$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c3245fc-eb21-4145-89bb-6115dd8f5da5.roa File: 6c3245fc-eb21-4145-89bb-6115dd8f5da5.roa (raw, json) Hash identifier: a0GEnoK+oxZ+KN6u3l/RJ0QxizxJzLrctd9R/InfIWY= Subject key identifier: 6A:98:DD:26:D4:8B:1C:5E:C1:75:2C:C4:27:66:D7:C8:41:31:87:46 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 35467885DC0CD47B619864C5A7602636CFDF56BF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c3245fc-eb21-4145-89bb-6115dd8f5da5.roa Signing time: Tue 22 Apr 2025 16:21:11 +0000 ROA not before: Tue 22 Apr 2025 16:21:11 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff1:6000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:46:78:85:dc:0c:d4:7b:61:98:64:c5:a7:60:26:36:cf:df:56:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:21:11 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=9e91cc7a84f5b5944e1dc0fe79c7720dab5cb0720a10d29d2f13bbea6028ad4e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b1:fc:6e:4b:04:c2:b2:3b:90:09:f7:93:a8: 57:66:b2:cd:86:ea:58:5b:c2:23:4e:7f:24:7c:bd: b6:f8:d2:66:79:31:4d:a6:e9:13:d9:07:2a:79:78: ac:83:3d:25:2e:37:2a:ac:b2:ca:d9:9d:2b:da:f4: 88:36:da:9a:d8:6a:7e:b4:14:34:e2:74:9b:0f:22: a5:58:1f:70:65:e8:7d:1e:fe:18:4b:4f:09:79:ff: f6:28:c2:03:bc:45:20:6a:c7:5b:a0:75:95:77:51: ed:7d:a0:5e:28:39:4e:26:78:ab:89:48:9e:30:b2: 18:bc:22:92:89:32:f8:15:82:a6:27:03:a4:40:98: ac:32:96:f1:00:63:c9:3e:3d:fa:bf:46:7a:85:ba: 34:59:8e:6f:55:76:ca:b4:92:22:d4:7a:83:c2:b6: 16:c8:3f:84:31:2c:4c:35:62:9c:e3:77:d0:d1:30: 2d:40:0c:fe:5b:03:46:d1:03:d2:23:13:6a:40:0b: 5c:38:e9:f3:43:f4:9e:48:20:83:76:05:19:ec:a9: 52:ca:42:e7:af:69:da:1b:61:98:20:d7:d7:44:6e: 22:7b:ec:e9:8c:09:a1:2d:d9:2e:84:f0:2f:59:92: 70:20:94:d1:40:52:7e:1d:77:7e:c7:3f:b3:c3:40: 7b:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:98:DD:26:D4:8B:1C:5E:C1:75:2C:C4:27:66:D7:C8:41:31:87:46 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c3245fc-eb21-4145-89bb-6115dd8f5da5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff1:6000::/40 Signature Algorithm: sha256WithRSAEncryption 44:3c:ad:19:08:fa:ee:b1:09:b0:07:f9:51:26:ee:b8:02:21: cd:ef:1f:f4:b0:69:de:7f:ac:de:8d:da:65:c6:a6:fe:28:1b: e7:62:97:76:53:c5:f9:52:67:cc:cf:3f:6c:95:56:bd:71:8b: bf:a6:e6:2e:46:9f:0a:b1:28:a0:db:a5:53:33:61:3d:49:43: 84:f7:e8:d8:cb:47:bd:8b:ad:43:15:22:dd:37:a1:0e:38:3d: a9:d2:56:d8:86:bf:2b:03:13:fd:04:60:6d:c3:c8:ca:32:15: df:c3:fc:89:72:c4:81:8c:5a:5e:1a:2b:ca:2b:d0:95:4b:2a: 35:2f:fb:8f:24:88:ba:b5:41:28:bd:88:46:81:6f:15:30:91: 0d:b5:52:f9:21:ed:f6:93:30:d3:32:37:99:b7:d9:6c:60:4e: 09:24:92:ee:04:4b:50:50:aa:0a:98:c1:5c:dd:49:70:b2:12: ba:40:f5:82:d9:1c:6a:e5:c9:a5:66:5f:c0:b1:a9:4a:25:cc: 02:ac:73:19:ef:b8:0a:6d:63:0b:14:2c:d2:61:eb:e1:e6:45: 18:60:86:79:b5:e5:b6:b8:fe:10:b2:77:e7:fb:98:7b:09:40: c3:aa:7c:c0:d3:bc:33:1f:a0:57:ec:39:42:9b:f3:d8:ea:97: 10:f1:2c:51 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUNUZ4hdwM1HthmGTFp2AmNs/fVr8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTYyMTExWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZTkxY2M3YTg0ZjViNTk0NGUxZGMwZmU3OWM3NzIwZGFi NWNiMDcyMGExMGQyOWQyZjEzYmJlYTYwMjhhZDRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGsfxuSwTCsjuQCfeTqFdmss2G6lhbwiNOfyR8vbb40mZ5 MU2m6RPZByp5eKyDPSUuNyqsssrZnSva9Ig22prYan60FDTidJsPIqVYH3Bl6H0e /hhLTwl5//YowgO8RSBqx1ugdZV3Ue19oF4oOU4meKuJSJ4wshi8IpKJMvgVgqYn A6RAmKwylvEAY8k+Pfq/RnqFujRZjm9Vdsq0kiLUeoPCthbIP4QxLEw1Ypzjd9DR MC1ADP5bA0bRA9IjE2pAC1w46fND9J5IIIN2BRnsqVLKQuevadobYZgg19dEbiJ7 7OmMCaEt2S6E8C9ZknAglNFAUn4dd37HP7PDQHsfAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUapjdJtSLHF7BdSzEJ2bXyEExh0YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZjMzI0NWZjLWViMjEtNDE0NS04OWJiLTYxMTVkZDhmNWRhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/xYDANBgkqhkiG9w0BAQsFAAOCAQEARDytGQj67rEJsAf5USbuuAIh ze8f9LBp3n+s3o3aZcam/igb52KXdlPF+VJnzM8/bJVWvXGLv6bmLkafCrEooNul UzNhPUlDhPfo2MtHvYutQxUi3TehDjg9qdJW2Ia/KwMT/QRgbcPIyjIV38P8iXLE gYxaXhoryivQlUsqNS/7jySIurVBKL2IRoFvFTCRDbVS+SHt9pMw0zI3mbfZbGBO CSSS7gRLUFCqCpjBXN1JcLISukD1gtkcauXJpWZfwLGpSiXMAqxzGe+4Cm1jCxQs 0mHr4eZFGGCGebXltrj+ELJ35/uYewlAw6p8wNO8Mx+gV+w5Qpvz2OqXEPEsUQ== -----END CERTIFICATE-----Generated at Sat Apr 26 16:52:38 2025 by rpki-client