$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c94e1df9-e2ea-43d4-bfd2-55468bd063cb.roa File: c94e1df9-e2ea-43d4-bfd2-55468bd063cb.roa (raw, json) Hash identifier: wj77oXnI5O5N9EWZ1TrX4xMnyB1kNN3uJ1vEz61JVQw= Subject key identifier: 75:62:75:5C:24:92:44:9F:19:0A:96:20:E4:B7:0E:58:4C:CC:73:78 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5ECB90F4848A6A12AC2A3D145054DFE0E2B13B7D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c94e1df9-e2ea-43d4-bfd2-55468bd063cb.roa Signing time: Tue 22 Apr 2025 16:30:25 +0000 ROA not before: Tue 22 Apr 2025 16:30:25 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1f70:5000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:cb:90:f4:84:8a:6a:12:ac:2a:3d:14:50:54:df:e0:e2:b1:3b:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:30:25 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=d90a2557fe37af5b9338b4e126bb342e9799dfd20ba5b3e8de9a7a8b13d8c93d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:0c:cf:a6:8d:4d:bb:1d:55:d4:f4:e3:86:68: 6d:86:a4:b3:02:51:ca:d2:27:50:bd:f9:83:b9:d2: 44:24:98:99:cc:d3:f3:10:27:cc:70:1b:4f:d5:84: 2f:4c:18:f1:16:d5:d9:53:24:47:4a:1c:e7:3d:81: 24:30:3c:71:95:8e:50:7c:31:88:10:ea:18:5d:e9: 6a:65:e6:13:f9:52:18:0b:b4:35:50:22:c3:27:c4: 62:74:9f:49:3a:4a:d3:30:98:03:df:77:04:f0:9e: c5:8f:86:a2:05:4c:fd:0e:e8:22:58:54:26:44:53: dc:d8:55:aa:b8:c6:28:51:4f:c1:40:2b:49:c8:ea: 70:e5:4a:c4:86:98:80:0d:df:c7:a4:6f:bb:03:c1: 1e:80:88:b3:4b:7c:c6:18:92:b8:6f:77:f9:a6:35: 72:96:b5:51:3c:b2:6e:b4:af:d7:de:8e:8c:b0:9a: bf:a5:2e:bb:33:77:44:30:98:96:b1:fc:ed:8d:ea: 56:78:a2:eb:ce:1c:95:0f:7a:0c:24:c4:26:70:28: bf:3d:4c:72:2f:5f:0b:0e:c0:e2:3b:31:60:d6:de: 11:df:c8:fe:dd:ce:13:0d:ed:34:2e:74:b8:20:96: b4:42:97:0b:b9:dc:9b:6e:75:eb:eb:de:09:09:94: 7a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:62:75:5C:24:92:44:9F:19:0A:96:20:E4:B7:0E:58:4C:CC:73:78 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c94e1df9-e2ea-43d4-bfd2-55468bd063cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f70:5000::/40 Signature Algorithm: sha256WithRSAEncryption aa:bf:64:c5:a0:ac:82:78:7e:3e:e1:d8:8d:b9:6d:aa:a4:4e: 40:08:25:95:ff:2a:32:ba:2b:0f:01:63:e4:03:e6:86:48:f1: 2c:8e:2f:38:e3:5b:e3:35:11:22:96:35:ca:35:63:de:a3:b4: cf:58:32:b6:8d:08:df:66:25:34:a6:a7:c1:ad:02:9b:b4:15: 36:54:e0:0a:b6:07:e4:3f:40:ae:de:50:30:50:ee:35:a0:b8: 79:91:a1:af:78:41:40:91:3f:a2:3b:c1:ed:1a:21:db:3b:36: da:87:83:f2:80:9a:31:d9:10:37:e4:e3:ca:6f:93:85:82:92: df:ae:61:33:bd:a3:5f:ea:e4:6c:57:2f:55:7e:a5:e6:dd:05: cc:c2:68:8e:f0:c9:5f:cf:83:6a:37:4c:e3:0c:29:c9:38:42: 57:fa:ef:fe:54:91:12:73:57:62:a2:00:1c:ba:c2:43:71:68: 0f:05:cb:58:f6:bf:b3:12:86:30:a0:31:f6:f3:82:52:7f:59: 9a:b4:b0:54:89:9a:aa:ad:64:4e:8e:fa:4c:3e:bb:26:c2:33: de:86:75:f3:05:60:e9:ec:30:a0:a5:f4:8e:a6:e4:2d:ca:68: fc:1c:09:6e:bf:45:f1:0f:b1:78:af:98:b1:90:0c:88:8d:c3: 1b:8a:5b:25 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUXsuQ9ISKahKsKj0UUFTf4OKxO30wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTYzMDI1WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkOTBhMjU1N2ZlMzdhZjViOTMzOGI0ZTEyNmJiMzQyZTk3 OTlkZmQyMGJhNWIzZThkZTlhN2E4YjEzZDhjOTNkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbDM+mjU27HVXU9OOGaG2GpLMCUcrSJ1C9+YO50kQkmJnM 0/MQJ8xwG0/VhC9MGPEW1dlTJEdKHOc9gSQwPHGVjlB8MYgQ6hhd6Wpl5hP5UhgL tDVQIsMnxGJ0n0k6StMwmAPfdwTwnsWPhqIFTP0O6CJYVCZEU9zYVaq4xihRT8FA K0nI6nDlSsSGmIAN38ekb7sDwR6AiLNLfMYYkrhvd/mmNXKWtVE8sm60r9fejoyw mr+lLrszd0QwmJax/O2N6lZ4ouvOHJUPegwkxCZwKL89THIvXwsOwOI7MWDW3hHf yP7dzhMN7TQudLgglrRClwu53Jtudevr3gkJlHo1AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUdWJ1XCSSRJ8ZCpYg5LcOWEzMc3gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M5NGUxZGY5LWUyZWEtNDNkNC1iZmQyLTU1NDY4YmQwNjNjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9wUDANBgkqhkiG9w0BAQsFAAOCAQEAqr9kxaCsgnh+PuHYjbltqqRO QAgllf8qMrorDwFj5APmhkjxLI4vOONb4zURIpY1yjVj3qO0z1gyto0I32YlNKan wa0Cm7QVNlTgCrYH5D9Art5QMFDuNaC4eZGhr3hBQJE/ojvB7Roh2zs22oeD8oCa MdkQN+Tjym+ThYKS365hM72jX+rkbFcvVX6l5t0FzMJojvDJX8+DajdM4wwpyThC V/rv/lSREnNXYqIAHLrCQ3FoDwXLWPa/sxKGMKAx9vOCUn9ZmrSwVImaqq1kTo76 TD67JsIz3oZ18wVg6ewwoKX0jqbkLcpo/BwJbr9F8Q+xeK+YsZAMiI3DG4pbJQ== -----END CERTIFICATE-----Generated at Sat Apr 26 16:09:28 2025 by rpki-client