$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65c7e436-50a0-4c45-a6d2-a899c8f5e790.roa File: 65c7e436-50a0-4c45-a6d2-a899c8f5e790.roa (raw, json) Hash identifier: u75aN6bDHRF+3G+Kt62oi5zC8IdjmmYp7I8Bv2JKJKI= Subject key identifier: 57:46:06:BE:C5:B7:87:26:96:37:22:29:54:9D:8F:5A:20:F1:41:76 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1044F7893FD0DA6CCCECCCCC14C65D4DE4E88F78 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65c7e436-50a0-4c45-a6d2-a899c8f5e790.roa Signing time: Tue 22 Apr 2025 00:31:20 +0000 ROA not before: Tue 22 Apr 2025 00:31:20 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ffd:807b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:44:f7:89:3f:d0:da:6c:cc:ec:cc:cc:14:c6:5d:4d:e4:e8:8f:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 00:31:20 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=4a88a2fde261365e0838039ac0a4a332a43e8f922a7dff49c5541edcd5e44caf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0c:25:11:54:a1:86:82:70:c7:96:9d:d4:c8: 80:ff:22:18:c6:7f:aa:9d:e4:6b:67:73:2a:2d:0c: 51:e1:ac:a8:0d:d0:ba:00:d1:d7:bd:c4:17:d8:f0: da:0e:a1:71:44:91:a4:95:10:6c:3d:0e:e5:29:16: 21:2f:d4:ab:a0:79:c1:6f:28:30:b6:3b:a6:44:50: 66:a2:cc:27:31:e2:33:9c:88:60:85:fc:72:b1:d6: 9a:fd:6b:34:b1:a3:4a:a6:80:05:00:f2:32:1c:a8: 93:09:e9:bd:89:fc:eb:cd:86:b9:6e:b4:e5:43:43: f5:e9:8e:42:d4:16:9f:b0:77:85:b6:4b:0f:ad:be: 6f:bf:c6:50:d8:42:c8:3a:74:79:2f:01:d5:18:d4: cb:58:5c:ef:c4:12:47:1a:b7:53:3f:aa:67:7c:ed: d9:64:3b:85:a7:8a:da:2c:98:95:f6:bc:37:b4:eb: e3:fe:a4:c6:d5:7c:60:2a:96:b3:55:af:05:ac:96: 76:e4:3d:93:b9:2b:8a:14:6a:b1:0f:79:99:61:b6: d8:3a:12:d4:38:76:3a:50:c9:c3:aa:d7:34:c3:c7: 3d:d8:0c:06:f4:0b:9f:b8:76:6d:21:30:ca:27:d4: 85:ce:8f:6f:14:ac:80:b9:5c:49:28:34:0e:8c:37: cc:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:46:06:BE:C5:B7:87:26:96:37:22:29:54:9D:8F:5A:20:F1:41:76 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65c7e436-50a0-4c45-a6d2-a899c8f5e790.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:807b::/48 Signature Algorithm: sha256WithRSAEncryption 16:50:fc:87:02:f3:00:18:50:a1:af:6f:93:3e:25:d9:07:3d: e6:e7:b5:4c:8f:c2:f9:6a:b6:13:c5:e6:49:64:55:f9:df:3a: e2:f8:4b:2b:79:f6:dd:9c:73:14:f0:7a:46:4c:bd:3d:c3:48: d2:3d:7b:f0:c6:33:38:41:aa:b4:13:f0:39:be:aa:7f:d0:56: cc:8b:ea:01:64:da:f4:30:18:de:e2:78:cb:cd:cf:bc:b7:e8: 1c:37:e1:09:1f:06:85:de:83:82:06:cf:61:0d:f5:18:fa:44: 4e:f0:25:00:33:95:7e:55:39:d6:52:22:4d:bf:cf:f4:9c:61: 35:46:77:af:11:52:26:15:78:31:d4:6d:c1:48:95:36:9a:56: f2:ff:af:9c:61:e7:3d:61:64:7e:2e:6f:1e:dc:8b:2c:0b:2e: fc:8a:a6:64:4a:90:1f:e2:93:e7:a1:60:21:93:16:88:91:3e: 5d:16:e3:21:c6:6e:87:92:18:65:69:e1:0a:29:3c:49:0d:45: 4d:63:59:cf:88:b8:7d:3b:23:57:95:d0:58:9a:24:73:21:50: da:b9:ee:21:52:b6:86:7a:8e:90:12:d2:e0:0e:17:af:16:d6: 71:57:73:1a:ff:82:65:95:91:e7:2f:3b:93:78:84:ee:0c:3f: 01:8c:76:e3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEET3iT/Q2mzM7MzMFMZdTeToj3gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMDAzMTIwWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YTg4YTJmZGUyNjEzNjVlMDgzODAzOWFjMGE0YTMzMmE0 M2U4ZjkyMmE3ZGZmNDljNTU0MWVkY2Q1ZTQ0Y2FmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1DCURVKGGgnDHlp3UyID/IhjGf6qd5GtncyotDFHhrKgN 0LoA0de9xBfY8NoOoXFEkaSVEGw9DuUpFiEv1KugecFvKDC2O6ZEUGaizCcx4jOc iGCF/HKx1pr9azSxo0qmgAUA8jIcqJMJ6b2J/OvNhrlutOVDQ/XpjkLUFp+wd4W2 Sw+tvm+/xlDYQsg6dHkvAdUY1MtYXO/EEkcat1M/qmd87dlkO4WnitosmJX2vDe0 6+P+pMbVfGAqlrNVrwWslnbkPZO5K4oUarEPeZlhttg6EtQ4djpQycOq1zTDxz3Y DAb0C5+4dm0hMMon1IXOj28UrIC5XEkoNA6MN8wjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUV0YGvsW3hyaWNyIpVJ2PWiDxQXYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY1YzdlNDM2LTUwYTAtNGM0NS1hNmQyLWE4OTljOGY1ZTc5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9gHswDQYJKoZIhvcNAQELBQADggEBABZQ/IcC8wAYUKGvb5M+JdkH PebntUyPwvlqthPF5klkVfnfOuL4Syt59t2ccxTwekZMvT3DSNI9e/DGMzhBqrQT 8Dm+qn/QVsyL6gFk2vQwGN7ieMvNz7y36Bw34QkfBoXeg4IGz2EN9Rj6RE7wJQAz lX5VOdZSIk2/z/ScYTVGd68RUiYVeDHUbcFIlTaaVvL/r5xh5z1hZH4ubx7ciywL LvyKpmRKkB/ik+ehYCGTFoiRPl0W4yHGboeSGGVp4QopPEkNRU1jWc+IuH07I1eV 0FiaJHMhUNq57iFStoZ6jpAS0uAOF68W1nFXcxr/gmWVkecvO5N4hO4MPwGMduM= -----END CERTIFICATE-----Generated at Sat Apr 26 13:30:09 2025 by rpki-client