$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a6881bb8-22d0-4ce0-9856-7c93b1664e0c.roa File: a6881bb8-22d0-4ce0-9856-7c93b1664e0c.roa (raw, json) Hash identifier: eBttii/RSKsVimHZ3N/fkHulCbab//99rHg3OAwQvLs= Subject key identifier: 72:23:34:14:82:F8:EB:30:B2:B1:D8:A6:36:3D:57:12:DD:55:41:2E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2643CDDF0D930D1923B3D7B80D98A7246F3F7968 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a6881bb8-22d0-4ce0-9856-7c93b1664e0c.roa Signing time: Fri 25 Apr 2025 00:32:15 +0000 ROA not before: Fri 25 Apr 2025 00:32:15 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffe:a400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:43:cd:df:0d:93:0d:19:23:b3:d7:b8:0d:98:a7:24:6f:3f:79:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 00:32:15 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=54b56706c23cc4abdafa2c1f2b25a1b5aafb2710d71112f15a5c76182c83b515, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:62:f2:d1:08:60:33:50:20:2c:6c:da:12:fa: 29:c1:0e:5a:1c:6c:67:57:11:c1:95:77:bc:4f:30: 2a:c2:7c:02:47:e9:ad:db:f3:90:44:4c:e1:37:b4: b5:dc:9d:22:d1:a3:2d:fc:76:9c:e3:87:ef:2e:a7: 8a:e2:27:1f:d9:5e:f5:8c:53:99:c4:22:b1:0b:55: 69:a2:bd:b4:c8:bd:7b:3f:af:09:25:14:dc:20:d5: 6d:d2:62:a3:f9:53:08:4c:29:ec:38:a9:d1:f5:1f: ce:cb:56:98:8b:03:55:ed:b8:58:b7:99:93:6a:71: fc:be:39:5b:ab:cd:67:6f:46:4e:e2:7d:09:ee:3d: b3:b5:28:ee:ea:dd:12:f2:84:2a:e8:51:29:cf:1d: 68:09:60:44:a2:e2:94:cb:aa:52:b5:61:47:a0:0c: d4:50:79:dd:27:e0:20:25:9d:3b:eb:b1:4f:ac:d2: 7a:81:07:ce:ab:94:a1:84:e3:70:66:af:c0:77:fe: 68:70:c0:cb:e2:04:76:db:8d:3d:08:81:54:7b:a5: 9d:da:60:9d:5a:10:41:6f:56:da:55:ce:a3:07:85: ab:d7:89:81:35:5d:e4:b8:63:c6:0d:c3:e4:1f:61: f1:6c:ae:c0:e3:4c:4a:ef:15:91:66:24:bb:2d:ee: b0:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:23:34:14:82:F8:EB:30:B2:B1:D8:A6:36:3D:57:12:DD:55:41:2E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a6881bb8-22d0-4ce0-9856-7c93b1664e0c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffe:a400::/40 Signature Algorithm: sha256WithRSAEncryption 26:3e:d7:15:ab:b7:36:d3:b3:77:45:5a:42:47:89:e8:9a:8f: 9f:d8:15:ff:dd:c9:bb:55:1e:de:11:05:19:e3:de:00:0c:27: df:e2:18:98:57:e7:ef:8f:56:40:1c:1a:9e:f2:92:cb:6a:64: 76:a4:45:b2:a8:26:58:28:d4:4e:73:f7:18:04:fb:9a:78:95: b3:50:e0:a8:d4:1c:ee:03:6e:64:87:b6:b0:e2:14:90:32:ba: bc:61:11:25:09:79:7c:34:df:62:ab:fb:ef:9a:c6:ad:2f:12: e6:7e:00:75:ec:45:46:0d:c4:74:50:04:88:7d:1d:ec:3e:33: ac:b3:18:34:58:13:a9:ca:d6:07:97:05:81:16:38:09:83:3f: cd:34:ad:9f:5a:92:97:fd:fb:d8:ff:c1:65:43:2b:74:1b:a0: 3e:91:85:2e:cd:8e:4e:ab:fa:bf:7a:64:bb:61:18:07:14:59: 04:68:04:c2:a1:f1:0e:b7:e6:92:bf:11:cf:b9:47:5a:16:6a: e1:6a:c1:74:13:d3:db:20:ae:c4:c0:4d:7b:17:b0:c8:d5:b9: b0:55:81:6c:84:05:54:90:83:3e:d9:dc:e3:1c:4f:70:9c:87: e3:e6:63:d2:54:b2:0b:c9:23:60:7d:a8:20:55:ce:48:ed:d0: 82:ec:5f:bd -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUJkPN3w2TDRkjs9e4DZinJG8/eWgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MDAzMjE1WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NGI1NjcwNmMyM2NjNGFiZGFmYTJjMWYyYjI1YTFiNWFh ZmIyNzEwZDcxMTEyZjE1YTVjNzYxODJjODNiNTE1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwYvLRCGAzUCAsbNoS+inBDlocbGdXEcGVd7xPMCrCfAJH 6a3b85BETOE3tLXcnSLRoy38dpzjh+8up4riJx/ZXvWMU5nEIrELVWmivbTIvXs/ rwklFNwg1W3SYqP5UwhMKew4qdH1H87LVpiLA1XtuFi3mZNqcfy+OVurzWdvRk7i fQnuPbO1KO7q3RLyhCroUSnPHWgJYESi4pTLqlK1YUegDNRQed0n4CAlnTvrsU+s 0nqBB86rlKGE43Bmr8B3/mhwwMviBHbbjT0IgVR7pZ3aYJ1aEEFvVtpVzqMHhavX iYE1XeS4Y8YNw+QfYfFsrsDjTErvFZFmJLst7rChAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUciM0FIL46zCysdimNj1XEt1VQS4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E2ODgxYmI4LTIyZDAtNGNlMC05ODU2LTdjOTNiMTY2NGUwYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/+pDANBgkqhkiG9w0BAQsFAAOCAQEAJj7XFau3NtOzd0VaQkeJ6JqP n9gV/93Ju1Ue3hEFGePeAAwn3+IYmFfn749WQBwanvKSy2pkdqRFsqgmWCjUTnP3 GAT7mniVs1DgqNQc7gNuZIe2sOIUkDK6vGERJQl5fDTfYqv775rGrS8S5n4AdexF Rg3EdFAEiH0d7D4zrLMYNFgTqcrWB5cFgRY4CYM/zTStn1qSl/372P/BZUMrdBug PpGFLs2OTqv6v3pku2EYBxRZBGgEwqHxDrfmkr8Rz7lHWhZq4WrBdBPT2yCuxMBN exewyNW5sFWBbIQFVJCDPtnc4xxPcJyH4+Zj0lSyC8kjYH2oIFXOSO3QguxfvQ== -----END CERTIFICATE-----Generated at Sat Apr 26 19:25:16 2025 by rpki-client