$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dbed3a5f-ab91-4d00-9617-65b88c24ab33.roa File: dbed3a5f-ab91-4d00-9617-65b88c24ab33.roa (raw, json) Hash identifier: QZvqnt3pc2RGhVpx+FB9n1iXsN1pblEyu2XrYSy4OKk= Subject key identifier: 23:E8:7D:F1:D3:2C:1D:A0:70:2F:09:00:82:24:92:21:22:98:3D:EB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 55E56585E52F944D24DB4A1CB796C6E1B3CA676B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dbed3a5f-ab91-4d00-9617-65b88c24ab33.roa Signing time: Tue 15 Apr 2025 00:11:05 +0000 ROA not before: Tue 15 Apr 2025 00:11:05 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f60:a400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:e5:65:85:e5:2f:94:4d:24:db:4a:1c:b7:96:c6:e1:b3:ca:67:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:11:05 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=92110ffc58fde419356e26de90e1cc7771fc81c6d196a6ccf7124c877499a489, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d9:16:c2:4d:11:a1:d5:9d:af:27:9d:e1:e4: de:6c:80:ba:da:86:4a:29:39:e1:50:96:a5:e5:ac: f4:7a:54:c4:d8:c3:4c:96:24:18:a1:f1:2e:e1:f1: 87:1b:c0:b2:22:c9:a3:cb:62:3f:a3:8a:c0:68:37: 8a:8d:6e:55:d5:04:5c:67:e6:a2:15:05:5d:71:ba: 87:d6:17:ed:35:9b:17:2a:31:14:33:b2:ee:d4:27: 7c:3f:69:54:15:16:59:bd:16:0e:7c:fa:f0:ef:2b: bf:8e:78:e8:6b:b9:71:2a:16:30:42:5e:6a:65:e5: 28:41:66:4f:11:6d:07:6a:81:5b:bb:2b:3e:c2:49: 34:c5:a5:16:36:5d:eb:66:a0:e7:37:6a:5b:08:1f: 60:18:bf:0c:f1:8e:6b:0e:8a:7d:a3:a5:40:fd:b1: 8b:a6:9a:a3:fd:59:b1:43:99:f7:4d:e3:86:d7:65: e9:47:44:9b:0c:d0:c1:26:fa:45:82:84:19:3d:9b: d2:d5:fd:76:3c:9f:37:d1:90:f4:c6:da:fb:a1:96: 44:7b:22:81:e6:cb:6d:a1:dc:32:2f:05:38:31:a2: bf:34:d0:33:d0:cb:be:dc:97:f5:7d:58:fa:69:bf: 46:8e:93:d5:32:b8:5e:b7:f0:97:51:e2:69:26:09: fd:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:E8:7D:F1:D3:2C:1D:A0:70:2F:09:00:82:24:92:21:22:98:3D:EB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dbed3a5f-ab91-4d00-9617-65b88c24ab33.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f60:a400::/40 Signature Algorithm: sha256WithRSAEncryption 4a:2d:75:e5:a0:f9:21:2d:05:35:04:c0:3c:a3:a3:bd:e4:54: 3c:b3:03:e1:99:05:a1:4b:b3:64:29:92:75:b7:e9:fc:5f:45: 6f:97:87:34:9a:30:30:2f:1b:6e:17:c5:86:1b:59:9b:60:3e: 21:6d:9a:6e:b8:de:8e:6a:07:7e:72:9c:80:bb:dd:d1:ba:fa: 07:13:0b:4d:86:bd:5b:a0:51:37:cb:ca:c3:78:1a:79:48:9f: 63:06:1c:58:7a:4b:31:56:f0:1f:f0:5a:f9:a0:ba:b8:b8:10: b4:d3:b7:b3:e8:0f:49:4d:54:2d:3b:fa:bf:28:85:70:73:13: ae:96:23:e1:00:54:de:b9:b9:2a:5a:99:96:f6:c4:17:9f:82: fd:b9:5a:ec:1b:ef:e8:57:78:93:50:f9:36:24:95:73:8c:df: 1e:70:e7:55:eb:c7:e3:f2:f5:6b:87:54:79:4b:d6:5f:8a:15: 1e:af:85:d7:97:56:15:f1:53:40:bc:5b:8f:1f:79:c4:0a:52: ff:6e:78:4a:cd:cc:ec:22:9b:05:03:a1:a7:1c:14:79:b8:a8: 5d:62:25:e5:8c:5c:7b:e5:d8:00:23:f5:a5:01:18:83:94:db: e8:db:75:c5:40:94:b3:c5:b0:71:e7:2e:89:58:63:53:c9:19: a6:44:34:31 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUVeVlheUvlE0k20oct5bG4bPKZ2swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE1MDAxMTA1WhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MjExMGZmYzU4ZmRlNDE5MzU2ZTI2ZGU5MGUxY2M3Nzcx ZmM4MWM2ZDE5NmE2Y2NmNzEyNGM4Nzc0OTlhNDg5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDM2RbCTRGh1Z2vJ53h5N5sgLrahkopOeFQlqXlrPR6VMTY w0yWJBih8S7h8YcbwLIiyaPLYj+jisBoN4qNblXVBFxn5qIVBV1xuofWF+01mxcq MRQzsu7UJ3w/aVQVFlm9Fg58+vDvK7+OeOhruXEqFjBCXmpl5ShBZk8RbQdqgVu7 Kz7CSTTFpRY2XetmoOc3alsIH2AYvwzxjmsOin2jpUD9sYummqP9WbFDmfdN44bX ZelHRJsM0MEm+kWChBk9m9LV/XY8nzfRkPTG2vuhlkR7IoHmy22h3DIvBTgxor80 0DPQy77cl/V9WPppv0aOk9UyuF638JdR4mkmCf3XAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUI+h98dMsHaBwLwkAgiSSISKYPeswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RiZWQzYTVmLWFiOTEtNGQwMC05NjE3LTY1Yjg4YzI0YWIzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9gpDANBgkqhkiG9w0BAQsFAAOCAQEASi115aD5IS0FNQTAPKOjveRU PLMD4ZkFoUuzZCmSdbfp/F9Fb5eHNJowMC8bbhfFhhtZm2A+IW2abrjejmoHfnKc gLvd0br6BxMLTYa9W6BRN8vKw3gaeUifYwYcWHpLMVbwH/Ba+aC6uLgQtNO3s+gP SU1ULTv6vyiFcHMTrpYj4QBU3rm5KlqZlvbEF5+C/bla7Bvv6Fd4k1D5NiSVc4zf HnDnVevH4/L1a4dUeUvWX4oVHq+F15dWFfFTQLxbjx95xApS/254Ss3M7CKbBQOh pxwUebioXWIl5Yxce+XYACP1pQEYg5Tb6Nt1xUCUs8WwcecuiVhjU8kZpkQ0MQ== -----END CERTIFICATE-----Generated at Sat Apr 26 13:30:08 2025 by rpki-client