$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a51cf629-3b5c-444d-a5a3-c49bffcebe3a.roa File: a51cf629-3b5c-444d-a5a3-c49bffcebe3a.roa (raw, json) Hash identifier: hA70Bzg+Tl8oh8+JydFc7WoI9SBxjXVxyMh99Q1VwP8= Subject key identifier: BF:56:31:3E:9E:53:83:C4:A0:FE:D7:F8:4C:FE:B2:7A:0F:94:E8:28 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2068C0A71DA82822ED3BE72192A42D811BA3862A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a51cf629-3b5c-444d-a5a3-c49bffcebe3a.roa Signing time: Wed 02 Apr 2025 00:20:30 +0000 ROA not before: Wed 02 Apr 2025 00:20:30 +0000 ROA not after: Wed 07 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fef:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:68:c0:a7:1d:a8:28:22:ed:3b:e7:21:92:a4:2d:81:1b:a3:86:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 2 00:20:30 2025 GMT Not After : May 7 23:59:59 2025 GMT Subject: serialNumber=d69e8f17ae112ad71e1340ba06cab70435376cb1b1be730ecf1a09d738208660, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:2c:10:59:da:13:86:8a:0b:f4:d9:f7:be:c7: ba:92:52:9c:a9:4e:20:56:00:1b:d5:ca:cf:3c:fa: a6:d9:2c:21:37:ec:76:72:4d:fa:f8:3c:1e:a0:fd: 26:b0:d7:50:89:b1:5b:30:c6:ea:74:f9:75:7b:ce: 5e:ac:95:87:4c:a9:d0:7e:1e:fd:64:f4:49:a6:20: 38:3f:ae:a3:a4:52:e4:23:f7:71:a5:ae:5a:80:23: 0d:9c:d3:ea:c5:03:2f:5f:17:05:2d:41:d8:12:80: 01:c3:b8:fc:0d:90:25:36:4b:56:70:2d:71:a8:12: 58:02:bf:6d:be:04:d1:00:5c:9e:14:ab:41:5e:2c: 24:21:48:8e:3a:7f:0d:8d:5a:8e:58:01:57:36:b4: c9:71:1f:f7:99:d9:eb:e7:b9:23:30:21:38:b4:5a: 4d:94:f6:cf:b3:91:49:dc:72:47:c1:1e:79:aa:12: 96:05:8c:2c:f6:4c:a1:bf:1b:7b:55:fe:cc:60:79: 64:ac:fc:77:6f:af:e7:df:42:ba:8e:6f:67:93:04: 92:61:8c:a2:d1:3b:1d:cd:8d:3d:b8:5e:96:53:91: cd:d5:14:50:78:67:f8:10:68:92:d1:f6:6e:6b:ad: 6d:05:b8:22:65:64:b6:fc:0a:b1:bc:57:58:18:5b: f9:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:56:31:3E:9E:53:83:C4:A0:FE:D7:F8:4C:FE:B2:7A:0F:94:E8:28 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a51cf629-3b5c-444d-a5a3-c49bffcebe3a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fef:8000::/39 Signature Algorithm: sha256WithRSAEncryption 51:bb:ec:db:02:80:87:12:80:78:2d:99:a5:a5:c0:04:ab:12: e9:6a:fc:ca:db:ef:04:13:48:2a:51:e8:e6:58:c3:00:49:b8: 5a:5f:41:96:9e:de:c2:52:16:eb:62:2d:12:9f:bc:33:2c:f2: 01:32:ba:92:28:03:77:fa:dd:88:ac:1c:66:58:cc:6d:42:f7: b3:73:00:38:0a:20:3d:40:a8:15:6a:0d:ef:09:ee:50:e3:80: 83:84:07:68:0f:fd:ce:a1:a5:02:93:0d:37:2f:88:17:f8:ae: 02:ad:01:56:48:a6:1d:cc:98:9b:57:f4:f0:99:c4:16:f1:2a: 8a:0e:34:e7:38:98:ca:cd:b3:c8:23:53:a4:1f:e3:5e:e2:ab: a0:11:b5:dc:c9:1e:8d:d9:ef:78:dc:d6:68:ee:26:f1:3f:e3: ee:bc:f7:20:52:a6:42:e1:97:be:fb:89:35:26:3f:58:4c:f8: da:f6:00:21:3e:0a:57:c1:b1:b6:db:10:97:6c:c1:a7:24:fc: f6:58:18:96:7f:61:13:7b:01:cf:8c:cb:c5:2c:c9:2f:73:c1: db:39:aa:eb:80:36:cc:d5:16:ec:40:5c:0a:44:3a:7a:98:0a: 41:c0:65:34:2f:77:b5:32:3a:01:00:a8:10:79:21:85:eb:0f: a9:3d:c1:ec -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUIGjApx2oKCLtO+chkqQtgRujhiowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDAyMDAyMDMwWhcNMjUwNTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNjllOGYxN2FlMTEyYWQ3MWUxMzQwYmEwNmNhYjcwNDM1 Mzc2Y2IxYjFiZTczMGVjZjFhMDlkNzM4MjA4NjYwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdLBBZ2hOGigv02fe+x7qSUpypTiBWABvVys88+qbZLCE3 7HZyTfr4PB6g/Saw11CJsVswxup0+XV7zl6slYdMqdB+Hv1k9EmmIDg/rqOkUuQj 93GlrlqAIw2c0+rFAy9fFwUtQdgSgAHDuPwNkCU2S1ZwLXGoElgCv22+BNEAXJ4U q0FeLCQhSI46fw2NWo5YAVc2tMlxH/eZ2evnuSMwITi0Wk2U9s+zkUncckfBHnmq EpYFjCz2TKG/G3tV/sxgeWSs/Hdvr+ffQrqOb2eTBJJhjKLROx3NjT24XpZTkc3V FFB4Z/gQaJLR9m5rrW0FuCJlZLb8CrG8V1gYW/n5AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUv1YxPp5Tg8Sg/tf4TP6yeg+U6CgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E1MWNmNjI5LTNiNWMtNDQ0ZC1hNWEzLWM0OWJmZmNlYmUzYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/vgDANBgkqhkiG9w0BAQsFAAOCAQEAUbvs2wKAhxKAeC2ZpaXABKsS 6Wr8ytvvBBNIKlHo5ljDAEm4Wl9Blp7ewlIW62ItEp+8MyzyATK6kigDd/rdiKwc ZljMbUL3s3MAOAogPUCoFWoN7wnuUOOAg4QHaA/9zqGlApMNNy+IF/iuAq0BVkim HcyYm1f08JnEFvEqig405ziYys2zyCNTpB/jXuKroBG13MkejdnveNzWaO4m8T/j 7rz3IFKmQuGXvvuJNSY/WEz42vYAIT4KV8GxttsQl2zBpyT89lgYln9hE3sBz4zL xSzJL3PB2zmq64A2zNUW7EBcCkQ6epgKQcBlNC93tTI6AQCoEHkhhesPqT3B7A== -----END CERTIFICATE-----Generated at Sat Apr 26 13:15:36 2025 by rpki-client