$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9bff93e5-d08c-4c01-9251-abcb997a5276.roa File: 9bff93e5-d08c-4c01-9251-abcb997a5276.roa (raw, json) Hash identifier: jQ5ScPle9u0fqTx7uuizNKoVq6Ve9ze6B4hyz7yR4IA= Subject key identifier: 7C:8A:E2:1A:C1:50:39:9A:BB:F3:22:49:D2:B0:21:E4:12:FF:85:C9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 136B7C7F6C56C1A4E50CF95C79BAF16ED17FA3A0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9bff93e5-d08c-4c01-9251-abcb997a5276.roa Signing time: Mon 21 Apr 2025 17:51:04 +0000 ROA not before: Mon 21 Apr 2025 17:51:04 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:4020::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:6b:7c:7f:6c:56:c1:a4:e5:0c:f9:5c:79:ba:f1:6e:d1:7f:a3:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 21 17:51:04 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=ba4539fb30e2ee088ed7fbade7f4bd1be0e403721284fd30755dd710f9d9277e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:65:d0:93:7a:93:65:3b:8d:02:af:b8:f5:42: 3e:c9:41:df:b4:ed:53:6b:db:11:2b:b9:1e:de:4e: 0c:6c:43:69:7b:16:80:67:fd:ba:99:9a:8a:f1:e9: 53:87:24:6b:b8:26:36:29:01:80:db:a8:57:e1:cb: 95:74:a7:a7:9e:bc:cd:8a:a0:43:a8:55:1c:c3:6c: cf:12:ba:d5:09:9c:67:19:dc:24:ae:70:d7:5a:e1: d9:64:81:a4:31:6b:9a:f5:0b:22:1f:10:46:09:c3: cc:10:ba:35:9f:bc:90:12:8f:11:38:8b:66:03:35: 61:fb:88:aa:ab:7f:e3:f3:6a:12:fc:f3:01:8e:3b: 90:de:f9:a8:f8:4e:03:f0:c4:8a:c2:ed:6e:fb:f3: 05:d8:41:c5:4d:be:27:98:70:af:3d:95:bb:c2:53: d3:60:e6:11:a3:b7:81:67:3b:29:a3:13:a1:28:03: 22:73:17:60:1b:93:ad:79:c0:c3:1a:e6:7d:00:9a: c0:17:cf:fa:75:f2:11:c5:77:0b:ab:59:97:7d:57: a8:9f:85:06:ab:9b:89:2a:fe:db:ae:61:67:55:1d: af:49:d5:33:f0:2f:5d:0c:e3:73:bd:10:46:40:a8: c5:10:9f:73:b6:07:a1:8e:f3:ba:12:93:6c:61:74: 2a:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:8A:E2:1A:C1:50:39:9A:BB:F3:22:49:D2:B0:21:E4:12:FF:85:C9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9bff93e5-d08c-4c01-9251-abcb997a5276.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:4020::/48 Signature Algorithm: sha256WithRSAEncryption 19:1e:db:a1:3e:79:ac:98:3c:3c:61:6c:f5:29:49:d1:45:d6: 08:c9:0b:f5:b3:52:ad:6c:2a:14:a8:ef:e4:13:c7:8f:c6:47: ce:9b:e8:99:46:78:2f:69:7f:a2:67:3b:0c:30:ac:6b:12:c1: 03:1c:c1:20:5e:9e:e6:fc:c9:ab:29:45:a2:5d:3f:2b:e5:23: 04:26:c9:ca:48:b1:1b:b2:ee:9b:03:f4:73:a3:c5:b9:41:e3: 69:70:c9:20:0d:55:d4:bb:e2:a6:df:fe:ed:20:ac:da:19:dd: 19:90:fd:d8:aa:b3:a3:7b:b5:c9:a6:04:c4:47:73:eb:0c:a1: f5:fb:73:9b:61:5f:97:8d:66:6b:5e:c6:2e:89:26:41:29:5c: 6a:19:21:f6:c5:95:07:10:6a:e1:62:65:53:1e:e3:e7:f0:63: 44:ba:07:8a:22:71:a9:79:5b:74:a5:19:6f:3d:fb:33:6a:e7: a9:22:49:60:61:be:d1:74:7e:26:65:04:00:84:4a:c2:0f:c3: 57:0b:ca:55:09:d9:6a:f8:71:a2:40:de:1a:ad:2a:63:d2:b7: 54:0e:81:64:9f:2d:ae:70:c9:2a:a3:78:2b:b2:e7:29:ac:21: da:5d:01:49:8a:e6:8e:4a:47:ca:7a:31:48:41:4c:20:06:62: 71:b9:75:d4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUE2t8f2xWwaTlDPlcebrxbtF/o6AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIxMTc1MTA0WhcNMjUwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYTQ1MzlmYjMwZTJlZTA4OGVkN2ZiYWRlN2Y0YmQxYmUw ZTQwMzcyMTI4NGZkMzA3NTVkZDcxMGY5ZDkyNzdlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCeZdCTepNlO40Cr7j1Qj7JQd+07VNr2xEruR7eTgxsQ2l7 FoBn/bqZmorx6VOHJGu4JjYpAYDbqFfhy5V0p6eevM2KoEOoVRzDbM8SutUJnGcZ 3CSucNda4dlkgaQxa5r1CyIfEEYJw8wQujWfvJASjxE4i2YDNWH7iKqrf+PzahL8 8wGOO5De+aj4TgPwxIrC7W778wXYQcVNvieYcK89lbvCU9Ng5hGjt4FnOymjE6Eo AyJzF2Abk615wMMa5n0AmsAXz/p18hHFdwurWZd9V6ifhQarm4kq/tuuYWdVHa9J 1TPwL10M43O9EEZAqMUQn3O2B6GO87oSk2xhdCpjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUfIriGsFQOZq78yJJ0rAh5BL/hckwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzliZmY5M2U1LWQwOGMtNGMwMS05MjUxLWFiY2I5OTdhNTI3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AQCAwDQYJKoZIhvcNAQELBQADggEBABke26E+eayYPDxhbPUpSdFF 1gjJC/WzUq1sKhSo7+QTx4/GR86b6JlGeC9pf6JnOwwwrGsSwQMcwSBenub8yasp RaJdPyvlIwQmycpIsRuy7psD9HOjxblB42lwySANVdS74qbf/u0grNoZ3RmQ/diq s6N7tcmmBMRHc+sMofX7c5thX5eNZmtexi6JJkEpXGoZIfbFlQcQauFiZVMe4+fw Y0S6B4oical5W3SlGW89+zNq56kiSWBhvtF0fiZlBACESsIPw1cLylUJ2Wr4caJA 3hqtKmPSt1QOgWSfLa5wySqjeCuy5ymsIdpdAUmK5o5KR8p6MUhBTCAGYnG5ddQ= -----END CERTIFICATE-----Generated at Sun Apr 27 01:01:46 2025 by rpki-client