$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b35e1422-797a-49b6-b1f5-bf9b752403e2.roa File: b35e1422-797a-49b6-b1f5-bf9b752403e2.roa (raw, json) Hash identifier: cGgOg/56vwGA8pgmS6HpZ07iWjrF9KTK66NTfyqgdUI= Subject key identifier: C0:23:6A:9A:BB:A8:22:49:CA:15:30:46:6A:5C:98:DE:25:A5:9E:BB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2FF8169788DB4E7333DE7A73BDD4831FBBA302FE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b35e1422-797a-49b6-b1f5-bf9b752403e2.roa Signing time: Mon 21 Apr 2025 17:30:58 +0000 ROA not before: Mon 21 Apr 2025 17:30:58 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f38:5040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:f8:16:97:88:db:4e:73:33:de:7a:73:bd:d4:83:1f:bb:a3:02:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 21 17:30:58 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=89fa40dd3d82e351bd72c4d1aa644481a09087d4627f33f0edde4ae2f7f4bf5e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:dc:02:8b:66:79:fa:81:35:1e:c3:93:33:b7: e0:5f:84:e5:a8:d4:53:b4:9c:2f:36:5f:ac:84:a6: b7:d8:9c:4d:08:bd:ad:20:f3:57:c6:7f:c0:ed:53: ca:14:e4:6a:3e:43:36:b8:1a:cf:39:cb:bd:c6:24: 8e:71:c6:7c:c0:b3:e1:3e:1e:a4:aa:47:4f:c2:bf: 58:58:78:80:f9:b8:7d:14:41:9c:3b:aa:2d:d6:29: 8d:7f:9a:0a:00:26:69:c5:86:c4:c9:ab:0b:6d:e0: d1:7e:db:d0:c9:ea:9c:ba:fc:33:23:8c:4b:e2:f3: 52:18:76:84:bc:16:f2:13:c3:4c:b7:90:8b:e4:1f: cb:57:89:35:fb:0c:16:d7:ca:77:91:19:81:d6:9b: d8:7c:96:a9:9d:5b:d2:ca:0d:aa:77:f5:53:11:bc: 80:13:cb:10:1f:50:fe:f4:39:5f:f1:d7:98:86:8c: 93:7f:3f:cc:55:ed:2d:71:90:85:39:9f:35:6e:38: 34:ca:4e:b2:76:db:17:43:ef:a0:d5:0d:e4:53:fd: 75:23:19:70:54:b2:15:c3:82:fe:da:90:e5:32:dc: 39:b8:49:04:bd:3f:87:29:bd:7b:5f:2e:6d:52:b3: 22:77:81:3c:17:10:7b:7b:63:a7:54:9e:7b:3c:8f: bb:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:23:6A:9A:BB:A8:22:49:CA:15:30:46:6A:5C:98:DE:25:A5:9E:BB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b35e1422-797a-49b6-b1f5-bf9b752403e2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f38:5040::/48 Signature Algorithm: sha256WithRSAEncryption 6c:11:d9:fb:a3:8d:a6:eb:c1:49:98:f7:0e:fb:01:a4:b3:89: 80:7c:34:7a:ec:fc:d0:b7:dd:51:f3:94:09:1b:4d:49:4b:9c: 2e:f1:2c:97:17:65:7e:ad:f2:ee:13:be:12:d6:ec:0c:ba:3d: fc:a9:45:65:70:61:8b:bd:14:1c:eb:c8:42:79:13:65:9c:77: 7b:c1:21:7e:6a:f1:64:5f:39:66:4d:32:aa:6d:e6:af:ee:2f: 18:43:78:63:65:14:2e:c7:c3:21:81:77:ea:93:f2:75:00:8f: 03:74:0f:85:62:01:d9:95:26:16:d8:dd:88:cd:a5:3a:f7:43: f8:da:5c:59:04:6e:b4:b9:d9:3a:14:d6:c7:72:5c:e0:2a:39: 1a:c3:bc:6e:69:bd:10:e4:9a:bf:01:16:6b:a8:20:ad:04:1a: 29:b2:59:14:29:02:49:96:bf:9e:6d:db:cd:eb:90:8c:37:3e: cc:66:0e:03:db:9e:c0:26:46:71:bc:75:29:3e:76:50:84:d5: 53:ef:21:d4:f8:a5:2d:33:c6:3e:38:e9:6a:d7:da:0a:ec:3f: 15:85:bb:84:55:41:01:67:ce:46:ca:c9:6f:fa:2b:95:78:d3: c2:be:df:20:f8:3f:e0:f2:b6:d4:3b:2e:35:30:c6:ec:ef:e3: 64:ab:5a:8a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUL/gWl4jbTnMz3npzvdSDH7ujAv4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIxMTczMDU4WhcNMjUwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A4OWZhNDBkZDNkODJlMzUxYmQ3MmM0ZDFhYTY0NDQ4MWEw OTA4N2Q0NjI3ZjMzZjBlZGRlNGFlMmY3ZjRiZjVlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDS3AKLZnn6gTUew5Mzt+BfhOWo1FO0nC82X6yEprfYnE0I va0g81fGf8DtU8oU5Go+Qza4Gs85y73GJI5xxnzAs+E+HqSqR0/Cv1hYeID5uH0U QZw7qi3WKY1/mgoAJmnFhsTJqwtt4NF+29DJ6py6/DMjjEvi81IYdoS8FvITw0y3 kIvkH8tXiTX7DBbXyneRGYHWm9h8lqmdW9LKDap39VMRvIATyxAfUP70OV/x15iG jJN/P8xV7S1xkIU5nzVuODTKTrJ22xdD76DVDeRT/XUjGXBUshXDgv7akOUy3Dm4 SQS9P4cpvXtfLm1SsyJ3gTwXEHt7Y6dUnns8j7uxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUwCNqmruoIknKFTBGalyY3iWlnrswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IzNWUxNDIyLTc5N2EtNDliNi1iMWY1LWJmOWI3NTI0MDNlMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB84UEAwDQYJKoZIhvcNAQELBQADggEBAGwR2fujjabrwUmY9w77AaSz iYB8NHrs/NC33VHzlAkbTUlLnC7xLJcXZX6t8u4TvhLW7Ay6PfypRWVwYYu9FBzr yEJ5E2Wcd3vBIX5q8WRfOWZNMqpt5q/uLxhDeGNlFC7HwyGBd+qT8nUAjwN0D4Vi AdmVJhbY3YjNpTr3Q/jaXFkEbrS52ToU1sdyXOAqORrDvG5pvRDkmr8BFmuoIK0E GimyWRQpAkmWv55t283rkIw3PsxmDgPbnsAmRnG8dSk+dlCE1VPvIdT4pS0zxj44 6WrX2grsPxWFu4RVQQFnzkbKyW/6K5V408K+3yD4P+DyttQ7LjUwxuzv42SrWoo= -----END CERTIFICATE-----Generated at Sat Apr 26 14:52:04 2025 by rpki-client