$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c96d5347-7bf9-4984-b298-4dee0ceb88ed.roa File: c96d5347-7bf9-4984-b298-4dee0ceb88ed.roa (raw, json) Hash identifier: mf38uy0w0ckYWXIYa9fWhd3dDa6SCZunbchBJfkv9gM= Subject key identifier: F5:C0:61:7A:32:71:51:24:0C:84:7D:61:16:A2:50:80:B6:AB:4D:BF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 370C9DA8456575808C17457CBE3DFC8C58D3E615 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c96d5347-7bf9-4984-b298-4dee0ceb88ed.roa Signing time: Tue 22 Apr 2025 00:32:07 +0000 ROA not before: Tue 22 Apr 2025 00:32:07 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:8060::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:0c:9d:a8:45:65:75:80:8c:17:45:7c:be:3d:fc:8c:58:d3:e6:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 00:32:07 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=90110ea2244994c37bebbf9f3c6b1e9adea51ca009c8680871c6ae1a4afe41c2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:77:19:90:96:a7:45:81:39:7a:d1:2d:c7:b0: 9a:d7:87:c8:5d:21:82:d2:01:1b:88:b5:1b:b5:28: 2f:ed:6d:8a:e2:7c:7d:0a:63:0a:75:12:23:a7:66: 4f:ba:47:b9:e3:21:d2:32:42:88:6c:84:f7:a9:1c: ae:5d:95:ab:87:69:c6:36:06:bc:72:f3:35:0c:8d: c6:21:1a:12:b8:fe:d1:dc:af:31:f1:44:22:d8:e3: b5:0b:13:32:70:a2:97:01:95:9a:90:6b:64:da:7a: f7:23:55:28:a2:0d:d5:2a:38:48:da:5b:21:c2:71: 4a:81:12:3d:5a:aa:3f:fb:2e:d8:a2:92:fe:ce:4a: c7:02:b8:66:87:97:6e:7a:8c:8e:f0:ad:64:6d:0a: 73:52:50:3c:6c:6b:d9:11:02:08:3f:7c:d6:58:3a: 27:59:25:89:76:0f:0a:86:4d:1b:38:60:25:87:0b: 25:10:21:34:72:2e:b9:9d:85:f5:06:51:b3:cc:02: f3:23:4b:fd:1f:87:eb:55:59:89:3e:96:66:71:f1: 58:b8:56:f3:0e:27:4d:22:52:19:77:17:e9:bb:64: 10:78:77:fa:64:61:a1:08:92:25:83:1d:5c:f3:05: 5a:b6:f7:c3:62:d4:76:b7:e2:61:f1:d1:ce:94:9e: 4b:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:C0:61:7A:32:71:51:24:0C:84:7D:61:16:A2:50:80:B6:AB:4D:BF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c96d5347-7bf9-4984-b298-4dee0ceb88ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:8060::/48 Signature Algorithm: sha256WithRSAEncryption 03:31:20:cd:d2:9c:62:35:df:6e:4d:74:bf:b8:c8:1b:09:a3: a1:d0:ff:6b:16:5e:d5:35:49:62:74:40:81:b9:f2:c9:ca:f5: 5b:c9:3b:fc:01:3f:9b:67:4e:20:0a:93:3c:d6:bc:22:32:89: 48:e8:9a:ec:38:81:55:7a:ef:d0:ee:d2:25:85:70:49:09:58: 5f:81:26:c3:34:26:a7:5e:6a:10:7a:37:fb:4a:bd:b4:69:3c: ac:c4:73:fa:bb:5e:6d:75:17:d1:3c:44:ed:6b:95:76:f3:c2: 8f:a5:a8:9b:b2:b5:cf:4a:ae:d2:a3:13:56:c3:9b:f8:42:c5: 0c:d5:04:73:f8:0f:16:e8:f9:8d:ee:df:70:8e:65:61:c1:3c: c1:f8:ed:79:65:d3:ed:77:3e:90:06:f0:5d:11:e2:7f:41:14: 95:65:ef:ed:7a:75:36:3c:40:fd:a0:1e:74:eb:e0:1d:56:77: 39:c7:a9:72:e0:97:23:a7:04:aa:a2:4f:ff:d7:30:68:08:ab: 82:1f:6c:41:40:a2:f2:8a:30:5d:36:de:87:5c:af:63:49:93: f3:d8:dc:df:61:c0:0f:ad:0d:ed:90:13:ab:90:e1:cd:2f:c2: 1a:54:b0:8a:db:5d:6a:7b:b6:1b:ae:45:d3:40:76:3a:1d:b8: a1:da:a6:ab -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNwydqEVldYCMF0V8vj38jFjT5hUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMDAzMjA3WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MDExMGVhMjI0NDk5NGMzN2JlYmJmOWYzYzZiMWU5YWRl YTUxY2EwMDljODY4MDg3MWM2YWUxYTRhZmU0MWMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZdxmQlqdFgTl60S3HsJrXh8hdIYLSARuItRu1KC/tbYri fH0KYwp1EiOnZk+6R7njIdIyQohshPepHK5dlauHacY2Brxy8zUMjcYhGhK4/tHc rzHxRCLY47ULEzJwopcBlZqQa2TaevcjVSiiDdUqOEjaWyHCcUqBEj1aqj/7Ltii kv7OSscCuGaHl256jI7wrWRtCnNSUDxsa9kRAgg/fNZYOidZJYl2DwqGTRs4YCWH CyUQITRyLrmdhfUGUbPMAvMjS/0fh+tVWYk+lmZx8Vi4VvMOJ00iUhl3F+m7ZBB4 d/pkYaEIkiWDHVzzBVq298Ni1Ha34mHx0c6UnkuXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU9cBhejJxUSQMhH1hFqJQgLarTb8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M5NmQ1MzQ3LTdiZjktNDk4NC1iMjk4LTRkZWUwY2ViODhlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//gGAwDQYJKoZIhvcNAQELBQADggEBAAMxIM3SnGI1325NdL+4yBsJ o6HQ/2sWXtU1SWJ0QIG58snK9VvJO/wBP5tnTiAKkzzWvCIyiUjomuw4gVV679Du 0iWFcEkJWF+BJsM0JqdeahB6N/tKvbRpPKzEc/q7Xm11F9E8RO1rlXbzwo+lqJuy tc9KrtKjE1bDm/hCxQzVBHP4Dxbo+Y3u33COZWHBPMH47Xll0+13PpAG8F0R4n9B FJVl7+16dTY8QP2gHnTr4B1WdznHqXLglyOnBKqiT//XMGgIq4IfbEFAovKKMF02 3odcr2NJk/PY3N9hwA+tDe2QE6uQ4c0vwhpUsIrbXWp7thuuRdNAdjoduKHapqs= -----END CERTIFICATE-----Generated at Sat Apr 26 14:58:29 2025 by rpki-client