$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1f32224-d90c-4834-9dd6-5bb1a05fb638.roa File: b1f32224-d90c-4834-9dd6-5bb1a05fb638.roa (raw, json) Hash identifier: 4K8DgBN6Hbb+87OYn6Is9sk8H9P+fnhh78k7TE14Os0= Subject key identifier: 2B:31:3A:16:F3:3A:4C:8C:75:12:D6:B8:57:28:49:C4:8D:80:A0:B8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1A685CBB99B77CC5E8DDD0C26526E81A6E1434A8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1f32224-d90c-4834-9dd6-5bb1a05fb638.roa Signing time: Tue 22 Apr 2025 16:51:44 +0000 ROA not before: Tue 22 Apr 2025 16:51:44 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f1e::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:68:5c:bb:99:b7:7c:c5:e8:dd:d0:c2:65:26:e8:1a:6e:14:34:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:51:44 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=e6a829b5fb9af7c6ace187425d477469ca7242feff39c90a5b038f7064da03b4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:27:b0:4f:05:fd:22:a1:04:99:8f:38:96:31: 42:db:b8:7d:d5:fb:96:af:84:b6:55:9e:9f:68:f6: 2c:dc:fa:db:ec:5a:50:ea:30:9c:c4:7f:44:9e:69: 7b:fa:14:c9:55:93:ef:74:37:1d:61:4c:3f:48:be: 1e:ae:16:07:be:ba:72:37:87:68:03:45:26:dc:1d: da:d8:79:ae:38:dd:53:cc:db:cb:10:85:bf:23:24: 72:78:c4:b5:d8:f0:f7:68:6e:dc:e8:58:e8:ee:71: da:20:52:42:98:41:b5:ab:14:fa:34:de:04:64:f3: 06:83:a0:36:87:88:eb:6c:85:83:6a:55:6a:95:b1: 5e:46:87:53:c0:31:cb:b0:c0:49:b0:f8:b9:37:40: 35:3b:92:8f:56:18:e3:c8:e5:7c:69:ba:63:18:d6: c7:9b:53:db:71:6d:b7:b2:8f:71:40:77:00:fc:25: 1e:c3:c1:99:ca:4e:22:55:7a:d9:01:47:a6:57:09: 92:14:65:0b:d4:6e:9a:58:3f:07:6f:a7:53:22:35: 11:5a:ff:db:3f:8e:be:96:7d:66:86:ce:77:01:0a: 10:61:c0:8f:53:f1:b9:f2:fb:bd:6d:23:96:4e:7a: bc:57:7b:e9:a3:09:09:d0:e5:1e:9d:5d:59:57:c1: 9f:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:31:3A:16:F3:3A:4C:8C:75:12:D6:B8:57:28:49:C4:8D:80:A0:B8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1f32224-d90c-4834-9dd6-5bb1a05fb638.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1e::/36 Signature Algorithm: sha256WithRSAEncryption cd:ce:58:97:86:2d:85:80:bc:47:52:f8:41:96:a2:d3:be:75: 9b:ca:71:e2:bd:61:90:99:16:57:e6:eb:ea:ef:0e:5e:5e:40: 52:8e:26:4f:37:e9:a6:cf:90:44:67:a7:1c:8a:2d:4e:d9:e4: a4:cb:2d:61:1a:7e:a0:bb:0b:49:51:e1:4f:50:f3:7a:94:c5: 17:8c:02:f7:56:08:6e:9a:1b:5e:52:43:62:d5:0e:1c:0f:65: a9:d3:29:54:de:b9:11:f4:a0:83:82:48:d6:02:79:3d:74:6a: 6e:4b:35:c5:5a:1c:1e:fc:d2:08:80:77:1c:f0:fa:4b:26:ad: 52:a5:c9:5d:58:c8:36:f2:90:60:fb:2a:13:69:c9:bb:3c:1a: 14:97:be:77:a7:4b:d2:31:03:c3:19:18:42:a0:92:3f:2b:c2: 50:c9:21:d3:44:0e:5d:49:56:d8:68:c7:63:f5:22:fc:a2:60: 5d:f3:9b:9d:30:b4:82:ef:34:ae:6b:a6:42:3b:ef:b6:c3:d9: cd:65:58:3e:dc:94:d7:3b:25:81:74:2d:eb:9f:42:4b:ed:ed: 8b:bb:58:2e:8a:13:6e:6a:38:15:bc:e2:2a:ff:a2:53:85:26: 04:18:ae:40:f2:93:5c:c2:2f:29:8b:a0:e4:17:8e:7b:72:b1: 9b:65:04:67 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUGmhcu5m3fMXo3dDCZSboGm4UNKgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTY1MTQ0WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNmE4MjliNWZiOWFmN2M2YWNlMTg3NDI1ZDQ3NzQ2OWNh NzI0MmZlZmYzOWM5MGE1YjAzOGY3MDY0ZGEwM2I0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDlJ7BPBf0ioQSZjziWMULbuH3V+5avhLZVnp9o9izc+tvs WlDqMJzEf0SeaXv6FMlVk+90Nx1hTD9Ivh6uFge+unI3h2gDRSbcHdrYea443VPM 28sQhb8jJHJ4xLXY8PdobtzoWOjucdogUkKYQbWrFPo03gRk8waDoDaHiOtshYNq VWqVsV5Gh1PAMcuwwEmw+Lk3QDU7ko9WGOPI5XxpumMY1sebU9txbbeyj3FAdwD8 JR7DwZnKTiJVetkBR6ZXCZIUZQvUbppYPwdvp1MiNRFa/9s/jr6WfWaGzncBChBh wI9T8bny+71tI5ZOerxXe+mjCQnQ5R6dXVlXwZ+xAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUKzE6FvM6TIx1Eta4VyhJxI2AoLgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IxZjMyMjI0LWQ5MGMtNDgzNC05ZGQ2LTViYjFhMDVmYjYzOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8eADANBgkqhkiG9w0BAQsFAAOCAQEAzc5Yl4YthYC8R1L4QZai0751 m8px4r1hkJkWV+br6u8OXl5AUo4mTzfpps+QRGenHIotTtnkpMstYRp+oLsLSVHh T1DzepTFF4wC91YIbpobXlJDYtUOHA9lqdMpVN65EfSgg4JI1gJ5PXRqbks1xVoc HvzSCIB3HPD6SyatUqXJXVjINvKQYPsqE2nJuzwaFJe+d6dL0jEDwxkYQqCSPyvC UMkh00QOXUlW2GjHY/Ui/KJgXfObnTC0gu80rmumQjvvtsPZzWVYPtyU1zslgXQt 659CS+3ti7tYLooTbmo4FbziKv+iU4UmBBiuQPKTXMIvKYug5BeOe3Kxm2UEZw== -----END CERTIFICATE-----Generated at Sat Apr 26 18:02:49 2025 by rpki-client