$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6ea4d477-7aa5-45e5-b757-d38d7f0c2b35.roa File: 6ea4d477-7aa5-45e5-b757-d38d7f0c2b35.roa (raw, json) Hash identifier: 4RT2h2o1M6+kFYp3r/e3Hrnz+Dy+fF2r8XbcW1Zzy+c= Subject key identifier: 98:52:05:CC:FB:5C:74:42:AF:5B:D2:DE:31:F5:15:25:FE:BB:C1:F2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 065F89D551D9115947931AA1BA95784421E6F8B8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6ea4d477-7aa5-45e5-b757-d38d7f0c2b35.roa Signing time: Tue 22 Apr 2025 16:50:21 +0000 ROA not before: Tue 22 Apr 2025 16:50:21 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f17:4800::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:5f:89:d5:51:d9:11:59:47:93:1a:a1:ba:95:78:44:21:e6:f8:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:50:21 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=0e7bfee7393ad239a789e7c235e790dc41295be6f52a0f2610c0d38ab5248646, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:33:7f:c0:90:60:ce:b2:21:68:09:0c:d0:72: 3d:7c:e1:ed:6b:2b:42:df:b2:4d:b6:5d:d9:e8:c2: b9:ce:3d:90:82:54:25:c4:40:53:95:b0:6f:bd:e6: fc:ed:db:24:83:70:d9:44:78:78:2f:ff:eb:f8:27: ce:9f:54:38:f1:71:43:e8:bd:1f:7a:9d:ff:e0:51: ca:d7:1b:3b:4a:99:06:c4:56:6b:0f:a1:5e:3f:01: c4:a2:ff:bb:f2:04:30:e3:05:22:51:db:99:48:29: 29:35:51:08:a4:b4:72:2c:b2:f2:36:82:94:5c:43: 00:c3:49:3f:5e:d1:cb:71:4b:9e:1e:5b:5b:76:2a: 2c:0c:71:a6:52:48:68:6b:bc:2d:f5:b5:22:b9:77: f1:e2:96:aa:57:44:05:76:0d:cf:ce:6d:f0:2c:0c: 6c:21:b7:05:86:0c:aa:63:54:3c:73:6b:e2:6e:b6: 9e:0e:d4:6b:38:80:f2:d6:76:f5:03:ca:c1:4e:70: a9:83:04:49:d3:1a:0f:73:30:69:47:3f:84:8e:4e: dd:b5:eb:ab:4d:0a:49:33:e0:b1:b4:da:a1:53:4f: 80:05:69:cf:16:56:2a:28:84:0b:13:b1:54:23:4c: b0:7e:64:81:ab:77:5d:01:1d:80:7d:57:de:84:87: c8:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:52:05:CC:FB:5C:74:42:AF:5B:D2:DE:31:F5:15:25:FE:BB:C1:F2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6ea4d477-7aa5-45e5-b757-d38d7f0c2b35.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f17:4800::/38 Signature Algorithm: sha256WithRSAEncryption 23:3e:aa:cd:00:a4:70:94:bd:0a:7d:21:bf:8b:16:88:09:6a: e8:79:84:82:c2:67:eb:f8:24:27:a2:00:fc:ee:b1:a3:52:fc: d4:50:f8:32:6f:9f:0a:a2:93:eb:41:11:ac:3b:10:58:ac:6a: 46:94:39:cf:38:f3:e5:a1:7e:98:75:b5:44:0d:c5:6f:1b:9e: 12:85:dc:d7:db:ee:94:35:e2:54:a9:95:d6:05:49:31:d4:7e: b7:09:c8:e6:15:6e:90:05:b9:f9:d1:a0:9c:10:ea:a7:d1:fb: af:17:58:59:96:ad:79:8f:e6:b9:e5:c9:78:ca:5e:26:c4:b7: 50:7c:4e:b8:09:10:3a:d9:0e:88:80:f0:58:52:cb:3e:5a:34: ec:07:d0:51:8a:50:20:65:4c:a0:f5:7c:ee:ef:d6:06:e4:4b: de:ac:5f:a4:2e:d5:e0:be:66:0b:73:39:d1:7f:8f:51:4c:db: ab:ed:f1:d0:4a:6d:eb:2d:0c:8b:0a:13:51:31:1c:e3:eb:75: 2a:eb:ee:fd:b3:a3:5c:a6:fa:44:de:db:ba:cd:d4:6e:29:26: 3c:1d:da:15:1e:76:56:5c:f0:7d:8e:1e:b9:2e:2e:cb:7e:e2: f6:35:d3:df:6d:75:ee:21:b9:ea:ec:2e:13:42:11:c9:03:4a: 67:58:77:dd -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUBl+J1VHZEVlHkxqhupV4RCHm+LgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTY1MDIxWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZTdiZmVlNzM5M2FkMjM5YTc4OWU3YzIzNWU3OTBkYzQx Mjk1YmU2ZjUyYTBmMjYxMGMwZDM4YWI1MjQ4NjQ2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSM3/AkGDOsiFoCQzQcj184e1rK0Lfsk22XdnowrnOPZCC VCXEQFOVsG+95vzt2ySDcNlEeHgv/+v4J86fVDjxcUPovR96nf/gUcrXGztKmQbE VmsPoV4/AcSi/7vyBDDjBSJR25lIKSk1UQiktHIssvI2gpRcQwDDST9e0ctxS54e W1t2KiwMcaZSSGhrvC31tSK5d/HilqpXRAV2Dc/ObfAsDGwhtwWGDKpjVDxza+Ju tp4O1Gs4gPLWdvUDysFOcKmDBEnTGg9zMGlHP4SOTt2166tNCkkz4LG02qFTT4AF ac8WVioohAsTsVQjTLB+ZIGrd10BHYB9V96Eh8gLAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUmFIFzPtcdEKvW9LeMfUVJf67wfIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZlYTRkNDc3LTdhYTUtNDVlNS1iNzU3LWQzOGQ3ZjBjMmIzNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgImAB8XSDANBgkqhkiG9w0BAQsFAAOCAQEAIz6qzQCkcJS9Cn0hv4sWiAlq 6HmEgsJn6/gkJ6IA/O6xo1L81FD4Mm+fCqKT60ERrDsQWKxqRpQ5zzjz5aF+mHW1 RA3FbxueEoXc19vulDXiVKmV1gVJMdR+twnI5hVukAW5+dGgnBDqp9H7rxdYWZat eY/mueXJeMpeJsS3UHxOuAkQOtkOiIDwWFLLPlo07AfQUYpQIGVMoPV87u/WBuRL 3qxfpC7V4L5mC3M50X+PUUzbq+3x0Ept6y0MiwoTUTEc4+t1Kuvu/bOjXKb6RN7b us3UbikmPB3aFR52VlzwfY4euS4uy37i9jXT32117iG56uwuE0IRyQNKZ1h33Q== -----END CERTIFICATE-----Generated at Sat Apr 26 19:11:00 2025 by rpki-client