$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d41710e-c6e8-4052-a1da-98784984e015.roa File: 8d41710e-c6e8-4052-a1da-98784984e015.roa (raw, json) Hash identifier: S6RMEUh0chOmCq85Y/3o0cPHKD8+pQOANEEDsktiEiY= Subject key identifier: 9E:DF:AE:5A:44:8C:FC:2E:4C:49:BA:50:9C:5D:F1:92:CA:E5:5B:83 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 50CA341736246AEE7FA156DFFFFBE585409ABF5E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d41710e-c6e8-4052-a1da-98784984e015.roa Signing time: Tue 22 Apr 2025 15:41:18 +0000 ROA not before: Tue 22 Apr 2025 15:41:18 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffb:2040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:ca:34:17:36:24:6a:ee:7f:a1:56:df:ff:fb:e5:85:40:9a:bf:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 15:41:18 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=595d1c523027b34ff068dc362d8c83fb1e426aa726e251e3b4c4343e639c624c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:73:bf:20:9f:e6:6b:0d:6d:2f:a0:d6:0a:a6: 99:dd:5f:1d:78:73:b0:f5:7f:12:14:31:ad:45:15: c8:aa:d4:9c:e4:07:45:b3:f8:c7:ba:2e:14:2b:4d: dd:3b:1b:a2:b5:eb:da:50:1c:a5:7e:73:cd:74:d5: 44:88:99:5c:1b:c8:9e:31:83:12:fe:26:70:6d:f2: 62:ff:7a:48:00:73:05:1a:e5:03:fd:f0:76:e0:69: a7:3b:09:d2:12:ab:2a:a6:9c:8e:2a:b8:d0:b7:7f: a6:17:c7:d6:30:e6:17:ff:bb:f1:29:34:ae:4c:48: 22:80:f9:03:90:d2:5a:d1:dd:7c:fd:7b:0f:a1:b6: c1:22:fb:18:e4:84:32:c9:10:56:ac:37:de:86:f9: 38:7a:e9:f3:91:f8:c4:0b:5c:ca:7a:41:16:a9:78: 07:03:75:83:c0:8e:8d:38:57:ba:d4:c1:50:2e:b0: 4c:01:61:23:55:d7:2c:9c:07:eb:d9:7b:c0:6d:d3: 60:9f:5c:55:b5:46:1e:9f:e8:e9:7c:d0:0d:b4:04: ca:52:1d:1d:1c:d1:db:9e:32:be:a2:c1:8b:55:9a: 16:ff:1c:34:d9:e2:c8:ef:54:d6:5f:66:40:65:41: 6e:9d:9d:9e:95:2e:fb:ef:b8:b7:c0:7b:e9:eb:33: 6a:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:DF:AE:5A:44:8C:FC:2E:4C:49:BA:50:9C:5D:F1:92:CA:E5:5B:83 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d41710e-c6e8-4052-a1da-98784984e015.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffb:2040::/46 Signature Algorithm: sha256WithRSAEncryption 6f:1d:8d:c1:bd:aa:9e:59:81:4c:ee:9a:55:f3:f6:fc:58:1e: 3e:98:04:f1:fc:98:d5:82:21:b7:16:97:d4:b5:94:ba:ef:d6: 69:58:21:21:fa:07:d1:dd:6a:d6:9c:e3:a5:9d:d7:90:c4:03: 40:01:48:6f:f5:bf:c7:ef:29:2d:60:99:9b:b6:70:77:a1:29: 9d:7b:08:59:01:a0:d7:26:4e:8d:3c:8d:ba:a8:7f:ce:c9:ec: 5d:2c:78:93:96:f0:d5:8d:08:2c:01:60:1c:73:0b:af:9a:2b: 03:1d:46:10:17:66:4d:ab:36:f2:ef:42:0d:7f:9d:7c:b9:9c: a5:f9:3a:ae:1d:c0:f6:51:88:3c:52:3e:6a:21:9a:c2:e2:16: ea:7b:38:77:8c:5a:22:f8:92:00:dd:a2:b4:73:e8:6b:7c:99: df:b4:c5:95:9a:f3:7d:a0:c2:ff:93:d4:48:72:c1:ee:bd:0a: cd:22:28:51:92:27:78:d5:a2:9f:e2:22:4b:ef:8e:63:47:64: 8a:9f:8a:e2:79:3d:e1:d6:62:17:d0:d1:28:a2:ee:a0:cb:f6: 56:28:87:ea:72:72:8b:e2:19:4f:dc:e5:c4:a2:b8:f5:a0:a0: c0:6d:c7:fe:b2:14:fd:b0:cb:9b:12:cd:44:1f:46:6d:43:0e: f4:3d:89:30 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUMo0FzYkau5/oVbf//vlhUCav14wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTU0MTE4WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1OTVkMWM1MjMwMjdiMzRmZjA2OGRjMzYyZDhjODNmYjFl NDI2YWE3MjZlMjUxZTNiNGM0MzQzZTYzOWM2MjRjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdc78gn+ZrDW0voNYKppndXx14c7D1fxIUMa1FFciq1Jzk B0Wz+Me6LhQrTd07G6K169pQHKV+c8101USImVwbyJ4xgxL+JnBt8mL/ekgAcwUa 5QP98Hbgaac7CdISqyqmnI4quNC3f6YXx9Yw5hf/u/EpNK5MSCKA+QOQ0lrR3Xz9 ew+htsEi+xjkhDLJEFasN96G+Th66fOR+MQLXMp6QRapeAcDdYPAjo04V7rUwVAu sEwBYSNV1yycB+vZe8Bt02CfXFW1Rh6f6Ol80A20BMpSHR0c0dueMr6iwYtVmhb/ HDTZ4sjvVNZfZkBlQW6dnZ6VLvvvuLfAe+nrM2qzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUnt+uWkSM/C5MSbpQnF3xksrlW4MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhkNDE3MTBlLWM2ZTgtNDA1Mi1hMWRhLTk4Nzg0OTg0ZTAxNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/7IEAwDQYJKoZIhvcNAQELBQADggEBAG8djcG9qp5ZgUzumlXz9vxY Hj6YBPH8mNWCIbcWl9S1lLrv1mlYISH6B9Hdatac46Wd15DEA0ABSG/1v8fvKS1g mZu2cHehKZ17CFkBoNcmTo08jbqof87J7F0seJOW8NWNCCwBYBxzC6+aKwMdRhAX Zk2rNvLvQg1/nXy5nKX5Oq4dwPZRiDxSPmohmsLiFup7OHeMWiL4kgDdorRz6Gt8 md+0xZWa832gwv+T1Ehywe69Cs0iKFGSJ3jVop/iIkvvjmNHZIqfiuJ5PeHWYhfQ 0Sii7qDL9lYoh+pycoviGU/c5cSiuPWgoMBtx/6yFP2wy5sSzUQfRm1DDvQ9iTA= -----END CERTIFICATE-----Generated at Sat Apr 26 16:41:57 2025 by rpki-client