$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e26cb5df-5e86-4ccb-a96a-cb08ad75a489.roa File: e26cb5df-5e86-4ccb-a96a-cb08ad75a489.roa (raw, json) Hash identifier: 4CQjs7yGahw/0sVharNLganSSP1dTJeM8zWZEMc6hzw= Subject key identifier: 3F:4F:9C:F4:0D:2B:1A:11:DE:F1:52:64:AD:D5:DA:3B:BD:7B:59:15 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 40AAF7467E21B0B6EF9463F09751D50FD13B2DB2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e26cb5df-5e86-4ccb-a96a-cb08ad75a489.roa Signing time: Wed 02 Apr 2025 00:12:13 +0000 ROA not before: Wed 02 Apr 2025 00:12:13 +0000 ROA not after: Wed 07 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fef:a400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:aa:f7:46:7e:21:b0:b6:ef:94:63:f0:97:51:d5:0f:d1:3b:2d:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 2 00:12:13 2025 GMT Not After : May 7 23:59:59 2025 GMT Subject: serialNumber=b5945cfc7fca5b6749420759eda628611517ade2b4b5fb6402f8c17ce53e1d92, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f3:c2:39:de:8d:24:b3:f2:1b:c0:7f:56:7e: 7e:d8:87:92:2c:cb:aa:32:a1:34:95:8d:0d:f0:58: 24:6c:66:73:64:be:16:93:92:57:69:b6:9f:49:21: 2e:21:27:21:6d:45:57:2d:28:b7:f7:57:6c:9d:83: 79:8c:8f:39:e8:c8:85:ec:a2:69:78:ec:ed:14:d4: c4:75:d0:d0:63:ea:be:23:b4:9b:bb:05:c9:7f:c0: 7b:79:13:c8:8c:35:3c:f8:28:b8:2a:c5:70:63:03: 8e:a6:cd:04:71:98:7f:67:f5:f6:65:f3:24:6e:4f: 12:dc:da:98:b7:6d:ff:e4:af:ee:5c:ad:61:ba:47: 04:6a:af:04:61:dc:e6:e3:70:f2:59:b2:38:7c:e9: 1e:c4:df:cb:3e:1d:5a:c9:1f:3a:26:2b:b0:2a:ea: c8:2a:c4:f3:1b:45:83:6c:ba:c4:03:f9:0d:06:3c: 5f:61:32:62:46:5f:94:df:34:fc:a2:0b:95:48:f5: 5a:00:0c:a0:16:09:df:b3:75:0a:26:dd:bc:dc:65: fd:7c:c2:b8:f1:fa:92:e6:7d:08:de:61:bc:38:f1: 3a:1c:02:4a:a2:ce:28:63:40:ea:02:d2:1d:5e:c2: 01:5b:bc:1a:58:68:cf:e1:39:b7:75:ab:85:76:d5: 07:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:4F:9C:F4:0D:2B:1A:11:DE:F1:52:64:AD:D5:DA:3B:BD:7B:59:15 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e26cb5df-5e86-4ccb-a96a-cb08ad75a489.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fef:a400::/40 Signature Algorithm: sha256WithRSAEncryption 15:58:ae:b2:6e:6f:b9:da:e2:4a:0a:70:0f:4c:b6:6d:65:a9: 50:d9:f4:de:20:bc:c8:f0:d2:e1:ac:f8:a1:6a:da:b9:4f:36: 2f:f3:07:a2:e2:eb:19:7e:57:0b:62:4d:68:27:80:c1:5c:ab: ba:af:39:ae:db:b3:6a:eb:f8:1e:e9:e6:0c:c0:02:e8:52:91: 70:33:be:00:44:ea:fd:52:71:f5:56:a4:9f:1e:7d:99:ed:58: 7f:3a:0e:5f:ce:9c:7e:18:03:f6:4e:c1:72:6d:04:b6:29:36: 14:57:97:16:23:b5:cf:f2:d7:c9:87:ab:40:76:c9:1e:dd:a1: 5f:4b:d1:6e:9c:0b:7c:7c:fa:1c:4f:54:44:66:eb:7b:9b:b8: 75:b9:45:7f:54:64:04:4f:f6:1a:05:a2:a0:79:28:e1:16:0d: 10:b9:b6:ae:58:0b:9b:e8:07:51:0c:7d:11:b3:2e:f5:77:2f: 7e:1b:df:0e:35:4a:f5:79:ff:36:09:f0:78:60:e9:dd:40:dd: 28:bd:ba:3a:c7:eb:06:9e:a8:ae:e3:9d:6c:f9:f3:20:5d:7c: d4:a1:98:8e:45:13:65:14:4e:6b:56:43:40:a3:f0:10:10:f6: 17:f9:c6:9a:c9:75:68:42:7b:a0:f5:a0:71:10:33:5e:5f:e5: e8:aa:05:c8 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUQKr3Rn4hsLbvlGPwl1HVD9E7LbIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDAyMDAxMjEzWhcNMjUwNTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNTk0NWNmYzdmY2E1YjY3NDk0MjA3NTllZGE2Mjg2MTE1 MTdhZGUyYjRiNWZiNjQwMmY4YzE3Y2U1M2UxZDkyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDL88I53o0ks/IbwH9Wfn7Yh5Isy6oyoTSVjQ3wWCRsZnNk vhaTkldptp9JIS4hJyFtRVctKLf3V2ydg3mMjznoyIXsoml47O0U1MR10NBj6r4j tJu7Bcl/wHt5E8iMNTz4KLgqxXBjA46mzQRxmH9n9fZl8yRuTxLc2pi3bf/kr+5c rWG6RwRqrwRh3ObjcPJZsjh86R7E38s+HVrJHzomK7Aq6sgqxPMbRYNsusQD+Q0G PF9hMmJGX5TfNPyiC5VI9VoADKAWCd+zdQom3bzcZf18wrjx+pLmfQjeYbw48Toc AkqizihjQOoC0h1ewgFbvBpYaM/hObd1q4V21QclAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUP0+c9A0rGhHe8VJkrdXaO717WRUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UyNmNiNWRmLTVlODYtNGNjYi1hOTZhLWNiMDhhZDc1YTQ4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/vpDANBgkqhkiG9w0BAQsFAAOCAQEAFViusm5vudriSgpwD0y2bWWp UNn03iC8yPDS4az4oWrauU82L/MHouLrGX5XC2JNaCeAwVyruq85rtuzauv4Hunm DMAC6FKRcDO+AETq/VJx9Vaknx59me1YfzoOX86cfhgD9k7Bcm0Etik2FFeXFiO1 z/LXyYerQHbJHt2hX0vRbpwLfHz6HE9URGbre5u4dblFf1RkBE/2GgWioHko4RYN ELm2rlgLm+gHUQx9EbMu9XcvfhvfDjVK9Xn/NgnweGDp3UDdKL26OsfrBp6oruOd bPnzIF181KGYjkUTZRROa1ZDQKPwEBD2F/nGmsl1aEJ7oPWgcRAzXl/l6KoFyA== -----END CERTIFICATE-----Generated at Sat Apr 26 13:33:57 2025 by rpki-client