$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6352e220-cec8-412c-9a38-a2b74750551e.roa File: 6352e220-cec8-412c-9a38-a2b74750551e.roa (raw, json) Hash identifier: 0hgkne5A77LcuVND3cozu/+yCSTBv6ckyy5mBHNqgdg= Subject key identifier: 8C:85:42:CA:01:D0:0E:B2:9C:A7:8C:CB:DB:D8:FB:25:B0:2D:12:35 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6E8502E1C9E0BFF16A58A9BC223D5D00F2394C0F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6352e220-cec8-412c-9a38-a2b74750551e.roa Signing time: Mon 21 Apr 2025 17:20:59 +0000 ROA not before: Mon 21 Apr 2025 17:20:59 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff2:7440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:85:02:e1:c9:e0:bf:f1:6a:58:a9:bc:22:3d:5d:00:f2:39:4c:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 21 17:20:59 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=7c5c5d695b08386672b18136a3875413ed130e1fecabe8815fc4823b656ee649, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:f0:4a:54:c2:19:30:0a:cf:98:36:8b:5c:f9: 79:8e:dd:c6:cc:5c:79:ca:19:11:10:cd:58:44:18: 57:37:be:b0:9f:21:bd:99:fe:2d:77:cd:f2:cd:ad: 60:8a:10:9d:df:20:3e:41:93:83:7b:7d:e1:9f:3c: 3c:6d:e9:ac:a8:09:58:29:83:2f:39:df:bd:57:24: 42:32:da:79:ee:48:3b:c8:53:ef:ad:da:d0:02:c8: 0a:ea:0d:23:dd:af:19:05:06:1e:9d:66:d9:78:0c: 94:b6:02:e8:b6:92:e6:82:73:5d:73:df:34:9f:79: 33:6e:f4:92:a1:cc:4b:f5:94:01:8c:50:28:32:74: 33:b8:68:82:af:88:f8:67:dc:7d:7a:ce:4f:9f:9e: dd:35:c3:ff:42:a0:05:8f:91:45:1c:d1:e6:19:40: 7a:22:e0:67:c5:d0:23:5f:bc:e4:1a:b4:8a:bb:32: 4a:96:da:da:bb:4f:d4:95:54:16:8f:b0:9c:c1:b4: 8e:8b:08:26:1f:dd:7a:41:e4:0d:66:e5:01:03:a1: f1:42:c9:24:3b:3f:83:51:b5:24:f2:b5:18:6d:dc: ce:91:01:f8:c2:00:bb:f4:bd:a7:aa:19:37:2b:18: f7:c5:f0:f7:a7:e3:1b:33:61:1a:1f:79:7f:37:cf: fe:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:85:42:CA:01:D0:0E:B2:9C:A7:8C:CB:DB:D8:FB:25:B0:2D:12:35 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6352e220-cec8-412c-9a38-a2b74750551e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:7440::/48 Signature Algorithm: sha256WithRSAEncryption 85:0b:3b:90:0f:6e:8e:8b:7f:02:48:ba:aa:42:a8:2a:8a:1d: 17:f0:b2:34:df:6f:20:d1:df:c5:06:14:7d:19:00:3b:3e:01: d3:e3:31:7d:01:40:d5:59:ac:39:85:94:96:3c:c1:20:fe:e7: 65:1c:3b:b5:57:30:e0:da:7f:4a:d6:01:55:13:a8:9d:7f:08: ee:20:14:52:08:92:cf:a0:65:be:09:f6:32:c5:5b:67:6f:b0: 4a:1c:5c:82:fd:b5:78:62:78:2b:40:c3:79:8f:a6:a8:e4:4e: 2f:d3:1b:cf:f9:3e:01:01:ef:b8:fb:99:be:a6:74:9b:ec:99: a0:83:6d:8b:55:13:14:b5:e9:93:0f:3e:c7:b6:a0:1d:98:9d: 21:71:fa:51:ba:47:f5:44:4b:45:e0:7f:69:71:85:a4:6b:78: 33:67:70:11:d3:01:b8:0c:4a:cb:81:85:fd:3f:bc:8c:f4:67: 19:0c:dc:aa:7d:b4:75:51:5f:27:ba:a8:0e:59:a8:93:68:4e: 9b:71:19:a1:b6:73:a0:a9:9f:26:9b:cd:0f:41:91:8d:91:f5: d6:d4:03:02:5c:e8:08:2c:7c:70:71:1a:35:b6:3f:02:64:ef: ba:2c:1d:8c:6a:d1:31:b9:aa:c5:f1:6d:93:30:d5:3f:e7:7b: af:06:f6:4b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUboUC4cngv/FqWKm8Ij1dAPI5TA8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIxMTcyMDU5WhcNMjUwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YzVjNWQ2OTViMDgzODY2NzJiMTgxMzZhMzg3NTQxM2Vk MTMwZTFmZWNhYmU4ODE1ZmM0ODIzYjY1NmVlNjQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDe8EpUwhkwCs+YNotc+XmO3cbMXHnKGREQzVhEGFc3vrCf Ib2Z/i13zfLNrWCKEJ3fID5Bk4N7feGfPDxt6ayoCVgpgy85371XJEIy2nnuSDvI U++t2tACyArqDSPdrxkFBh6dZtl4DJS2Aui2kuaCc11z3zSfeTNu9JKhzEv1lAGM UCgydDO4aIKviPhn3H16zk+fnt01w/9CoAWPkUUc0eYZQHoi4GfF0CNfvOQatIq7 MkqW2tq7T9SVVBaPsJzBtI6LCCYf3XpB5A1m5QEDofFCySQ7P4NRtSTytRht3M6R AfjCALv0vaeqGTcrGPfF8Pen4xszYRofeX83z/6hAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUjIVCygHQDrKcp4zL29j7JbAtEjUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYzNTJlMjIwLWNlYzgtNDEyYy05YTM4LWEyYjc0NzUwNTUxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/ydEAwDQYJKoZIhvcNAQELBQADggEBAIULO5APbo6LfwJIuqpCqCqK HRfwsjTfbyDR38UGFH0ZADs+AdPjMX0BQNVZrDmFlJY8wSD+52UcO7VXMODaf0rW AVUTqJ1/CO4gFFIIks+gZb4J9jLFW2dvsEocXIL9tXhieCtAw3mPpqjkTi/TG8/5 PgEB77j7mb6mdJvsmaCDbYtVExS16ZMPPse2oB2YnSFx+lG6R/VES0Xgf2lxhaRr eDNncBHTAbgMSsuBhf0/vIz0ZxkM3Kp9tHVRXye6qA5ZqJNoTptxGaG2c6Cpnyab zQ9BkY2R9dbUAwJc6AgsfHBxGjW2PwJk77osHYxq0TG5qsXxbZMw1T/ne68G9ks= -----END CERTIFICATE-----Generated at Sat Apr 26 16:38:12 2025 by rpki-client