$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cc9f5c91-e465-4ceb-a73b-236ab84fd8ce.roa File: cc9f5c91-e465-4ceb-a73b-236ab84fd8ce.roa (raw, json) Hash identifier: l99H2Qjgac6d2wLYq0XTXKSv3T1i9fCo+WrL0kE5Ok8= Subject key identifier: B7:31:50:AD:F8:B6:DF:25:E6:88:34:78:EE:2E:DA:B6:4C:83:D4:7D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5A11AD927A124DFEBB505CE95087799E92BD0A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cc9f5c91-e465-4ceb-a73b-236ab84fd8ce.roa Signing time: Mon 21 Apr 2025 18:02:12 +0000 ROA not before: Mon 21 Apr 2025 18:02:12 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:a4c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:11:ad:92:7a:12:4d:fe:bb:50:5c:e9:50:87:79:9e:92:bd:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 21 18:02:12 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=eb218a1ce44dd2aa7bc5325494252e5617b4c7722e06cfec8eef96b31fe2b2e5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e8:23:a7:45:9e:d2:e5:ee:83:1c:b4:c1:3d: c3:1e:3f:20:a4:91:3a:62:1b:96:c1:b6:49:5f:1a: 02:1a:ba:0f:fe:98:66:f3:4a:08:3d:1d:42:c1:65: 53:1f:a0:a5:19:18:61:c4:0f:83:4f:a1:e9:66:27: cf:27:0c:13:19:88:10:90:3c:61:70:d5:f0:70:ea: 96:93:e0:4b:b1:ea:5b:80:27:03:59:d5:1a:8b:c7: bc:b8:50:df:9f:fe:cf:cf:aa:c6:b4:bf:7d:97:51: 18:ee:29:51:04:0f:71:a3:fb:8f:ba:6c:8a:5e:64: ae:d5:77:db:61:66:0c:35:eb:1e:ee:80:b4:a1:b2: 2a:5c:0e:e1:7d:1a:44:0c:7d:5c:4e:5c:23:0d:78: 78:62:2c:67:50:31:67:78:98:74:8e:ab:85:1e:5c: 2d:78:33:f1:b4:dd:77:94:db:0f:0a:2c:7f:60:45: 28:81:ca:ad:57:e7:a0:9a:8b:67:e6:55:12:64:8a: 75:51:9f:02:47:da:3e:1b:77:10:b9:6a:7e:09:4a: d5:0c:94:60:b5:b6:99:5d:b7:74:4a:9d:b6:ef:01: 91:f6:36:85:59:12:30:30:77:3b:da:dc:6f:89:09: aa:80:48:f2:99:4e:77:a8:2b:e0:e4:75:a0:90:96: 0b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:31:50:AD:F8:B6:DF:25:E6:88:34:78:EE:2E:DA:B6:4C:83:D4:7D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cc9f5c91-e465-4ceb-a73b-236ab84fd8ce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:a4c0::/48 Signature Algorithm: sha256WithRSAEncryption 3a:46:a1:93:dd:ae:f5:47:96:d9:1a:65:47:7e:9b:f5:d9:59: 56:6d:e9:de:9a:e6:66:10:3c:51:41:3a:cd:77:c5:17:e1:7a: ba:1e:53:d0:b4:42:c6:e8:bc:8b:fe:55:1b:b8:36:ad:63:ac: 97:dc:bd:0f:51:16:a4:02:35:68:d4:0a:94:44:ad:a5:4b:e4: 06:c7:63:1a:0d:d9:09:80:06:ef:11:51:1e:b8:c1:01:36:71: 08:38:38:20:8a:1c:e8:22:c1:ea:c9:1b:40:80:39:35:88:70: 15:47:dc:fd:ef:1c:ae:7e:d2:c4:b1:37:ac:e1:fb:44:a6:7a: 3f:e2:11:eb:40:ee:33:c6:af:3c:91:bd:60:b9:03:16:cd:4e: 0c:cd:f1:8c:88:4b:95:2f:ca:46:60:55:8a:7e:cd:ef:15:37: de:22:18:8a:f4:2d:96:4d:b3:7a:23:62:6f:8f:cd:36:27:26: 12:b8:3d:4c:5a:78:ae:62:f4:22:ce:b3:8c:30:62:24:40:b1: 92:60:18:b5:55:fa:79:b7:b4:1a:07:8b:47:85:29:2b:fd:ec: f5:1d:0c:39:02:8f:3e:e5:93:ea:fb:ca:9b:64:e7:d9:bb:01: 38:5c:81:15:61:3e:54:34:85:42:13:92:c7:08:b6:bd:e4:b1: 61:34:28:73 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgITWhGtknoSTf67UFzpUId5npK9CjANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA0MjExODAyMTJaFw0yNTA1MjYyMzU5NTla MHoxSTBHBgNVBAUTQGViMjE4YTFjZTQ0ZGQyYWE3YmM1MzI1NDk0MjUyZTU2MTdi NGM3NzIyZTA2Y2ZlYzhlZWY5NmIzMWZlMmIyZTUxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAKfoI6dFntLl7oMctME9wx4/IKSROmIblsG2SV8aAhq6D/6Y ZvNKCD0dQsFlUx+gpRkYYcQPg0+h6WYnzycMExmIEJA8YXDV8HDqlpPgS7HqW4An A1nVGovHvLhQ35/+z8+qxrS/fZdRGO4pUQQPcaP7j7psil5krtV322FmDDXrHu6A tKGyKlwO4X0aRAx9XE5cIw14eGIsZ1AxZ3iYdI6rhR5cLXgz8bTdd5TbDwosf2BF KIHKrVfnoJqLZ+ZVEmSKdVGfAkfaPht3ELlqfglK1QyUYLW2mV23dEqdtu8BkfY2 hVkSMDB3O9rcb4kJqoBI8plOd6gr4OR1oJCWC68CAwEAAaOCArQwggKwMB0GA1Ud DgQWBBS3MVCt+LbfJeaINHjuLtq2TIPUfTAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvY2M5ZjVjOTEtZTQ2NS00Y2ViLWE3M2ItMjM2YWI4NGZkOGNlLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHACYAHwCkwDANBgkqhkiG9w0BAQsFAAOCAQEAOkahk92u9UeW2RplR36b9dlZ Vm3p3prmZhA8UUE6zXfFF+F6uh5T0LRCxui8i/5VG7g2rWOsl9y9D1EWpAI1aNQK lEStpUvkBsdjGg3ZCYAG7xFRHrjBATZxCDg4IIoc6CLB6skbQIA5NYhwFUfc/e8c rn7SxLE3rOH7RKZ6P+IR60DuM8avPJG9YLkDFs1ODM3xjIhLlS/KRmBVin7N7xU3 3iIYivQtlk2zeiNib4/NNicmErg9TFp4rmL0Is6zjDBiJECxkmAYtVX6ebe0GgeL R4UpK/3s9R0MOQKPPuWT6vvKm2Tn2bsBOFyBFWE+VDSFQhOSxwi2veSxYTQocw== -----END CERTIFICATE-----Generated at Sat Apr 26 19:19:41 2025 by rpki-client