$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb96d250-5246-4bf9-ab64-c99916885173.roa File: cb96d250-5246-4bf9-ab64-c99916885173.roa (raw, json) Hash identifier: Ce0BlhKKvl8XB9wiIHWzoSb1p1SJGV5FF6BHpYZlp4o= Subject key identifier: AA:71:B9:D6:C5:12:4D:54:11:83:AA:28:94:25:25:60:E2:25:27:B0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 49DB1593C74DEA079DE6B2EDFAB12B6B40A53505 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb96d250-5246-4bf9-ab64-c99916885173.roa Signing time: Fri 11 Apr 2025 00:10:35 +0000 ROA not before: Fri 11 Apr 2025 00:10:35 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fa0:3400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:db:15:93:c7:4d:ea:07:9d:e6:b2:ed:fa:b1:2b:6b:40:a5:35:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 11 00:10:35 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=d98c697365bdac42945610400ddb40f04593e55fe063a5368158bfa622c6eea6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:15:03:29:4c:75:45:a9:3e:4f:c0:82:18:59: 85:f9:f9:5f:78:26:82:35:c0:3e:0c:b5:3c:65:6c: 2f:8e:62:ff:59:54:ba:d9:5d:c4:84:d2:79:3c:68: 2f:6b:8d:80:17:74:87:ac:de:c5:22:d8:aa:6e:43: 1c:0e:9c:db:3d:80:a1:ac:bc:26:d1:75:07:e3:b2: 7c:30:60:0e:ef:8d:7c:2f:f7:70:43:b3:d7:d3:bf: b1:f1:c5:c6:3c:5a:6a:94:3d:e9:f9:4d:76:d7:e5: 2c:89:7c:be:5e:da:1f:54:cc:24:89:7a:11:bd:14: b9:f6:bf:bd:02:f7:8e:14:e7:42:31:51:bd:ce:25: b8:5f:9e:4f:23:df:9a:3d:75:54:99:f4:a4:c7:e8: 78:cd:5f:01:79:d8:8a:33:7b:16:cd:b3:f2:2a:a9: af:7f:dc:fc:75:40:4d:c7:93:4a:b0:2a:11:3f:e7: b4:97:22:2d:56:ea:d8:7e:69:a8:c9:e8:17:af:a1: 3f:29:a2:b7:25:30:64:13:60:62:fe:c3:8f:78:a5: 8c:7c:85:c3:6c:15:a3:47:af:af:14:06:6d:eb:42: d8:45:73:a7:68:10:c9:c9:63:fa:56:8e:bf:51:62: 43:ea:ed:b1:00:d8:1b:98:c1:c6:95:7f:85:47:2b: 5d:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:71:B9:D6:C5:12:4D:54:11:83:AA:28:94:25:25:60:E2:25:27:B0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb96d250-5246-4bf9-ab64-c99916885173.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fa0:3400::/40 Signature Algorithm: sha256WithRSAEncryption 7a:24:12:1c:1c:87:b9:57:04:81:33:15:48:1f:a7:d3:ac:d6: c0:e8:e2:6c:a3:2e:da:7d:26:b9:e5:8b:2d:ad:78:dc:a4:7d: d3:e8:19:b8:1c:bd:b9:c0:e7:23:1c:cd:12:1b:de:d1:0a:cc: 4c:8f:3a:15:49:56:b1:27:74:a7:a4:51:99:96:87:62:39:ce: 26:b6:7e:0a:77:c3:11:7b:bb:cd:1b:b0:2b:e6:33:31:d2:98: 81:eb:01:2b:70:c1:0f:f1:c7:0e:54:93:32:fa:c2:f1:ce:d4: 8e:47:bb:91:09:e9:1f:93:6d:a9:38:7c:de:a6:eb:d6:1e:00: ab:99:b0:bf:ec:e9:ff:2c:60:2e:1e:a4:d7:dd:b8:36:fb:c1: ef:23:94:6e:5f:c9:9f:69:f2:ce:9b:ef:dc:92:2f:d7:69:e6: 35:bb:57:df:c0:2b:17:72:8b:c6:0b:a4:7e:2f:fd:03:1b:10: 17:4e:18:6c:84:84:50:47:56:5a:7a:32:c1:42:24:00:7f:55: ad:64:57:1c:a8:c4:5e:f2:a7:e2:96:88:d2:1c:40:06:ed:30: 04:85:11:c1:06:16:4e:3a:2f:00:49:ec:fd:be:40:de:90:e2: c1:82:58:fb:05:68:61:e6:11:c4:9b:39:55:90:fd:29:59:33: 2e:63:b3:13 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUSdsVk8dN6ged5rLt+rEra0ClNQUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDExMDAxMDM1WhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkOThjNjk3MzY1YmRhYzQyOTQ1NjEwNDAwZGRiNDBmMDQ1 OTNlNTVmZTA2M2E1MzY4MTU4YmZhNjIyYzZlZWE2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgFQMpTHVFqT5PwIIYWYX5+V94JoI1wD4MtTxlbC+OYv9Z VLrZXcSE0nk8aC9rjYAXdIes3sUi2KpuQxwOnNs9gKGsvCbRdQfjsnwwYA7vjXwv 93BDs9fTv7HxxcY8WmqUPen5TXbX5SyJfL5e2h9UzCSJehG9FLn2v70C944U50Ix Ub3OJbhfnk8j35o9dVSZ9KTH6HjNXwF52IozexbNs/Iqqa9/3Px1QE3Hk0qwKhE/ 57SXIi1W6th+aajJ6BevoT8porclMGQTYGL+w494pYx8hcNsFaNHr68UBm3rQthF c6doEMnJY/pWjr9RYkPq7bEA2BuYwcaVf4VHK11RAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUqnG51sUSTVQRg6oolCUlYOIlJ7AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NiOTZkMjUwLTUyNDYtNGJmOS1hYjY0LWM5OTkxNjg4NTE3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+gNDANBgkqhkiG9w0BAQsFAAOCAQEAeiQSHByHuVcEgTMVSB+n06zW wOjibKMu2n0mueWLLa143KR90+gZuBy9ucDnIxzNEhve0QrMTI86FUlWsSd0p6RR mZaHYjnOJrZ+CnfDEXu7zRuwK+YzMdKYgesBK3DBD/HHDlSTMvrC8c7Ujke7kQnp H5NtqTh83qbr1h4Aq5mwv+zp/yxgLh6k1924NvvB7yOUbl/Jn2nyzpvv3JIv12nm NbtX38ArF3KLxgukfi/9AxsQF04YbISEUEdWWnoywUIkAH9VrWRXHKjEXvKn4paI 0hxABu0wBIURwQYWTjovAEns/b5A3pDiwYJY+wVoYeYRxJs5VZD9KVkzLmOzEw== -----END CERTIFICATE-----Generated at Sat Apr 26 16:57:57 2025 by rpki-client