$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d94a7aa-9505-4db3-925e-cf3f285b296b.roa File: 9d94a7aa-9505-4db3-925e-cf3f285b296b.roa (raw, json) Hash identifier: bmH9Hpi0FaCSKtAAEr2PDJSW10hqSznaIWYRF7VUrVA= Subject key identifier: 2C:A7:D3:F2:CE:9E:3F:A5:5C:C7:77:F3:E8:4B:CA:83:EB:C6:15:CC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 64976F4F8BD74FD29A17F299F4BFD6768E3D01E1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d94a7aa-9505-4db3-925e-cf3f285b296b.roa Signing time: Tue 22 Apr 2025 17:32:13 +0000 ROA not before: Tue 22 Apr 2025 17:32:13 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f10:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:97:6f:4f:8b:d7:4f:d2:9a:17:f2:99:f4:bf:d6:76:8e:3d:01:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 17:32:13 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=dfa7ab18f14d91e4a6970065f3573031fc1ca9d92fd130ffc491003d68a2e9bf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:1d:c6:e6:58:bd:25:58:9a:d4:47:43:b5:ef: 58:72:62:7e:32:cb:b6:85:93:cc:61:b3:d7:4e:90: 3e:49:66:e6:b2:67:5b:7b:a0:ec:ea:2e:6e:7d:2c: c1:0a:50:a5:82:15:57:ce:f7:48:f2:97:84:d5:7c: 82:0e:c7:de:57:b3:c2:19:63:3d:79:e4:99:29:8f: 54:b6:eb:fa:39:fa:4a:26:66:c1:be:9b:02:e7:20: 95:90:f7:77:dc:12:44:6a:29:01:15:b4:2d:67:d2: bb:81:a3:3e:6d:68:b3:4d:64:8d:82:1a:2f:1d:23: 56:07:78:dc:4a:aa:5e:52:14:9d:42:01:0e:9a:70: e3:ee:6b:d6:e7:fc:07:93:e5:7f:a8:73:fb:4d:50: 12:6c:80:50:4a:ef:b2:a2:6c:28:bf:05:b5:7e:a0: c6:fb:00:b0:47:45:c5:82:f0:ff:96:d2:d5:18:fa: 6b:df:40:10:99:ac:66:88:52:4e:9c:f3:03:18:16: 0a:d1:17:83:4d:5e:88:b9:08:e7:a1:77:24:fa:1b: 53:fd:19:22:22:08:3f:f2:63:b6:25:89:61:2d:91: 65:c9:33:1b:93:36:bd:26:d5:3f:b5:b3:b3:5b:74: aa:d5:4b:5b:3c:20:81:87:74:96:63:06:4a:d6:8f: 77:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:A7:D3:F2:CE:9E:3F:A5:5C:C7:77:F3:E8:4B:CA:83:EB:C6:15:CC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d94a7aa-9505-4db3-925e-cf3f285b296b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f10:8000::/36 Signature Algorithm: sha256WithRSAEncryption d1:ce:1b:65:cc:85:33:bd:0c:00:1c:e8:73:74:e7:36:11:9d: ab:00:96:e8:7f:2a:27:79:b2:d5:80:f4:18:23:2a:e0:1d:99: 5a:b4:48:9f:26:d9:bb:59:f7:dc:ac:ad:81:03:e8:6a:87:47: 14:95:ac:7e:c9:a6:b4:48:20:b8:df:8e:2b:5a:cf:4e:7c:0d: 59:b5:47:6d:e1:2d:bb:76:90:39:f5:9f:bb:c5:f7:1f:81:98: 91:f8:7f:b4:0e:25:b3:fa:fc:52:46:34:3b:b6:45:b0:9e:ac: de:fc:36:70:4a:17:16:ed:6d:f8:0a:3e:29:22:4b:82:fd:a9: d8:d6:57:19:1b:95:78:66:b0:f0:f6:38:f3:2e:70:12:a2:3c: 4c:3c:a4:f2:c8:24:3d:f8:e7:d3:0d:5b:f6:21:9e:1f:67:a0: 13:de:35:1d:aa:77:f3:06:53:fe:97:5b:69:5e:53:35:c2:c8: a9:41:d7:31:70:0c:5f:fd:9c:9a:ac:e4:9c:d5:f7:4e:1c:7d: bc:ba:a6:01:77:33:37:6e:be:0e:5f:0b:65:27:e5:2a:58:e7: 48:7b:3d:64:98:16:f4:b5:c2:58:dc:69:03:e2:6f:51:be:a8: 13:f5:56:9d:7b:35:f7:da:4e:36:c7:16:6c:b8:71:82:0b:47: 40:c7:d4:f1 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUZJdvT4vXT9KaF/KZ9L/Wdo49AeEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTczMjEzWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZmE3YWIxOGYxNGQ5MWU0YTY5NzAwNjVmMzU3MzAzMWZj MWNhOWQ5MmZkMTMwZmZjNDkxMDAzZDY4YTJlOWJmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDaHcbmWL0lWJrUR0O171hyYn4yy7aFk8xhs9dOkD5JZuay Z1t7oOzqLm59LMEKUKWCFVfO90jyl4TVfIIOx95Xs8IZYz155Jkpj1S26/o5+kom ZsG+mwLnIJWQ93fcEkRqKQEVtC1n0ruBoz5taLNNZI2CGi8dI1YHeNxKql5SFJ1C AQ6acOPua9bn/AeT5X+oc/tNUBJsgFBK77KibCi/BbV+oMb7ALBHRcWC8P+W0tUY +mvfQBCZrGaIUk6c8wMYFgrRF4NNXoi5COehdyT6G1P9GSIiCD/yY7YliWEtkWXJ MxuTNr0m1T+1s7NbdKrVS1s8IIGHdJZjBkrWj3fRAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQULKfT8s6eP6Vcx3fz6EvKg+vGFcwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlkOTRhN2FhLTk1MDUtNGRiMy05MjVlLWNmM2YyODViMjk2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8QgDANBgkqhkiG9w0BAQsFAAOCAQEA0c4bZcyFM70MABzoc3TnNhGd qwCW6H8qJ3my1YD0GCMq4B2ZWrRInybZu1n33KytgQPoaodHFJWsfsmmtEgguN+O K1rPTnwNWbVHbeEtu3aQOfWfu8X3H4GYkfh/tA4ls/r8UkY0O7ZFsJ6s3vw2cEoX Fu1t+Ao+KSJLgv2p2NZXGRuVeGaw8PY48y5wEqI8TDyk8sgkPfjn0w1b9iGeH2eg E941Hap38wZT/pdbaV5TNcLIqUHXMXAMX/2cmqzknNX3Thx9vLqmAXczN26+Dl8L ZSflKljnSHs9ZJgW9LXCWNxpA+JvUb6oE/VWnXs199pONscWbLhxggtHQMfU8Q== -----END CERTIFICATE-----Generated at Sat Apr 26 13:30:27 2025 by rpki-client