$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79483f1f-35c5-4ee2-9db8-c98fac055e03.roa File: 79483f1f-35c5-4ee2-9db8-c98fac055e03.roa (raw, json) Hash identifier: Hx45qW1pM/4dH6I1M/Hilqhk2c90+2419KhMLEh3H+c= Subject key identifier: D1:52:B3:39:3C:25:1B:BB:27:54:13:46:75:0C:B4:CA:FE:CB:30:1F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2073D6BF9B1E59C69C770CF555B5C8089F41733E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79483f1f-35c5-4ee2-9db8-c98fac055e03.roa Signing time: Wed 09 Apr 2025 00:10:29 +0000 ROA not before: Wed 09 Apr 2025 00:10:29 +0000 ROA not after: Wed 14 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f68:a400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:73:d6:bf:9b:1e:59:c6:9c:77:0c:f5:55:b5:c8:08:9f:41:73:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 9 00:10:29 2025 GMT Not After : May 14 23:59:59 2025 GMT Subject: serialNumber=03e244947d6b15f4fc12d806632b1962984ad4cc2faa07db20f88909205aa771, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:47:70:20:2b:3f:cf:1d:a5:aa:66:ba:06:0a: 34:b9:40:96:22:33:f5:4d:24:e8:a5:08:75:d9:9f: 06:9f:5b:6c:28:2c:33:4b:9a:30:35:5a:ec:dc:7c: d5:e4:51:67:06:c2:a5:8e:78:c2:61:0d:d3:81:85: 95:cc:61:2a:64:cc:de:f6:5d:d8:9f:af:0d:0d:0b: f0:ba:eb:a8:aa:1e:f6:4b:5e:3a:9d:c0:4d:28:10: fc:ce:db:43:05:49:9a:27:40:08:93:dc:0a:f1:41: e4:2c:42:62:ea:5f:4c:15:ca:33:af:9d:9b:69:75: 08:ef:d5:43:a8:a9:f6:8a:aa:8a:0d:93:92:73:c2: 44:53:5f:56:86:8f:6f:5d:0c:e8:f5:16:bd:6c:e4: b4:f0:c8:af:4c:01:3b:d4:90:27:46:fd:bf:96:cd: 4a:a6:81:33:92:cf:eb:71:c7:52:91:aa:f7:4e:85: 75:20:a5:37:31:37:c1:55:32:9a:b5:7d:2b:2f:56: 73:a5:88:f9:18:8e:2a:7b:bf:cf:dd:ab:08:ce:77: dd:dd:48:45:ce:6f:98:15:24:e2:94:12:f2:02:31: fa:44:39:5f:a1:d6:77:10:eb:26:a3:ec:85:36:af: d5:6d:cc:45:69:d6:2f:c4:41:8e:1d:69:47:3a:18: 27:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:52:B3:39:3C:25:1B:BB:27:54:13:46:75:0C:B4:CA:FE:CB:30:1F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79483f1f-35c5-4ee2-9db8-c98fac055e03.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f68:a400::/40 Signature Algorithm: sha256WithRSAEncryption a6:b6:73:d0:31:a5:76:77:35:a9:1b:5c:fb:0c:8b:70:1b:a5: cf:54:e7:bc:fa:80:fc:a9:8c:17:f2:18:6d:85:74:cd:cb:e0: 03:0b:3f:1e:ef:d9:f8:9c:4f:ad:10:61:9a:be:c4:d8:47:3d: ba:2f:76:3d:8a:6c:4a:64:c9:1f:c5:02:39:b0:b3:aa:cf:13: b3:1a:f3:65:bc:82:1f:0b:e8:0b:c5:e1:02:f8:fc:a2:55:31: d7:09:6b:2b:90:bb:77:6e:0d:3b:78:12:07:a6:c4:7a:79:72: 1d:26:7e:ed:54:f7:61:95:55:44:89:b6:08:e0:8f:e9:bf:44: 07:45:9d:ed:6a:03:7e:21:c0:aa:c6:e9:82:13:ef:76:35:95: b7:8d:74:95:75:98:ab:44:80:56:d0:dd:ff:c1:1d:63:9a:ed: a9:04:32:fd:db:d6:a6:25:c4:2e:66:ae:78:d5:4e:e3:a9:19: 01:65:58:4f:7d:f2:6e:fd:16:f3:5c:13:97:3d:fd:d1:d4:e8: fc:57:b6:e5:d2:32:a6:bf:1d:52:57:bf:bb:ad:e0:e7:3c:fc: d9:a5:4f:33:a9:f7:fa:3f:f9:43:86:6e:a8:f4:38:19:9f:47: ef:82:ea:d7:9e:f6:4f:33:0c:35:4f:65:bc:54:fb:4b:cc:47: 8b:f1:37:46 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUIHPWv5seWcacdwz1VbXICJ9Bcz4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA5MDAxMDI5WhcNMjUwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwM2UyNDQ5NDdkNmIxNWY0ZmMxMmQ4MDY2MzJiMTk2Mjk4 NGFkNGNjMmZhYTA3ZGIyMGY4ODkwOTIwNWFhNzcxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2R3AgKz/PHaWqZroGCjS5QJYiM/VNJOilCHXZnwafW2wo LDNLmjA1WuzcfNXkUWcGwqWOeMJhDdOBhZXMYSpkzN72Xdifrw0NC/C666iqHvZL XjqdwE0oEPzO20MFSZonQAiT3ArxQeQsQmLqX0wVyjOvnZtpdQjv1UOoqfaKqooN k5JzwkRTX1aGj29dDOj1Fr1s5LTwyK9MATvUkCdG/b+WzUqmgTOSz+txx1KRqvdO hXUgpTcxN8FVMpq1fSsvVnOliPkYjip7v8/dqwjOd93dSEXOb5gVJOKUEvICMfpE OV+h1ncQ6yaj7IU2r9VtzEVp1i/EQY4daUc6GCfpAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU0VKzOTwlG7snVBNGdQy0yv7LMB8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc5NDgzZjFmLTM1YzUtNGVlMi05ZGI4LWM5OGZhYzA1NWUwMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9opDANBgkqhkiG9w0BAQsFAAOCAQEAprZz0DGldnc1qRtc+wyLcBul z1TnvPqA/KmMF/IYbYV0zcvgAws/Hu/Z+JxPrRBhmr7E2Ec9ui92PYpsSmTJH8UC ObCzqs8TsxrzZbyCHwvoC8XhAvj8olUx1wlrK5C7d24NO3gSB6bEenlyHSZ+7VT3 YZVVRIm2COCP6b9EB0Wd7WoDfiHAqsbpghPvdjWVt410lXWYq0SAVtDd/8EdY5rt qQQy/dvWpiXELmaueNVO46kZAWVYT33ybv0W81wTlz390dTo/Fe25dIypr8dUle/ u63g5zz82aVPM6n3+j/5Q4ZuqPQ4GZ9H74Lq1572TzMMNU9lvFT7S8xHi/E3Rg== -----END CERTIFICATE-----Generated at Sat Apr 26 14:57:31 2025 by rpki-client