$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b4f08c0-f42a-4617-a210-d431bbc6dc25.roa File: 8b4f08c0-f42a-4617-a210-d431bbc6dc25.roa (raw, json) Hash identifier: opHGJlFk5dq272CAl1MY8rktic/RVzWp3Hw622o25b8= Subject key identifier: 0B:D8:A7:AD:4E:26:CD:15:FB:48:74:E0:16:80:F4:2C:60:74:30:54 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3D8E6BEE0A257B454C736DE18B8A8BED369D4772 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b4f08c0-f42a-4617-a210-d431bbc6dc25.roa Signing time: Tue 22 Apr 2025 15:41:26 +0000 ROA not before: Tue 22 Apr 2025 15:41:26 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f69:1020::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:8e:6b:ee:0a:25:7b:45:4c:73:6d:e1:8b:8a:8b:ed:36:9d:47:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 15:41:26 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=97c2aa18bb4bdcacb2c82d1b49c036584563616f4e4c3640f7f6f86c834fcab9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:fb:c6:0b:78:b4:dc:4c:af:23:73:50:16:50: 8b:8c:58:cf:de:fe:82:a3:17:b9:83:09:c7:20:fd: 8d:16:61:21:6f:a6:72:fe:33:e8:07:fb:76:d2:27: 28:33:65:2c:d5:93:0b:7e:4c:d6:5c:51:5f:31:3e: 5a:a8:7e:0e:20:ba:d3:9f:5b:5b:31:be:1a:12:06: 0c:76:90:66:c1:b0:f2:52:c8:71:d7:94:43:7c:8b: 8a:e9:54:a2:ca:46:c2:67:e5:c6:b3:56:cc:35:89: 76:f8:dd:ad:7e:e9:93:16:59:3b:da:f1:aa:6b:15: 26:7c:9b:8b:32:af:73:c3:58:d3:6c:fc:13:71:b8: f3:65:74:2a:f9:2c:20:00:3f:d0:d7:66:e9:c0:ad: bb:a9:c5:72:17:3e:93:15:6c:55:9f:5f:0b:69:ba: ba:bf:f6:b9:f6:bb:39:04:1b:3b:56:39:ce:6c:19: 11:26:ad:2c:5e:5d:a3:a0:15:c3:7d:eb:6a:df:64: 8a:15:cb:24:53:4a:52:36:81:a0:8a:2e:7f:19:9b: 34:da:2f:67:b3:ce:38:50:c6:0d:bb:a7:39:ae:77: 43:58:ca:f3:8e:ae:b3:c1:7d:52:6e:65:8f:f3:ea: 89:4c:e7:2a:96:a6:ee:d6:22:42:09:b7:28:a6:b7: 70:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:D8:A7:AD:4E:26:CD:15:FB:48:74:E0:16:80:F4:2C:60:74:30:54 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b4f08c0-f42a-4617-a210-d431bbc6dc25.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f69:1020::/46 Signature Algorithm: sha256WithRSAEncryption c0:c0:a3:ee:44:9c:37:af:3f:f0:8e:b2:96:f9:d3:1d:4c:33: 3c:31:05:ca:2d:90:a8:bc:d5:10:d4:83:48:99:a7:ad:9f:cc: ab:79:de:b5:56:c9:ed:2c:21:ae:f5:a4:33:94:c2:18:4a:48: e7:ae:bc:22:c1:f2:f1:27:db:b9:cd:a1:cb:63:10:b6:26:3d: 3e:4f:1f:45:b7:b0:9a:c5:16:0c:67:dd:3e:46:1e:74:97:d7: 4c:db:ad:87:25:3d:f0:f6:94:46:ca:a9:4d:66:dd:21:82:90: 99:23:4d:cd:12:ab:81:c0:53:54:b5:24:44:0c:83:12:0f:26: d5:66:cb:e8:93:58:46:91:aa:fb:0a:0b:37:b0:db:24:08:eb: e7:d8:0f:44:2c:2d:01:51:81:aa:3b:bb:cc:6b:1f:49:61:b7: 62:25:31:9e:d8:1b:88:59:83:32:80:41:3f:12:54:e3:04:42: d5:11:14:d3:ab:a1:1a:bd:b2:0e:c0:12:86:a5:e1:eb:88:b5: fc:2b:bf:a9:b9:ab:b8:47:ad:00:2d:03:fe:bc:40:5c:56:09: 37:ab:ce:aa:7c:e9:65:2d:fa:a4:03:f7:0b:72:7f:d3:82:1f: 3f:ba:53:91:2f:2f:79:89:1e:44:4a:d5:cf:8a:dd:02:fe:88: 77:0d:85:48 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPY5r7gole0VMc23hi4qL7TadR3IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTU0MTI2WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5N2MyYWExOGJiNGJkY2FjYjJjODJkMWI0OWMwMzY1ODQ1 NjM2MTZmNGU0YzM2NDBmN2Y2Zjg2YzgzNGZjYWI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCp+8YLeLTcTK8jc1AWUIuMWM/e/oKjF7mDCccg/Y0WYSFv pnL+M+gH+3bSJygzZSzVkwt+TNZcUV8xPlqofg4gutOfW1sxvhoSBgx2kGbBsPJS yHHXlEN8i4rpVKLKRsJn5cazVsw1iXb43a1+6ZMWWTva8aprFSZ8m4syr3PDWNNs /BNxuPNldCr5LCAAP9DXZunArbupxXIXPpMVbFWfXwtpurq/9rn2uzkEGztWOc5s GREmrSxeXaOgFcN962rfZIoVyyRTSlI2gaCKLn8ZmzTaL2ezzjhQxg27pzmud0NY yvOOrrPBfVJuZY/z6olM5yqWpu7WIkIJtyimt3CdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUC9inrU4mzRX7SHTgFoD0LGB0MFQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhiNGYwOGMwLWY0MmEtNDYxNy1hMjEwLWQ0MzFiYmM2ZGMyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB9pECAwDQYJKoZIhvcNAQELBQADggEBAMDAo+5EnDevP/COspb50x1M MzwxBcotkKi81RDUg0iZp62fzKt53rVWye0sIa71pDOUwhhKSOeuvCLB8vEn27nN octjELYmPT5PH0W3sJrFFgxn3T5GHnSX10zbrYclPfD2lEbKqU1m3SGCkJkjTc0S q4HAU1S1JEQMgxIPJtVmy+iTWEaRqvsKCzew2yQI6+fYD0QsLQFRgao7u8xrH0lh t2IlMZ7YG4hZgzKAQT8SVOMEQtURFNOroRq9sg7AEoal4euItfwrv6m5q7hHrQAt A/68QFxWCTerzqp86WUt+qQD9wtyf9OCHz+6U5EvL3mJHkRK1c+K3QL+iHcNhUg= -----END CERTIFICATE-----Generated at Sat Apr 26 14:55:36 2025 by rpki-client