$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb583196-dcb1-451f-b8a3-2f474dc16d0d.roa File: cb583196-dcb1-451f-b8a3-2f474dc16d0d.roa (raw, json) Hash identifier: vfwR/I+Vi6nUwmZc/EeH0KS6HjyIMV/bist56YlLAGI= Subject key identifier: 52:4B:B4:37:BD:60:CA:72:4F:59:AC:70:E4:5D:00:53:5C:45:DA:E0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5051F6583AA10CFEA26F57E271F34BD49DC6A7C6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb583196-dcb1-451f-b8a3-2f474dc16d0d.roa Signing time: Mon 21 Apr 2025 17:41:34 +0000 ROA not before: Mon 21 Apr 2025 17:41:34 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:40e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:51:f6:58:3a:a1:0c:fe:a2:6f:57:e2:71:f3:4b:d4:9d:c6:a7:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 21 17:41:34 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=239a3c406cd878dd2d3226053fa392530565808ede3130515db423f6e5d18bfe, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:60:a8:53:58:e9:9e:0c:4f:f9:fe:69:85:0f: ab:ef:52:f1:a8:1f:7b:41:d6:ae:48:8f:3e:72:3a: 29:eb:c2:7b:81:47:a6:78:10:23:6f:85:75:f7:73: e1:80:5b:79:11:1f:d3:48:e9:e4:db:b5:09:73:7c: 58:a5:53:51:50:b4:2c:d1:56:b3:c0:bc:ac:b8:89: 38:de:fb:56:2c:73:e8:72:fb:67:21:61:6d:51:64: c1:26:21:e5:aa:78:ba:f6:40:6e:66:74:20:0a:29: 40:d0:27:8f:9b:7c:7b:8f:5f:0c:d5:9c:2d:bd:8d: 50:b6:8e:7e:36:f3:22:ce:e2:7b:71:2a:ed:68:33: 8c:fc:cb:65:d4:8c:00:f6:0d:74:1d:d9:a9:a9:9e: b0:e5:55:ad:36:d6:45:9f:46:23:82:17:c4:6e:a0: 58:5d:74:3d:6c:9a:c2:2a:21:43:c4:79:7b:81:dd: 6e:0f:c4:5e:10:77:c8:8b:e4:e1:ab:4d:b8:2a:87: 9d:43:0e:31:e1:b8:3c:e5:7c:8c:33:0e:35:8a:2d: 77:46:19:ef:52:a2:c3:31:f8:fa:09:91:49:9f:f0: d3:ff:9e:a2:59:d9:7c:0a:7d:57:5f:49:c7:ca:88: fb:59:35:e8:98:d9:7a:00:ba:29:a5:d1:76:97:dc: 11:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:4B:B4:37:BD:60:CA:72:4F:59:AC:70:E4:5D:00:53:5C:45:DA:E0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb583196-dcb1-451f-b8a3-2f474dc16d0d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:40e0::/48 Signature Algorithm: sha256WithRSAEncryption 15:06:d8:14:a2:bc:61:e1:80:64:e8:2a:88:3c:27:eb:2b:18: 40:15:7d:b0:04:b5:fc:d3:27:50:6d:a5:3d:d4:df:b6:ed:4a: f3:c8:e7:db:a1:11:39:7c:78:f1:f1:f6:5c:53:fd:d1:7b:79: 5d:f3:2e:2a:a1:e5:b8:dc:53:4a:c3:57:0c:6d:c4:d3:f4:57: 9a:8b:0d:2c:70:2e:3d:50:d4:2b:20:64:76:bc:94:de:44:f8: d9:13:64:ff:8e:ca:f4:3a:c2:f3:f4:a6:f8:d5:76:5f:47:3a: e0:db:29:7a:7a:1b:18:c1:ad:90:92:90:02:ef:70:fa:b7:07: 18:3c:33:8c:6d:3b:4c:6c:20:26:74:08:c4:5e:85:68:07:fa: d9:31:3f:2c:bd:f3:48:ec:b2:6c:50:6a:e9:63:6a:55:c4:25: 48:9a:9c:41:71:e7:c3:4e:6d:84:e0:cf:90:41:d2:41:e9:9c: ee:e0:a2:af:b5:5f:22:84:e3:aa:36:6d:06:15:d3:e6:bc:d8: ca:e9:8d:c4:20:5b:eb:cc:75:5e:2e:92:b6:ea:24:9e:e5:5f: 04:19:71:67:d1:dc:b2:9c:bd:c0:af:16:09:f6:1f:46:2e:ff: fe:ab:bf:93:f5:7b:ea:3b:c1:b5:89:7c:33:bb:2d:64:05:4a: 9c:73:8d:3a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUFH2WDqhDP6ib1ficfNL1J3Gp8YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIxMTc0MTM0WhcNMjUwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMzlhM2M0MDZjZDg3OGRkMmQzMjI2MDUzZmEzOTI1MzA1 NjU4MDhlZGUzMTMwNTE1ZGI0MjNmNmU1ZDE4YmZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChYKhTWOmeDE/5/mmFD6vvUvGoH3tB1q5Ijz5yOinrwnuB R6Z4ECNvhXX3c+GAW3kRH9NI6eTbtQlzfFilU1FQtCzRVrPAvKy4iTje+1Ysc+hy +2chYW1RZMEmIeWqeLr2QG5mdCAKKUDQJ4+bfHuPXwzVnC29jVC2jn428yLO4ntx Ku1oM4z8y2XUjAD2DXQd2ampnrDlVa021kWfRiOCF8RuoFhddD1smsIqIUPEeXuB 3W4PxF4Qd8iL5OGrTbgqh51DDjHhuDzlfIwzDjWKLXdGGe9SosMx+PoJkUmf8NP/ nqJZ2XwKfVdfScfKiPtZNeiY2XoAuiml0XaX3BGDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUku0N71gynJPWaxw5F0AU1xF2uAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NiNTgzMTk2LWRjYjEtNDUxZi1iOGEzLTJmNDc0ZGMxNmQwZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AQOAwDQYJKoZIhvcNAQELBQADggEBABUG2BSivGHhgGToKog8J+sr GEAVfbAEtfzTJ1BtpT3U37btSvPI59uhETl8ePHx9lxT/dF7eV3zLiqh5bjcU0rD VwxtxNP0V5qLDSxwLj1Q1CsgZHa8lN5E+NkTZP+OyvQ6wvP0pvjVdl9HOuDbKXp6 GxjBrZCSkALvcPq3Bxg8M4xtO0xsICZ0CMRehWgH+tkxPyy980jssmxQauljalXE JUianEFx58NObYTgz5BB0kHpnO7goq+1XyKE46o2bQYV0+a82MrpjcQgW+vMdV4u krbqJJ7lXwQZcWfR3LKcvcCvFgn2H0Yu//6rv5P1e+o7wbWJfDO7LWQFSpxzjTo= -----END CERTIFICATE-----Generated at Sat Apr 26 14:58:21 2025 by rpki-client