$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8c14bc31-de03-4016-bcdd-7ffb34f33c54.roa File: 8c14bc31-de03-4016-bcdd-7ffb34f33c54.roa (raw, json) Hash identifier: ocR5OwVYf8xwNk4HaAEsHPKNv5he1sXNvx7EpQHiuD0= Subject key identifier: D2:A3:9C:19:03:A1:4B:CC:35:72:DA:5A:63:11:1C:74:D1:06:4D:8D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2A0442E372234F9408BE8B4FB0B4B5080DC0E5BC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8c14bc31-de03-4016-bcdd-7ffb34f33c54.roa Signing time: Tue 22 Apr 2025 16:40:16 +0000 ROA not before: Tue 22 Apr 2025 16:40:16 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fb9:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:04:42:e3:72:23:4f:94:08:be:8b:4f:b0:b4:b5:08:0d:c0:e5:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:40:16 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=08e4f5c21d420583fc26f5e4fecd03944953ef41fb4ade7f426601cafb76e889, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:44:11:72:11:56:cf:28:63:a0:43:57:ec:00: 04:3a:71:6b:e9:76:df:c0:1c:49:9e:5a:b8:17:94: 2d:a3:86:2a:b8:62:91:aa:4a:cc:a3:7c:f8:97:f2: f0:17:8c:30:64:4e:50:13:cf:5d:79:6d:d8:48:86: aa:b8:80:db:71:e1:f7:0c:40:f0:c4:44:ac:0d:be: 69:cb:64:e3:c8:fd:be:b3:4c:0e:69:f0:b9:f7:9a: 50:a4:e4:73:41:9a:14:18:aa:f6:24:52:91:60:52: f0:17:1b:14:3a:a3:32:4e:89:56:35:3d:44:6b:2f: 74:18:90:28:bf:61:71:d4:f6:34:c2:64:24:90:fc: 14:5a:f8:1a:3a:cf:c1:d5:d8:c7:06:c2:fa:a8:f8: 4c:c5:7f:b6:0a:5c:bb:62:b3:74:39:54:0a:18:25: 6b:2f:1d:83:2b:a7:44:0a:0d:cb:70:3f:ff:89:cb: 06:7d:bc:c5:cb:5d:6e:31:6d:2f:cb:3a:e3:4d:fc: 16:2c:5a:2a:b7:70:f1:1d:e9:35:41:5d:d9:a1:51: 93:a8:ed:b9:3f:6c:af:de:0c:2f:49:a1:c8:4f:8a: 2f:61:9e:ff:cb:9c:81:f3:f7:52:94:c1:f2:e6:18: da:4e:80:ad:31:5a:55:2d:c6:87:ea:dc:e3:bf:fd: 2e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:A3:9C:19:03:A1:4B:CC:35:72:DA:5A:63:11:1C:74:D1:06:4D:8D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8c14bc31-de03-4016-bcdd-7ffb34f33c54.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb9:8000::/39 Signature Algorithm: sha256WithRSAEncryption ce:b2:32:7a:21:56:50:98:c4:90:1a:09:57:c7:b4:2e:3b:26: df:a9:8a:ba:1b:6d:4a:c5:3f:4a:7f:36:d1:e0:5b:56:88:8b: 66:bd:b9:60:fa:59:76:ed:f0:17:e9:4a:87:ee:d8:ff:c2:2a: fa:61:78:b8:aa:59:39:f6:fb:e4:a9:ae:b5:09:c5:9b:ed:47: c0:af:9a:36:de:20:4b:3e:70:d5:b2:af:d1:de:01:34:7b:3e: fb:fe:d1:50:cd:07:66:5d:c6:1c:5e:ba:b0:4d:b2:14:f0:54: 77:11:e9:37:c2:c6:6c:8a:f3:5f:50:7a:8d:ae:40:ed:06:79: 45:c1:94:50:2c:6d:39:ec:41:a9:b0:7b:3c:71:01:37:b9:72: 9a:77:0a:b4:a2:ce:62:85:d5:3c:8f:6e:d9:a4:16:42:32:dd: 24:48:32:a0:2f:a7:5a:46:2d:5e:c9:f3:1c:c7:90:fd:ce:ae: cd:a7:c4:e2:1b:89:e9:7a:6b:81:cd:5c:22:c4:4f:74:d6:24: 62:ea:96:89:a1:0d:c8:36:f9:69:91:31:25:a4:f8:a0:b0:36: 93:bf:04:f3:c2:74:ff:75:c6:69:36:0d:9f:0b:ca:41:ac:17: f6:bf:0f:38:cb:51:23:bc:6a:28:a2:81:fe:ce:67:43:bf:d7: 1b:d3:b6:7f -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUKgRC43IjT5QIvotPsLS1CA3A5bwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTY0MDE2WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOGU0ZjVjMjFkNDIwNTgzZmMyNmY1ZTRmZWNkMDM5NDQ5 NTNlZjQxZmI0YWRlN2Y0MjY2MDFjYWZiNzZlODg5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwRBFyEVbPKGOgQ1fsAAQ6cWvpdt/AHEmeWrgXlC2jhiq4 YpGqSsyjfPiX8vAXjDBkTlATz115bdhIhqq4gNtx4fcMQPDERKwNvmnLZOPI/b6z TA5p8Ln3mlCk5HNBmhQYqvYkUpFgUvAXGxQ6ozJOiVY1PURrL3QYkCi/YXHU9jTC ZCSQ/BRa+Bo6z8HV2McGwvqo+EzFf7YKXLtis3Q5VAoYJWsvHYMrp0QKDctwP/+J ywZ9vMXLXW4xbS/LOuNN/BYsWiq3cPEd6TVBXdmhUZOo7bk/bK/eDC9JochPii9h nv/LnIHz91KUwfLmGNpOgK0xWlUtxofq3OO//S6nAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU0qOcGQOhS8w1ctpaYxEcdNEGTY0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhjMTRiYzMxLWRlMDMtNDAxNi1iY2RkLTdmZmIzNGYzM2M1NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB+5gDANBgkqhkiG9w0BAQsFAAOCAQEAzrIyeiFWUJjEkBoJV8e0Ljsm 36mKuhttSsU/Sn820eBbVoiLZr25YPpZdu3wF+lKh+7Y/8Iq+mF4uKpZOfb75Kmu tQnFm+1HwK+aNt4gSz5w1bKv0d4BNHs++/7RUM0HZl3GHF66sE2yFPBUdxHpN8LG bIrzX1B6ja5A7QZ5RcGUUCxtOexBqbB7PHEBN7lymncKtKLOYoXVPI9u2aQWQjLd JEgyoC+nWkYtXsnzHMeQ/c6uzafE4huJ6Xprgc1cIsRPdNYkYuqWiaENyDb5aZEx JaT4oLA2k78E88J0/3XGaTYNnwvKQawX9r8POMtRI7xqKKKB/s5nQ7/XG9O2fw== -----END CERTIFICATE-----Generated at Sat Apr 26 14:52:21 2025 by rpki-client