$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1cdc996-d9de-4ebc-9b37-048cf0e36669.roa File: b1cdc996-d9de-4ebc-9b37-048cf0e36669.roa (raw, json) Hash identifier: wlI+DKbCXtsXtXyP9phTVbAdUgjCTLPvJa3hj7jtfqU= Subject key identifier: D3:DA:91:CC:6E:08:40:9A:93:CE:6D:41:88:AF:95:51:82:95:7A:98 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3D7C7AA18694C5655CB2F8B7AF69A48E3D9444ED Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1cdc996-d9de-4ebc-9b37-048cf0e36669.roa Signing time: Tue 22 Apr 2025 15:20:29 +0000 ROA not before: Tue 22 Apr 2025 15:20:29 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffb:c040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:7c:7a:a1:86:94:c5:65:5c:b2:f8:b7:af:69:a4:8e:3d:94:44:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 15:20:29 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=316eccfaa5b5ee811d155e9f5784065e554d014347f42eda3aa38821deae2f08, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:85:20:48:42:9c:c7:9e:2f:d1:65:2e:a8:f2: 35:75:7a:93:c2:13:f9:07:2c:56:ae:88:f5:79:8c: c7:32:31:77:b5:b4:e4:79:0e:00:c4:84:c5:1f:04: 0d:8f:bb:a9:4f:93:76:f1:e4:24:ef:18:1a:9f:37: db:bb:dc:d0:ff:ea:53:fe:51:97:7f:6d:5b:ec:36: 70:d0:10:42:24:f4:82:06:2e:f4:d1:3e:44:34:93: bb:c7:4d:f8:3f:b3:2d:d0:4c:24:4b:1a:0d:ab:26: ef:a8:e0:4e:47:a0:06:9e:92:9a:90:57:74:a1:a9: c2:dc:25:3f:b6:f1:bb:0e:52:36:b1:0c:e4:1c:9b: e3:76:86:52:1d:08:2d:20:30:b5:20:bb:12:b8:69: 8a:9a:5f:26:0f:ea:a5:89:70:0d:69:03:21:6c:e9: a9:86:1c:d8:fe:71:8b:a1:3d:7c:21:60:69:1f:75: 7e:ce:b9:65:96:5d:3c:c6:f1:1b:14:17:61:ac:f5: 51:42:11:69:ee:1b:45:fa:08:24:c4:e0:bf:41:72: e7:02:51:be:ba:82:69:21:a2:27:6e:b6:60:1a:cb: 67:e5:12:91:d9:53:ba:f5:e8:c2:d9:74:41:31:b1: 24:4a:ba:00:da:71:da:7d:87:94:2d:74:87:da:0e: 9c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:DA:91:CC:6E:08:40:9A:93:CE:6D:41:88:AF:95:51:82:95:7A:98 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1cdc996-d9de-4ebc-9b37-048cf0e36669.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffb:c040::/46 Signature Algorithm: sha256WithRSAEncryption 44:19:f3:a6:85:71:c5:80:30:d7:b5:30:2c:10:a3:25:d5:ee: 17:2c:c4:27:c0:02:a3:ed:38:43:fe:9f:7f:d5:15:e7:a8:95: eb:ad:68:ee:6b:72:3f:58:66:b8:34:a6:25:f4:e9:c5:e9:24: c3:aa:09:56:3a:e8:20:51:77:e4:3c:39:fb:6e:04:4c:63:bd: f9:5b:10:26:b2:61:3e:76:a9:4b:da:a9:0f:d3:50:cf:22:f8: 8f:21:a5:3e:a3:08:bb:9f:80:28:6a:35:55:94:e2:4c:a5:35: e0:1f:7d:a6:20:5e:4d:a6:92:b8:e6:70:73:78:ad:72:08:b6: 71:a5:0e:4e:5d:02:a8:76:29:a4:66:31:2c:1b:a9:ec:33:71: 0c:98:c4:f3:7a:5a:46:4a:88:47:31:a4:96:e3:c8:1f:32:74: 97:8f:e2:e4:a1:e8:df:eb:d1:4d:d8:1e:fd:80:0d:32:8a:40: e7:ea:ad:7f:ce:b1:cb:d5:12:d7:c3:c2:8b:12:87:01:8c:6d: 95:68:62:41:9f:f1:30:ca:fa:8e:17:7e:6a:41:02:84:fe:27: 57:e6:ee:4d:55:d3:15:5e:f9:e9:65:b2:b7:3d:a7:16:0a:a9: b2:81:2d:18:68:45:5a:23:c8:89:4f:86:32:33:6f:de:86:61: 5c:41:de:49 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPXx6oYaUxWVcsvi3r2mkjj2URO0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTUyMDI5WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMTZlY2NmYWE1YjVlZTgxMWQxNTVlOWY1Nzg0MDY1ZTU1 NGQwMTQzNDdmNDJlZGEzYWEzODgyMWRlYWUyZjA4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXhSBIQpzHni/RZS6o8jV1epPCE/kHLFauiPV5jMcyMXe1 tOR5DgDEhMUfBA2Pu6lPk3bx5CTvGBqfN9u73ND/6lP+UZd/bVvsNnDQEEIk9IIG LvTRPkQ0k7vHTfg/sy3QTCRLGg2rJu+o4E5HoAaekpqQV3ShqcLcJT+28bsOUjax DOQcm+N2hlIdCC0gMLUguxK4aYqaXyYP6qWJcA1pAyFs6amGHNj+cYuhPXwhYGkf dX7OuWWWXTzG8RsUF2Gs9VFCEWnuG0X6CCTE4L9BcucCUb66gmkhoidutmAay2fl EpHZU7r16MLZdEExsSRKugDacdp9h5QtdIfaDpylAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU09qRzG4IQJqTzm1BiK+VUYKVepgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IxY2RjOTk2LWQ5ZGUtNGViYy05YjM3LTA0OGNmMGUzNjY2OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/7wEAwDQYJKoZIhvcNAQELBQADggEBAEQZ86aFccWAMNe1MCwQoyXV 7hcsxCfAAqPtOEP+n3/VFeeoleutaO5rcj9YZrg0piX06cXpJMOqCVY66CBRd+Q8 OftuBExjvflbECayYT52qUvaqQ/TUM8i+I8hpT6jCLufgChqNVWU4kylNeAffaYg Xk2mkrjmcHN4rXIItnGlDk5dAqh2KaRmMSwbqewzcQyYxPN6WkZKiEcxpJbjyB8y dJeP4uSh6N/r0U3YHv2ADTKKQOfqrX/OscvVEtfDwosShwGMbZVoYkGf8TDK+o4X fmpBAoT+J1fm7k1V0xVe+ellsrc9pxYKqbKBLRhoRVojyIlPhjIzb96GYVxB3kk= -----END CERTIFICATE-----Generated at Sat Apr 26 16:39:35 2025 by rpki-client