$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74979d15-5647-4efc-ac8a-013c581338cc.roa File: 74979d15-5647-4efc-ac8a-013c581338cc.roa (raw, json) Hash identifier: 0/4MvGuebTUx0eFYmtrPz3PB8b8csEiA2dBBcbwtg9A= Subject key identifier: 7D:4A:D6:F1:3F:28:FB:F7:2C:D0:E7:7F:CC:D0:A6:17:8F:3B:44:31 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 113FD32F0C18E2DFE3AA3DDEF54E4502E04AF1D7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74979d15-5647-4efc-ac8a-013c581338cc.roa Signing time: Mon 21 Apr 2025 17:21:37 +0000 ROA not before: Mon 21 Apr 2025 17:21:37 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:5040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:3f:d3:2f:0c:18:e2:df:e3:aa:3d:de:f5:4e:45:02:e0:4a:f1:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 21 17:21:37 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=0a3cf858f642d919e78a2f395a70cb6b089596735fc3bcbac1f879a836896d73, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:1a:16:5e:f2:8d:e9:e3:79:32:6b:13:c6:f9: 20:0c:93:db:a1:2e:f3:b4:69:85:e5:ef:a7:15:e6: 8d:c2:ca:19:2f:54:c4:9e:7b:7d:77:8b:01:ea:ad: cd:5a:a0:d0:b8:f7:f2:d8:62:92:61:69:4f:f0:b3: fb:85:ee:26:0b:a0:51:68:cb:a4:da:bb:0c:83:ad: e3:25:91:ee:9d:6d:95:b7:26:da:29:35:c0:de:84: 71:d8:9a:cc:bd:af:07:39:ab:05:7f:82:74:b1:be: 64:9a:c2:87:08:bb:d7:ca:b6:22:a1:88:58:f7:df: 9b:7f:02:3c:05:55:5a:de:76:02:3a:3a:ae:9c:cd: 34:89:c7:1e:2f:c8:d0:58:7d:b5:35:31:9a:e4:84: 94:f9:05:f0:e3:4e:8b:00:9f:03:58:b6:a5:3d:46: 2e:08:b4:5e:f5:ba:2f:ce:ca:1a:50:6c:1e:d3:56: 2b:99:49:95:d4:50:f3:b3:97:41:09:94:66:9a:f6: b9:ee:d7:f9:8a:4a:99:04:14:1f:89:cb:74:dc:82: ce:47:fd:16:24:7f:bf:de:f4:0b:5f:a4:5c:a9:99: 4d:62:74:fa:6f:06:4a:80:da:45:ea:10:c4:ea:d7: f6:ba:d7:6c:e7:1a:2e:a6:ec:f4:81:48:4b:59:5d: bd:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:4A:D6:F1:3F:28:FB:F7:2C:D0:E7:7F:CC:D0:A6:17:8F:3B:44:31 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74979d15-5647-4efc-ac8a-013c581338cc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:5040::/48 Signature Algorithm: sha256WithRSAEncryption 4b:e1:0e:d5:e8:40:3b:2b:83:74:38:94:cb:47:10:3b:00:87: 2b:89:11:36:ee:a2:f5:9a:a6:87:e2:78:3b:c9:91:ba:95:64: 7e:76:85:68:27:f4:e2:00:c1:0f:05:5b:4e:4c:b1:de:83:bb: f1:97:8a:39:9a:96:94:f8:49:87:b3:64:88:65:01:f9:fc:f8: 39:5a:14:de:05:94:93:26:a6:1d:42:9c:ea:e2:06:f0:cf:05: 55:d9:72:2e:2c:b4:1d:f7:9e:e6:ac:1a:dc:16:a6:f6:55:60: 3e:6f:a2:3c:26:7b:97:59:53:1f:17:7a:18:34:1c:b4:39:e8: b9:4e:72:e0:7c:29:0f:cd:1f:3e:20:60:b6:2b:98:89:c6:22: 93:d3:6b:2f:23:ac:5f:fd:17:72:cc:03:d5:80:3a:87:8d:17: d6:98:08:f0:08:2c:01:cc:7c:05:fc:ec:66:a0:e7:1a:44:11: 2d:d8:de:b9:ef:65:e4:27:de:39:f5:bf:0c:2f:1e:fd:33:ca: cc:56:7c:7a:02:6a:01:33:2a:aa:5d:d9:8b:b0:fb:bf:ad:9a: b3:a1:22:62:76:8e:fb:80:69:15:80:11:2a:d6:a0:43:98:b9: 2e:40:2d:41:78:a4:69:2c:b0:ad:12:e2:84:80:dc:15:1b:68: 7e:a7:b7:23 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUET/TLwwY4t/jqj3e9U5FAuBK8dcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIxMTcyMTM3WhcNMjUwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYTNjZjg1OGY2NDJkOTE5ZTc4YTJmMzk1YTcwY2I2YjA4 OTU5NjczNWZjM2JjYmFjMWY4NzlhODM2ODk2ZDczMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjGhZe8o3p43kyaxPG+SAMk9uhLvO0aYXl76cV5o3Cyhkv VMSee313iwHqrc1aoNC49/LYYpJhaU/ws/uF7iYLoFFoy6TauwyDreMlke6dbZW3 JtopNcDehHHYmsy9rwc5qwV/gnSxvmSawocIu9fKtiKhiFj335t/AjwFVVredgI6 Oq6czTSJxx4vyNBYfbU1MZrkhJT5BfDjTosAnwNYtqU9Ri4ItF71ui/OyhpQbB7T ViuZSZXUUPOzl0EJlGaa9rnu1/mKSpkEFB+Jy3Tcgs5H/RYkf7/e9AtfpFypmU1i dPpvBkqA2kXqEMTq1/a612znGi6m7PSBSEtZXb21AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUfUrW8T8o+/cs0Od/zNCmF487RDEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc0OTc5ZDE1LTU2NDctNGVmYy1hYzhhLTAxM2M1ODEzMzhjYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AUEAwDQYJKoZIhvcNAQELBQADggEBAEvhDtXoQDsrg3Q4lMtHEDsA hyuJETbuovWapofieDvJkbqVZH52hWgn9OIAwQ8FW05Msd6Du/GXijmalpT4SYez ZIhlAfn8+DlaFN4FlJMmph1CnOriBvDPBVXZci4stB33nuasGtwWpvZVYD5vojwm e5dZUx8Xehg0HLQ56LlOcuB8KQ/NHz4gYLYrmInGIpPTay8jrF/9F3LMA9WAOoeN F9aYCPAILAHMfAX87Gag5xpEES3Y3rnvZeQn3jn1vwwvHv0zysxWfHoCagEzKqpd 2Yuw+7+tmrOhImJ2jvuAaRWAESrWoEOYuS5ALUF4pGkssK0S4oSA3BUbaH6ntyM= -----END CERTIFICATE-----Generated at Sat Apr 26 15:01:15 2025 by rpki-client