$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5dc397e-51ae-4560-83fe-dc18c680d062.roa File: a5dc397e-51ae-4560-83fe-dc18c680d062.roa (raw, json) Hash identifier: sTQ+c8M80NfZ1rZTvlIhBEd/LHOoSwun5T4N0EQy3Bg= Subject key identifier: 46:DA:18:6B:17:92:B5:12:AC:02:FC:A5:E3:89:69:22:CD:E0:A5:B8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0BB902BBAB139E885D9274CABF84DAFD18A6FDA2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5dc397e-51ae-4560-83fe-dc18c680d062.roa Signing time: Mon 21 Apr 2025 17:50:10 +0000 ROA not before: Mon 21 Apr 2025 17:50:10 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fff:81c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:b9:02:bb:ab:13:9e:88:5d:92:74:ca:bf:84:da:fd:18:a6:fd:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 21 17:50:10 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=ed188ebe802e5181b3aa49a86c9f643ed1fefae6595f739f965ff0993a982105, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:db:21:a5:20:3e:ef:7c:72:79:0c:ae:21:b3: da:b6:9a:cd:9a:68:91:61:f8:46:7a:c5:04:7a:c8: 35:49:ac:d3:92:9a:80:e2:b1:55:ee:33:24:91:81: 6a:9a:1d:18:b4:c4:2a:b0:72:6c:00:27:90:02:96: eb:ca:99:d0:2c:b3:5a:e1:96:47:e9:c8:cf:6c:da: b4:cf:75:96:af:e6:82:e1:d5:f3:47:2e:08:b3:3f: 0b:51:bd:d6:5c:81:94:3a:1f:ff:76:d0:25:8e:91: ce:af:ea:0d:31:be:3c:76:f7:e3:38:93:d2:97:2c: 2a:31:b9:70:3f:29:c4:21:52:2b:46:a5:98:c7:c6: df:42:e6:c7:00:8f:27:bb:4c:dd:a8:90:a0:51:9a: c0:6f:12:c5:53:61:3e:29:27:15:82:b9:ce:68:cf: cf:0b:fa:ea:dd:2e:2f:fa:be:4a:f8:d2:c0:da:25: d2:18:47:3b:a7:9d:e0:89:c2:a3:c5:cc:c1:bf:84: 65:17:31:38:4a:ab:eb:e8:32:4e:28:3a:a4:be:93: 11:30:40:80:b7:bf:41:e9:ce:60:8d:1f:5d:1f:76: aa:2b:dc:d8:05:55:ad:5c:3b:22:b7:75:e5:b9:40: 5c:f3:a1:cc:42:58:b2:ae:d2:e3:06:d6:ad:82:3d: e9:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:DA:18:6B:17:92:B5:12:AC:02:FC:A5:E3:89:69:22:CD:E0:A5:B8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5dc397e-51ae-4560-83fe-dc18c680d062.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:81c0::/48 Signature Algorithm: sha256WithRSAEncryption 95:1e:39:02:b0:e9:74:a9:55:f0:d3:9f:5b:7c:55:69:98:af: fd:c9:51:4f:8f:6f:0c:98:c1:4d:7c:dd:82:d1:24:ef:e6:7b: 60:16:5d:3b:6e:5b:1b:d9:4f:49:14:d4:3d:43:0b:11:70:bd: a1:c3:87:b9:5f:2b:d4:3d:a4:6a:71:67:48:7a:fa:01:d8:4b: 24:de:19:12:31:cb:e0:d9:c6:1e:39:58:35:3c:a3:b3:15:07: 87:e0:cc:f3:eb:a3:9f:a5:b6:de:57:96:70:45:39:6b:de:a1: 08:a1:45:9a:56:a4:fb:0f:5f:56:ab:1c:53:03:7b:8e:80:d2: 83:08:80:88:f1:23:7e:46:b0:cc:de:c0:7f:98:2a:c9:ba:d0: 12:7d:19:9d:37:d1:95:7a:df:6b:3e:a0:93:ce:de:43:54:59: b5:24:02:53:7a:db:fe:21:9d:56:4b:9b:92:15:0a:14:74:53: 35:3c:f3:40:b8:92:2a:3d:f5:5f:0b:e9:57:eb:c0:42:c3:1d: e9:f4:09:fa:aa:22:c1:35:1c:24:00:71:b2:9e:19:bd:ec:5a: 75:cc:cf:c2:2e:1f:bf:fd:13:1c:91:46:44:35:27:c1:c1:1e: 3f:ba:e7:86:52:93:b5:9b:14:b3:d1:cf:e4:8d:19:81:65:1b: e9:79:e8:69 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUC7kCu6sTnohdknTKv4Ta/Rim/aIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIxMTc1MDEwWhcNMjUwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZDE4OGViZTgwMmU1MTgxYjNhYTQ5YTg2YzlmNjQzZWQx ZmVmYWU2NTk1ZjczOWY5NjVmZjA5OTNhOTgyMTA1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCx2yGlID7vfHJ5DK4hs9q2ms2aaJFh+EZ6xQR6yDVJrNOS moDisVXuMySRgWqaHRi0xCqwcmwAJ5ACluvKmdAss1rhlkfpyM9s2rTPdZav5oLh 1fNHLgizPwtRvdZcgZQ6H/920CWOkc6v6g0xvjx29+M4k9KXLCoxuXA/KcQhUitG pZjHxt9C5scAjye7TN2okKBRmsBvEsVTYT4pJxWCuc5oz88L+urdLi/6vkr40sDa JdIYRzunneCJwqPFzMG/hGUXMThKq+voMk4oOqS+kxEwQIC3v0HpzmCNH10fdqor 3NgFVa1cOyK3deW5QFzzocxCWLKu0uMG1q2CPelxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQURtoYaxeStRKsAvyl44lpIs3gpbgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E1ZGMzOTdlLTUxYWUtNDU2MC04M2ZlLWRjMThjNjgwZDA2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//gcAwDQYJKoZIhvcNAQELBQADggEBAJUeOQKw6XSpVfDTn1t8VWmY r/3JUU+PbwyYwU183YLRJO/me2AWXTtuWxvZT0kU1D1DCxFwvaHDh7lfK9Q9pGpx Z0h6+gHYSyTeGRIxy+DZxh45WDU8o7MVB4fgzPPro5+ltt5XlnBFOWveoQihRZpW pPsPX1arHFMDe46A0oMIgIjxI35GsMzewH+YKsm60BJ9GZ030ZV632s+oJPO3kNU WbUkAlN62/4hnVZLm5IVChR0UzU880C4kio99V8L6VfrwELDHen0CfqqIsE1HCQA cbKeGb3sWnXMz8IuH7/9ExyRRkQ1J8HBHj+654ZSk7WbFLPRz+SNGYFlG+l56Gk= -----END CERTIFICATE-----Generated at Sat Apr 26 13:30:05 2025 by rpki-client