$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea48da40-e606-40ca-a47e-49973c2920b0.roa File: ea48da40-e606-40ca-a47e-49973c2920b0.roa (raw, json) Hash identifier: QIzX5sWWu3yduXJC3FzYf0pWPTCBo+EL1AzGXGkpYqQ= Subject key identifier: A6:D7:31:2D:F5:AB:5E:40:5B:98:78:A9:D6:71:CD:B1:A6:86:8A:2F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0E4523ABBDC95036B63931EE0775831B2A7E2E4D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea48da40-e606-40ca-a47e-49973c2920b0.roa Signing time: Tue 22 Apr 2025 16:31:51 +0000 ROA not before: Tue 22 Apr 2025 16:31:51 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fb8:8000::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:45:23:ab:bd:c9:50:36:b6:39:31:ee:07:75:83:1b:2a:7e:2e:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:31:51 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=c79f194d1e4ce6d0ab4d09ada2fbebd4750264872eda087e266c37c923de5728, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:17:8e:a2:f0:1d:2d:e0:63:fb:ae:48:e4:b0: c0:39:8e:31:04:e6:37:e5:13:0c:d8:be:7e:58:55: c8:7b:4c:be:56:8c:bc:62:b2:ca:39:63:52:24:38: 3c:a5:4d:3e:d0:97:cc:21:4d:b4:40:c3:8f:a0:4b: ef:71:1e:1a:5a:45:9c:6f:39:b4:57:a8:19:93:dc: 9e:7a:76:96:6b:8c:80:b2:cd:0e:b5:78:c7:8a:fb: 93:93:e6:c9:ca:e5:45:dc:80:f1:8c:d8:53:ab:a5: 39:ba:4f:5d:58:16:22:53:e8:b1:d6:28:fe:98:5e: f1:5f:f3:08:59:06:c5:fd:17:d5:30:14:5a:aa:a2: ed:cc:61:bf:54:21:39:c1:0a:41:35:67:17:03:cb: 7e:80:1d:6a:45:59:44:de:ad:4e:1e:aa:d1:5f:79: 5f:4c:00:b0:d6:c4:5c:ab:fd:88:be:46:1a:f6:61: 82:61:02:18:36:dd:f1:f0:d4:fa:6a:3c:e1:d4:c2: e0:83:4f:60:e1:6b:b2:81:1d:50:c0:d9:18:8b:56: 71:ab:1a:37:88:1f:bf:d4:af:ac:73:b2:4b:49:76: 57:88:de:7b:52:2d:d8:98:1c:44:55:30:c3:33:f1: 76:90:d0:66:a5:97:c9:79:85:ad:19:9c:3d:ed:cc: c7:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:D7:31:2D:F5:AB:5E:40:5B:98:78:A9:D6:71:CD:B1:A6:86:8A:2F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea48da40-e606-40ca-a47e-49973c2920b0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb8:8000::/39 Signature Algorithm: sha256WithRSAEncryption 83:65:1b:17:20:62:43:36:0c:8b:85:c2:ae:f7:1d:de:00:a9: e3:01:95:61:d1:80:e8:2c:03:bb:b0:4d:d2:36:7c:09:43:91: e3:67:16:d8:36:d0:db:aa:b6:a1:95:43:e8:d8:1d:b1:8a:3e: 31:66:18:59:3a:f2:2c:8e:50:15:57:e9:9c:97:e3:22:fd:f2: e2:6b:36:ee:bb:c0:e2:b3:30:c7:b6:7a:b8:28:dc:8f:af:11: 93:53:6e:33:d6:5e:e2:b1:32:3b:eb:d2:92:bb:56:80:df:a6: 3a:5c:3d:1e:97:b0:c5:6e:44:41:bd:ae:ea:40:da:ae:01:f5: 83:ef:d3:d2:e3:b7:e1:7c:a1:fa:c1:e5:83:14:cb:42:5c:91: ee:fb:d6:ec:1f:d8:ee:3c:29:8a:1c:87:41:39:e7:1a:48:37: 0a:4e:7c:86:63:f7:c2:59:65:ee:fa:ed:a9:c2:57:ec:4c:29: 94:78:bb:0d:c3:6f:a7:53:f9:9c:9c:ec:e1:a3:9b:aa:f3:59: 04:8a:60:6e:21:6d:0d:3c:88:26:29:a0:60:39:fc:1e:f5:53: e2:3f:0a:8f:c7:c9:4e:9c:8d:28:8a:87:2d:44:fc:57:94:cf: f0:0f:e5:d0:ce:ef:30:51:2a:3c:ca:d1:04:05:23:6f:10:84: 66:f8:71:74 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUDkUjq73JUDa2OTHuB3WDGyp+Lk0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTYzMTUxWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNzlmMTk0ZDFlNGNlNmQwYWI0ZDA5YWRhMmZiZWJkNDc1 MDI2NDg3MmVkYTA4N2UyNjZjMzdjOTIzZGU1NzI4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVF46i8B0t4GP7rkjksMA5jjEE5jflEwzYvn5YVch7TL5W jLxisso5Y1IkODylTT7Ql8whTbRAw4+gS+9xHhpaRZxvObRXqBmT3J56dpZrjICy zQ61eMeK+5OT5snK5UXcgPGM2FOrpTm6T11YFiJT6LHWKP6YXvFf8whZBsX9F9Uw FFqqou3MYb9UITnBCkE1ZxcDy36AHWpFWUTerU4eqtFfeV9MALDWxFyr/Yi+Rhr2 YYJhAhg23fHw1PpqPOHUwuCDT2Dha7KBHVDA2RiLVnGrGjeIH7/Ur6xzsktJdleI 3ntSLdiYHERVMMMz8XaQ0Gall8l5ha0ZnD3tzMfLAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUptcxLfWrXkBbmHip1nHNsaaGii8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VhNDhkYTQwLWU2MDYtNDBjYS1hNDdlLTQ5OTczYzI5MjBiMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB+4gDANBgkqhkiG9w0BAQsFAAOCAQEAg2UbFyBiQzYMi4XCrvcd3gCp 4wGVYdGA6CwDu7BN0jZ8CUOR42cW2DbQ26q2oZVD6NgdsYo+MWYYWTryLI5QFVfp nJfjIv3y4ms27rvA4rMwx7Z6uCjcj68Rk1NuM9Ze4rEyO+vSkrtWgN+mOlw9Hpew xW5EQb2u6kDargH1g+/T0uO34Xyh+sHlgxTLQlyR7vvW7B/Y7jwpihyHQTnnGkg3 Ck58hmP3wlll7vrtqcJX7EwplHi7DcNvp1P5nJzs4aObqvNZBIpgbiFtDTyIJimg YDn8HvVT4j8Kj8fJTpyNKIqHLUT8V5TP8A/l0M7vMFEqPMrRBAUjbxCEZvhxdA== -----END CERTIFICATE-----Generated at Sat Apr 26 13:30:16 2025 by rpki-client