$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a72a214c-660b-4404-9cf2-6877b6d84a40.roa File: a72a214c-660b-4404-9cf2-6877b6d84a40.roa (raw, json) Hash identifier: ltS/UB5/kVSuwomger3Ug4w8xbzc+xeP8zhE7x4j5k8= Subject key identifier: 6E:4B:01:3E:23:9C:A5:10:3A:8A:5F:A8:B5:73:11:8E:F4:18:C1:9C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3F9F8D4696E33E36C50F0120571B6D050B374A34 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a72a214c-660b-4404-9cf2-6877b6d84a40.roa Signing time: Wed 16 Apr 2025 00:01:10 +0000 ROA not before: Wed 16 Apr 2025 00:01:10 +0000 ROA not after: Wed 21 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff6:c000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:9f:8d:46:96:e3:3e:36:c5:0f:01:20:57:1b:6d:05:0b:37:4a:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:01:10 2025 GMT Not After : May 21 23:59:59 2025 GMT Subject: serialNumber=9e58cdab7d172027739ee2b4346732512be077473448e590236ad4ca402be930, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b0:2b:88:f2:4a:a2:34:d7:82:ce:6d:7a:a1: ed:88:65:ec:54:3b:47:9d:75:7c:34:fe:b1:92:df: ad:23:9c:e3:29:91:5d:71:65:dc:ae:ac:1b:4e:af: 97:c1:21:09:a7:9f:11:6e:66:35:1d:65:d6:86:48: a7:64:68:d4:9c:0f:0d:5b:79:3d:f5:16:0c:65:b9: 51:98:54:ba:12:af:21:08:bd:c4:3a:f2:f2:1e:f3: 2e:a4:74:21:e3:21:6b:ce:ff:5f:68:66:42:e0:c0: 45:34:be:31:cd:ed:65:32:ce:9d:cb:36:16:91:31: 69:0a:22:c3:9f:f6:70:de:20:df:56:2d:95:38:cc: 0a:9a:88:07:f0:2d:2b:8f:30:3c:b5:74:be:81:4f: 6c:79:60:fa:59:8a:75:0e:42:ea:7f:47:72:7f:01: 39:1b:53:56:8f:a8:23:b2:db:c9:c5:8f:88:92:fe: f1:7f:6a:eb:41:ca:b0:9c:5a:39:c7:c2:68:c3:f8: 91:76:c5:27:ee:0a:f1:11:dd:e2:71:f2:59:02:0e: 02:a2:55:8b:ec:32:85:31:ff:b2:ba:d2:21:17:36: 43:f2:54:e4:e5:f8:cd:91:0a:f1:af:86:e4:b5:4c: 28:7e:fc:0f:34:b7:18:f7:5d:42:c4:6b:e7:6e:8b: 8b:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:4B:01:3E:23:9C:A5:10:3A:8A:5F:A8:B5:73:11:8E:F4:18:C1:9C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a72a214c-660b-4404-9cf2-6877b6d84a40.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff6:c000::/48 Signature Algorithm: sha256WithRSAEncryption 2f:8e:99:f5:a8:ff:aa:7f:4c:98:35:c3:82:cb:0d:a1:db:2e: b2:5b:81:0c:5e:ab:7a:91:e8:36:77:ba:f7:2c:e9:35:6d:e3: 2b:3d:c3:83:c0:f8:c7:b5:88:8b:ce:35:e6:da:f0:aa:10:4d: 2a:ca:68:86:64:04:96:18:19:88:cd:7a:af:01:be:e0:1d:9b: fa:cb:38:97:4a:03:bf:e7:26:e6:75:9b:f6:43:8d:c7:c0:75: 9d:7f:4c:0a:66:f6:1e:65:0b:54:cb:42:64:a7:2d:70:25:53: b2:b9:4e:e1:97:cd:48:10:0c:68:55:3f:fd:83:f3:93:79:48: fb:dc:58:eb:61:69:72:e3:e2:bf:e3:49:40:1d:31:a4:6d:c2: 3f:a5:f7:5e:4a:ae:da:0f:fa:8d:c1:48:88:a9:14:8a:1d:43: cc:96:76:b8:94:fc:51:0e:2d:46:36:09:f1:19:f7:45:d9:81: 53:7d:3c:55:f8:4f:a0:6e:db:05:54:b3:34:53:eb:9b:9f:98: 6d:c4:3c:c3:86:4e:3d:07:04:fb:e2:a1:d2:a4:b4:16:e1:c0: 31:d4:23:93:72:73:05:5c:33:f2:12:2e:ba:08:23:9e:80:f9: 87:eb:ba:cb:1f:72:ad:a8:f7:59:bf:ee:6f:1a:e0:04:bb:c2: ea:8a:c1:1e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUP5+NRpbjPjbFDwEgVxttBQs3SjQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE2MDAwMTEwWhcNMjUwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZTU4Y2RhYjdkMTcyMDI3NzM5ZWUyYjQzNDY3MzI1MTJi ZTA3NzQ3MzQ0OGU1OTAyMzZhZDRjYTQwMmJlOTMwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7sCuI8kqiNNeCzm16oe2IZexUO0eddXw0/rGS360jnOMp kV1xZdyurBtOr5fBIQmnnxFuZjUdZdaGSKdkaNScDw1beT31FgxluVGYVLoSryEI vcQ68vIe8y6kdCHjIWvO/19oZkLgwEU0vjHN7WUyzp3LNhaRMWkKIsOf9nDeIN9W LZU4zAqaiAfwLSuPMDy1dL6BT2x5YPpZinUOQup/R3J/ATkbU1aPqCOy28nFj4iS /vF/autByrCcWjnHwmjD+JF2xSfuCvER3eJx8lkCDgKiVYvsMoUx/7K60iEXNkPy VOTl+M2RCvGvhuS1TCh+/A80txj3XULEa+dui4trAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUbksBPiOcpRA6il+otXMRjvQYwZwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E3MmEyMTRjLTY2MGItNDQwNC05Y2YyLTY4NzdiNmQ4NGE0MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/2wAAwDQYJKoZIhvcNAQELBQADggEBAC+OmfWo/6p/TJg1w4LLDaHb LrJbgQxeq3qR6DZ3uvcs6TVt4ys9w4PA+Me1iIvONeba8KoQTSrKaIZkBJYYGYjN eq8BvuAdm/rLOJdKA7/nJuZ1m/ZDjcfAdZ1/TApm9h5lC1TLQmSnLXAlU7K5TuGX zUgQDGhVP/2D85N5SPvcWOthaXLj4r/jSUAdMaRtwj+l915KrtoP+o3BSIipFIod Q8yWdriU/FEOLUY2CfEZ90XZgVN9PFX4T6Bu2wVUszRT65ufmG3EPMOGTj0HBPvi odKktBbhwDHUI5NycwVcM/ISLroII56A+Yfrussfcq2o91m/7m8a4AS7wuqKwR4= -----END CERTIFICATE-----Generated at Sat Apr 26 16:30:07 2025 by rpki-client