$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/862dd605-a5bf-4ee0-8d36-8a35cda9fe09.roa File: 862dd605-a5bf-4ee0-8d36-8a35cda9fe09.roa (raw, json) Hash identifier: AZXXHluEjBeIdW8qSfbP6Ie/9/aewfYj79v6tA14+vA= Subject key identifier: A1:39:67:06:80:25:D6:0F:68:FA:85:3C:61:C6:AD:F8:DE:47:C8:95 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0B540D2103C7A43694D999C65F1DD5B52000263F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/862dd605-a5bf-4ee0-8d36-8a35cda9fe09.roa Signing time: Tue 22 Apr 2025 17:21:20 +0000 ROA not before: Tue 22 Apr 2025 17:21:20 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f14::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:54:0d:21:03:c7:a4:36:94:d9:99:c6:5f:1d:d5:b5:20:00:26:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 17:21:20 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=da8caf1366f44e4aeabd9f4900fe616b5f6b66297135889bcdf25bbc9b00d366, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:22:69:20:05:e9:1e:35:6f:c5:75:a7:97:32: 23:2a:80:54:9c:00:3e:8f:e1:7a:3d:10:f6:67:23: 89:44:b4:4b:0b:b4:fa:b4:14:64:2c:57:b3:4f:d4: 7e:d2:4c:ad:73:cb:f3:0e:ed:16:ee:b1:d6:28:d8: f2:a1:5b:50:38:7a:b8:d2:9c:f6:ff:12:a2:21:fe: 47:8b:20:d4:a0:88:0e:92:54:60:70:1f:e8:61:5b: 15:06:07:83:ef:52:63:3d:2d:91:72:3c:dc:63:c5: 7e:33:cf:93:38:73:11:a9:7c:48:81:69:6f:8f:4c: 41:84:6c:5f:36:23:a3:9e:8d:64:95:b4:5c:b4:57: dd:8c:a8:3a:cf:26:13:0b:2b:78:68:b2:a2:ab:3d: 51:72:e3:b5:f0:b5:47:c8:a7:e8:da:be:9e:ea:a3: db:33:03:3e:8d:bd:08:db:01:10:9d:10:84:50:d4: 89:c0:0e:30:04:6d:c4:f6:27:f5:c0:55:86:59:3c: 9a:1f:b0:e9:1b:cf:d0:19:46:20:67:79:bd:1d:4f: 6f:2b:d1:d1:f5:92:80:ce:22:70:85:cf:51:ac:a0: 16:a3:e9:42:e0:b1:54:0d:75:4f:c3:78:3d:9d:62: 56:ed:c3:80:f8:20:50:7e:89:f2:9a:02:9a:b0:73: f6:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:39:67:06:80:25:D6:0F:68:FA:85:3C:61:C6:AD:F8:DE:47:C8:95 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/862dd605-a5bf-4ee0-8d36-8a35cda9fe09.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f14::/37 Signature Algorithm: sha256WithRSAEncryption 61:02:16:c8:1f:12:6b:94:b6:ef:8a:ec:b8:a0:9f:d5:d9:e8: 12:ee:ef:7f:b9:83:73:fd:ae:fc:d6:72:23:27:0f:03:4a:11: d4:aa:43:04:72:ad:39:17:ee:b8:15:eb:2a:7b:cd:41:ae:ef: c5:07:65:00:3a:77:9f:2c:fb:13:1b:9b:fc:72:20:94:11:b9: a5:64:c6:0d:cc:6c:8c:c5:65:a5:8f:c9:f5:a4:10:b3:18:c5: d8:fd:9a:4f:91:d0:7c:d3:af:c5:45:44:be:db:7f:0e:a6:c2: 7d:c9:42:11:fa:6c:cf:6e:15:28:b7:69:83:f8:f0:7b:83:72: 92:9f:1c:ac:b5:84:13:52:f8:cf:ed:4b:e4:85:df:2a:45:4a: aa:84:54:a6:9e:79:0b:64:16:f3:cd:23:ba:35:63:56:93:29: bc:0d:77:58:52:30:49:f3:f8:b9:42:bf:f6:ea:3c:79:3a:b1: 7e:14:d2:ef:0a:7d:34:f1:4d:d3:75:6e:ac:7f:5f:a6:68:d2: f8:d2:24:5f:15:4d:e0:e8:d2:c5:3e:d1:1d:0f:90:93:c3:a8: d8:1e:80:9b:c5:28:f3:0c:43:ef:69:20:8e:1f:fa:b5:5b:85: d8:98:63:72:ac:53:50:a1:ae:ee:1a:f6:c7:4c:3c:af:a8:13: 7c:9e:35:2e -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUC1QNIQPHpDaU2ZnGXx3VtSAAJj8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTcyMTIwWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYThjYWYxMzY2ZjQ0ZTRhZWFiZDlmNDkwMGZlNjE2YjVm NmI2NjI5NzEzNTg4OWJjZGYyNWJiYzliMDBkMzY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfImkgBekeNW/FdaeXMiMqgFScAD6P4Xo9EPZnI4lEtEsL tPq0FGQsV7NP1H7STK1zy/MO7RbusdYo2PKhW1A4erjSnPb/EqIh/keLINSgiA6S VGBwH+hhWxUGB4PvUmM9LZFyPNxjxX4zz5M4cxGpfEiBaW+PTEGEbF82I6OejWSV tFy0V92MqDrPJhMLK3hosqKrPVFy47XwtUfIp+javp7qo9szAz6NvQjbARCdEIRQ 1InADjAEbcT2J/XAVYZZPJofsOkbz9AZRiBneb0dT28r0dH1koDOInCFz1GsoBaj 6ULgsVQNdU/DeD2dYlbtw4D4IFB+ifKaApqwc/aDAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUoTlnBoAl1g9o+oU8Ycat+N5HyJUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg2MmRkNjA1LWE1YmYtNGVlMC04ZDM2LThhMzVjZGE5ZmUwOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8UADANBgkqhkiG9w0BAQsFAAOCAQEAYQIWyB8Sa5S274rsuKCf1dno Eu7vf7mDc/2u/NZyIycPA0oR1KpDBHKtORfuuBXrKnvNQa7vxQdlADp3nyz7Exub /HIglBG5pWTGDcxsjMVlpY/J9aQQsxjF2P2aT5HQfNOvxUVEvtt/DqbCfclCEfps z24VKLdpg/jwe4Nykp8crLWEE1L4z+1L5IXfKkVKqoRUpp55C2QW880jujVjVpMp vA13WFIwSfP4uUK/9uo8eTqxfhTS7wp9NPFN03VurH9fpmjS+NIkXxVN4OjSxT7R HQ+Qk8Oo2B6Am8Uo8wxD72kgjh/6tVuF2JhjcqxTUKGu7hr2x0w8r6gTfJ41Lg== -----END CERTIFICATE-----Generated at Sat Apr 26 15:01:57 2025 by rpki-client