$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7e4db87c-7f99-41e2-8a26-12ed8f71c528.roa File: 7e4db87c-7f99-41e2-8a26-12ed8f71c528.roa (raw, json) Hash identifier: VtNFtpVYZ4JSNJcPyDPwqpwH9WI332CXwSxhiJiz8Z4= Subject key identifier: CE:DC:0C:EC:80:C9:34:83:23:C6:3F:21:B4:47:16:C2:E8:89:8E:F6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 71A5C64C9DE542563B1F0619195467BF548562C3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7e4db87c-7f99-41e2-8a26-12ed8f71c528.roa Signing time: Tue 22 Apr 2025 16:11:36 +0000 ROA not before: Tue 22 Apr 2025 16:11:36 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f69:e040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:a5:c6:4c:9d:e5:42:56:3b:1f:06:19:19:54:67:bf:54:85:62:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:11:36 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=85b4182fb8b7951722ae4218c04a6ddcef369ae8bb662ce3872a3c7cdaebbfa3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c9:95:8b:2a:19:88:22:1e:95:de:e0:59:ce: 26:d2:f2:70:09:36:0d:3b:c2:dc:b5:9a:6b:f7:d4: 40:9c:6f:96:53:43:93:9b:ac:e2:78:24:75:d6:cb: ba:46:07:76:dc:17:9b:32:f6:e8:5e:ba:87:2b:fb: f5:22:a7:43:e2:c7:00:bf:ed:31:67:a0:e4:97:f1: 70:76:d5:c8:5b:50:b6:3d:02:63:cd:4e:6e:46:2a: 79:59:e7:8b:08:a9:e1:14:99:c4:23:d4:2d:44:62: 41:b0:fe:a7:10:5d:77:7e:53:59:f5:c3:f1:30:be: 63:b0:e6:31:3a:7c:4b:2f:62:54:e6:00:d8:fb:9c: b9:d5:a6:e3:75:e3:e0:00:55:2e:b8:8a:ef:a4:98: 52:12:22:2e:9a:04:2f:2a:6f:2b:1d:bd:1f:0d:91: 43:03:52:7f:6d:e6:87:38:55:bc:bc:a4:59:f7:4c: b0:11:9a:4f:1e:aa:81:61:76:6f:3a:bb:80:4d:e1: 13:74:07:19:f9:e2:61:2a:2b:3f:da:8e:13:2c:dd: 5c:9d:23:ae:f1:1f:91:ad:2e:e3:cf:bf:50:d1:52: 1d:3e:05:30:70:93:f2:d9:45:ab:6c:ed:a1:09:3f: 17:95:2d:91:aa:39:6b:60:88:25:31:ed:c6:d8:8a: 93:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:DC:0C:EC:80:C9:34:83:23:C6:3F:21:B4:47:16:C2:E8:89:8E:F6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7e4db87c-7f99-41e2-8a26-12ed8f71c528.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f69:e040::/46 Signature Algorithm: sha256WithRSAEncryption bf:52:7d:16:8d:31:b9:71:42:80:aa:e0:78:16:3c:90:48:5a: 95:86:fe:94:cc:58:3c:90:b8:8a:fc:fd:6c:93:97:41:33:94: 22:1a:ca:49:64:b0:13:5d:62:76:72:f2:38:19:bc:f9:e0:08: db:d9:58:54:b7:97:ae:53:ff:35:dc:e7:ad:36:b9:9f:c3:8d: 84:d3:72:92:14:e4:ed:5d:f2:43:27:c6:37:3e:9f:5b:e0:76: df:5e:51:ec:57:6f:1a:4f:d1:0f:3c:75:d1:52:f6:0a:47:71: 60:11:ba:87:7c:c3:fa:b1:5c:9f:f4:12:ab:3b:c6:7c:54:eb: 16:dd:34:c0:2e:4f:b6:a4:c8:32:fa:53:67:e3:1e:98:34:10: 7c:6b:c0:d3:f1:11:f8:4e:3b:d8:54:07:e8:42:79:78:66:40: 8d:8a:0d:bf:53:0c:dd:c1:ae:b9:d9:9a:83:79:24:85:59:f7: ae:84:30:1b:4d:f6:83:23:4f:65:01:30:aa:30:d9:85:21:ce: 48:3e:50:a5:e3:ba:58:8b:53:32:fa:34:e7:6f:bd:8b:cf:6e: 6f:c3:94:2c:46:cd:77:0c:e3:fd:9e:2c:dd:4f:df:d3:48:2d: e5:d3:cb:b2:0d:8c:0f:9c:1c:ca:8d:58:77:d3:ee:5b:0c:a6: 79:c8:d5:7f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcaXGTJ3lQlY7HwYZGVRnv1SFYsMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTYxMTM2WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NWI0MTgyZmI4Yjc5NTE3MjJhZTQyMThjMDRhNmRkY2Vm MzY5YWU4YmI2NjJjZTM4NzJhM2M3Y2RhZWJiZmEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCryZWLKhmIIh6V3uBZzibS8nAJNg07wty1mmv31ECcb5ZT Q5ObrOJ4JHXWy7pGB3bcF5sy9uheuocr+/Uip0PixwC/7TFnoOSX8XB21chbULY9 AmPNTm5GKnlZ54sIqeEUmcQj1C1EYkGw/qcQXXd+U1n1w/EwvmOw5jE6fEsvYlTm ANj7nLnVpuN14+AAVS64iu+kmFISIi6aBC8qbysdvR8NkUMDUn9t5oc4Vby8pFn3 TLARmk8eqoFhdm86u4BN4RN0Bxn54mEqKz/ajhMs3VydI67xH5GtLuPPv1DRUh0+ BTBwk/LZRats7aEJPxeVLZGqOWtgiCUx7cbYipM1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUztwM7IDJNIMjxj8htEcWwuiJjvYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdlNGRiODdjLTdmOTktNDFlMi04YTI2LTEyZWQ4ZjcxYzUyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB9p4EAwDQYJKoZIhvcNAQELBQADggEBAL9SfRaNMblxQoCq4HgWPJBI WpWG/pTMWDyQuIr8/WyTl0EzlCIayklksBNdYnZy8jgZvPngCNvZWFS3l65T/zXc 5602uZ/DjYTTcpIU5O1d8kMnxjc+n1vgdt9eUexXbxpP0Q88ddFS9gpHcWARuod8 w/qxXJ/0Eqs7xnxU6xbdNMAuT7akyDL6U2fjHpg0EHxrwNPxEfhOO9hUB+hCeXhm QI2KDb9TDN3BrrnZmoN5JIVZ966EMBtN9oMjT2UBMKow2YUhzkg+UKXjuliLUzL6 NOdvvYvPbm/DlCxGzXcM4/2eLN1P39NILeXTy7INjA+cHMqNWHfT7lsMpnnI1X8= -----END CERTIFICATE-----Generated at Sat Apr 26 14:49:27 2025 by rpki-client