$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c636934a-c7cc-4c0f-acb1-a74b2500994d.roa File: c636934a-c7cc-4c0f-acb1-a74b2500994d.roa (raw, json) Hash identifier: 1aNaMDXNuM3A/aeL7U5FcssGa4fqElPklZTo1QtfNTQ= Subject key identifier: 30:E9:FF:99:59:7C:0C:18:47:9E:2C:0B:A3:A0:CE:92:53:CC:5C:A2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2EEE20B76953194A710021E5EE207AF699CAA15C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c636934a-c7cc-4c0f-acb1-a74b2500994d.roa Signing time: Mon 21 Apr 2025 18:02:14 +0000 ROA not before: Mon 21 Apr 2025 18:02:14 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f38:3480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:ee:20:b7:69:53:19:4a:71:00:21:e5:ee:20:7a:f6:99:ca:a1:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 21 18:02:14 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=36ccef417f997d8354f0ffa18d4383dd72fd850aa8107c4ce1d10a3e53e1193b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:82:e3:6c:c5:6c:a5:33:8f:6c:3a:43:9a:c2: 20:dc:2e:6c:dc:a4:72:83:0f:07:c0:4c:85:8e:04: e7:9e:4a:d6:e9:07:fc:2e:ad:6a:76:77:19:73:4d: c8:70:9d:cf:90:e3:e8:ef:01:aa:b0:69:b0:3d:a1: df:61:f0:8a:76:a2:4f:47:53:91:61:4f:c9:41:8a: dc:2c:ab:67:c8:fe:97:b1:a7:d3:8a:71:98:af:01: 32:ab:49:9d:23:9d:92:a8:e9:8f:a8:9b:7e:56:6d: f6:78:09:95:da:93:0c:01:83:d4:d6:32:47:39:e8: cc:dd:0c:35:48:41:cd:e0:35:18:eb:cd:04:ed:07: cf:2f:db:75:b3:f8:e8:53:6b:6f:e1:1e:ad:cd:4c: 7c:8d:75:c1:ee:b1:e1:f2:d6:c9:b9:5c:da:4d:7e: eb:21:af:e9:da:36:a1:a8:73:f8:72:48:3a:cd:29: 38:19:79:b8:95:cd:80:c6:ac:98:73:b8:3b:bb:a9: 9b:42:0d:01:3a:66:38:8a:73:51:3c:75:65:c3:eb: 31:0c:28:93:d9:d4:0e:6f:97:0e:48:7f:c3:6a:99: ac:7e:f0:e5:7d:41:0f:fa:20:da:0c:9b:da:f5:b7: 30:d4:67:41:12:05:5f:76:6e:79:a4:14:e9:22:be: eb:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:E9:FF:99:59:7C:0C:18:47:9E:2C:0B:A3:A0:CE:92:53:CC:5C:A2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c636934a-c7cc-4c0f-acb1-a74b2500994d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f38:3480::/48 Signature Algorithm: sha256WithRSAEncryption 54:2b:c4:6f:99:db:19:7a:d6:c0:e5:a2:fd:70:fc:60:1f:b9: 5f:e9:a6:73:3b:b1:11:84:e7:f6:f0:72:8c:a3:9e:6c:1a:57: f7:5f:97:86:ff:47:2e:04:05:47:57:57:79:ea:46:d4:15:84: 97:e3:f9:26:96:32:c4:db:42:f5:8c:4a:e2:a4:18:f2:28:71: c5:a8:f2:15:ae:8f:41:ca:c0:7f:63:39:b7:f7:fd:a1:17:93: f2:71:c7:ac:02:18:bf:82:2b:6f:00:15:4f:8c:3e:cf:31:1b: 4b:32:4b:fe:96:a5:e5:aa:e1:8e:83:5f:3c:53:e0:1f:98:aa: 2b:98:a6:d2:f7:b4:e5:30:89:7a:bf:73:ef:91:a1:c3:fb:42: 72:5a:48:d5:50:68:ab:d2:b1:f6:39:59:78:d4:08:b1:a9:43: 71:60:64:91:0e:d9:4c:1a:63:8d:1a:31:bf:1d:36:c2:00:12: d6:b6:2b:b4:85:da:09:75:38:aa:d8:70:05:e6:0a:c8:f3:a7: db:e4:47:98:c9:50:69:ab:11:b1:89:81:6c:ee:cf:d2:ed:51: f5:ab:28:f0:ed:f2:73:32:c4:b7:c9:9b:c2:8f:9f:48:00:54: cd:29:69:9e:93:67:34:76:4f:a0:dc:dd:54:63:a3:69:3b:b5: f3:c1:71:da -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULu4gt2lTGUpxACHl7iB69pnKoVwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIxMTgwMjE0WhcNMjUwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNmNjZWY0MTdmOTk3ZDgzNTRmMGZmYTE4ZDQzODNkZDcy ZmQ4NTBhYTgxMDdjNGNlMWQxMGEzZTUzZTExOTNiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7guNsxWylM49sOkOawiDcLmzcpHKDDwfATIWOBOeeStbp B/wurWp2dxlzTchwnc+Q4+jvAaqwabA9od9h8Ip2ok9HU5FhT8lBitwsq2fI/pex p9OKcZivATKrSZ0jnZKo6Y+om35WbfZ4CZXakwwBg9TWMkc56MzdDDVIQc3gNRjr zQTtB88v23Wz+OhTa2/hHq3NTHyNdcHuseHy1sm5XNpNfushr+naNqGoc/hySDrN KTgZebiVzYDGrJhzuDu7qZtCDQE6ZjiKc1E8dWXD6zEMKJPZ1A5vlw5If8Nqmax+ 8OV9QQ/6INoMm9r1tzDUZ0ESBV92bnmkFOkivut7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUMOn/mVl8DBhHniwLo6DOklPMXKIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M2MzY5MzRhLWM3Y2MtNGMwZi1hY2IxLWE3NGIyNTAwOTk0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB84NIAwDQYJKoZIhvcNAQELBQADggEBAFQrxG+Z2xl61sDlov1w/GAf uV/ppnM7sRGE5/bwcoyjnmwaV/dfl4b/Ry4EBUdXV3nqRtQVhJfj+SaWMsTbQvWM SuKkGPIoccWo8hWuj0HKwH9jObf3/aEXk/Jxx6wCGL+CK28AFU+MPs8xG0syS/6W peWq4Y6DXzxT4B+YqiuYptL3tOUwiXq/c++RocP7QnJaSNVQaKvSsfY5WXjUCLGp Q3FgZJEO2UwaY40aMb8dNsIAEta2K7SF2gl1OKrYcAXmCsjzp9vkR5jJUGmrEbGJ gWzuz9LtUfWrKPDt8nMyxLfJm8KPn0gAVM0paZ6TZzR2T6Dc3VRjo2k7tfPBcdo= -----END CERTIFICATE-----Generated at Sat Apr 26 18:02:12 2025 by rpki-client