WzvykTsibVbhKHzL IE3yHtL09zSAQsnrN/5GVaoEa1Zyol151L8uJ/mkyrgjmnpejC4gbpC6qVK+NO5z oi9NaO9kyLy1toOw8lTqoeaOia4SDGyUQ9oshl/d6wqKflK23Suxf3b51313LrUG 0WZ92LsZMuMgkOCibc4SarhLeWWGcjB7Uo2QylU17BaPwsF/JgmPWjZdyNlJLxgm Qf2ixTjN7XCuJflKiegLQNKU3iJI6F18ANppQUthAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUqCXhzhVsPTxrgYJu3MPxu/Nt5r0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU1NGJlNzIyLWVkN2UtNGEzMy04YmU5LTdhMzkyNWM5YzZjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB84YEAwDQYJKoZIhvcNAQELBQADggEBAAyPeRUMtENxTK2vxCb4v/bS R5sQ9PEMoFc/v3zjZ9DhLt6wPKjYqbJsa7cc3YeqSrt5crd/J7/I+mkv4FXq1XzE LT1eyEoyLaj8We/z4imn+ONLjNOe9ilT8jEsTl0MtPWbZgU1vXTwW8gY7cvmPj2p TgjG+zJ7K98PVdlKq4gAB5Cna7aZ/tzIxMtKMMW67ZTmQbK/O+DEVoZxQ3paTEyJ t4jKfzTZoyeifpoyV4uKuxkZP/4DzHW7O6fSdnNeleX6mvepe0HSmc6OQZBrTMRa u1PaEmM5ZppjchW8B/hKDQjsWyiHj5wj7tKiRJNClBjg9xvaBMHIt/uYSd741w8= -----END CERTIFICATE-----Generated at Sat Apr 26 14:51:03 2025 by rpki-client