$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/803f3a95-a624-4af0-8fbd-52c2e78f6985.roa File: 803f3a95-a624-4af0-8fbd-52c2e78f6985.roa (raw, json) Hash identifier: xut397MdwsXGFynrUJMOQZLds5w7+shPpjuJJzDpQhA= Subject key identifier: 37:43:64:76:9A:82:26:F6:BF:F6:64:C5:06:D3:32:7E:4A:30:AC:8E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5A5DEFBEA765AFF8F9432E622C963F8238A01964 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/803f3a95-a624-4af0-8fbd-52c2e78f6985.roa Signing time: Tue 22 Apr 2025 16:51:14 +0000 ROA not before: Tue 22 Apr 2025 16:51:14 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f18:c800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:5d:ef:be:a7:65:af:f8:f9:43:2e:62:2c:96:3f:82:38:a0:19:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:51:14 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=9f5c8008fa79756bf57a7a2c8fc92d76a8149223ee1302dcc47bb455be83c31c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:09:33:dd:e8:84:e4:63:66:84:16:71:3d:d2: 60:5e:db:3c:4b:e0:73:ae:d0:5d:f5:44:b5:52:30: bd:5a:48:9a:2b:77:6a:e0:a9:11:40:1d:e7:24:6f: 4e:1f:7d:57:a4:96:72:54:f9:04:43:5d:7e:93:6c: ba:8e:a5:f7:48:f0:7d:d1:0e:1c:76:0a:51:a0:6a: 68:65:ad:2e:27:85:0c:2b:2e:8a:2e:56:ff:f7:75: 28:25:ae:d2:d1:c7:ca:df:8f:aa:ff:2a:31:6a:37: 84:29:d8:52:20:3c:5f:eb:01:96:d7:ec:a2:7f:f7: 53:ec:c2:6d:6b:6f:1a:53:92:f5:50:64:62:55:f7: 9a:27:38:62:29:fc:19:07:a2:42:36:a8:3f:ea:da: e3:29:7b:05:4b:04:f1:f8:1e:53:d2:a1:9c:f4:82: fd:f7:af:be:f8:bb:0f:dd:b7:0f:0d:88:57:98:db: 05:74:1e:25:b2:f2:1c:a2:aa:5f:46:2e:1d:b2:70: 3a:10:1b:82:8c:01:48:d2:69:ea:80:ac:4a:c3:7a: 19:19:d6:48:63:8e:a0:54:9d:16:85:c7:5d:2a:14: ab:27:ec:13:9f:e8:a0:ec:20:ef:04:4e:8e:d1:48: ed:d7:29:52:39:e2:2e:c0:9f:b3:5b:eb:10:b3:21: 37:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:43:64:76:9A:82:26:F6:BF:F6:64:C5:06:D3:32:7E:4A:30:AC:8E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/803f3a95-a624-4af0-8fbd-52c2e78f6985.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f18:c800::/37 Signature Algorithm: sha256WithRSAEncryption 98:34:ff:2b:0f:a3:e5:cc:51:2a:1a:d4:26:4d:ba:39:98:73: df:e8:63:76:92:82:b0:dd:59:0c:b8:2d:76:20:58:65:ed:e3: d4:98:ed:f3:31:75:26:8f:c7:78:23:2f:30:b2:fc:18:8f:e3: 83:1e:25:89:59:b7:49:ed:2a:86:4c:13:f9:d2:07:dd:6c:41: f4:59:aa:bd:a3:56:0e:16:c7:8e:10:37:2e:65:63:01:46:99: d1:e3:6c:4b:ec:df:90:e7:96:08:3a:10:1e:33:aa:fd:f8:af: 45:40:bc:19:08:2f:d0:17:58:e2:bd:5e:86:a8:36:7d:fc:e6: ce:e2:cd:dd:6f:68:61:6e:87:27:d7:87:3c:2f:85:b6:db:82: ad:d0:a8:71:19:8c:14:4a:bb:c5:31:54:b0:a5:bb:63:aa:63: 1b:21:59:19:f2:f5:42:d5:e7:40:47:f7:00:1b:21:68:e4:76: 39:33:16:92:84:e0:3b:d7:a4:e3:0f:6b:f6:42:1b:6e:a4:f2: 49:4b:24:f1:33:62:66:9b:ba:d3:36:ca:34:53:44:e7:ba:96: 94:f0:72:8f:89:ee:58:90:d3:ab:81:d6:4f:7b:ee:32:f7:e1: 4a:16:57:2e:e7:35:9f:d2:d7:0c:c9:ff:50:3b:45:59:7e:2c: a1:c1:a8:55 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUWl3vvqdlr/j5Qy5iLJY/gjigGWQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTY1MTE0WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZjVjODAwOGZhNzk3NTZiZjU3YTdhMmM4ZmM5MmQ3NmE4 MTQ5MjIzZWUxMzAyZGNjNDdiYjQ1NWJlODNjMzFjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCFCTPd6ITkY2aEFnE90mBe2zxL4HOu0F31RLVSML1aSJor d2rgqRFAHeckb04ffVeklnJU+QRDXX6TbLqOpfdI8H3RDhx2ClGgamhlrS4nhQwr LoouVv/3dSglrtLRx8rfj6r/KjFqN4Qp2FIgPF/rAZbX7KJ/91Pswm1rbxpTkvVQ ZGJV95onOGIp/BkHokI2qD/q2uMpewVLBPH4HlPSoZz0gv33r774uw/dtw8NiFeY 2wV0HiWy8hyiql9GLh2ycDoQG4KMAUjSaeqArErDehkZ1khjjqBUnRaFx10qFKsn 7BOf6KDsIO8ETo7RSO3XKVI54i7An7Nb6xCzITe1AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUN0NkdpqCJva/9mTFBtMyfkowrI4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgwM2YzYTk1LWE2MjQtNGFmMC04ZmJkLTUyYzJlNzhmNjk4NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8YyDANBgkqhkiG9w0BAQsFAAOCAQEAmDT/Kw+j5cxRKhrUJk26OZhz 3+hjdpKCsN1ZDLgtdiBYZe3j1Jjt8zF1Jo/HeCMvMLL8GI/jgx4liVm3Se0qhkwT +dIH3WxB9FmqvaNWDhbHjhA3LmVjAUaZ0eNsS+zfkOeWCDoQHjOq/fivRUC8GQgv 0BdY4r1ehqg2ffzmzuLN3W9oYW6HJ9eHPC+FttuCrdCocRmMFEq7xTFUsKW7Y6pj GyFZGfL1QtXnQEf3ABshaOR2OTMWkoTgO9ek4w9r9kIbbqTySUsk8TNiZpu60zbK NFNE57qWlPByj4nuWJDTq4HWT3vuMvfhShZXLuc1n9LXDMn/UDtFWX4socGoVQ== -----END CERTIFICATE-----Generated at Sat Apr 26 14:58:28 2025 by rpki-client