$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d41ff51-e213-454b-bf01-4829839d9568.roa File: 6d41ff51-e213-454b-bf01-4829839d9568.roa (raw, json) Hash identifier: MM37RWh1MrFPHzjGRvbDZO4r+ND3c5dD4mTKEbgKhX0= Subject key identifier: 0A:CF:38:88:4E:54:C7:B1:83:7B:3C:98:99:EF:47:1C:C2:CC:91:C4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1BB059E392DE2B23905E145704226AB3912EDAC5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d41ff51-e213-454b-bf01-4829839d9568.roa Signing time: Tue 22 Apr 2025 16:41:39 +0000 ROA not before: Tue 22 Apr 2025 16:41:39 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f1c:c00::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:b0:59:e3:92:de:2b:23:90:5e:14:57:04:22:6a:b3:91:2e:da:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:41:39 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=1f77039df3d2aa5444a60b11eba3105cf834f05b9e9b3aa5cf2ff9bd929bbb1d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:bd:b4:48:c3:23:a4:24:56:9b:45:7c:d7:23: 96:a1:d9:27:fc:6f:ad:a1:63:89:58:60:d7:89:49: db:6f:fa:14:dd:ee:64:e8:b4:b8:ef:41:08:e0:fa: 7a:c7:2d:99:82:fa:65:cf:1f:8b:69:f8:2b:c3:fb: cf:90:23:37:79:f6:2f:4e:d7:4e:47:d7:bc:ad:b0: a3:fd:75:9d:88:b0:26:4d:66:8b:b8:67:0e:a8:ef: c1:df:89:88:58:5c:0f:07:a4:6f:9c:a3:b2:1a:ef: 0b:29:ec:60:67:76:59:ee:e4:b8:58:46:22:a4:39: be:a2:fc:8e:c2:b8:00:6a:cc:c5:12:0b:c2:b0:5c: 15:c3:de:ff:ad:d9:06:b8:f8:11:26:95:09:50:18: c8:e7:97:15:a5:2d:73:3f:af:0b:a4:71:65:3d:e6: ce:5d:ed:61:93:53:80:9c:b6:a1:2e:95:73:89:e3: c0:fc:21:a3:a5:b1:d1:82:1a:f0:93:c8:c7:15:1b: 8d:1c:99:be:19:43:55:3a:e5:86:dc:94:82:35:14: 78:be:65:ac:0f:d1:aa:bc:72:c6:b4:5a:71:1d:6f: 20:c7:95:74:34:27:9c:f6:e8:6e:f2:b8:9f:1d:16: 4a:2c:74:1e:80:2a:92:a2:c7:dd:1a:5e:05:1f:12: 4f:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:CF:38:88:4E:54:C7:B1:83:7B:3C:98:99:EF:47:1C:C2:CC:91:C4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d41ff51-e213-454b-bf01-4829839d9568.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1c:c00::/38 Signature Algorithm: sha256WithRSAEncryption 01:57:ae:44:ed:f4:c6:91:90:a5:08:e6:15:f1:98:22:ce:36: 58:e4:0b:8b:66:1f:10:22:9a:78:35:03:7f:68:41:44:7a:88: 5b:9b:40:fb:2b:cf:a0:a9:93:61:bb:10:9c:26:95:53:95:25: 6c:80:f8:e1:e8:3c:1b:40:43:7f:10:02:e5:b7:d3:eb:55:68: 58:c3:93:d1:a1:94:60:be:62:2e:4a:87:a6:e0:90:0e:39:d8: c4:6f:44:c1:9e:09:39:0a:09:93:88:a6:b2:29:64:0d:5e:46: 91:4a:4b:fe:85:e0:eb:fa:80:3f:9e:93:0d:54:d6:29:e1:99: 55:03:4c:77:48:26:3d:1f:74:15:44:8a:53:47:af:1e:a9:c9: cd:86:89:40:e4:7c:3b:87:e8:ec:5d:ca:71:77:e2:8a:93:ab: de:8f:4d:ee:fc:bf:39:df:fd:0b:a7:40:a9:53:90:a9:f5:28: d5:ac:1c:1c:1a:cb:9f:bb:14:ed:aa:aa:d4:6e:8c:c8:02:2c: 5e:18:7a:41:0a:da:7f:ea:c1:11:7b:05:16:a6:fa:23:4e:e3: 08:5b:a5:81:c4:fe:f7:7d:91:e0:c5:cc:bd:9d:23:80:41:72: f1:cd:47:20:a0:55:86:09:5d:7d:7f:96:a0:97:62:7c:40:04: 5b:2f:3d:1f -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUG7BZ45LeKyOQXhRXBCJqs5Eu2sUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTY0MTM5WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZjc3MDM5ZGYzZDJhYTU0NDRhNjBiMTFlYmEzMTA1Y2Y4 MzRmMDViOWU5YjNhYTVjZjJmZjliZDkyOWJiYjFkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTvbRIwyOkJFabRXzXI5ah2Sf8b62hY4lYYNeJSdtv+hTd 7mTotLjvQQjg+nrHLZmC+mXPH4tp+CvD+8+QIzd59i9O105H17ytsKP9dZ2IsCZN Zou4Zw6o78HfiYhYXA8HpG+co7Ia7wsp7GBndlnu5LhYRiKkOb6i/I7CuABqzMUS C8KwXBXD3v+t2Qa4+BEmlQlQGMjnlxWlLXM/rwukcWU95s5d7WGTU4CctqEulXOJ 48D8IaOlsdGCGvCTyMcVG40cmb4ZQ1U65YbclII1FHi+ZawP0aq8csa0WnEdbyDH lXQ0J5z26G7yuJ8dFkosdB6AKpKix90aXgUfEk+xAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUCs84iE5Ux7GDezyYme9HHMLMkcQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZkNDFmZjUxLWUyMTMtNDU0Yi1iZjAxLTQ4Mjk4MzlkOTU2OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgImAB8cDDANBgkqhkiG9w0BAQsFAAOCAQEAAVeuRO30xpGQpQjmFfGYIs42 WOQLi2YfECKaeDUDf2hBRHqIW5tA+yvPoKmTYbsQnCaVU5UlbID44eg8G0BDfxAC 5bfT61VoWMOT0aGUYL5iLkqHpuCQDjnYxG9EwZ4JOQoJk4imsilkDV5GkUpL/oXg 6/qAP56TDVTWKeGZVQNMd0gmPR90FUSKU0evHqnJzYaJQOR8O4fo7F3KcXfiipOr 3o9N7vy/Od/9C6dAqVOQqfUo1awcHBrLn7sU7aqq1G6MyAIsXhh6QQraf+rBEXsF Fqb6I07jCFulgcT+932R4MXMvZ0jgEFy8c1HIKBVhgldfX+WoJdifEAEWy89Hw== -----END CERTIFICATE-----Generated at Sat Apr 26 16:35:33 2025 by rpki-client