$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9c4878f2-b016-4f09-bdf1-2aaa57eacb0d.roa File: 9c4878f2-b016-4f09-bdf1-2aaa57eacb0d.roa (raw, json) Hash identifier: Dk6KsxIOaTqLZzwsa9Xo6O/FijO00iMh4iqUrmfCcE0= Subject key identifier: 41:E9:DE:4D:FC:29:F0:03:E4:C0:F3:40:2C:1C:BF:1F:5F:65:EC:8E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 04C6F9F503CF401701B3BF517BD5619825E302CE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9c4878f2-b016-4f09-bdf1-2aaa57eacb0d.roa Signing time: Tue 22 Apr 2025 16:12:18 +0000 ROA not before: Tue 22 Apr 2025 16:12:18 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:4000::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:c6:f9:f5:03:cf:40:17:01:b3:bf:51:7b:d5:61:98:25:e3:02:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:12:18 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=ae43559da51348a764260ffbc2bd80520e544dea0c890daef588106bc9c5fe5f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:0f:ad:00:11:45:3a:e0:14:65:9a:7b:39:8a: 86:c7:29:ee:86:90:a2:3d:3a:fb:2c:39:31:e7:a7: e2:03:33:1e:fd:3b:67:d7:0b:d1:28:09:24:eb:cb: 87:9f:80:ef:ca:a1:54:ba:d6:e6:7a:2c:5f:55:4b: d2:d0:7d:ee:4f:06:bb:d1:7d:c1:62:1d:c2:45:08: e3:e9:bf:a6:1f:9e:af:94:a1:51:6b:2c:97:d7:51: 71:01:1b:8b:fe:bd:09:0a:da:0b:47:85:f3:a7:a4: 12:a1:11:5b:e0:b9:8e:2d:0c:8d:31:0d:ca:51:0e: a8:dc:78:c1:4a:d6:10:d8:b8:26:6f:09:63:cf:25: 6b:23:6e:13:62:0a:3d:a0:b0:90:7b:58:39:88:3c: b3:e9:a4:85:9a:34:69:fe:d1:52:4a:d9:87:9a:4a: 44:df:82:a4:55:9b:93:e8:b3:59:48:d5:10:8b:ba: 20:a6:64:fc:fb:2f:74:04:91:21:83:7c:cf:3c:42: f3:e1:10:df:25:4c:6a:c2:dc:b3:59:89:c6:4b:a5: f7:ba:7f:01:5e:69:12:e3:fc:99:05:7c:b7:aa:a3: 42:b4:b9:f1:d8:25:92:8a:bf:11:63:7a:b2:f7:cc: 85:70:bf:55:6a:ae:d3:71:91:cc:7b:d8:a2:de:78: d9:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:E9:DE:4D:FC:29:F0:03:E4:C0:F3:40:2C:1C:BF:1F:5F:65:EC:8E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9c4878f2-b016-4f09-bdf1-2aaa57eacb0d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:4000::/39 Signature Algorithm: sha256WithRSAEncryption 00:48:4b:3a:85:5f:cf:41:ec:e3:1d:50:73:a8:74:f3:a7:45: 12:19:f1:89:b7:d5:8c:df:8c:60:bd:c3:3b:5c:0c:62:ee:d5: 52:bc:b9:9b:e2:44:68:05:0c:2d:61:4e:50:e6:e0:31:0c:8a: 42:a3:4d:29:03:cf:d5:4c:e6:2f:f8:48:b9:e8:ab:c0:f9:ad: 39:9f:1f:00:00:fa:5b:eb:76:b8:40:b9:de:fe:ca:84:d8:f8: 6e:b5:ff:ed:aa:9e:a8:73:d2:51:91:0a:4a:0f:8b:66:13:44: 5f:5f:f5:e0:bf:69:d3:a3:75:54:71:52:3e:cb:c6:7e:c1:e4: 2e:f2:0d:0e:3f:f9:6f:57:74:56:a2:4c:0b:13:16:20:27:57: f4:ef:5f:a2:0b:0b:db:7d:c3:32:6b:43:18:b3:b1:d8:75:93: a4:61:ae:af:6f:d5:71:5c:6d:ec:fe:6b:8c:fd:13:94:17:da: 18:95:0b:0f:9a:00:66:ee:50:a5:1c:cd:83:38:7d:11:c6:ac: 90:fb:c0:ea:87:30:96:f9:71:46:02:60:90:88:c7:4b:e1:7a: f2:2e:52:7b:5b:3f:cf:0b:18:62:e3:68:b9:a6:b2:6a:f1:92: b0:46:e5:30:07:22:a6:11:ec:1c:35:dc:80:47:e7:c4:fa:9b: ce:63:08:fd -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUBMb59QPPQBcBs79Re9VhmCXjAs4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTYxMjE4WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZTQzNTU5ZGE1MTM0OGE3NjQyNjBmZmJjMmJkODA1MjBl NTQ0ZGVhMGM4OTBkYWVmNTg4MTA2YmM5YzVmZTVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcD60AEUU64BRlmns5iobHKe6GkKI9OvssOTHnp+IDMx79 O2fXC9EoCSTry4efgO/KoVS61uZ6LF9VS9LQfe5PBrvRfcFiHcJFCOPpv6Yfnq+U oVFrLJfXUXEBG4v+vQkK2gtHhfOnpBKhEVvguY4tDI0xDcpRDqjceMFK1hDYuCZv CWPPJWsjbhNiCj2gsJB7WDmIPLPppIWaNGn+0VJK2YeaSkTfgqRVm5Pos1lI1RCL uiCmZPz7L3QEkSGDfM88QvPhEN8lTGrC3LNZicZLpfe6fwFeaRLj/JkFfLeqo0K0 ufHYJZKKvxFjerL3zIVwv1VqrtNxkcx72KLeeNkZAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUQeneTfwp8APkwPNALBy/H19l7I4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzljNDg3OGYyLWIwMTYtNGYwOS1iZGYxLTJhYWE1N2VhY2IwZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB8AQDANBgkqhkiG9w0BAQsFAAOCAQEAAEhLOoVfz0Hs4x1Qc6h086dF EhnxibfVjN+MYL3DO1wMYu7VUry5m+JEaAUMLWFOUObgMQyKQqNNKQPP1UzmL/hI ueirwPmtOZ8fAAD6W+t2uEC53v7KhNj4brX/7aqeqHPSUZEKSg+LZhNEX1/14L9p 06N1VHFSPsvGfsHkLvINDj/5b1d0VqJMCxMWICdX9O9fogsL233DMmtDGLOx2HWT pGGur2/VcVxt7P5rjP0TlBfaGJULD5oAZu5QpRzNgzh9EcaskPvA6ocwlvlxRgJg kIjHS+F68i5Se1s/zwsYYuNouaayavGSsEblMAciphHsHDXcgEfnxPqbzmMI/Q== -----END CERTIFICATE-----Generated at Sat Apr 26 14:54:42 2025 by rpki-client