$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d97c3616-0d82-4524-945b-08ee314efd7b.roa File: d97c3616-0d82-4524-945b-08ee314efd7b.roa (raw, json) Hash identifier: T6HANgOY7ZPKWId1mhRQB3jWhq5QPCySb6gWP7fPllw= Subject key identifier: 30:9C:8F:3A:7D:45:B8:1F:64:C4:F4:09:55:6A:4E:0C:6D:94:AE:14 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 791DDF236891ED72167FAA2C8EC78B270C06761F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d97c3616-0d82-4524-945b-08ee314efd7b.roa Signing time: Wed 09 Apr 2025 00:11:05 +0000 ROA not before: Wed 09 Apr 2025 00:11:05 +0000 ROA not after: Wed 14 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff0:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:1d:df:23:68:91:ed:72:16:7f:aa:2c:8e:c7:8b:27:0c:06:76:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 9 00:11:05 2025 GMT Not After : May 14 23:59:59 2025 GMT Subject: serialNumber=73383116e7e77ea1960c37196f769db1e5e9109cf2358682bdc6791d018faf23, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:38:aa:16:af:8d:d4:35:24:82:1e:6e:fc:21: 09:d1:02:c5:8c:1a:73:43:48:68:44:aa:e0:92:d5: 1d:7c:75:55:5d:34:f0:e9:5e:3d:64:6e:cb:42:c9: 80:66:54:ba:54:76:4b:e8:f7:09:a2:49:0a:b0:be: f1:b0:04:1d:6b:a0:ce:d7:52:17:b6:47:3e:d1:d8: 95:ee:8f:bf:60:0f:65:4b:72:05:09:f2:82:cc:84: 5d:27:1a:9b:dc:0f:cf:41:e9:0d:5b:59:2a:32:7b: ec:15:1d:a0:31:da:c2:87:69:cd:c5:89:0f:98:18: 3b:14:c1:4e:24:44:c3:86:df:9e:26:33:5b:d1:3f: 4b:bc:db:e1:ab:ed:0c:af:0c:8a:b1:0f:cc:44:8b: 87:96:3d:e0:27:8b:43:08:5b:c4:ed:bc:a9:e8:8a: 3a:85:d2:b1:e0:87:2b:7e:99:ca:76:36:3f:ec:dc: 81:0f:75:68:2a:3c:d1:d4:7d:9c:b4:23:0b:1f:ef: 44:7b:f4:d5:93:fa:75:d7:77:22:ba:57:01:6c:0e: 89:8d:ac:e4:ff:8e:26:65:10:bd:35:72:14:b1:d4: 4a:3b:b1:2d:bc:45:3a:3a:b6:2c:ce:12:f2:39:c7: df:8c:f3:f0:54:c9:13:7b:91:08:8d:7f:69:a4:a5: d1:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:9C:8F:3A:7D:45:B8:1F:64:C4:F4:09:55:6A:4E:0C:6D:94:AE:14 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d97c3616-0d82-4524-945b-08ee314efd7b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff0:2000::/40 Signature Algorithm: sha256WithRSAEncryption 93:9a:c4:d3:ae:57:e9:6b:38:db:a0:e6:27:e1:ec:e3:4e:b9: 3c:f2:38:a3:2d:6e:2a:b2:ad:50:d3:8b:f8:9f:1f:c6:62:2d: 89:f4:07:bd:ce:ed:fc:17:b3:58:f2:96:34:17:78:55:36:94: 1e:48:55:95:44:dc:1c:70:a5:eb:ac:2d:3f:74:ea:3d:e4:34: d1:6a:85:8d:6c:46:80:58:cf:23:b1:0b:68:d8:f1:1b:13:0e: 68:f5:20:10:1a:5f:8b:2b:d9:6c:30:60:e6:6e:27:a3:47:ff: b7:06:70:70:be:b9:f9:11:b4:04:33:ce:a1:1e:b0:e3:f5:88: 16:58:8b:9d:b8:66:d0:11:72:4c:88:ca:de:e1:b3:b7:20:90: d7:6d:a0:da:fe:a7:28:14:12:4c:f8:78:5d:22:82:a7:b2:51: 20:4c:31:36:ab:45:90:4c:6f:84:f6:a0:a4:ba:93:01:56:f4: 42:59:1b:87:af:b9:6d:7f:3b:ca:1a:e0:5b:f1:27:0d:1e:5a: 58:65:aa:78:ea:f4:87:a2:44:cf:ff:d3:73:44:c4:1e:69:f2: 41:bc:58:61:68:e4:ab:41:3a:49:21:6b:51:02:1d:05:3e:a4: 48:c4:d0:56:0b:78:ed:c5:63:24:83:2f:8a:75:bf:5d:f5:4e: 88:33:df:4b -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUeR3fI2iR7XIWf6osjseLJwwGdh8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA5MDAxMTA1WhcNMjUwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MzM4MzExNmU3ZTc3ZWExOTYwYzM3MTk2Zjc2OWRiMWU1 ZTkxMDljZjIzNTg2ODJiZGM2NzkxZDAxOGZhZjIzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGOKoWr43UNSSCHm78IQnRAsWMGnNDSGhEquCS1R18dVVd NPDpXj1kbstCyYBmVLpUdkvo9wmiSQqwvvGwBB1roM7XUhe2Rz7R2JXuj79gD2VL cgUJ8oLMhF0nGpvcD89B6Q1bWSoye+wVHaAx2sKHac3FiQ+YGDsUwU4kRMOG354m M1vRP0u82+Gr7QyvDIqxD8xEi4eWPeAni0MIW8TtvKnoijqF0rHghyt+mcp2Nj/s 3IEPdWgqPNHUfZy0Iwsf70R79NWT+nXXdyK6VwFsDomNrOT/jiZlEL01chSx1Eo7 sS28RTo6tizOEvI5x9+M8/BUyRN7kQiNf2mkpdGtAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUMJyPOn1FuB9kxPQJVWpODG2UrhQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q5N2MzNjE2LTBkODItNDUyNC05NDViLTA4ZWUzMTRlZmQ3Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/wIDANBgkqhkiG9w0BAQsFAAOCAQEAk5rE065X6Ws426DmJ+Hs4065 PPI4oy1uKrKtUNOL+J8fxmItifQHvc7t/BezWPKWNBd4VTaUHkhVlUTcHHCl66wt P3TqPeQ00WqFjWxGgFjPI7ELaNjxGxMOaPUgEBpfiyvZbDBg5m4no0f/twZwcL65 +RG0BDPOoR6w4/WIFliLnbhm0BFyTIjK3uGztyCQ122g2v6nKBQSTPh4XSKCp7JR IEwxNqtFkExvhPagpLqTAVb0Qlkbh6+5bX87yhrgW/EnDR5aWGWqeOr0h6JEz//T c0TEHmnyQbxYYWjkq0E6SSFrUQIdBT6kSMTQVgt47cVjJIMvinW/XfVOiDPfSw== -----END CERTIFICATE-----Generated at Sat Apr 26 18:07:35 2025 by rpki-client