$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0233ae0-0e1e-4136-a54b-f0ab70af5a69.roa File: d0233ae0-0e1e-4136-a54b-f0ab70af5a69.roa (raw, json) Hash identifier: 9V7scS3EM9QJjI/1e2h/MV0fl3mp/jcjOMS3FZ5iJsE= Subject key identifier: B2:81:35:2C:A6:1A:F3:C8:00:73:E6:4E:1A:AD:C7:86:59:52:C8:CD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4E9B9CCC5B8474F5FFD487943C73F77B965B6709 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0233ae0-0e1e-4136-a54b-f0ab70af5a69.roa Signing time: Tue 22 Apr 2025 00:30:30 +0000 ROA not before: Tue 22 Apr 2025 00:30:30 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:81a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:9b:9c:cc:5b:84:74:f5:ff:d4:87:94:3c:73:f7:7b:96:5b:67:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 00:30:30 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=b3c39c7e3ca6db0d372b458e901c046752e98b2c7b5b22d773809ed7dc663b95, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1d:a8:43:de:1f:29:b4:5c:fd:de:dc:6d:01: 00:68:87:9d:41:53:86:4d:1e:7b:6c:cc:1f:23:4b: ac:bf:82:f8:f8:32:02:b0:94:69:8f:cf:d9:07:6a: 05:81:b2:ee:a4:1b:5d:f9:e8:0c:7d:5c:a4:0d:93: 1f:01:9e:ae:86:2a:67:df:ed:1d:c3:d7:e6:ba:ec: 11:a9:21:92:74:71:92:bc:ea:f5:b1:9a:45:37:cd: 35:f4:32:11:60:8a:05:c3:3a:00:60:ca:63:c4:78: 30:65:18:c9:6a:01:21:3e:bd:6d:5c:cd:3e:1c:be: d8:c9:94:ac:36:97:6e:52:c1:ca:c2:d1:cf:bb:0e: 03:0e:a7:fe:d9:a7:1e:d0:22:8e:fa:02:9c:c1:01: f2:11:28:31:32:5e:88:7a:76:10:47:a4:0d:0e:ba: e8:e6:cd:0d:8c:b3:da:cb:21:ba:53:47:0c:d8:99: 05:10:dc:77:0f:5c:58:19:7b:43:76:a8:64:2c:0b: d7:c9:5e:85:5b:55:1e:95:a6:91:8f:ea:f3:ff:06: c2:a2:db:58:1e:2b:0e:b9:6a:66:a4:51:77:b4:a5: 30:8e:69:7d:73:3d:fa:cc:85:38:28:88:d0:77:35: 4f:b5:bd:37:54:33:c7:f5:c2:c5:b7:70:57:15:6b: 9e:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:81:35:2C:A6:1A:F3:C8:00:73:E6:4E:1A:AD:C7:86:59:52:C8:CD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0233ae0-0e1e-4136-a54b-f0ab70af5a69.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:81a0::/48 Signature Algorithm: sha256WithRSAEncryption 1f:3f:03:a5:68:4a:d9:7b:ff:a8:c0:35:4d:33:d5:be:77:1f: e9:ca:f6:fb:bc:ac:d8:a0:27:df:78:eb:1f:e8:2d:a3:af:5c: 0a:b2:7d:04:71:81:14:fc:c8:81:da:77:3a:db:46:c7:60:74: 25:7e:71:2a:65:61:03:bc:25:3d:32:ec:03:c2:cb:95:85:5c: 09:74:05:f2:f3:e7:13:d4:c1:ae:f1:e2:2d:63:cc:67:6e:f4: 1c:d8:db:f1:84:0d:fb:2c:a8:3c:f3:b9:c2:a2:f3:d3:24:de: b5:19:a8:cf:ab:77:ff:bd:0c:9c:d1:7e:92:cb:2f:a5:a9:53: dd:5b:32:8f:ea:55:f2:11:be:b0:70:1f:11:5d:2e:f8:52:09: e4:72:ac:92:42:f0:e6:ae:bd:d6:26:c4:01:8d:34:3a:ad:61: 1a:4f:a3:d0:80:c3:e5:69:e2:02:5e:dd:1d:69:71:6f:67:40: 97:db:2b:88:61:4c:b5:d0:f7:cc:84:fa:21:6c:ef:44:2b:65: 9e:ae:1f:2d:5f:dc:b1:f9:a5:06:e8:3c:c0:5f:06:00:96:3f: 0a:71:dc:bb:3d:f2:3a:36:db:24:5f:7a:49:65:2f:47:bc:73: 9a:96:ab:47:07:7e:0b:62:32:25:69:bc:7e:5e:71:eb:6b:91: 92:9e:cf:7c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTpuczFuEdPX/1IeUPHP3e5ZbZwkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMDAzMDMwWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiM2MzOWM3ZTNjYTZkYjBkMzcyYjQ1OGU5MDFjMDQ2NzUy ZTk4YjJjN2I1YjIyZDc3MzgwOWVkN2RjNjYzYjk1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsHahD3h8ptFz93txtAQBoh51BU4ZNHntszB8jS6y/gvj4 MgKwlGmPz9kHagWBsu6kG1356Ax9XKQNkx8Bnq6GKmff7R3D1+a67BGpIZJ0cZK8 6vWxmkU3zTX0MhFgigXDOgBgymPEeDBlGMlqASE+vW1czT4cvtjJlKw2l25SwcrC 0c+7DgMOp/7Zpx7QIo76ApzBAfIRKDEyXoh6dhBHpA0OuujmzQ2Ms9rLIbpTRwzY mQUQ3HcPXFgZe0N2qGQsC9fJXoVbVR6VppGP6vP/BsKi21geKw65amakUXe0pTCO aX1zPfrMhTgoiNB3NU+1vTdUM8f1wsW3cFcVa55DAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUsoE1LKYa88gAc+ZOGq3HhllSyM0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QwMjMzYWUwLTBlMWUtNDEzNi1hNTRiLWYwYWI3MGFmNWE2OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//gaAwDQYJKoZIhvcNAQELBQADggEBAB8/A6VoStl7/6jANU0z1b53 H+nK9vu8rNigJ9946x/oLaOvXAqyfQRxgRT8yIHadzrbRsdgdCV+cSplYQO8JT0y 7APCy5WFXAl0BfLz5xPUwa7x4i1jzGdu9BzY2/GEDfssqDzzucKi89Mk3rUZqM+r d/+9DJzRfpLLL6WpU91bMo/qVfIRvrBwHxFdLvhSCeRyrJJC8OauvdYmxAGNNDqt YRpPo9CAw+Vp4gJe3R1pcW9nQJfbK4hhTLXQ98yE+iFs70QrZZ6uHy1f3LH5pQbo PMBfBgCWPwpx3Ls98jo22yRfekllL0e8c5qWq0cHfgtiMiVpvH5ecetrkZKez3w= -----END CERTIFICATE-----Generated at Sat Apr 26 14:54:37 2025 by rpki-client