$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/624938a7-7c55-4a2c-87ea-1939815006d1.roa File: 624938a7-7c55-4a2c-87ea-1939815006d1.roa (raw, json) Hash identifier: v0SJIGvkfUXRUM1qvtYO3obMG/0VCBdTcIA4fKnDIR4= Subject key identifier: 49:5C:94:C7:69:ED:59:12:CB:7F:C8:84:34:47:3A:CA:4F:BA:78:BD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 73560FB16CD99848CBE89AB538721354691BFAFF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/624938a7-7c55-4a2c-87ea-1939815006d1.roa Signing time: Tue 22 Apr 2025 16:21:15 +0000 ROA not before: Tue 22 Apr 2025 16:21:15 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ff1:8000::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:56:0f:b1:6c:d9:98:48:cb:e8:9a:b5:38:72:13:54:69:1b:fa:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:21:15 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=3e53f7a4669bb682d177abaab0779d976a7e1230fadd7afcc34f5de18673d925, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:9e:25:01:3e:89:57:bd:56:b4:48:6a:7f:88: 1c:62:65:a4:cf:fc:36:63:9c:b4:18:da:87:76:1b: 8d:74:92:52:71:ed:82:8f:04:6b:88:12:09:88:5f: 67:d1:08:d7:03:1a:51:e1:5d:ac:fa:0f:8d:5c:74: d1:b8:9c:3f:cc:8c:42:54:47:d0:f6:10:bb:3f:30: e9:cc:f7:92:36:a0:91:e5:5a:08:81:cc:6a:06:33: 32:d9:ab:f2:94:4f:4e:f6:79:83:18:e4:88:bf:9f: ce:9b:10:07:f0:b9:78:50:b7:6d:66:55:65:d2:6e: 8b:3c:0b:80:7e:19:8e:20:30:50:8e:83:44:4a:cc: 93:36:5e:85:fd:30:1c:f9:89:78:b0:c3:b0:2b:ac: 34:46:1f:ab:e3:02:8f:ec:0d:3f:ca:b2:d2:4c:34: 3b:b6:c0:a8:59:60:74:1a:7f:78:73:20:4f:8b:42: cc:c2:2c:d3:4a:07:f5:6b:0c:28:27:61:1b:6e:b4: 9b:5b:22:a6:cf:f8:1b:1b:60:11:b4:b9:55:47:fc: 58:35:c9:a5:de:41:b4:5c:0e:9b:92:d0:5b:7f:e2: d1:68:a7:a1:46:1c:f8:4b:1b:20:1d:04:1c:74:31: e8:bd:f9:77:8b:b0:35:df:14:0a:18:ff:cf:db:a1: de:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:5C:94:C7:69:ED:59:12:CB:7F:C8:84:34:47:3A:CA:4F:BA:78:BD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/624938a7-7c55-4a2c-87ea-1939815006d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff1:8000::/39 Signature Algorithm: sha256WithRSAEncryption 19:de:57:6d:ca:91:17:40:03:90:b7:c5:9b:0b:e4:e8:5f:de: f8:21:c6:71:64:0e:45:d0:2d:3b:98:05:6f:28:79:9b:bb:0b: 7e:4c:f9:5f:99:16:1a:ef:ca:4a:12:a1:50:34:4f:51:ef:ac: 9b:a0:f0:58:1c:49:9a:6c:e3:a8:c1:99:f1:c5:bb:a5:d5:c4: c6:bd:58:ab:ac:ba:27:3c:fa:4e:52:6d:1f:7c:66:f2:4c:fd: 79:62:50:f8:e5:c5:9b:c2:c3:5c:65:3e:22:27:d4:b2:9d:38: aa:f9:ef:50:ed:6f:4e:02:5c:5f:70:6c:94:2d:16:79:e1:a1: f2:37:3d:99:16:c4:c5:b2:7c:fb:df:50:6b:e4:9a:52:77:11: 54:47:2f:87:71:31:7f:a5:01:b4:28:bf:a2:5b:a0:bc:3a:1a: dc:07:b0:c0:83:31:d6:b5:a3:62:f9:b9:86:f6:a6:3e:2d:6b: bd:eb:9a:6a:15:b8:53:b7:46:e5:da:5a:09:ae:7e:ad:12:84: e3:8a:78:53:74:de:ee:17:78:e6:e6:34:0e:17:40:a9:a3:e5: 51:1f:ea:16:75:03:88:20:3d:40:3f:e9:a4:6b:c3:01:67:31: c5:6c:23:29:7b:ad:cf:b3:d1:23:c8:1e:bd:6e:b3:e4:d5:57: 44:8c:a9:7d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUc1YPsWzZmEjL6Jq1OHITVGkb+v8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTYyMTE1WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTUzZjdhNDY2OWJiNjgyZDE3N2FiYWFiMDc3OWQ5NzZh N2UxMjMwZmFkZDdhZmNjMzRmNWRlMTg2NzNkOTI1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfniUBPolXvVa0SGp/iBxiZaTP/DZjnLQY2od2G410klJx 7YKPBGuIEgmIX2fRCNcDGlHhXaz6D41cdNG4nD/MjEJUR9D2ELs/MOnM95I2oJHl WgiBzGoGMzLZq/KUT072eYMY5Ii/n86bEAfwuXhQt21mVWXSbos8C4B+GY4gMFCO g0RKzJM2XoX9MBz5iXiww7ArrDRGH6vjAo/sDT/KstJMNDu2wKhZYHQaf3hzIE+L QszCLNNKB/VrDCgnYRtutJtbIqbP+BsbYBG0uVVH/Fg1yaXeQbRcDpuS0Ft/4tFo p6FGHPhLGyAdBBx0Mei9+XeLsDXfFAoY/8/bod6vAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUSVyUx2ntWRLLf8iENEc6yk+6eL0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYyNDkzOGE3LTdjNTUtNGEyYy04N2VhLTE5Mzk4MTUwMDZkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/xgDANBgkqhkiG9w0BAQsFAAOCAQEAGd5XbcqRF0ADkLfFmwvk6F/e +CHGcWQORdAtO5gFbyh5m7sLfkz5X5kWGu/KShKhUDRPUe+sm6DwWBxJmmzjqMGZ 8cW7pdXExr1Yq6y6Jzz6TlJtH3xm8kz9eWJQ+OXFm8LDXGU+IifUsp04qvnvUO1v TgJcX3BslC0WeeGh8jc9mRbExbJ8+99Qa+SaUncRVEcvh3Exf6UBtCi/olugvDoa 3AewwIMx1rWjYvm5hvamPi1rveuaahW4U7dG5dpaCa5+rRKE44p4U3Te7hd45uY0 DhdAqaPlUR/qFnUDiCA9QD/ppGvDAWcxxWwjKXutz7PRI8gevW6z5NVXRIypfQ== -----END CERTIFICATE-----Generated at Sat Apr 26 13:29:57 2025 by rpki-client