$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a9946c4c-e399-41df-9a79-a969df79e7c4.roa File: a9946c4c-e399-41df-9a79-a969df79e7c4.roa (raw, json) Hash identifier: WDEBlzV8udZzmhsGS5WNT9pQLw/3eaplQeWxYkGZY3Q= Subject key identifier: 1E:AC:14:60:3E:D4:B8:20:21:E2:08:1A:7A:7A:EA:5B:E1:24:C7:ED Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 01EF0CCF043D0D338DCAFEC9FA0C3C3E216CED47 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a9946c4c-e399-41df-9a79-a969df79e7c4.roa Signing time: Mon 21 Apr 2025 17:51:34 +0000 ROA not before: Mon 21 Apr 2025 17:51:34 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:20c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:ef:0c:cf:04:3d:0d:33:8d:ca:fe:c9:fa:0c:3c:3e:21:6c:ed:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 21 17:51:34 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=478015275ecdb7e987dbf2c0f9d8060bd07672696e0ff4af22261c4d104a07bd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:4c:9a:cb:d7:e9:ba:9c:bc:31:a1:0d:71:1a: b7:cb:c7:78:51:ac:c9:29:ea:46:a8:c9:38:35:85: 8e:3d:72:65:14:27:07:e5:34:9b:b5:20:91:7d:f0: db:78:49:04:db:b5:a1:3f:33:ff:2f:5c:b5:14:4c: 9f:c2:7e:ed:19:ab:d1:a2:a4:2c:4d:f0:43:de:9d: 60:3f:b5:7b:82:01:92:32:49:6d:a4:e0:9b:61:d5: fb:8e:3a:5a:46:68:72:bf:8c:99:44:12:eb:fe:ea: d9:fb:c3:bc:08:47:86:89:1e:95:56:55:80:b7:36: 15:31:df:f5:20:c7:3d:ae:19:33:60:7e:f8:65:a3: cf:71:fe:6e:83:ab:44:ca:be:98:30:e2:30:1c:ba: 81:04:72:bf:e9:f1:f4:3b:35:db:2b:e0:19:41:b1: 60:c5:cc:4a:84:ed:9a:65:b8:27:f8:40:36:f4:c9: 3c:8a:95:48:6c:f8:9d:d4:c7:91:19:ed:64:84:aa: f0:75:cf:46:cc:43:5c:f7:24:74:8a:28:ab:cb:f8: 95:50:e0:f5:27:0c:52:3c:a3:44:2d:de:e9:47:d1: 3b:ea:7f:f8:0d:28:3b:f0:42:59:31:c6:7d:18:17: fe:89:4c:ee:71:26:ee:ad:23:a0:58:9c:2c:74:61: a5:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:AC:14:60:3E:D4:B8:20:21:E2:08:1A:7A:7A:EA:5B:E1:24:C7:ED X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a9946c4c-e399-41df-9a79-a969df79e7c4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:20c0::/48 Signature Algorithm: sha256WithRSAEncryption 86:f3:2a:75:27:c7:5f:97:ee:5a:a9:e2:e3:55:17:74:a5:d1: 67:dc:b8:2c:d8:4f:47:37:61:bf:b8:4e:98:4a:2c:14:03:7b: 83:e9:df:ce:4a:04:04:1a:02:1d:aa:9f:ad:d2:3a:17:30:e0: 4d:e0:61:35:07:95:0f:f7:ef:ec:31:c2:e4:ff:f2:b3:4e:1c: b9:ed:af:e4:f8:a9:79:d3:66:42:e2:6e:7d:42:4b:91:c4:01: c0:a2:08:c8:38:62:00:df:0b:55:91:dc:57:59:96:69:44:9c: 85:27:32:af:09:50:d6:42:c8:7f:64:8d:52:45:a2:d7:22:8c: ad:d3:45:fb:01:63:aa:a8:a4:b8:b8:aa:41:ee:7e:06:8e:e1: 4e:50:16:fd:aa:86:cb:08:71:7c:42:7a:e4:32:26:e9:ec:c4: d0:bc:2c:43:e7:af:41:d4:10:e1:e9:a6:4e:5e:46:96:c7:d7: 31:f2:e6:63:c6:66:74:99:23:6b:8b:f6:b6:28:80:bd:ea:ef: 3b:b7:12:71:af:52:4e:95:12:85:15:ee:0d:a8:94:ef:7d:a7: 2c:81:7a:57:d1:b2:38:3a:fd:fd:05:5e:88:31:29:3f:2d:b4: 68:95:23:9b:45:38:67:1a:36:64:58:8c:78:05:4d:ca:a8:db: f0:39:fb:26 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUAe8MzwQ9DTONyv7J+gw8PiFs7UcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIxMTc1MTM0WhcNMjUwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NzgwMTUyNzVlY2RiN2U5ODdkYmYyYzBmOWQ4MDYwYmQw NzY3MjY5NmUwZmY0YWYyMjI2MWM0ZDEwNGEwN2JkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8TJrL1+m6nLwxoQ1xGrfLx3hRrMkp6kaoyTg1hY49cmUU JwflNJu1IJF98Nt4SQTbtaE/M/8vXLUUTJ/Cfu0Zq9GipCxN8EPenWA/tXuCAZIy SW2k4Jth1fuOOlpGaHK/jJlEEuv+6tn7w7wIR4aJHpVWVYC3NhUx3/Ugxz2uGTNg fvhlo89x/m6Dq0TKvpgw4jAcuoEEcr/p8fQ7Ndsr4BlBsWDFzEqE7ZpluCf4QDb0 yTyKlUhs+J3Ux5EZ7WSEqvB1z0bMQ1z3JHSKKKvL+JVQ4PUnDFI8o0Qt3ulH0Tvq f/gNKDvwQlkxxn0YF/6JTO5xJu6tI6BYnCx0YaXTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUHqwUYD7UuCAh4ggaenrqW+Ekx+0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E5OTQ2YzRjLWUzOTktNDFkZi05YTc5LWE5NjlkZjc5ZTdjNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AIMAwDQYJKoZIhvcNAQELBQADggEBAIbzKnUnx1+X7lqp4uNVF3Sl 0WfcuCzYT0c3Yb+4TphKLBQDe4Pp385KBAQaAh2qn63SOhcw4E3gYTUHlQ/37+wx wuT/8rNOHLntr+T4qXnTZkLibn1CS5HEAcCiCMg4YgDfC1WR3FdZlmlEnIUnMq8J UNZCyH9kjVJFotcijK3TRfsBY6qopLi4qkHufgaO4U5QFv2qhssIcXxCeuQyJuns xNC8LEPnr0HUEOHppk5eRpbH1zHy5mPGZnSZI2uL9rYogL3q7zu3EnGvUk6VEoUV 7g2olO99pyyBelfRsjg6/f0FXogxKT8ttGiVI5tFOGcaNmRYjHgFTcqo2/A5+yY= -----END CERTIFICATE-----Generated at Sat Apr 26 17:43:38 2025 by rpki-client