$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3f91ab4-930a-4958-b6c8-811feb211be7.roa File: b3f91ab4-930a-4958-b6c8-811feb211be7.roa (raw, json) Hash identifier: d53DL1uMitAda+kPbvU57PWYByS5OUDsSfeTA8tVO24= Subject key identifier: 3B:64:D4:2C:2B:D2:69:FB:A5:7F:26:5C:65:B5:2F:0A:17:76:95:72 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3B071B87F08C60AE600F9D8136F351FC26F9D244 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3f91ab4-930a-4958-b6c8-811feb211be7.roa Signing time: Tue 22 Apr 2025 17:20:29 +0000 ROA not before: Tue 22 Apr 2025 17:20:29 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f10:c800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:07:1b:87:f0:8c:60:ae:60:0f:9d:81:36:f3:51:fc:26:f9:d2:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 17:20:29 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=a1bb4a9be2b9bb2a8cf2ca35805e7703642989a7f66d0d7aadbe8480682dc45f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:56:5f:ab:c5:59:32:59:0c:96:44:2c:4b:18: 28:05:ca:b6:8f:9b:de:9f:87:c6:4e:0e:e5:18:83: 0a:99:8d:71:79:43:75:c3:0e:8c:57:b6:33:5e:28: 3d:d2:e1:64:58:c1:e2:50:76:a4:9b:5c:d5:a2:4b: 53:0a:01:f9:0e:8d:e0:18:31:95:35:6c:5c:ab:45: 02:d1:5f:2f:83:ad:fa:e2:ec:3d:8f:80:28:35:88: d9:8c:c9:e5:f6:4d:20:e7:f4:9b:28:6d:39:4f:1c: 52:2f:6a:87:bf:0e:22:2e:e1:21:b0:c4:5b:7a:71: 5e:c4:93:09:d2:c7:e4:84:a4:69:72:92:b9:95:56: b0:fe:a0:4e:d0:ff:7e:09:a7:49:b7:e4:5a:86:72: f4:b6:4f:8e:f0:58:7c:bd:bf:f0:8e:d0:ba:dd:62: 1b:c7:33:56:a8:d1:7f:83:0e:0a:ee:e8:1b:95:9f: 60:bb:e3:74:b6:09:3b:a4:31:94:93:9b:d2:c3:d3: e0:2d:37:2b:6f:1a:15:13:ea:53:a4:e3:28:98:f8: f6:43:6c:82:e4:d8:66:0d:20:05:fa:b5:0c:c2:cf: 95:c7:9c:4e:51:42:16:cf:56:ed:cc:a9:7b:7c:cd: f1:97:df:e2:1c:d5:28:8c:55:1c:3d:56:09:c6:26: e7:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:64:D4:2C:2B:D2:69:FB:A5:7F:26:5C:65:B5:2F:0A:17:76:95:72 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3f91ab4-930a-4958-b6c8-811feb211be7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f10:c800::/37 Signature Algorithm: sha256WithRSAEncryption 06:c9:a2:b1:0a:8f:7e:e3:94:12:c0:cb:12:62:fb:c8:9f:dc: 0c:fa:d0:67:fa:c0:4b:5e:14:0e:42:fb:f9:85:db:74:8e:d9: 3b:77:b9:25:46:93:11:8b:6a:ea:1d:18:fb:bf:e7:90:01:50: 46:18:41:fb:88:1c:72:97:ee:9d:38:51:41:b4:b9:8c:2d:c3: e9:c2:2f:38:bb:20:65:59:cd:c3:d5:9e:69:83:32:f9:b2:fb: 50:a2:9b:38:5f:e4:e8:c2:e8:39:25:5a:23:12:10:58:68:2e: c4:4b:63:e3:e6:17:81:19:46:bd:3f:f0:cb:78:df:c2:8a:bd: 07:c1:ea:bb:65:4c:03:58:fb:a4:3f:f1:b4:de:93:90:8c:ff: 62:f9:a0:5a:31:84:a2:b5:74:56:90:dd:e8:24:52:09:67:b7: 70:da:35:27:08:ce:5d:4a:de:43:0e:c5:50:f0:67:f6:e0:b0: 85:09:66:91:71:a8:c7:b6:c0:65:70:74:6f:5f:05:ef:a2:9a: e7:06:19:f1:87:b7:74:ab:a6:05:a9:a9:cb:b4:ce:78:2d:dc: cf:26:18:d4:0b:ba:31:53:41:67:20:3e:07:14:64:3d:ba:d5: 9d:65:5a:5b:47:65:9e:51:4d:88:25:10:b3:14:57:45:c2:1d: c3:fd:8b:fe -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUOwcbh/CMYK5gD52BNvNR/Cb50kQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTcyMDI5WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMWJiNGE5YmUyYjliYjJhOGNmMmNhMzU4MDVlNzcwMzY0 Mjk4OWE3ZjY2ZDBkN2FhZGJlODQ4MDY4MmRjNDVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwVl+rxVkyWQyWRCxLGCgFyraPm96fh8ZODuUYgwqZjXF5 Q3XDDoxXtjNeKD3S4WRYweJQdqSbXNWiS1MKAfkOjeAYMZU1bFyrRQLRXy+Drfri 7D2PgCg1iNmMyeX2TSDn9JsobTlPHFIvaoe/DiIu4SGwxFt6cV7EkwnSx+SEpGly krmVVrD+oE7Q/34Jp0m35FqGcvS2T47wWHy9v/CO0LrdYhvHM1ao0X+DDgru6BuV n2C743S2CTukMZSTm9LD0+AtNytvGhUT6lOk4yiY+PZDbILk2GYNIAX6tQzCz5XH nE5RQhbPVu3MqXt8zfGX3+Ic1SiMVRw9VgnGJuczAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUO2TULCvSafulfyZcZbUvChd2lXIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IzZjkxYWI0LTkzMGEtNDk1OC1iNmM4LTgxMWZlYjIxMWJlNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8QyDANBgkqhkiG9w0BAQsFAAOCAQEABsmisQqPfuOUEsDLEmL7yJ/c DPrQZ/rAS14UDkL7+YXbdI7ZO3e5JUaTEYtq6h0Y+7/nkAFQRhhB+4gccpfunThR QbS5jC3D6cIvOLsgZVnNw9WeaYMy+bL7UKKbOF/k6MLoOSVaIxIQWGguxEtj4+YX gRlGvT/wy3jfwoq9B8Hqu2VMA1j7pD/xtN6TkIz/YvmgWjGEorV0VpDd6CRSCWe3 cNo1JwjOXUreQw7FUPBn9uCwhQlmkXGox7bAZXB0b18F76Ka5wYZ8Ye3dKumBamp y7TOeC3czyYY1Au6MVNBZyA+BxRkPbrVnWVaW0dlnlFNiCUQsxRXRcIdw/2L/g== -----END CERTIFICATE-----Generated at Sat Apr 26 16:15:02 2025 by rpki-client