$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a152fc40-a444-4cdd-97b2-9a2e70a778e9.roa File: a152fc40-a444-4cdd-97b2-9a2e70a778e9.roa (raw, json) Hash identifier: s92SESi/ohFwqyX8LHeYmXMUFPc7mIqmudGVZgByROY= Subject key identifier: 12:E0:7D:91:76:12:B1:9B:0D:DE:B8:B0:A2:C3:F1:04:9F:A5:37:AD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5846F856D673487FDB78456D19573D1B7A4B4B0B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a152fc40-a444-4cdd-97b2-9a2e70a778e9.roa Signing time: Tue 22 Apr 2025 17:00:09 +0000 ROA not before: Tue 22 Apr 2025 17:00:09 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f2c:c800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:46:f8:56:d6:73:48:7f:db:78:45:6d:19:57:3d:1b:7a:4b:4b:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 17:00:09 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=a0a2c4541b6e4f3b3748278e79523b02bcf0cd9a800af126d562594cfd76c484, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:b9:63:29:14:c1:64:8e:58:61:33:6f:0b:f2: 1e:8e:2a:a3:96:bc:73:17:16:83:19:9c:c6:ac:5f: ef:95:40:28:3f:ca:60:20:e2:e4:f1:41:da:5e:95: 50:51:d5:41:c7:37:af:85:ae:c0:54:e7:e1:9c:12: 19:d2:16:ed:28:57:13:f3:19:13:6f:fb:05:96:42: 5d:47:e4:5b:1b:df:c6:66:51:e2:1e:2b:80:2d:6e: fb:14:06:42:c4:07:69:fc:a8:8e:39:e2:28:22:d9: bb:73:f4:6a:7f:ad:28:be:af:ed:95:36:3d:ee:fc: 6f:6a:e3:51:3a:dd:6c:37:a4:a7:bf:f0:a8:bc:68: 6d:39:aa:15:a2:ae:dd:c5:b9:c6:fc:1d:7f:07:4b: f9:6f:14:20:ff:bb:3b:72:a0:cd:87:e6:9e:6e:13: 77:40:02:b8:55:ac:c4:ff:2c:c5:8c:16:12:07:70: 93:95:f1:e7:c0:51:0e:f9:c2:69:de:72:fa:39:df: 46:87:a2:ef:09:e5:54:61:e8:35:f6:eb:1d:6e:7f: bd:e2:99:a4:cc:19:8f:1e:29:3f:cd:c0:b7:41:60: 4c:8b:e7:b1:d6:35:5b:30:77:2e:ae:38:bc:34:09: a6:46:fe:1d:49:ef:e8:10:71:53:4a:af:89:5f:b1: 7c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:E0:7D:91:76:12:B1:9B:0D:DE:B8:B0:A2:C3:F1:04:9F:A5:37:AD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a152fc40-a444-4cdd-97b2-9a2e70a778e9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f2c:c800::/37 Signature Algorithm: sha256WithRSAEncryption d2:4e:d6:8b:c4:80:73:bc:88:b0:77:cf:5d:73:fc:99:e3:b2: d1:0d:f0:02:01:5b:31:5d:76:45:53:9e:79:17:55:8c:f6:f4: a2:f4:5f:17:83:2b:e5:42:be:7a:dd:ba:f8:4f:ce:76:8c:c9: de:62:6f:7e:ed:3b:a8:1b:33:82:27:ab:8f:1b:c9:e6:c1:42: 96:bd:85:f4:37:69:9b:c9:ef:a7:44:90:3e:c2:eb:27:bf:1c: a7:ba:f8:10:8f:0e:44:c2:33:41:57:e3:c3:0a:4c:f2:83:5a: e7:fc:99:29:9b:7d:eb:b6:1d:77:0e:89:43:bc:2e:d8:10:f4: 7b:b7:87:56:46:ca:bf:43:59:48:a9:5e:05:df:43:3c:10:43: dd:d8:6a:9f:80:56:96:3a:d6:94:51:ea:af:aa:ef:68:88:03: ca:cf:0f:ed:9c:70:74:03:cb:44:ac:b9:e4:8f:b2:98:46:7c: 4a:61:8b:0c:65:d0:2d:35:d3:9a:b7:5c:d3:fc:97:40:08:73: 4e:93:19:79:a4:80:10:ee:b7:67:b2:a5:fd:12:8b:a2:37:bc: 47:fa:45:7f:10:74:4b:1b:c4:42:45:11:b0:31:d7:4b:39:1b: 9b:69:b8:c1:da:11:08:ba:aa:7a:63:8e:5a:38:64:b1:ca:6a: 04:99:6d:15 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUWEb4VtZzSH/beEVtGVc9G3pLSwswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTcwMDA5WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMGEyYzQ1NDFiNmU0ZjNiMzc0ODI3OGU3OTUyM2IwMmJj ZjBjZDlhODAwYWYxMjZkNTYyNTk0Y2ZkNzZjNDg0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVuWMpFMFkjlhhM28L8h6OKqOWvHMXFoMZnMasX++VQCg/ ymAg4uTxQdpelVBR1UHHN6+FrsBU5+GcEhnSFu0oVxPzGRNv+wWWQl1H5Fsb38Zm UeIeK4AtbvsUBkLEB2n8qI454igi2btz9Gp/rSi+r+2VNj3u/G9q41E63Ww3pKe/ 8Ki8aG05qhWirt3Fucb8HX8HS/lvFCD/uztyoM2H5p5uE3dAArhVrMT/LMWMFhIH cJOV8efAUQ75wmnecvo530aHou8J5VRh6DX26x1uf73imaTMGY8eKT/NwLdBYEyL 57HWNVswdy6uOLw0CaZG/h1J7+gQcVNKr4lfsXwLAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUEuB9kXYSsZsN3riwosPxBJ+lN60wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ExNTJmYzQwLWE0NDQtNGNkZC05N2IyLTlhMmU3MGE3NzhlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8syDANBgkqhkiG9w0BAQsFAAOCAQEA0k7Wi8SAc7yIsHfPXXP8meOy 0Q3wAgFbMV12RVOeeRdVjPb0ovRfF4Mr5UK+et26+E/OdozJ3mJvfu07qBszgier jxvJ5sFClr2F9Ddpm8nvp0SQPsLrJ78cp7r4EI8ORMIzQVfjwwpM8oNa5/yZKZt9 67Yddw6JQ7wu2BD0e7eHVkbKv0NZSKleBd9DPBBD3dhqn4BWljrWlFHqr6rvaIgD ys8P7ZxwdAPLRKy55I+ymEZ8SmGLDGXQLTXTmrdc0/yXQAhzTpMZeaSAEO63Z7Kl /RKLoje8R/pFfxB0SxvEQkURsDHXSzkbm2m4wdoRCLqqemOOWjhkscpqBJltFQ== -----END CERTIFICATE-----Generated at Sat Apr 26 19:05:37 2025 by rpki-client