$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/652bb318-0836-4d95-80c3-4d06305d3f0a.roa File: 652bb318-0836-4d95-80c3-4d06305d3f0a.roa (raw, json) Hash identifier: FbgW+28vEa297YPzrEham7rLefez/MYGm3sqOlRRmBA= Subject key identifier: F5:C1:F2:DC:57:EE:9A:DC:4F:22:5F:AE:35:96:A6:63:98:E1:48:54 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2EECD6890A4BE1DDCC50B043EB39F961BF411B6F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/652bb318-0836-4d95-80c3-4d06305d3f0a.roa Signing time: Tue 22 Apr 2025 15:12:05 +0000 ROA not before: Tue 22 Apr 2025 15:12:05 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f69:5080::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:ec:d6:89:0a:4b:e1:dd:cc:50:b0:43:eb:39:f9:61:bf:41:1b:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 15:12:05 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=178e771578c2a593197a72dacd4927f51a99eac91c44325e306b76b904ee42af, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:08:c8:4c:c8:c0:4d:49:6a:6d:40:c8:54:3e: 9d:0c:7e:5f:e2:4a:e1:3d:03:9b:97:b1:e9:c0:9e: a3:7e:65:00:55:cb:b3:a1:c7:b6:f3:6a:6d:f2:60: fc:25:05:2c:6d:08:39:52:0f:56:ed:d9:aa:0f:23: d3:7c:81:2e:30:8f:c8:92:72:8d:23:bb:5d:16:4a: d3:1a:56:fa:4e:b9:60:ad:a8:f7:65:8c:05:56:0d: e7:0b:86:57:24:f4:28:fe:9b:dd:5d:68:85:08:99: ab:95:11:0a:d8:7b:ce:a4:31:e8:af:6e:a6:b0:dc: 28:e1:41:5c:21:85:75:53:31:4f:2e:7f:f6:9d:f2: c8:42:d6:e2:a2:31:d6:f9:a3:33:16:bc:2c:8f:fd: 0b:8e:88:e7:05:51:22:7f:46:5e:d3:a4:4d:5a:c5: 07:d8:ec:e5:e0:a9:1f:c2:bd:2e:79:7c:4a:20:fb: 29:13:dd:bb:f5:5e:6b:2e:9f:ec:53:7c:81:bd:7a: f8:58:c1:3b:ee:78:24:89:3f:8d:b4:35:8f:83:3e: 78:4c:8d:69:3a:3d:e2:11:f5:1d:98:28:38:bb:1b: bd:17:c9:f3:84:4f:a0:7a:62:0c:23:9a:3d:cf:54: d0:7a:58:da:ef:77:aa:e4:a8:52:32:d5:c1:57:ee: e8:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:C1:F2:DC:57:EE:9A:DC:4F:22:5F:AE:35:96:A6:63:98:E1:48:54 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/652bb318-0836-4d95-80c3-4d06305d3f0a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f69:5080::/46 Signature Algorithm: sha256WithRSAEncryption 6f:ec:7d:d2:80:3f:d0:b0:75:c6:94:6d:aa:5a:db:44:9d:2f: f4:02:cf:25:ea:e7:c5:c8:e0:8e:a7:de:1e:35:91:29:be:bd: 78:32:34:55:6a:00:93:7c:9c:bf:f9:f2:49:ca:1d:88:d1:ba: ac:1d:f0:7e:e7:80:9c:ce:94:c1:56:a0:75:a8:36:83:95:1e: f0:14:bb:86:54:c2:55:42:38:a5:31:a7:c8:12:15:db:2e:01: ed:7f:28:ab:11:ba:02:54:50:a0:9d:df:cb:85:5f:91:57:cf: 19:4a:d0:77:98:0d:81:b8:b5:59:50:c5:fe:e0:5c:bb:d6:46: 34:b9:69:30:99:00:ea:f8:91:12:70:82:fa:09:da:f4:d9:0e: 3f:36:09:dc:74:3f:59:f2:a1:c1:12:12:13:b6:47:cd:4b:29: 72:14:f7:c2:2e:71:fa:7e:ac:f6:eb:17:72:93:04:a5:e0:47: a9:30:97:08:4f:aa:00:e2:0c:96:ff:84:82:af:fa:d5:b3:ac: 0d:de:30:c2:3e:57:01:f8:26:9b:db:38:25:49:19:68:24:fe: 68:6c:61:5a:1d:97:8f:76:ec:5c:b8:9f:60:5f:cc:3f:37:bd: 3f:86:0a:70:21:66:6f:7b:ac:a0:98:66:3c:6d:d6:a6:d6:49: c6:72:1e:da -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULuzWiQpL4d3MULBD6zn5Yb9BG28wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTUxMjA1WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNzhlNzcxNTc4YzJhNTkzMTk3YTcyZGFjZDQ5MjdmNTFh OTllYWM5MWM0NDMyNWUzMDZiNzZiOTA0ZWU0MmFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCNCMhMyMBNSWptQMhUPp0Mfl/iSuE9A5uXsenAnqN+ZQBV y7Ohx7bzam3yYPwlBSxtCDlSD1bt2aoPI9N8gS4wj8iSco0ju10WStMaVvpOuWCt qPdljAVWDecLhlck9Cj+m91daIUImauVEQrYe86kMeivbqaw3CjhQVwhhXVTMU8u f/ad8shC1uKiMdb5ozMWvCyP/QuOiOcFUSJ/Rl7TpE1axQfY7OXgqR/CvS55fEog +ykT3bv1Xmsun+xTfIG9evhYwTvueCSJP420NY+DPnhMjWk6PeIR9R2YKDi7G70X yfOET6B6Ygwjmj3PVNB6WNrvd6rkqFIy1cFX7ugTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU9cHy3FfumtxPIl+uNZamY5jhSFQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY1MmJiMzE4LTA4MzYtNGQ5NS04MGMzLTRkMDYzMDVkM2YwYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB9pUIAwDQYJKoZIhvcNAQELBQADggEBAG/sfdKAP9CwdcaUbapa20Sd L/QCzyXq58XI4I6n3h41kSm+vXgyNFVqAJN8nL/58knKHYjRuqwd8H7ngJzOlMFW oHWoNoOVHvAUu4ZUwlVCOKUxp8gSFdsuAe1/KKsRugJUUKCd38uFX5FXzxlK0HeY DYG4tVlQxf7gXLvWRjS5aTCZAOr4kRJwgvoJ2vTZDj82Cdx0P1nyocESEhO2R81L KXIU98Iucfp+rPbrF3KTBKXgR6kwlwhPqgDiDJb/hIKv+tWzrA3eMMI+VwH4Jpvb OCVJGWgk/mhsYVodl4927Fy4n2BfzD83vT+GCnAhZm97rKCYZjxt1qbWScZyHto= -----END CERTIFICATE-----Generated at Sat Apr 26 16:35:16 2025 by rpki-client