$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9824ff97-2456-49b2-84a0-9566b712b248.roa File: 9824ff97-2456-49b2-84a0-9566b712b248.roa (raw, json) Hash identifier: xn3U8+mYu0q7t1qGN0ilR3zL82/KSDqqbv5+27MwQAg= Subject key identifier: BD:6B:E2:28:8C:97:81:B6:F1:80:97:97:17:3F:CA:F7:20:39:E4:49 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 255B4A6394F3F214A7FA5AC87465E1BC04EE28DB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9824ff97-2456-49b2-84a0-9566b712b248.roa Signing time: Tue 15 Apr 2025 00:10:57 +0000 ROA not before: Tue 15 Apr 2025 00:10:57 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f60:7400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:5b:4a:63:94:f3:f2:14:a7:fa:5a:c8:74:65:e1:bc:04:ee:28:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:10:57 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=774521300783ccb2f37f3f3ec83816a6b13ebc62466da30dd8330eb721ac4542, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:70:53:20:f1:1e:19:bf:f2:f5:cb:cf:59:5b: a6:5a:78:94:96:af:08:9c:40:55:b1:99:ec:bb:2b: 06:db:db:28:fa:eb:05:44:33:9e:bf:3c:cc:96:7e: e4:bd:71:fe:2d:18:3a:dd:1d:7b:d3:27:c2:2b:79: 67:88:e2:f2:cd:f4:52:80:b0:ed:c1:73:34:5b:23: b8:00:99:01:b6:b6:6d:31:fe:8f:dd:2f:66:0a:5f: 79:63:1e:7e:2c:80:27:6f:85:74:00:40:92:e1:36: f9:fc:b2:b7:d5:ba:fd:54:41:ba:91:7f:df:b8:dd: 3a:ef:f7:ba:5e:a1:c8:35:ee:dd:a8:75:e1:8e:cb: df:36:6e:eb:9d:f4:c4:93:21:fe:25:43:08:f1:68: c8:75:9f:3d:0f:dc:9c:95:30:f4:a0:76:0e:f9:81: df:01:56:a5:4d:7f:b5:bb:cc:8d:02:0a:73:4d:75: 76:68:4b:49:c5:fc:a1:6d:6a:28:59:cb:29:98:21: 92:9e:3f:f0:34:e5:3f:8a:7d:d7:c6:48:4c:75:b9: 63:1e:9c:74:15:ae:76:08:14:91:50:dc:50:ed:0c: 2e:e8:cd:ff:cc:4b:22:79:91:d3:59:e7:c5:06:44: 32:5c:63:99:19:e5:d6:93:23:a2:ff:02:76:10:df: d9:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:6B:E2:28:8C:97:81:B6:F1:80:97:97:17:3F:CA:F7:20:39:E4:49 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9824ff97-2456-49b2-84a0-9566b712b248.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f60:7400::/40 Signature Algorithm: sha256WithRSAEncryption 03:34:01:43:db:4c:fe:c9:95:c2:7a:5c:5d:d8:ae:8e:43:24: 4f:34:be:88:91:32:4b:71:0a:c1:3b:ae:54:80:2c:3c:03:b0: 54:39:cb:86:8a:06:49:b3:fa:e1:0a:78:59:e0:b3:71:cb:9c: 25:a4:f9:7f:80:ba:63:3b:f1:3a:09:bc:9d:73:d9:b9:e5:1d: a0:d9:86:93:a9:8f:53:b0:63:09:32:da:86:6b:79:41:b3:31: 5f:0f:a1:a2:ff:af:db:b4:9f:c1:a0:13:70:c9:fb:3c:af:a0: 24:61:2b:58:99:91:b5:99:0e:84:f9:89:e0:5a:8e:26:ab:e6: 75:ed:62:99:0d:49:a0:35:33:99:76:3e:7e:5e:a9:37:27:0e: 88:ea:b3:4e:82:30:f1:81:cb:f8:ce:e3:2c:df:92:db:41:66: 0c:1b:bd:a2:09:2c:4d:3c:25:eb:9d:0c:dd:e2:cb:03:65:ae: 3a:35:99:c6:53:ac:3b:4c:ba:79:7e:78:70:5f:f0:5d:6b:62: a9:55:9d:36:63:3d:70:f9:17:0a:46:1e:96:59:3a:cb:ef:67: d4:dc:84:3e:9f:e4:74:d4:a3:af:96:1b:3a:cb:28:4d:a4:78: 1d:5e:64:43:a2:45:3d:5f:32:81:83:29:84:90:37:1d:dd:35: 76:ee:af:73 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUJVtKY5Tz8hSn+lrIdGXhvATuKNswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE1MDAxMDU3WhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NzQ1MjEzMDA3ODNjY2IyZjM3ZjNmM2VjODM4MTZhNmIx M2ViYzYyNDY2ZGEzMGRkODMzMGViNzIxYWM0NTQyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCecFMg8R4Zv/L1y89ZW6ZaeJSWrwicQFWxmey7Kwbb2yj6 6wVEM56/PMyWfuS9cf4tGDrdHXvTJ8IreWeI4vLN9FKAsO3BczRbI7gAmQG2tm0x /o/dL2YKX3ljHn4sgCdvhXQAQJLhNvn8srfVuv1UQbqRf9+43Trv97peocg17t2o deGOy982buud9MSTIf4lQwjxaMh1nz0P3JyVMPSgdg75gd8BVqVNf7W7zI0CCnNN dXZoS0nF/KFtaihZyymYIZKeP/A05T+KfdfGSEx1uWMenHQVrnYIFJFQ3FDtDC7o zf/MSyJ5kdNZ58UGRDJcY5kZ5daTI6L/AnYQ39njAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUvWviKIyXgbbxgJeXFz/K9yA55EkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk4MjRmZjk3LTI0NTYtNDliMi04NGEwLTk1NjZiNzEyYjI0OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9gdDANBgkqhkiG9w0BAQsFAAOCAQEAAzQBQ9tM/smVwnpcXdiujkMk TzS+iJEyS3EKwTuuVIAsPAOwVDnLhooGSbP64Qp4WeCzccucJaT5f4C6YzvxOgm8 nXPZueUdoNmGk6mPU7BjCTLahmt5QbMxXw+hov+v27SfwaATcMn7PK+gJGErWJmR tZkOhPmJ4FqOJqvmde1imQ1JoDUzmXY+fl6pNycOiOqzToIw8YHL+M7jLN+S20Fm DBu9ogksTTwl650M3eLLA2WuOjWZxlOsO0y6eX54cF/wXWtiqVWdNmM9cPkXCkYe llk6y+9n1NyEPp/kdNSjr5YbOssoTaR4HV5kQ6JFPV8ygYMphJA3Hd01du6vcw== -----END CERTIFICATE-----Generated at Sat Apr 26 14:24:38 2025 by rpki-client