$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7bc226a9-2123-40af-92e4-48ff4ba6d339.roa File: 7bc226a9-2123-40af-92e4-48ff4ba6d339.roa (raw, json) Hash identifier: HgPhkJ+AerssdvBqeNSBT18mBmlQ4eYUU0pIjq9D/F4= Subject key identifier: A8:28:12:C1:5F:28:EC:7F:99:9D:34:19:8F:44:5B:45:1C:DE:84:F7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6049BF9EAEEA9CE01E9DDB53CF65B85CDAE443EB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7bc226a9-2123-40af-92e4-48ff4ba6d339.roa Signing time: Tue 22 Apr 2025 00:11:09 +0000 ROA not before: Tue 22 Apr 2025 00:11:09 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f00:8150::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:49:bf:9e:ae:ea:9c:e0:1e:9d:db:53:cf:65:b8:5c:da:e4:43:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 00:11:09 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=1ca30543d15025c8b3b32276b1ec8ad9cc1731cc72d6fbebb50bc30db62cc2fc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b0:19:c2:ff:21:68:f4:61:fb:c7:45:bc:c8: 0e:00:b8:11:6b:b2:83:39:4a:af:4b:48:ba:b5:da: 16:f4:dc:78:e7:6a:2e:1a:82:1d:27:23:7e:ca:eb: ee:09:4f:a2:c8:68:42:58:f8:b5:73:9a:54:10:94: c6:9f:2f:f5:3a:56:d6:c1:c5:d4:14:96:b6:18:1d: e8:6c:2b:32:8b:f0:c1:21:0f:0b:a8:62:a8:b8:3e: fa:28:35:cf:e1:b5:ae:90:72:4a:0f:b0:79:18:aa: 78:eb:1a:3f:fe:23:2c:1e:8d:05:df:bc:48:da:7a: ca:17:32:93:59:a2:0e:b7:c3:b0:bd:fe:d3:e7:48: 37:be:6f:40:00:30:53:84:e2:07:1f:5f:fa:a2:22: cc:6e:34:b1:f6:5c:93:ba:86:35:3b:f7:f7:d1:52: 90:d9:6d:b5:21:81:54:6a:1d:c5:ad:ce:c8:51:68: a3:fb:3a:71:f9:e8:f4:68:27:85:41:80:8b:0c:2b: 87:ab:22:42:c5:5f:a7:b8:2c:1d:27:1d:14:d6:dd: cc:7c:cd:ef:28:b9:60:17:c2:0e:93:43:4d:97:67: 76:e6:ce:ae:ab:19:d3:bf:f4:69:3a:c7:46:f6:95: c4:00:68:08:7c:09:39:65:05:0e:2d:93:8d:4e:f8: 2e:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:28:12:C1:5F:28:EC:7F:99:9D:34:19:8F:44:5B:45:1C:DE:84:F7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7bc226a9-2123-40af-92e4-48ff4ba6d339.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:8150::/48 Signature Algorithm: sha256WithRSAEncryption 5a:7a:34:73:57:c6:13:b4:b8:a7:b5:10:87:f5:fe:e4:4d:34: 82:02:bd:90:59:3a:c7:ee:3e:ed:56:b5:99:45:85:bf:4f:cf: f1:f1:06:79:9f:07:60:b9:5c:e1:49:f2:0f:05:44:a8:45:fa: 9e:88:3c:e6:47:48:ce:50:e3:3e:0d:0f:05:ce:4b:83:db:cb: 66:a1:dc:d9:d2:66:eb:94:05:31:ff:9a:cd:d6:13:3a:5c:38: df:f1:c5:64:a9:1a:77:00:8d:55:02:3b:b2:96:a1:44:b5:8d: 8e:61:b2:5b:15:e1:5f:c9:27:d6:8c:4d:22:71:1b:ee:02:0a: 96:15:01:6d:0d:89:40:da:42:5a:fd:e7:6b:9a:9d:e9:db:d9: 2d:0a:63:1c:ea:4e:d2:a5:ff:85:17:52:48:f2:14:cb:94:c7: c2:7b:0e:f2:da:cc:11:de:0b:70:89:b9:99:e0:70:ff:b8:cf: 18:65:bd:b1:5c:f4:fa:78:d5:9a:c8:cd:b8:64:b1:ae:7d:f3: c5:9d:7e:86:1d:2d:e7:24:53:5e:82:f5:7f:14:91:25:82:d2: 03:87:94:f0:0f:3a:1e:bb:5f:54:8b:a3:12:aa:09:5f:40:63: 5d:c5:03:63:5d:85:8a:e0:35:66:34:71:c4:92:c9:05:78:6b: 69:32:0d:6d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYEm/nq7qnOAendtTz2W4XNrkQ+swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMDAxMTA5WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxY2EzMDU0M2QxNTAyNWM4YjNiMzIyNzZiMWVjOGFkOWNj MTczMWNjNzJkNmZiZWJiNTBiYzMwZGI2MmNjMmZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9sBnC/yFo9GH7x0W8yA4AuBFrsoM5Sq9LSLq12hb03Hjn ai4agh0nI37K6+4JT6LIaEJY+LVzmlQQlMafL/U6VtbBxdQUlrYYHehsKzKL8MEh DwuoYqi4PvooNc/hta6QckoPsHkYqnjrGj/+IywejQXfvEjaesoXMpNZog63w7C9 /tPnSDe+b0AAMFOE4gcfX/qiIsxuNLH2XJO6hjU79/fRUpDZbbUhgVRqHcWtzshR aKP7OnH56PRoJ4VBgIsMK4erIkLFX6e4LB0nHRTW3cx8ze8ouWAXwg6TQ02XZ3bm zq6rGdO/9Gk6x0b2lcQAaAh8CTllBQ4tk41O+C4FAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUqCgSwV8o7H+ZnTQZj0RbRRzehPcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdiYzIyNmE5LTIxMjMtNDBhZi05MmU0LTQ4ZmY0YmE2ZDMzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AgVAwDQYJKoZIhvcNAQELBQADggEBAFp6NHNXxhO0uKe1EIf1/uRN NIICvZBZOsfuPu1WtZlFhb9Pz/HxBnmfB2C5XOFJ8g8FRKhF+p6IPOZHSM5Q4z4N DwXOS4Pby2ah3NnSZuuUBTH/ms3WEzpcON/xxWSpGncAjVUCO7KWoUS1jY5hslsV 4V/JJ9aMTSJxG+4CCpYVAW0NiUDaQlr952uanenb2S0KYxzqTtKl/4UXUkjyFMuU x8J7DvLazBHeC3CJuZngcP+4zxhlvbFc9Pp41ZrIzbhksa5988WdfoYdLeckU16C 9X8UkSWC0gOHlPAPOh67X1SLoxKqCV9AY13FA2NdhYrgNWY0ccSSyQV4a2kyDW0= -----END CERTIFICATE-----Generated at Sat Apr 26 13:41:23 2025 by rpki-client