$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7419d2ee-2427-43b6-9ca9-28d71e26bb32.roa File: 7419d2ee-2427-43b6-9ca9-28d71e26bb32.roa (raw, json) Hash identifier: 8M+4LWmCKK63juwPUW6rc+6qltG3yarzuqfAJM685XA= Subject key identifier: CC:A6:32:B6:52:04:31:58:6C:88:6B:CB:B8:73:6D:B9:64:65:35:FC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1C337A9C47D7C17EFD143ECAE5515BFD71ABEE77 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7419d2ee-2427-43b6-9ca9-28d71e26bb32.roa Signing time: Tue 22 Apr 2025 15:50:24 +0000 ROA not before: Tue 22 Apr 2025 15:50:24 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffb:74c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:33:7a:9c:47:d7:c1:7e:fd:14:3e:ca:e5:51:5b:fd:71:ab:ee:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 15:50:24 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=1a0d5dad0e8e38685146e5b39d4bb4548f539323199de8ba66a46f6f6c625916, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c2:f9:f0:db:f0:60:a8:fc:98:9c:75:fb:73: f5:1d:a1:16:40:95:ea:52:b7:4a:51:05:54:37:6d: e8:42:4d:cb:4b:6b:d6:66:3a:dd:0e:97:5f:18:90: 31:a4:37:ad:36:48:73:9a:12:b9:b4:7c:76:8d:ca: d7:0d:8e:93:f9:be:bd:5f:1e:09:b3:82:29:46:5a: ae:36:06:12:cb:0d:fb:a4:cd:08:d8:b7:60:69:ed: 5b:ed:49:bd:dc:86:8b:66:6a:e4:87:91:85:c2:52: b4:35:a3:4d:86:7b:37:6f:8a:1a:e6:a5:2a:2f:ea: 0b:26:c9:73:d0:5a:56:6a:46:a7:2d:2c:af:08:e6: 8d:51:52:92:7c:60:f3:68:44:a0:df:ed:b5:88:07: 13:51:79:2b:00:81:ee:71:af:44:e5:2e:0f:18:b9: ea:71:76:8f:d0:26:02:65:30:b9:c1:ca:8a:92:2a: d2:ac:33:df:b7:0e:9b:7a:6a:bd:13:d3:e6:60:ca: 39:bb:4a:60:ab:19:2c:63:50:e5:14:d2:98:a9:04: 86:66:3b:4d:8c:a5:00:d1:b1:a7:71:3d:e4:e6:33: f1:98:38:a8:ce:b1:ea:ff:70:bf:9a:5e:c0:f0:7b: 1d:f0:76:04:d2:55:a2:86:e1:85:c6:a2:da:a3:d2: 2e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:A6:32:B6:52:04:31:58:6C:88:6B:CB:B8:73:6D:B9:64:65:35:FC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7419d2ee-2427-43b6-9ca9-28d71e26bb32.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffb:74c0::/46 Signature Algorithm: sha256WithRSAEncryption 60:da:10:2a:61:61:57:d0:6b:10:56:7d:73:7f:f8:6d:5e:ba: 77:4c:2a:ca:70:7b:6b:1e:b3:47:10:39:40:41:99:fd:c8:d4: 4e:9f:38:7c:fa:2b:ee:4d:39:a2:f7:ff:fa:da:bc:34:31:b9: 45:e5:c9:9f:90:f1:af:57:06:d9:2a:ee:4c:50:f9:b0:a2:8d: 3e:60:32:b1:04:0f:19:a1:c8:c3:a5:cf:fc:9f:30:45:04:9c: c9:7e:4e:7d:b2:23:56:7b:24:09:11:0f:13:49:d0:67:67:eb: 8b:30:c9:15:ed:8d:65:fc:16:ed:38:bc:c2:ac:b5:21:3b:b1: bc:77:5e:4e:bd:19:aa:b4:b0:1c:f4:ff:d2:f8:b8:ea:f7:04: 7b:73:80:77:b9:1d:b8:8d:7e:cf:eb:ee:23:3e:48:6d:67:79: 4b:8c:e8:dd:ec:bd:fd:8e:34:e7:7c:91:50:f0:8a:4e:5d:c4: d6:3c:70:00:7c:ae:c7:47:90:6f:bf:8f:8f:d1:12:2d:4c:af: 40:cf:43:1f:6b:a8:8d:f8:07:24:72:44:fe:a7:e3:07:ba:4a: 76:27:77:df:c7:6b:02:a3:a7:14:22:36:7c:54:d5:6a:65:a2: 18:7f:c5:38:2e:74:be:60:bb:de:3a:6f:13:0a:e9:45:9d:62: 7d:b6:28:93 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHDN6nEfXwX79FD7K5VFb/XGr7ncwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTU1MDI0WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYTBkNWRhZDBlOGUzODY4NTE0NmU1YjM5ZDRiYjQ1NDhm NTM5MzIzMTk5ZGU4YmE2NmE0NmY2ZjZjNjI1OTE2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+wvnw2/BgqPyYnHX7c/UdoRZAlepSt0pRBVQ3behCTctL a9ZmOt0Ol18YkDGkN602SHOaErm0fHaNytcNjpP5vr1fHgmzgilGWq42BhLLDfuk zQjYt2Bp7VvtSb3chotmauSHkYXCUrQ1o02GezdvihrmpSov6gsmyXPQWlZqRqct LK8I5o1RUpJ8YPNoRKDf7bWIBxNReSsAge5xr0TlLg8Yuepxdo/QJgJlMLnByoqS KtKsM9+3Dpt6ar0T0+Zgyjm7SmCrGSxjUOUU0pipBIZmO02MpQDRsadxPeTmM/GY OKjOser/cL+aXsDwex3wdgTSVaKG4YXGotqj0i4/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUzKYytlIEMVhsiGvLuHNtuWRlNfwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc0MTlkMmVlLTI0MjctNDNiNi05Y2E5LTI4ZDcxZTI2YmIzMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/7dMAwDQYJKoZIhvcNAQELBQADggEBAGDaECphYVfQaxBWfXN/+G1e undMKspwe2ses0cQOUBBmf3I1E6fOHz6K+5NOaL3//ravDQxuUXlyZ+Q8a9XBtkq 7kxQ+bCijT5gMrEEDxmhyMOlz/yfMEUEnMl+Tn2yI1Z7JAkRDxNJ0Gdn64swyRXt jWX8Fu04vMKstSE7sbx3Xk69Gaq0sBz0/9L4uOr3BHtzgHe5HbiNfs/r7iM+SG1n eUuM6N3svf2ONOd8kVDwik5dxNY8cAB8rsdHkG+/j4/REi1Mr0DPQx9rqI34ByRy RP6n4we6SnYnd9/HawKjpxQiNnxU1Wplohh/xTgudL5gu946bxMK6UWdYn22KJM= -----END CERTIFICATE-----Generated at Sat Apr 26 19:24:20 2025 by rpki-client