$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d89855d3-ea99-4c70-9ca7-6599aed127bd.roa File: d89855d3-ea99-4c70-9ca7-6599aed127bd.roa (raw, json) Hash identifier: 9lUJdPGHkfciDdshBKiwUnEg6jflAQ13jMWU844hHzI= Subject key identifier: 33:03:10:7E:D6:BF:E6:84:44:92:20:8E:96:AB:82:25:36:38:57:84 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5CE790057210AEEF034149F2B4002D3B4E5F0390 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d89855d3-ea99-4c70-9ca7-6599aed127bd.roa Signing time: Tue 22 Apr 2025 16:30:29 +0000 ROA not before: Tue 22 Apr 2025 16:30:29 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff5:8000::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:e7:90:05:72:10:ae:ef:03:41:49:f2:b4:00:2d:3b:4e:5f:03:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:30:29 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=3c25e9f6432d8bb8a2a0f8c185ede02608f28f122d172875c640d9d5da0c2185, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:1e:c3:52:ae:69:34:61:b6:72:f5:b3:21:cf: 84:5d:ed:55:b6:fc:f8:76:fe:d0:d3:cd:36:db:34: 9e:2e:1b:27:c9:12:82:1c:53:e1:02:be:a0:7d:ee: 03:77:40:8e:2b:29:66:30:47:81:59:3d:c8:ae:15: cd:30:0b:67:8b:97:48:54:f5:0f:e0:c8:b2:7c:74: 9d:3d:4a:64:24:08:26:25:76:6c:22:2e:12:3f:b3: d8:2b:cc:b5:99:c2:7a:1a:bf:13:89:fa:88:06:4a: 7b:a7:e6:ad:64:4a:70:85:98:63:3f:7c:17:35:1a: 10:ae:30:29:52:af:5b:a9:67:f5:d4:e5:d5:24:d2: 44:a3:05:6f:50:d1:07:1d:5a:65:05:6d:d2:ec:69: 0a:94:01:b3:48:50:7a:4c:ae:e3:65:f0:4f:9d:c2: bd:83:a9:90:e8:cd:e6:c9:58:03:34:8f:42:f2:b4: 5f:cb:04:04:28:10:51:05:11:87:f1:af:ad:d6:f8: 33:ea:f8:30:45:93:36:cf:83:08:09:ba:af:4d:71: 73:35:76:07:5d:97:05:a7:63:7a:fc:c4:96:15:ba: b0:72:01:a5:05:17:15:48:8a:d7:34:5d:82:c0:0f: da:f9:3d:fa:5a:49:c8:7c:33:91:bd:e5:bf:d7:c7: f1:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:03:10:7E:D6:BF:E6:84:44:92:20:8E:96:AB:82:25:36:38:57:84 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d89855d3-ea99-4c70-9ca7-6599aed127bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff5:8000::/39 Signature Algorithm: sha256WithRSAEncryption 93:92:88:9a:df:14:6a:7c:33:8d:9c:0a:a7:cf:12:d1:b7:4c: 3d:85:90:50:2f:f6:36:5a:35:28:da:12:39:f7:c7:59:25:7f: 2c:eb:73:c1:b5:bb:cd:f5:ce:f1:a6:7d:40:77:58:1e:43:66: 1a:2e:44:3e:d4:1f:8f:40:2a:9b:cf:e4:72:05:e5:6d:1a:73: bd:b4:aa:49:4d:6a:43:4d:8b:94:38:c0:d5:d8:d8:5c:a8:b5: 40:c7:3d:1e:6d:4f:12:8c:ab:d5:f3:8a:a4:8a:d5:ea:99:1c: 9f:0f:61:97:5e:c9:00:1e:88:6a:8e:50:08:7e:ae:fe:a1:4c: 20:b2:11:89:d2:93:83:24:a1:7c:37:35:2b:60:80:d4:7d:11: 71:b4:57:56:60:2c:6a:e1:83:89:4f:14:9c:f3:e3:7d:bc:b0: 1d:7d:1b:d7:79:5c:6e:8f:5a:28:8c:53:9d:56:f1:74:de:ff: 93:8b:12:cd:0c:e1:18:b8:de:d3:47:96:bd:48:52:60:1e:d3: 2b:70:08:20:49:43:4d:b8:a4:eb:0d:86:20:b4:6f:09:d1:21: b3:46:c0:2a:2f:8c:78:a0:da:bd:eb:44:83:a4:37:f1:6a:30: 3d:d9:a3:6c:f4:00:83:dd:5d:ff:8c:8e:3a:83:c6:3c:5f:17: 71:b5:0b:4a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUXOeQBXIQru8DQUnytAAtO05fA5AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTYzMDI5WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYzI1ZTlmNjQzMmQ4YmI4YTJhMGY4YzE4NWVkZTAyNjA4 ZjI4ZjEyMmQxNzI4NzVjNjQwZDlkNWRhMGMyMTg1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpHsNSrmk0YbZy9bMhz4Rd7VW2/Ph2/tDTzTbbNJ4uGyfJ EoIcU+ECvqB97gN3QI4rKWYwR4FZPciuFc0wC2eLl0hU9Q/gyLJ8dJ09SmQkCCYl dmwiLhI/s9grzLWZwnoavxOJ+ogGSnun5q1kSnCFmGM/fBc1GhCuMClSr1upZ/XU 5dUk0kSjBW9Q0QcdWmUFbdLsaQqUAbNIUHpMruNl8E+dwr2DqZDozebJWAM0j0Ly tF/LBAQoEFEFEYfxr63W+DPq+DBFkzbPgwgJuq9NcXM1dgddlwWnY3r8xJYVurBy AaUFFxVIitc0XYLAD9r5PfpaSch8M5G95b/Xx/GtAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUMwMQfta/5oREkiCOlquCJTY4V4QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q4OTg1NWQzLWVhOTktNGM3MC05Y2E3LTY1OTlhZWQxMjdiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/1gDANBgkqhkiG9w0BAQsFAAOCAQEAk5KImt8UanwzjZwKp88S0bdM PYWQUC/2Nlo1KNoSOffHWSV/LOtzwbW7zfXO8aZ9QHdYHkNmGi5EPtQfj0Aqm8/k cgXlbRpzvbSqSU1qQ02LlDjA1djYXKi1QMc9Hm1PEoyr1fOKpIrV6pkcnw9hl17J AB6Iao5QCH6u/qFMILIRidKTgyShfDc1K2CA1H0RcbRXVmAsauGDiU8UnPPjfbyw HX0b13lcbo9aKIxTnVbxdN7/k4sSzQzhGLje00eWvUhSYB7TK3AIIElDTbik6w2G ILRvCdEhs0bAKi+MeKDavetEg6Q38WowPdmjbPQAg91d/4yOOoPGPF8XcbULSg== -----END CERTIFICATE-----Generated at Sat Apr 26 18:10:29 2025 by rpki-client