$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da88867a-2f97-4b55-ac42-59565327eeb4.roa File: da88867a-2f97-4b55-ac42-59565327eeb4.roa (raw, json) Hash identifier: WrveRu6wLFOH1dsI+iubwJcan+1hgTU5lD16AYtCwGo= Subject key identifier: 27:22:11:4C:A3:D8:E2:14:90:AF:7C:E8:78:94:20:7E:F1:0D:D2:D3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 016EA1414C0BB4612D671F28EAB97BBE863A282E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da88867a-2f97-4b55-ac42-59565327eeb4.roa Signing time: Tue 22 Apr 2025 15:01:42 +0000 ROA not before: Tue 22 Apr 2025 15:01:42 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1f69:2040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:6e:a1:41:4c:0b:b4:61:2d:67:1f:28:ea:b9:7b:be:86:3a:28:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 15:01:42 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=40f7c9a86cf1eae010b7af6d04a42ea63024d6d677097d1e60a3d5f09a386c97, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:71:97:d9:3a:bf:00:d8:7b:ef:01:50:55:ea: 5a:ce:2e:57:33:22:93:5e:97:5a:aa:33:5a:5b:62: a3:77:6f:74:ac:9e:fe:f5:5a:f1:95:5d:41:1b:fb: 05:65:55:98:5c:18:b6:4f:10:3d:e9:3d:e1:2d:ea: 76:66:a2:ad:68:80:d6:5a:58:04:9a:78:45:43:ad: 89:6f:df:8a:c9:35:b3:c5:d4:14:ed:5c:e4:98:31: ff:b1:cb:7c:0d:fa:22:29:7f:b7:f3:6c:b5:0d:18: be:1f:10:7a:b7:8c:94:44:0f:ed:15:9f:d1:4e:bf: f6:53:a3:69:8e:1f:e7:7e:70:6a:50:cf:62:7e:97: 3e:86:0b:ae:f8:20:eb:84:67:2b:89:5e:fc:5e:2d: 7e:4e:31:18:ab:50:e4:00:45:62:45:26:da:b5:06: 04:1c:02:c3:6b:47:f3:04:d4:c8:e3:da:41:b7:87: 43:52:87:aa:3c:8d:d5:9c:d7:b1:9c:dc:84:95:7a: f9:83:35:1b:1a:41:bb:f8:3f:de:d8:f2:14:4e:27: 30:ea:31:20:bd:81:1b:6e:e5:12:64:c2:24:84:c7: 32:7f:5d:3c:4f:fa:a4:47:a0:2b:b2:83:e6:52:12: 32:f0:0e:65:26:51:17:ff:47:0d:47:8f:3f:2f:d4: da:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:22:11:4C:A3:D8:E2:14:90:AF:7C:E8:78:94:20:7E:F1:0D:D2:D3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da88867a-2f97-4b55-ac42-59565327eeb4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f69:2040::/46 Signature Algorithm: sha256WithRSAEncryption d7:7c:97:7a:1b:35:c2:cb:d5:0b:4d:c4:97:da:65:77:67:54: 86:4f:e1:7a:4f:14:ec:38:4b:63:59:ec:f0:ac:15:7b:b7:5c: 37:2a:94:51:e8:3c:ea:31:0a:d8:bb:8c:3c:be:9b:52:f2:95: 47:c9:73:14:b8:e0:b1:7d:f6:5b:41:1b:ce:51:83:99:b9:23: 6c:c9:4c:be:37:85:3a:27:64:70:f7:86:84:fd:02:e8:78:5a: 7c:df:29:7b:3b:52:97:e2:ea:3b:09:91:46:cd:fd:7d:49:06: 47:87:e0:d4:23:77:77:39:ba:e4:67:a9:3a:59:b6:28:02:e7: 20:a5:7e:c3:05:76:e3:a1:a4:bf:d7:ac:69:bf:1c:bd:cd:cc: f2:13:be:66:3a:cb:51:2c:1b:d2:ef:ab:35:d2:1d:4b:98:3b: 88:38:b0:4e:ed:f1:f1:15:82:9f:17:6d:3b:58:a7:f6:8e:a3: 2f:74:81:fc:f1:71:26:36:2c:97:47:23:3b:16:d4:04:05:e6: a3:c3:a1:43:bd:cc:cb:22:93:45:83:ac:59:ac:c2:f7:21:ca: ef:b5:f8:73:85:74:f0:a3:13:ca:3c:6f:8f:7b:af:9f:4d:cb: 23:d3:41:db:7b:69:34:45:60:eb:c3:e9:d6:35:35:ca:11:31: 78:fc:01:ab -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUAW6hQUwLtGEtZx8o6rl7voY6KC4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTUwMTQyWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MGY3YzlhODZjZjFlYWUwMTBiN2FmNmQwNGE0MmVhNjMw MjRkNmQ2NzcwOTdkMWU2MGEzZDVmMDlhMzg2Yzk3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1cZfZOr8A2HvvAVBV6lrOLlczIpNel1qqM1pbYqN3b3Ss nv71WvGVXUEb+wVlVZhcGLZPED3pPeEt6nZmoq1ogNZaWASaeEVDrYlv34rJNbPF 1BTtXOSYMf+xy3wN+iIpf7fzbLUNGL4fEHq3jJRED+0Vn9FOv/ZTo2mOH+d+cGpQ z2J+lz6GC674IOuEZyuJXvxeLX5OMRirUOQARWJFJtq1BgQcAsNrR/ME1Mjj2kG3 h0NSh6o8jdWc17Gc3ISVevmDNRsaQbv4P97Y8hROJzDqMSC9gRtu5RJkwiSExzJ/ XTxP+qRHoCuyg+ZSEjLwDmUmURf/Rw1Hjz8v1No1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUJyIRTKPY4hSQr3zoeJQgfvEN0tMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RhODg4NjdhLTJmOTctNGI1NS1hYzQyLTU5NTY1MzI3ZWViNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB9pIEAwDQYJKoZIhvcNAQELBQADggEBANd8l3obNcLL1QtNxJfaZXdn VIZP4XpPFOw4S2NZ7PCsFXu3XDcqlFHoPOoxCti7jDy+m1LylUfJcxS44LF99ltB G85Rg5m5I2zJTL43hTonZHD3hoT9Auh4WnzfKXs7Upfi6jsJkUbN/X1JBkeH4NQj d3c5uuRnqTpZtigC5yClfsMFduOhpL/XrGm/HL3NzPITvmY6y1EsG9LvqzXSHUuY O4g4sE7t8fEVgp8XbTtYp/aOoy90gfzxcSY2LJdHIzsW1AQF5qPDoUO9zMsik0WD rFmswvchyu+1+HOFdPCjE8o8b497r59NyyPTQdt7aTRFYOvD6dY1NcoRMXj8Aas= -----END CERTIFICATE-----Generated at Sat Apr 26 17:00:12 2025 by rpki-client