$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aaaaef18-6b6c-43bb-a37a-d1b51023451c.roa File: aaaaef18-6b6c-43bb-a37a-d1b51023451c.roa (raw, json) Hash identifier: qdhB22UmNhXMob9mJgAeT2GpXYIGd0zY2y3vz2JzHIs= Subject key identifier: F1:1E:06:2E:AF:DA:0D:79:C5:55:6C:97:56:19:6B:5D:22:79:8B:35 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4D5995AD816C34CCA33BD190AA3D9A4167F8DDF2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aaaaef18-6b6c-43bb-a37a-d1b51023451c.roa Signing time: Tue 22 Apr 2025 15:31:30 +0000 ROA not before: Tue 22 Apr 2025 15:31:30 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffb:50c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:59:95:ad:81:6c:34:cc:a3:3b:d1:90:aa:3d:9a:41:67:f8:dd:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 15:31:30 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=4de3817cfd0f587e0e5525fc5947fa24878c11c174a7375c646488e6833a84a2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:bd:f7:32:b2:56:84:c5:e3:b4:a9:d7:aa:fa: 75:5e:fc:f3:fa:3a:a9:a1:b2:ff:0e:dd:f8:57:74: bf:cb:dc:d7:01:a1:60:ae:4f:29:97:81:88:87:87: 4c:61:8d:66:6c:c2:9a:5a:ed:3e:3e:49:5a:0e:00: 59:89:23:36:bf:8b:3e:8a:d1:51:ff:e4:d3:0d:30: 8f:94:3e:8a:17:2d:8c:00:36:2e:7e:cc:61:aa:5c: c2:c3:43:68:5f:c6:f0:03:21:fd:ef:6c:3c:3a:9d: c2:5e:2e:de:55:4c:68:26:c3:3a:54:ad:69:da:f5: 37:d0:64:ef:9d:7a:c2:4e:dd:5a:2b:45:97:39:22: a4:a7:55:ab:0f:d4:c7:20:e8:d4:9a:9d:01:c6:8a: 75:67:d1:18:54:72:21:b5:5a:5b:58:19:0a:74:cb: 1e:04:ca:fe:b5:71:ba:f7:f7:95:b7:fe:9e:0f:1a: f4:13:ec:9b:52:ce:b6:f4:1a:05:3c:d9:97:c3:dd: b1:1a:a0:dd:03:67:3c:cc:de:19:d6:88:39:2b:a1: 59:37:94:cb:da:2d:de:1d:9a:f5:de:51:d9:59:c5: 68:f9:b2:a5:26:a0:af:e5:12:cc:04:a7:e8:f9:3c: b2:10:3b:58:49:4a:0f:00:28:9d:e8:57:c2:8a:b5: 7e:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:1E:06:2E:AF:DA:0D:79:C5:55:6C:97:56:19:6B:5D:22:79:8B:35 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aaaaef18-6b6c-43bb-a37a-d1b51023451c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffb:50c0::/46 Signature Algorithm: sha256WithRSAEncryption 30:6b:ea:01:df:e2:1d:c6:4d:94:a4:cc:4b:04:00:cc:a3:ee: b8:08:73:a1:f6:1c:9d:e7:4c:da:f1:e5:e5:76:9e:af:e7:3c: 8b:fb:ba:3e:41:89:8c:18:02:60:c5:46:11:ed:a8:20:f0:96: 45:60:71:1f:9c:a2:0f:c4:87:2d:93:6c:cf:66:46:96:4a:7f: e2:2f:40:d3:1e:80:99:08:59:07:3e:04:85:7d:66:f0:fb:08: cc:05:fe:5e:80:be:cb:22:0a:8f:d1:90:bc:65:8c:58:8f:72: 32:77:40:70:cb:d8:90:54:bf:dd:30:7a:1e:bc:b2:f3:5b:0c: 14:40:e2:68:00:7d:66:4d:2c:b3:e5:02:76:40:25:b9:30:fa: 15:08:3b:c5:a2:f5:e4:72:c6:a6:0f:f6:37:60:b1:38:e8:a2: 5b:a6:79:b9:aa:86:9e:67:00:97:e4:21:77:7e:e7:ab:be:b4: 87:b8:d4:a8:81:10:7b:96:09:4b:b9:39:f0:53:ab:2a:32:ef: b3:fb:3e:bd:2d:ee:71:3a:98:0a:b6:e5:9b:e2:91:ca:90:77: a1:5e:8b:94:fc:a6:9b:4f:56:cf:18:de:36:a4:21:db:18:64: be:0d:38:4b:14:e3:68:62:7f:ce:1a:d3:9e:db:2b:75:3f:5d: 68:5a:5c:19 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTVmVrYFsNMyjO9GQqj2aQWf43fIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTUzMTMwWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZGUzODE3Y2ZkMGY1ODdlMGU1NTI1ZmM1OTQ3ZmEyNDg3 OGMxMWMxNzRhNzM3NWM2NDY0ODhlNjgzM2E4NGEyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBvfcyslaExeO0qdeq+nVe/PP6Oqmhsv8O3fhXdL/L3NcB oWCuTymXgYiHh0xhjWZswppa7T4+SVoOAFmJIza/iz6K0VH/5NMNMI+UPooXLYwA Ni5+zGGqXMLDQ2hfxvADIf3vbDw6ncJeLt5VTGgmwzpUrWna9TfQZO+desJO3Vor RZc5IqSnVasP1Mcg6NSanQHGinVn0RhUciG1WltYGQp0yx4Eyv61cbr395W3/p4P GvQT7JtSzrb0GgU82ZfD3bEaoN0DZzzM3hnWiDkroVk3lMvaLd4dmvXeUdlZxWj5 sqUmoK/lEswEp+j5PLIQO1hJSg8AKJ3oV8KKtX5RAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8R4GLq/aDXnFVWyXVhlrXSJ5izUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FhYWFlZjE4LTZiNmMtNDNiYi1hMzdhLWQxYjUxMDIzNDUxYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/7UMAwDQYJKoZIhvcNAQELBQADggEBADBr6gHf4h3GTZSkzEsEAMyj 7rgIc6H2HJ3nTNrx5eV2nq/nPIv7uj5BiYwYAmDFRhHtqCDwlkVgcR+cog/Ehy2T bM9mRpZKf+IvQNMegJkIWQc+BIV9ZvD7CMwF/l6AvssiCo/RkLxljFiPcjJ3QHDL 2JBUv90weh68svNbDBRA4mgAfWZNLLPlAnZAJbkw+hUIO8Wi9eRyxqYP9jdgsTjo olumebmqhp5nAJfkIXd+56u+tIe41KiBEHuWCUu5OfBTqyoy77P7Pr0t7nE6mAq2 5ZvikcqQd6Fei5T8pptPVs8Y3jakIdsYZL4NOEsU42hif84a057bK3U/XWhaXBk= -----END CERTIFICATE-----Generated at Sat Apr 26 14:56:14 2025 by rpki-client