$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7d07779e-2b8c-4173-b3f8-1cd5de2e437c.roa File: 7d07779e-2b8c-4173-b3f8-1cd5de2e437c.roa (raw, json) Hash identifier: U76R9FKJb4KHFVEjD1QgCUwb6U24JOinyFncbMpi2vE= Subject key identifier: 32:E0:38:69:FA:E2:BF:85:EA:0D:68:23:05:10:9E:23:09:F8:5B:2C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 41F75C6BBFD9B10455B46918B02FC0D55B1A0379 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7d07779e-2b8c-4173-b3f8-1cd5de2e437c.roa Signing time: Tue 22 Apr 2025 17:11:04 +0000 ROA not before: Tue 22 Apr 2025 17:11:04 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f29:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:f7:5c:6b:bf:d9:b1:04:55:b4:69:18:b0:2f:c0:d5:5b:1a:03:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 17:11:04 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=fe1832d198e0243200999b07e81c654d9e65f47f7090e2e8fae8e5635b1dc56c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:b2:a2:25:1d:85:d1:fc:2c:8b:21:6b:83:c8: da:1a:89:26:75:1d:4f:c6:28:f6:20:ab:57:58:b0: c0:6e:47:ec:6f:54:d0:a6:f8:92:ee:f7:aa:37:1a: b6:67:c3:28:60:6f:90:e0:08:62:91:8a:b0:3d:bd: e7:ab:04:f0:3c:bb:93:93:f9:b7:be:ff:e7:33:e3: 41:8b:9f:91:16:a9:98:56:92:a1:42:8d:80:aa:1c: 6d:a6:62:23:53:9f:3e:fa:f9:a2:9d:ae:16:e5:07: 60:f3:8c:f0:9e:e7:df:49:e7:c4:5f:b6:14:0d:48: 85:3e:79:12:e9:ac:e9:92:f2:02:ea:c8:f4:37:20: 5e:9e:b5:ed:70:27:37:8d:21:42:fa:82:8f:29:42: 25:6c:88:df:8a:7c:43:05:da:ea:5b:cf:42:53:a0: f6:34:7e:98:a9:b3:15:1a:29:5b:01:21:42:57:e0: c4:e0:75:24:d0:ef:c8:cf:04:4a:63:1c:ee:82:8a: 52:fd:d0:2b:80:c5:45:d9:db:f7:db:ca:34:72:47: ec:1e:b2:35:a0:fd:86:ee:3d:96:ac:78:c1:d4:97: 1b:48:98:88:03:fc:12:44:ae:90:f5:ac:6c:92:e8: b4:64:c3:b9:8c:f4:23:b9:02:e4:89:c0:a9:73:c2: 3d:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:E0:38:69:FA:E2:BF:85:EA:0D:68:23:05:10:9E:23:09:F8:5B:2C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7d07779e-2b8c-4173-b3f8-1cd5de2e437c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f29:4000::/36 Signature Algorithm: sha256WithRSAEncryption 01:fd:f4:b9:f9:40:bb:99:b1:7c:b1:55:5d:b7:37:b5:de:5b: 0a:06:24:65:86:37:eb:f3:c6:bf:f3:9f:d4:c5:7e:92:a7:d9: 39:f7:9d:8d:fd:15:1c:0b:81:6c:d5:68:89:34:31:43:86:82: ce:43:30:ff:4e:35:54:cf:e0:c4:c0:75:79:e5:1b:bd:f1:e3: d8:90:7e:ef:c1:ab:92:6f:10:85:f5:2f:60:d6:e8:2a:91:3c: a2:e2:65:7f:5f:63:c6:98:93:66:cf:bf:01:1f:5a:be:f3:ba: 98:00:dd:03:d6:76:66:9c:67:59:f0:d6:a2:95:69:2b:20:5d: d4:2f:3e:1e:55:3d:a6:8b:7f:68:2c:62:63:17:aa:db:45:d8: 89:6c:8c:40:d6:f1:fc:e8:d5:57:20:5f:59:a7:b9:72:46:43: ad:b3:1d:82:38:9b:1f:09:eb:70:77:96:85:c3:88:d0:7c:60: 42:df:8d:5c:4e:12:5c:e8:d5:d2:54:68:9b:49:b1:f7:9c:c7: bd:04:e6:a4:8c:4f:42:4f:14:52:f8:dd:6e:05:50:3d:82:c3: 4d:cc:9c:d0:5f:0e:a5:88:81:ec:ee:1d:2d:21:d3:9d:00:ce: 9f:86:16:fb:fc:db:6d:50:70:0b:f7:e9:ae:30:61:d7:d9:79: 44:8e:0f:a5 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUQfdca7/ZsQRVtGkYsC/A1VsaA3kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTcxMTA0WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZTE4MzJkMTk4ZTAyNDMyMDA5OTliMDdlODFjNjU0ZDll NjVmNDdmNzA5MGUyZThmYWU4ZTU2MzViMWRjNTZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCJsqIlHYXR/CyLIWuDyNoaiSZ1HU/GKPYgq1dYsMBuR+xv VNCm+JLu96o3GrZnwyhgb5DgCGKRirA9veerBPA8u5OT+be+/+cz40GLn5EWqZhW kqFCjYCqHG2mYiNTnz76+aKdrhblB2DzjPCe599J58RfthQNSIU+eRLprOmS8gLq yPQ3IF6ete1wJzeNIUL6go8pQiVsiN+KfEMF2upbz0JToPY0fpipsxUaKVsBIUJX 4MTgdSTQ78jPBEpjHO6CilL90CuAxUXZ2/fbyjRyR+wesjWg/YbuPZaseMHUlxtI mIgD/BJErpD1rGyS6LRkw7mM9CO5AuSJwKlzwj1TAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUMuA4afriv4XqDWgjBRCeIwn4WywwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdkMDc3NzllLTJiOGMtNDE3My1iM2Y4LTFjZDVkZTJlNDM3Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8pQDANBgkqhkiG9w0BAQsFAAOCAQEAAf30uflAu5mxfLFVXbc3td5b CgYkZYY36/PGv/Of1MV+kqfZOfedjf0VHAuBbNVoiTQxQ4aCzkMw/041VM/gxMB1 eeUbvfHj2JB+78Grkm8QhfUvYNboKpE8ouJlf19jxpiTZs+/AR9avvO6mADdA9Z2 ZpxnWfDWopVpKyBd1C8+HlU9pot/aCxiYxeq20XYiWyMQNbx/OjVVyBfWae5ckZD rbMdgjibHwnrcHeWhcOI0HxgQt+NXE4SXOjV0lRom0mx95zHvQTmpIxPQk8UUvjd bgVQPYLDTcyc0F8OpYiB7O4dLSHTnQDOn4YW+/zbbVBwC/fprjBh19l5RI4PpQ== -----END CERTIFICATE-----Generated at Sat Apr 26 16:07:06 2025 by rpki-client