$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8998c883-9e67-4bcf-a61e-660dce0482d2.roa File: 8998c883-9e67-4bcf-a61e-660dce0482d2.roa (raw, json) Hash identifier: bAgdKVuTpWCqxh8B21oSBlr6YvJwq44qfxia4A2RCJI= Subject key identifier: B0:BD:5E:0E:59:4F:DC:05:6C:33:7A:9F:6B:7A:CB:64:7D:35:FB:7F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1E78BAEAB0160F8FD40C42C06C5966236C20373E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8998c883-9e67-4bcf-a61e-660dce0482d2.roa Signing time: Tue 22 Apr 2025 15:11:26 +0000 ROA not before: Tue 22 Apr 2025 15:11:26 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f61:e040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:78:ba:ea:b0:16:0f:8f:d4:0c:42:c0:6c:59:66:23:6c:20:37:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 15:11:26 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=86c2ff6024256c2e28e46e3f7d33e2168c378e37e7d561ad96d41794b0770b5c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:2e:66:29:83:e6:2b:c9:39:33:4e:c4:32:b5: ab:72:9e:1f:05:67:22:20:60:f0:bc:cb:7b:f2:89: c4:2f:e4:93:c5:1a:23:03:19:f3:05:7e:99:f6:7e: c1:66:6b:f8:c1:e4:83:e9:7e:09:67:a8:c5:b2:70: d2:a0:07:ad:12:9e:c1:eb:97:cc:3d:62:e8:a0:f4: 21:77:20:e2:ed:0c:b2:18:b4:a0:71:33:de:70:87: f4:31:c1:a1:d6:7f:d7:ca:e2:9d:0d:3e:9e:c1:a5: ad:0b:39:f6:8d:79:ef:eb:f3:73:6d:a4:58:c0:8b: 67:0b:fe:f1:b6:76:c2:07:c2:15:8e:16:81:5e:5a: b5:fa:6d:3a:cc:4d:94:1d:ba:fc:ae:6b:f5:73:81: 45:2e:6a:d3:f9:fc:fd:6d:1e:97:93:7b:c9:31:b3: d5:c2:48:63:ca:39:c9:a5:bb:73:84:86:93:05:1d: bf:43:9b:48:9b:4c:e4:44:9b:04:ba:ed:aa:e7:bc: 74:23:5e:42:26:1c:90:22:0a:6d:34:43:5f:10:d2: 06:31:1f:3e:ee:f2:ed:f2:57:85:96:5a:77:41:7d: 97:d7:5d:25:86:e4:95:6f:29:ac:5e:46:82:c0:56: 77:63:76:ed:2c:b1:62:dd:64:30:41:7d:a2:3b:0a: 0a:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:BD:5E:0E:59:4F:DC:05:6C:33:7A:9F:6B:7A:CB:64:7D:35:FB:7F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8998c883-9e67-4bcf-a61e-660dce0482d2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:e040::/48 Signature Algorithm: sha256WithRSAEncryption 4e:fe:5e:66:3e:c5:6f:87:75:fa:e6:cc:46:07:71:8e:c9:14: 52:e4:b2:16:19:a4:a0:c3:6b:27:cc:5a:ba:8f:97:47:25:3f: 2a:83:86:9f:9e:3f:d1:c8:0e:85:43:51:18:e4:a7:66:98:be: e3:a3:e7:05:23:d9:8a:2c:e7:1c:20:db:db:78:8d:37:71:9e: 78:8f:a6:15:ed:61:26:a7:ec:eb:db:8f:bf:05:4a:c7:92:16: f1:66:b0:33:71:39:f3:c0:94:ee:84:95:da:97:aa:38:96:48: df:2e:11:46:93:3a:fb:21:fe:52:79:88:dd:06:03:94:e1:de: be:5e:ff:c8:44:68:4f:95:4d:dd:e5:6f:60:c5:98:e0:9f:42: 6e:88:bd:9c:60:4e:3b:2d:05:ff:78:a9:5a:14:4a:fc:ef:e3: f6:8a:86:1e:c5:49:45:69:91:6b:de:4b:c7:e0:dd:9a:7d:4f: 28:17:9d:96:ad:23:3f:0a:2b:bd:35:52:a0:d4:2e:a3:c2:3e: 9d:07:37:35:e3:2b:8d:86:65:a0:3d:5d:bd:76:aa:30:a6:b2: 5d:93:99:a2:bc:f2:2d:42:dc:d9:ba:f2:f1:18:fe:6b:5b:97: 7c:37:f6:93:67:6d:ff:47:ff:a9:1e:e8:51:ba:a7:08:be:68: 17:57:84:6f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHni66rAWD4/UDELAbFlmI2wgNz4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTUxMTI2WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NmMyZmY2MDI0MjU2YzJlMjhlNDZlM2Y3ZDMzZTIxNjhj Mzc4ZTM3ZTdkNTYxYWQ5NmQ0MTc5NGIwNzcwYjVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClLmYpg+YryTkzTsQytatynh8FZyIgYPC8y3vyicQv5JPF GiMDGfMFfpn2fsFma/jB5IPpfglnqMWycNKgB60SnsHrl8w9Yuig9CF3IOLtDLIY tKBxM95wh/QxwaHWf9fK4p0NPp7Bpa0LOfaNee/r83NtpFjAi2cL/vG2dsIHwhWO FoFeWrX6bTrMTZQduvyua/VzgUUuatP5/P1tHpeTe8kxs9XCSGPKOcmlu3OEhpMF Hb9Dm0ibTOREmwS67arnvHQjXkImHJAiCm00Q18Q0gYxHz7u8u3yV4WWWndBfZfX XSWG5JVvKaxeRoLAVndjdu0ssWLdZDBBfaI7CgrJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUsL1eDllP3AVsM3qfa3rLZH01+38wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg5OThjODgzLTllNjctNGJjZi1hNjFlLTY2MGRjZTA0ODJkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB9h4EAwDQYJKoZIhvcNAQELBQADggEBAE7+XmY+xW+HdfrmzEYHcY7J FFLkshYZpKDDayfMWrqPl0clPyqDhp+eP9HIDoVDURjkp2aYvuOj5wUj2Yos5xwg 29t4jTdxnniPphXtYSan7Ovbj78FSseSFvFmsDNxOfPAlO6EldqXqjiWSN8uEUaT Ovsh/lJ5iN0GA5Th3r5e/8hEaE+VTd3lb2DFmOCfQm6IvZxgTjstBf94qVoUSvzv 4/aKhh7FSUVpkWveS8fg3Zp9TygXnZatIz8KK701UqDULqPCPp0HNzXjK42GZaA9 Xb12qjCmsl2TmaK88i1C3Nm68vEY/mtbl3w39pNnbf9H/6ke6FG6pwi+aBdXhG8= -----END CERTIFICATE-----Generated at Sat Apr 26 16:16:55 2025 by rpki-client