$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6281a3cd-fc20-4f89-a2d4-8e1827292796.roa File: 6281a3cd-fc20-4f89-a2d4-8e1827292796.roa (raw, json) Hash identifier: RXc+pzOd4clhYcZN0q7eFK16VyhT04TJWW6/Cm0yGUA= Subject key identifier: 99:BB:AC:C4:4D:9B:95:32:74:0C:84:56:C5:AF:AE:98:55:B1:EF:63 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0492FC089DDCD89A6915E24F9231C4330103E082 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6281a3cd-fc20-4f89-a2d4-8e1827292796.roa Signing time: Mon 21 Apr 2025 17:50:28 +0000 ROA not before: Mon 21 Apr 2025 17:50:28 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:6060::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:92:fc:08:9d:dc:d8:9a:69:15:e2:4f:92:31:c4:33:01:03:e0:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 21 17:50:28 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=cf821bd134b53846d5179feb0bd45eeac138577894b5b4885a82f0c7245d1d09, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:10:7d:c7:63:d0:20:6b:54:38:aa:4e:40:66: 04:38:5e:93:d0:3e:ca:85:b2:b1:62:d8:62:a2:ca: f7:e2:a0:c6:0b:c9:45:08:94:d1:7c:82:bc:8d:76: ec:3c:22:b7:3a:66:08:2e:13:cb:86:61:83:f4:8e: 8d:7f:72:64:45:35:d4:ef:22:37:72:56:34:22:19: 2a:ee:a0:65:ec:38:05:a8:c9:50:82:fe:98:b7:a7: 2a:e5:9a:2b:92:2b:ba:0a:2b:50:e7:c7:2b:ff:f6: bd:da:ae:80:a0:2e:98:f5:ce:2a:98:92:87:de:29: d6:84:93:84:93:2d:b7:21:1f:f6:77:bd:e6:69:3a: b6:2e:bf:75:f2:6f:b0:f5:10:9a:ef:43:50:33:37: 11:ae:c5:04:eb:29:6f:cf:94:b7:5c:82:2b:86:37: 29:dc:05:32:b7:37:2d:32:9c:5f:02:c3:2b:2b:8c: a3:b2:20:42:34:9d:f0:93:65:a3:83:9a:78:83:40: e8:f6:01:56:c2:88:99:81:e6:d1:ae:39:01:4c:34: 4c:7f:5c:87:47:82:ba:d8:6c:1c:8e:a0:a4:30:99: 67:fb:79:ae:65:48:38:91:b8:27:ab:4a:d0:68:2a: 2c:89:dd:fd:73:73:a8:3b:12:6e:a7:ef:8e:ac:d0: 28:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:BB:AC:C4:4D:9B:95:32:74:0C:84:56:C5:AF:AE:98:55:B1:EF:63 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6281a3cd-fc20-4f89-a2d4-8e1827292796.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:6060::/48 Signature Algorithm: sha256WithRSAEncryption 52:fe:f1:98:e4:65:14:44:10:5e:11:e5:4c:ab:56:1c:d8:ec: 32:ba:a2:37:d8:27:db:2a:ae:28:6f:b6:75:72:85:04:51:f7: ee:4f:c5:25:df:4e:26:b7:a4:30:82:1b:81:a2:84:a3:8e:dc: c2:5a:cc:42:b7:b4:e1:da:5d:f2:4d:97:c5:a6:95:a4:f5:52: 83:92:68:8f:3b:22:16:2b:b0:34:9a:d2:61:15:7d:3a:74:3f: 8c:44:bc:6d:d9:db:24:b4:d7:1b:c2:f9:a5:57:71:42:1d:d4: 6c:17:1e:4a:87:a8:44:cb:b8:89:03:95:53:da:d9:b1:9d:37: 2b:38:5a:7c:02:42:08:25:3d:cd:b3:dc:c5:7d:8a:3b:c1:32: 3a:62:72:52:3b:e1:ab:d7:06:b6:b6:ba:a5:28:05:d2:f6:1a: fd:78:99:1f:2d:61:df:ee:b8:20:7b:7b:18:1f:17:5f:4f:71: c1:b1:5e:f6:6a:e3:40:10:b4:98:12:5b:52:ed:4a:4f:c9:36: 00:1b:e6:ae:19:c2:25:a1:ac:cc:a8:93:34:d9:df:ce:2a:4d: d4:b6:1e:56:1a:1a:f3:fe:31:cb:f9:24:0c:16:d7:80:6f:18: c9:d7:0a:40:f7:29:9b:11:da:f1:71:b0:47:90:2f:1e:38:a5: 36:67:33:d3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBJL8CJ3c2JppFeJPkjHEMwED4IIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIxMTc1MDI4WhcNMjUwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZjgyMWJkMTM0YjUzODQ2ZDUxNzlmZWIwYmQ0NWVlYWMx Mzg1Nzc4OTRiNWI0ODg1YTgyZjBjNzI0NWQxZDA5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD7EH3HY9Aga1Q4qk5AZgQ4XpPQPsqFsrFi2GKiyvfioMYL yUUIlNF8gryNduw8Irc6ZgguE8uGYYP0jo1/cmRFNdTvIjdyVjQiGSruoGXsOAWo yVCC/pi3pyrlmiuSK7oKK1Dnxyv/9r3aroCgLpj1ziqYkofeKdaEk4STLbchH/Z3 veZpOrYuv3Xyb7D1EJrvQ1AzNxGuxQTrKW/PlLdcgiuGNyncBTK3Ny0ynF8Cwysr jKOyIEI0nfCTZaODmniDQOj2AVbCiJmB5tGuOQFMNEx/XIdHgrrYbByOoKQwmWf7 ea5lSDiRuCerStBoKiyJ3f1zc6g7Em6n746s0ChnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUmbusxE2blTJ0DIRWxa+umFWx72MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYyODFhM2NkLWZjMjAtNGY4OS1hMmQ0LThlMTgyNzI5Mjc5Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//YGAwDQYJKoZIhvcNAQELBQADggEBAFL+8ZjkZRREEF4R5UyrVhzY 7DK6ojfYJ9sqrihvtnVyhQRR9+5PxSXfTia3pDCCG4GihKOO3MJazEK3tOHaXfJN l8WmlaT1UoOSaI87IhYrsDSa0mEVfTp0P4xEvG3Z2yS01xvC+aVXcUId1GwXHkqH qETLuIkDlVPa2bGdNys4WnwCQgglPc2z3MV9ijvBMjpiclI74avXBra2uqUoBdL2 Gv14mR8tYd/uuCB7exgfF19PccGxXvZq40AQtJgSW1LtSk/JNgAb5q4ZwiWhrMyo kzTZ384qTdS2HlYaGvP+Mcv5JAwW14BvGMnXCkD3KZsR2vFxsEeQLx44pTZnM9M= -----END CERTIFICATE-----Generated at Sat Apr 26 15:02:52 2025 by rpki-client