$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a1c06e57-fc5f-4705-8c07-450199fb8ad7.roa File: a1c06e57-fc5f-4705-8c07-450199fb8ad7.roa (raw, json) Hash identifier: +pyQjIDUuZl4lAYHJGS8S7ABS4upaeV6Ck934CJrscE= Subject key identifier: 4D:C1:38:46:60:30:82:0F:10:5A:E6:BE:F5:E1:CD:B0:62:A6:8E:CF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3E4EE8B8FC56C1F195BD96AEBA1742022CA26618 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a1c06e57-fc5f-4705-8c07-450199fb8ad7.roa Signing time: Mon 21 Apr 2025 17:50:24 +0000 ROA not before: Mon 21 Apr 2025 17:50:24 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f00:81c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:4e:e8:b8:fc:56:c1:f1:95:bd:96:ae:ba:17:42:02:2c:a2:66:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 21 17:50:24 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=dbd94b7a8217de271589eff6e50279fb6952f3b7c6c9b552cd6bb9c8f8d8ea31, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f6:a0:9b:ef:8b:82:57:3f:4e:ac:f7:5c:99: 74:d6:4a:8a:e3:23:6a:44:4c:72:fb:56:5a:c5:59: 88:5a:20:15:07:79:d3:86:f7:e7:df:55:ca:20:70: 9b:4c:3c:e1:b8:78:c3:20:52:e0:f2:e3:1b:84:d8: dd:b8:7b:1d:88:83:e0:9e:b9:01:e7:60:a1:a4:77: 59:96:fc:ec:27:50:25:4b:dd:56:a6:70:fc:47:79: 15:c7:ef:ba:41:8d:2b:21:99:08:c8:66:57:32:bd: 74:2a:d8:52:4a:41:f6:20:67:ad:d4:6e:9b:01:f9: 23:b7:ec:9d:26:4f:cd:58:e1:e2:19:8e:3e:4e:6c: ba:14:7c:15:0b:10:d8:d9:49:15:79:90:f6:b1:43: e3:80:30:a8:b6:4b:8b:f2:34:ab:14:a7:46:46:39: a7:52:85:d5:3b:55:db:01:39:bb:a0:fc:8f:3c:2b: ef:6c:01:23:24:72:d2:a5:bf:1d:75:4f:2d:c6:4f: b3:50:36:e1:40:8a:6e:cf:b9:24:2d:56:d7:4c:17: b2:a9:c8:8d:4a:5f:48:6d:eb:1e:cb:9d:1a:7b:c1: 86:55:5c:fc:41:1c:6c:7d:ba:b4:1b:6a:c4:84:04: 34:85:03:ef:0b:49:fb:77:58:ba:5b:22:e9:8b:da: 7f:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:C1:38:46:60:30:82:0F:10:5A:E6:BE:F5:E1:CD:B0:62:A6:8E:CF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a1c06e57-fc5f-4705-8c07-450199fb8ad7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:81c0::/48 Signature Algorithm: sha256WithRSAEncryption 05:47:aa:34:e8:04:63:64:37:10:62:39:c8:bd:ef:c8:f0:60: fb:b2:65:9b:2f:3e:d6:d3:e4:5c:c8:d4:33:78:cb:09:4c:98: e1:b1:b3:50:50:67:66:ad:71:b0:b8:80:91:73:9c:ac:eb:04: 70:29:e5:53:94:37:c6:5a:c7:92:ba:61:a9:3a:64:b1:20:10: 33:94:b5:92:88:dd:a8:43:96:c5:3c:f5:e9:33:b6:bc:a2:f0: d4:cc:90:1b:9e:7e:62:b2:f0:ba:cd:0a:d2:fd:77:2c:64:7d: ba:e5:bb:22:63:ad:0e:f0:a0:9f:89:43:68:08:c6:2e:c0:5c: 69:f5:ab:8e:f9:04:93:3b:53:b3:cd:9a:34:f8:65:8a:b7:ab: 25:0d:34:8b:00:b1:04:9d:8c:df:55:7a:c9:e3:41:c3:03:1f: 8b:33:00:68:74:d3:26:c1:fd:33:81:5a:21:96:62:0a:f5:46: d2:88:04:ae:04:85:12:b2:d8:ee:f1:f6:1b:52:e4:6d:60:a4: d7:5d:b4:8b:ee:3c:18:45:a4:df:73:14:5c:10:af:ca:88:d1: 71:ec:5a:07:c8:99:38:cd:e2:f5:03:a0:38:5f:50:17:c3:cd: f5:7f:81:dc:84:56:6b:d7:e8:49:b6:d3:cf:d1:93:59:02:b0: 0f:ff:1f:ce -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPk7ouPxWwfGVvZauuhdCAiyiZhgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIxMTc1MDI0WhcNMjUwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYmQ5NGI3YTgyMTdkZTI3MTU4OWVmZjZlNTAyNzlmYjY5 NTJmM2I3YzZjOWI1NTJjZDZiYjljOGY4ZDhlYTMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCp9qCb74uCVz9OrPdcmXTWSorjI2pETHL7VlrFWYhaIBUH edOG9+ffVcogcJtMPOG4eMMgUuDy4xuE2N24ex2Ig+CeuQHnYKGkd1mW/OwnUCVL 3VamcPxHeRXH77pBjSshmQjIZlcyvXQq2FJKQfYgZ63UbpsB+SO37J0mT81Y4eIZ jj5ObLoUfBULENjZSRV5kPaxQ+OAMKi2S4vyNKsUp0ZGOadShdU7VdsBObug/I88 K+9sASMkctKlvx11Ty3GT7NQNuFAim7PuSQtVtdMF7KpyI1KX0ht6x7LnRp7wYZV XPxBHGx9urQbasSEBDSFA+8LSft3WLpbIumL2n97AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUTcE4RmAwgg8QWua+9eHNsGKmjs8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ExYzA2ZTU3LWZjNWYtNDcwNS04YzA3LTQ1MDE5OWZiOGFkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AgcAwDQYJKoZIhvcNAQELBQADggEBAAVHqjToBGNkNxBiOci978jw YPuyZZsvPtbT5FzI1DN4ywlMmOGxs1BQZ2atcbC4gJFznKzrBHAp5VOUN8Zax5K6 Yak6ZLEgEDOUtZKI3ahDlsU89ekztryi8NTMkBuefmKy8LrNCtL9dyxkfbrluyJj rQ7woJ+JQ2gIxi7AXGn1q475BJM7U7PNmjT4ZYq3qyUNNIsAsQSdjN9VesnjQcMD H4szAGh00ybB/TOBWiGWYgr1RtKIBK4EhRKy2O7x9htS5G1gpNddtIvuPBhFpN9z FFwQr8qI0XHsWgfImTjN4vUDoDhfUBfDzfV/gdyEVmvX6Em208/Rk1kCsA//H84= -----END CERTIFICATE-----Generated at Sat Apr 26 13:26:53 2025 by rpki-client