$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/adaa974c-4683-4751-815d-d3dc3f784bfc.roa File: adaa974c-4683-4751-815d-d3dc3f784bfc.roa (raw, json) Hash identifier: lZvNVjc3fz2s9kPeJhm1FgrhpVf5XMYvdxNwzlLU30c= Subject key identifier: B1:25:5D:58:E7:B1:A7:C6:E8:35:07:08:42:E1:48:36:D0:57:30:1A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 428C0416BDEB30C8B264724F9D563F939194F823 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/adaa974c-4683-4751-815d-d3dc3f784bfc.roa Signing time: Tue 22 Apr 2025 16:40:50 +0000 ROA not before: Tue 22 Apr 2025 16:40:50 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f13:4800::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:8c:04:16:bd:eb:30:c8:b2:64:72:4f:9d:56:3f:93:91:94:f8:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:40:50 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=45a85e7ce6c6d4447ee07d023fd153c2b78f1ffffc021081284c550ae21d6bd6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:63:ae:8b:be:0a:f8:e9:aa:08:86:1f:05:6e: 0d:e5:00:82:e7:dc:88:ba:e3:f1:60:5c:65:7f:2e: 42:85:06:24:a0:05:d3:61:bf:90:ce:a2:ed:28:d1: fe:51:83:51:c7:82:f5:ea:0e:47:da:f2:e5:bf:30: cf:8c:7a:02:15:05:c5:55:6b:14:70:ba:6d:87:bb: da:88:fe:ce:4d:62:df:c2:94:cf:3b:bd:5a:4c:ba: 80:b3:92:3d:98:2a:ca:63:af:eb:1a:15:fe:58:72: 22:fd:66:9d:fc:1a:3e:4e:50:0d:5b:22:af:71:53: 1a:43:10:36:ef:73:31:e1:2d:13:49:a5:93:e0:17: 06:87:1e:37:b8:da:0b:db:ca:02:5e:91:16:54:63: ff:0c:86:eb:cd:5e:57:63:c0:98:70:de:88:2a:55: 16:f7:ec:5c:31:f2:66:73:50:7d:d0:04:0e:b5:8d: f9:9e:16:20:19:14:f2:3f:e2:39:d6:fa:a5:6d:6e: 95:2a:38:6d:88:99:5a:42:2e:4a:cc:3b:ea:1c:3f: 99:27:c8:ed:05:db:f3:5b:39:a1:dc:9c:ed:84:43: 58:19:3f:55:ea:f6:63:0a:69:51:87:b2:5b:6a:68: 9e:e2:07:7a:a8:19:0e:9b:c2:3f:cc:14:df:27:96: fe:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:25:5D:58:E7:B1:A7:C6:E8:35:07:08:42:E1:48:36:D0:57:30:1A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/adaa974c-4683-4751-815d-d3dc3f784bfc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f13:4800::/38 Signature Algorithm: sha256WithRSAEncryption 98:a4:50:7e:a2:78:70:08:35:a4:5d:84:de:ef:66:80:73:e5: 93:5c:5c:7c:6c:6f:aa:e9:4e:0e:f9:38:1e:34:0f:c7:a9:31: 2b:dc:b1:9c:1b:4a:47:48:e2:23:96:80:b9:62:80:1d:51:74: eb:13:a1:43:8e:5e:82:2f:3b:35:2c:50:50:90:7e:fd:29:a2: c4:6b:46:e4:a9:57:f6:16:cd:01:42:12:fd:c6:ca:d1:8a:7d: 97:93:e2:eb:e7:04:ef:20:88:01:2a:3d:95:88:0b:a2:9f:64: 37:cc:67:e3:90:8b:a1:31:37:c0:da:b7:9c:56:0a:be:e9:c5: 73:ab:46:c0:02:8b:cf:ff:77:84:2c:9b:c5:7c:c6:fb:48:7c: 63:7e:f9:e8:9c:57:f0:fe:a3:64:0d:a0:df:25:bd:18:ac:87: d0:f0:8d:26:cc:f6:75:fd:e6:34:15:bf:b5:3c:a5:c8:01:a6: 03:3c:fa:dd:82:3b:b7:19:ea:42:92:73:72:18:8a:bd:5a:23: fb:85:19:58:92:31:ab:17:71:ec:5a:2f:60:31:69:2f:25:68: 1f:e1:62:21:80:4b:9d:88:ae:a7:02:56:d8:b6:f3:45:39:ce: 60:0f:1f:dc:2f:8b:69:70:42:16:b4:67:1f:2e:7b:ec:d3:60: 2a:70:fa:7a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUQowEFr3rMMiyZHJPnVY/k5GU+CMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTY0MDUwWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NWE4NWU3Y2U2YzZkNDQ0N2VlMDdkMDIzZmQxNTNjMmI3 OGYxZmZmZmMwMjEwODEyODRjNTUwYWUyMWQ2YmQ2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkY66Lvgr46aoIhh8Fbg3lAILn3Ii64/FgXGV/LkKFBiSg BdNhv5DOou0o0f5Rg1HHgvXqDkfa8uW/MM+MegIVBcVVaxRwum2Hu9qI/s5NYt/C lM87vVpMuoCzkj2YKspjr+saFf5YciL9Zp38Gj5OUA1bIq9xUxpDEDbvczHhLRNJ pZPgFwaHHje42gvbygJekRZUY/8MhuvNXldjwJhw3ogqVRb37Fwx8mZzUH3QBA61 jfmeFiAZFPI/4jnW+qVtbpUqOG2ImVpCLkrMO+ocP5knyO0F2/NbOaHcnO2EQ1gZ P1Xq9mMKaVGHsltqaJ7iB3qoGQ6bwj/MFN8nlv6hAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUsSVdWOexp8boNQcIQuFINtBXMBowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FkYWE5NzRjLTQ2ODMtNDc1MS04MTVkLWQzZGMzZjc4NGJmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgImAB8TSDANBgkqhkiG9w0BAQsFAAOCAQEAmKRQfqJ4cAg1pF2E3u9mgHPl k1xcfGxvqulODvk4HjQPx6kxK9yxnBtKR0jiI5aAuWKAHVF06xOhQ45egi87NSxQ UJB+/SmixGtG5KlX9hbNAUIS/cbK0Yp9l5Pi6+cE7yCIASo9lYgLop9kN8xn45CL oTE3wNq3nFYKvunFc6tGwAKLz/93hCybxXzG+0h8Y3756JxX8P6jZA2g3yW9GKyH 0PCNJsz2df3mNBW/tTylyAGmAzz63YI7txnqQpJzchiKvVoj+4UZWJIxqxdx7Fov YDFpLyVoH+FiIYBLnYiupwJW2LbzRTnOYA8f3C+LaXBCFrRnHy577NNgKnD6eg== -----END CERTIFICATE-----Generated at Sat Apr 26 18:01:02 2025 by rpki-client