$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78f5503c-aa07-46e8-9f59-d399edc52c77.roa File: 78f5503c-aa07-46e8-9f59-d399edc52c77.roa (raw, json) Hash identifier: FqeFfohpRYHOB653Sw5iN1ajFBgAR5TxEPa7PK7b844= Subject key identifier: 42:75:C8:6E:29:17:CF:EC:47:B8:A1:84:EF:E4:18:1C:C2:55:CF:8A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 35243BF8877186679653D7FF81619411C3D2B98A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78f5503c-aa07-46e8-9f59-d399edc52c77.roa Signing time: Wed 09 Apr 2025 00:21:54 +0000 ROA not before: Wed 09 Apr 2025 00:21:54 +0000 ROA not after: Wed 14 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f2a:4000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:24:3b:f8:87:71:86:67:96:53:d7:ff:81:61:94:11:c3:d2:b9:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 9 00:21:54 2025 GMT Not After : May 14 23:59:59 2025 GMT Subject: serialNumber=91ae106b480f591b8bac83209c6a523db536c9af7ff9ea9ab6d8ea537986564e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:6a:b8:19:3a:a7:46:62:02:86:9b:22:19:a0: 23:38:1a:56:5a:89:30:9e:eb:6e:97:33:85:2b:e9: ad:d5:8a:8f:f6:7c:39:18:a4:17:ab:aa:e4:16:6d: 46:c6:80:ef:a8:99:d9:ae:58:5e:6b:ac:c4:f5:40: c3:97:f6:f7:a0:9f:76:10:ab:c9:63:7e:02:aa:f7: 2e:52:72:a4:ba:97:2e:5d:06:f3:05:b8:41:28:8b: 19:32:d9:99:77:45:7e:16:6d:d6:c6:fb:2e:39:a1: 15:b6:55:8c:61:4c:95:8c:94:3c:03:bc:ff:35:e3: af:4a:cc:bf:ea:36:97:7a:24:b1:d2:d8:a1:d6:3b: 78:47:43:fa:9d:e8:ba:89:d5:7b:a9:6e:69:44:55: b1:4a:c2:4e:6e:12:59:7d:d1:eb:df:39:7c:ba:f3: 44:bf:80:e5:ce:be:47:63:22:32:03:d7:f7:64:96: 45:56:aa:1b:01:33:64:8f:5e:8b:04:c3:9b:eb:ea: b1:99:fb:99:df:8c:2f:10:1d:51:ed:c2:2d:0e:ab: 7f:46:6d:ef:ab:a9:c9:73:6f:ba:52:50:be:47:c3: 20:fe:be:05:d4:b8:84:a5:d7:c1:ab:2f:c5:e2:0b: c0:b6:e0:57:91:d3:30:e2:b4:aa:09:0d:f5:b6:d4: fa:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:75:C8:6E:29:17:CF:EC:47:B8:A1:84:EF:E4:18:1C:C2:55:CF:8A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78f5503c-aa07-46e8-9f59-d399edc52c77.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f2a:4000::/36 Signature Algorithm: sha256WithRSAEncryption 8c:6e:34:20:0c:97:a4:04:6b:53:b3:4d:ff:b5:f5:bd:ee:f0: 5b:18:ae:ea:ab:67:a4:98:4f:cb:4d:2f:5f:ee:91:29:53:a1: e4:3b:c1:1b:b5:46:f2:42:6b:e9:2c:88:d7:ff:6c:67:95:38: 02:f3:e0:80:7b:f7:f7:0a:85:e9:a9:4f:d5:3d:46:df:30:20: 7e:45:28:e9:7d:a4:bf:58:18:be:5b:6a:7e:41:99:50:d8:54: 21:f0:3b:4c:b2:f1:29:18:fc:2f:f8:3b:1e:14:2a:f1:f1:a5: 80:10:a5:8f:56:b7:66:e2:d2:c5:be:d5:aa:e8:fd:ae:2b:ea: ec:a9:f1:89:17:79:5d:44:01:44:19:2d:fd:41:eb:10:6a:bc: 82:84:d3:b1:53:ca:9c:6e:cf:c3:8d:96:dc:d4:58:0d:21:d9: dc:d1:e4:40:d9:0d:b4:31:94:2b:32:f7:ed:5b:52:3f:bc:ab: 8f:d0:f7:83:bd:8a:0b:02:d8:bf:c4:3e:46:e5:f0:95:8e:03: 43:02:7c:88:4f:8c:09:79:3b:a5:d9:d0:85:bf:e2:21:26:4d: 17:4f:ab:19:24:e0:b0:8e:34:2f:bc:8b:30:c7:ee:00:28:f3: b2:40:b2:8b:a1:09:58:e4:a2:0f:22:53:43:62:db:27:a4:49: 68:c0:c8:35 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUNSQ7+IdxhmeWU9f/gWGUEcPSuYowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA5MDAyMTU0WhcNMjUwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MWFlMTA2YjQ4MGY1OTFiOGJhYzgzMjA5YzZhNTIzZGI1 MzZjOWFmN2ZmOWVhOWFiNmQ4ZWE1Mzc5ODY1NjRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaargZOqdGYgKGmyIZoCM4GlZaiTCe626XM4Ur6a3Vio/2 fDkYpBerquQWbUbGgO+omdmuWF5rrMT1QMOX9vegn3YQq8ljfgKq9y5ScqS6ly5d BvMFuEEoixky2Zl3RX4WbdbG+y45oRW2VYxhTJWMlDwDvP81469KzL/qNpd6JLHS 2KHWO3hHQ/qd6LqJ1XupbmlEVbFKwk5uEll90evfOXy680S/gOXOvkdjIjID1/dk lkVWqhsBM2SPXosEw5vr6rGZ+5nfjC8QHVHtwi0Oq39Gbe+rqclzb7pSUL5HwyD+ vgXUuISl18GrL8XiC8C24FeR0zDitKoJDfW21Pr1AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUQnXIbikXz+xHuKGE7+QYHMJVz4owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc4ZjU1MDNjLWFhMDctNDZlOC05ZjU5LWQzOTllZGM1MmM3Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8qQDANBgkqhkiG9w0BAQsFAAOCAQEAjG40IAyXpARrU7NN/7X1ve7w Wxiu6qtnpJhPy00vX+6RKVOh5DvBG7VG8kJr6SyI1/9sZ5U4AvPggHv39wqF6alP 1T1G3zAgfkUo6X2kv1gYvltqfkGZUNhUIfA7TLLxKRj8L/g7HhQq8fGlgBClj1a3 ZuLSxb7Vquj9rivq7KnxiRd5XUQBRBkt/UHrEGq8goTTsVPKnG7Pw42W3NRYDSHZ 3NHkQNkNtDGUKzL37VtSP7yrj9D3g72KCwLYv8Q+RuXwlY4DQwJ8iE+MCXk7pdnQ hb/iISZNF0+rGSTgsI40L7yLMMfuACjzskCyi6EJWOSiDyJTQ2LbJ6RJaMDINQ== -----END CERTIFICATE-----Generated at Sat Apr 26 14:56:40 2025 by rpki-client