$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/600d62a4-e5e5-46cd-9b8b-9a7f3ddeac2d.roa File: 600d62a4-e5e5-46cd-9b8b-9a7f3ddeac2d.roa (raw, json) Hash identifier: 8m95zwjx1UvFt2YDpI0a4a7jL6nQA49nYUjh6WDLW2o= Subject key identifier: 05:D7:CA:72:EE:9A:3E:E7:58:78:B4:97:0F:6A:49:2E:DD:A4:83:FB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 58F51B7A2A6869B86EDF103EFEDFDA931AAEB666 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/600d62a4-e5e5-46cd-9b8b-9a7f3ddeac2d.roa Signing time: Mon 21 Apr 2025 18:21:39 +0000 ROA not before: Mon 21 Apr 2025 18:21:39 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff2:a440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:f5:1b:7a:2a:68:69:b8:6e:df:10:3e:fe:df:da:93:1a:ae:b6:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 21 18:21:39 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=80920f92ccbdbdf3247cad9259a609a9d86059e9fae25a84f3444af6e7c6682d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:98:42:36:b9:eb:1e:73:4f:a6:f2:aa:64:46: 39:10:7d:32:d0:a7:01:ae:71:e4:b2:c4:88:fc:c1: bd:db:2c:da:2b:4c:a3:dc:97:53:f9:de:9e:7d:b8: 60:80:fe:8e:9a:9a:fd:32:88:60:d1:10:ed:e1:25: 33:29:31:ad:f3:9d:7c:c5:44:00:d4:47:95:75:0a: 25:31:9d:3e:14:58:c5:1d:85:6d:1c:02:21:34:d1: e4:23:82:6a:64:8a:2f:54:2f:3a:78:1a:d0:f5:ec: a9:48:e9:03:7b:9a:65:ef:3a:9b:d9:4d:f6:17:8e: 25:e7:c2:84:f9:22:ff:1a:51:e5:4b:ed:00:83:be: 5e:2f:22:3e:3b:88:e6:72:40:a1:73:74:87:a0:0c: dc:43:4b:53:3b:66:87:a7:f9:b4:33:18:e9:57:4f: 9b:d9:3a:03:dd:b0:ab:10:70:c4:0c:01:63:8f:b1: db:17:4e:a3:dd:19:16:fa:d7:dc:1d:ac:6a:8e:4c: 23:5a:30:2b:eb:1c:d9:94:c7:89:2f:4c:0e:4a:80: 8b:15:11:0a:a4:f3:24:f0:84:3f:ed:4c:80:13:ed: fe:df:28:c3:19:25:81:04:57:83:73:82:76:f7:e3: 15:33:3a:98:17:9d:7d:a2:10:34:3d:6b:ce:c8:04: 38:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:D7:CA:72:EE:9A:3E:E7:58:78:B4:97:0F:6A:49:2E:DD:A4:83:FB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/600d62a4-e5e5-46cd-9b8b-9a7f3ddeac2d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:a440::/48 Signature Algorithm: sha256WithRSAEncryption 45:39:f6:2b:3d:29:73:74:7c:3f:19:d6:e9:b2:87:8d:6b:25: 4c:8f:5f:d1:78:5d:52:f2:83:3e:b0:9f:10:71:13:f4:03:56: b7:20:b7:33:b4:d6:ac:a5:5a:c0:c5:e2:23:60:f2:e4:2b:da: 8a:6e:a7:dd:03:82:74:98:99:ae:ac:30:85:69:72:d6:42:36: 4f:e4:4b:1d:ba:b4:ed:42:fc:86:69:a7:26:5a:83:1e:8c:b5: e6:ae:3c:25:62:65:0f:e7:5f:ac:24:ee:81:52:a9:2d:fb:5d: 52:02:67:ae:ae:b7:4d:5c:ca:5c:50:fe:68:ae:b5:3d:98:6a: f2:21:b4:c5:1f:a6:9c:22:9c:08:97:10:83:cb:9e:d7:1f:54: 26:00:f3:ef:62:e5:2c:8a:15:96:b3:b8:1c:f7:de:e0:88:96: f5:bd:16:4d:54:d3:14:e1:df:45:ee:37:8f:c7:f2:d6:24:a1: a6:53:5b:3c:15:5e:dd:21:7a:36:b6:99:df:aa:a3:7a:06:db: 62:0a:a0:2f:5e:23:41:84:f1:48:b1:d1:cb:a4:9d:41:ab:17: 30:c2:47:e3:0e:11:e7:b1:13:bb:67:61:30:41:ea:40:14:8d: 32:0c:f4:0f:19:92:15:71:e1:8b:3d:dc:89:cf:f0:1a:fa:a2: d6:2a:65:7d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWPUbeipoabhu3xA+/t/akxqutmYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIxMTgyMTM5WhcNMjUwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MDkyMGY5MmNjYmRiZGYzMjQ3Y2FkOTI1OWE2MDlhOWQ4 NjA1OWU5ZmFlMjVhODRmMzQ0NGFmNmU3YzY2ODJkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzmEI2uesec0+m8qpkRjkQfTLQpwGuceSyxIj8wb3bLNor TKPcl1P53p59uGCA/o6amv0yiGDREO3hJTMpMa3znXzFRADUR5V1CiUxnT4UWMUd hW0cAiE00eQjgmpkii9ULzp4GtD17KlI6QN7mmXvOpvZTfYXjiXnwoT5Iv8aUeVL 7QCDvl4vIj47iOZyQKFzdIegDNxDS1M7Zoen+bQzGOlXT5vZOgPdsKsQcMQMAWOP sdsXTqPdGRb619wdrGqOTCNaMCvrHNmUx4kvTA5KgIsVEQqk8yTwhD/tTIAT7f7f KMMZJYEEV4Nzgnb34xUzOpgXnX2iEDQ9a87IBDiBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUBdfKcu6aPudYeLSXD2pJLt2kg/swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYwMGQ2MmE0LWU1ZTUtNDZjZC05YjhiLTlhN2YzZGRlYWMyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/ypEAwDQYJKoZIhvcNAQELBQADggEBAEU59is9KXN0fD8Z1umyh41r JUyPX9F4XVLygz6wnxBxE/QDVrcgtzO01qylWsDF4iNg8uQr2opup90DgnSYma6s MIVpctZCNk/kSx26tO1C/IZppyZagx6MteauPCViZQ/nX6wk7oFSqS37XVICZ66u t01cylxQ/miutT2YavIhtMUfppwinAiXEIPLntcfVCYA8+9i5SyKFZazuBz33uCI lvW9Fk1U0xTh30XuN4/H8tYkoaZTWzwVXt0heja2md+qo3oG22IKoC9eI0GE8Uix 0cuknUGrFzDCR+MOEeexE7tnYTBB6kAUjTIM9A8ZkhVx4Ys93InP8Br6otYqZX0= -----END CERTIFICATE-----Generated at Sat Apr 26 14:56:21 2025 by rpki-client