$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ae26cc3b-4ee1-41a0-bd1f-4debb21c4972.roa File: ae26cc3b-4ee1-41a0-bd1f-4debb21c4972.roa (raw, json) Hash identifier: jySYIIyg1kFTfpanYPm8aNJluQ0i2bWOtFUNDTxC8ZM= Subject key identifier: 0A:EE:B1:43:E9:6C:41:B9:15:4D:A7:37:D6:C1:64:E1:62:91:31:6A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6FEC9BB738833DADB0D8E2D1C9870076D2BD6D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ae26cc3b-4ee1-41a0-bd1f-4debb21c4972.roa Signing time: Tue 22 Apr 2025 16:31:27 +0000 ROA not before: Tue 22 Apr 2025 16:31:27 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f70:1000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:ec:9b:b7:38:83:3d:ad:b0:d8:e2:d1:c9:87:00:76:d2:bd:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:31:27 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=2a7d826717947569e2e613acbc2019aca28dabb52f17ff757ae0c4502b5829d2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f2:c7:f7:cb:eb:74:57:73:70:3d:0a:6d:e4: ff:d7:e5:0e:f0:ef:e5:17:9a:b4:f7:88:3e:44:0c: 4b:dd:74:3b:5c:fa:cf:37:f9:e6:09:ea:af:5e:09: ab:44:97:50:c4:23:7c:6e:53:f4:0b:24:7f:e3:7b: 96:4a:0c:f9:d4:d1:53:8a:a7:34:35:21:39:ac:6b: 84:6b:41:05:55:ee:0e:a6:ec:14:f4:24:58:ac:37: fa:5d:2d:21:7b:ba:d9:d5:49:b4:58:09:98:8c:f8: 29:43:b8:b5:9d:fe:fe:75:fc:6c:d5:81:3f:f8:47: b5:e4:56:d3:fe:7d:cc:e7:b0:66:f6:f5:29:97:99: 0e:28:16:63:a9:87:74:9d:41:4d:31:69:c9:d1:39: 45:ab:3f:f9:76:81:2e:b1:30:27:06:e7:a9:5d:22: 39:44:6e:95:e5:1e:fe:df:1f:e9:1e:4c:c5:ec:d4: 63:c5:ad:a7:7a:58:3d:c9:b7:a2:a2:32:33:ea:c1: 92:87:42:89:61:ca:65:f1:b5:df:1e:d0:f1:b2:e7: 45:45:4a:28:07:74:70:e6:09:92:90:70:4d:27:53: cf:20:d7:c6:e9:a2:04:b1:8b:78:f7:ab:b4:9e:72: 51:93:dc:0d:52:53:9b:dd:b9:a2:dd:94:d1:68:bb: 10:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:EE:B1:43:E9:6C:41:B9:15:4D:A7:37:D6:C1:64:E1:62:91:31:6A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ae26cc3b-4ee1-41a0-bd1f-4debb21c4972.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f70:1000::/40 Signature Algorithm: sha256WithRSAEncryption 01:ef:b8:b6:50:a6:f8:54:2b:c4:b4:36:0f:9f:b1:57:94:5c: 25:1b:8b:92:b2:70:4a:16:55:54:26:5f:27:ec:af:db:6a:51: e8:c2:0c:6b:89:4b:6f:04:43:fd:af:bd:ca:46:81:a0:d5:51: 6e:31:4b:0e:d3:ef:0d:c5:ea:8c:ab:60:69:86:36:58:fe:08: 9d:ae:33:9b:82:7e:e4:12:1b:f5:35:a6:5e:52:a2:e7:1e:e6: bd:e0:a5:2f:c3:1c:de:f4:49:b3:b9:0a:cc:a3:6e:1d:9e:af: 5c:c8:59:70:36:02:ef:10:2f:85:33:b3:b9:30:3f:f9:f3:92: bc:04:22:ad:c1:42:c2:77:6b:1a:eb:20:71:1f:b8:a3:77:ca: b8:9c:20:d4:73:b0:68:dd:56:e9:91:48:38:fc:d3:c9:11:b6: 3c:48:03:6e:26:8e:85:22:28:8e:73:90:14:8b:50:1c:85:ca: 27:e8:3f:9f:4f:46:6d:fe:34:fc:8c:e1:7a:66:bd:28:5b:9b: a1:f9:9e:10:41:69:64:ac:63:56:e9:87:30:95:73:89:6a:c9: d3:b8:20:1e:07:0c:84:1f:63:2f:a1:60:8d:2e:ff:8a:57:ac: a8:13:88:de:a2:6c:6c:6d:d2:2e:3b:07:ed:67:e1:f5:93:45: eb:44:db:b9 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgITb+ybtziDPa2w2OLRyYcAdtK9bTANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA0MjIxNjMxMjdaFw0yNTA1MjcyMzU5NTla MHoxSTBHBgNVBAUTQDJhN2Q4MjY3MTc5NDc1NjllMmU2MTNhY2JjMjAxOWFjYTI4 ZGFiYjUyZjE3ZmY3NTdhZTBjNDUwMmI1ODI5ZDIxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAKXyx/fL63RXc3A9Cm3k/9flDvDv5ReatPeIPkQMS910O1z6 zzf55gnqr14Jq0SXUMQjfG5T9Askf+N7lkoM+dTRU4qnNDUhOaxrhGtBBVXuDqbs FPQkWKw3+l0tIXu62dVJtFgJmIz4KUO4tZ3+/nX8bNWBP/hHteRW0/59zOewZvb1 KZeZDigWY6mHdJ1BTTFpydE5Ras/+XaBLrEwJwbnqV0iOURuleUe/t8f6R5MxezU Y8Wtp3pYPcm3oqIyM+rBkodCiWHKZfG13x7Q8bLnRUVKKAd0cOYJkpBwTSdTzyDX xumiBLGLePertJ5yUZPcDVJTm925ot2U0Wi7EJMCAwEAAaOCArMwggKvMB0GA1Ud DgQWBBQK7rFD6WxBuRVNpzfWwWThYpExajAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvYWUyNmNjM2ItNGVlMS00MWEwLWJkMWYtNGRlYmIyMWM0OTcyLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIw CAMGACYAH3AQMA0GCSqGSIb3DQEBCwUAA4IBAQAB77i2UKb4VCvEtDYPn7FXlFwl G4uSsnBKFlVUJl8n7K/balHowgxriUtvBEP9r73KRoGg1VFuMUsO0+8NxeqMq2Bp hjZY/gidrjObgn7kEhv1NaZeUqLnHua94KUvwxze9EmzuQrMo24dnq9cyFlwNgLv EC+FM7O5MD/585K8BCKtwULCd2sa6yBxH7ijd8q4nCDUc7Bo3VbpkUg4/NPJEbY8 SANuJo6FIiiOc5AUi1Achcon6D+fT0Zt/jT8jOF6Zr0oW5uh+Z4QQWlkrGNW6Ycw lXOJasnTuCAeBwyEH2MvoWCNLv+KV6yoE4jeomxsbdIuOwftZ+H1k0XrRNu5 -----END CERTIFICATE-----Generated at Sat Apr 26 18:39:13 2025 by rpki-client