$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eaf82949-c277-48eb-a60e-5a42e5840364.roa File: eaf82949-c277-48eb-a60e-5a42e5840364.roa (raw, json) Hash identifier: /IIMv+q14GOFx1pyw2jvWIDt4+JIIxnaqEjMOWCjDsY= Subject key identifier: 63:99:98:3A:2F:A8:6D:D6:54:DA:74:6B:57:38:5F:A4:DC:A7:66:82 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 51D4C69454EE96699D7D2CA2AC85572F1A8CB58E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eaf82949-c277-48eb-a60e-5a42e5840364.roa Signing time: Tue 22 Apr 2025 00:40:16 +0000 ROA not before: Tue 22 Apr 2025 00:40:16 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f00:81d0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:d4:c6:94:54:ee:96:69:9d:7d:2c:a2:ac:85:57:2f:1a:8c:b5:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 00:40:16 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=4ec770745fe7ee24a4ff044f1146b9e733e8d34a2014df60b31d54e9a20bc949, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f8:7e:f8:33:c0:f6:10:83:06:f3:2f:74:58: 86:2f:72:85:34:96:10:10:04:36:95:6d:66:d1:6a: 64:a2:8b:79:2f:55:5c:79:58:92:f9:58:b3:8b:54: 10:0f:4a:30:38:2e:45:e5:99:8c:40:cc:5c:d5:f5: a6:64:d0:e1:50:de:0d:20:e4:7f:e0:3a:5d:74:d8: cf:ab:77:10:85:36:74:b6:af:db:2d:a4:ab:30:d6: 01:73:b4:2e:c6:1b:76:98:1f:90:77:e8:65:8e:bc: e1:ec:66:6d:de:5b:47:a2:35:7c:5f:a1:1a:a6:fa: ad:06:dc:f5:6e:3c:5f:83:c4:1c:0a:e2:c4:f9:48: 29:ac:64:66:d1:6c:fd:e3:e5:67:c2:9d:25:64:db: 7e:47:5a:24:3e:9b:6c:19:78:35:f3:bb:50:00:4c: a6:fb:a7:70:3d:bc:c5:64:33:e0:c1:57:bb:43:27: 50:7d:38:31:88:1b:e0:e5:7f:54:f3:e6:5f:c5:0d: 82:e7:5c:44:71:94:7f:f1:f2:35:9b:10:bc:b8:fb: ea:24:d9:98:72:5a:99:57:3e:d6:26:7c:10:d9:4f: 03:92:b9:59:93:ae:6f:13:38:3a:8a:bb:62:2d:7f: 49:d2:21:b1:d6:9a:0c:b3:1d:d5:1f:5c:84:a1:b3: 04:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:99:98:3A:2F:A8:6D:D6:54:DA:74:6B:57:38:5F:A4:DC:A7:66:82 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eaf82949-c277-48eb-a60e-5a42e5840364.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:81d0::/48 Signature Algorithm: sha256WithRSAEncryption 0b:3d:0f:43:2c:1e:28:3b:8e:6f:bb:f5:7c:09:d2:e8:9d:c7: 6e:33:5f:83:07:b8:67:9b:f1:5a:3c:c4:7b:a4:04:7f:65:a8: b0:43:81:dd:e9:e6:bb:05:0f:d8:fa:09:1e:02:b0:7d:02:6e: e8:95:4a:87:5f:c9:d5:26:bd:fb:27:c1:28:df:83:c3:15:ce: aa:d2:85:d1:04:eb:92:ff:f0:66:44:f6:a8:39:7e:59:94:37: c7:4c:aa:5a:bf:2a:eb:0c:71:38:09:48:8f:08:cb:51:c1:84: 66:77:b1:eb:da:e5:23:7f:b3:3d:01:f4:b5:a9:7a:b4:65:59: 9f:1a:16:36:37:c6:f7:c4:66:42:f3:5b:b2:49:b0:a4:14:8a: 64:e5:f7:c4:66:db:c2:86:f3:fc:51:3c:76:5f:38:75:ec:95: 6d:ea:00:86:a8:5a:b5:16:af:ac:f6:aa:ba:18:fc:72:dd:dc: 86:54:5a:c2:2d:95:70:e8:02:d4:bd:a1:0f:49:52:25:86:d1: d1:82:9f:d7:d2:80:de:4a:b5:b4:18:59:21:58:f2:8a:36:ca: 1d:bb:b4:80:db:44:32:0f:63:d5:2c:78:05:bb:b3:1d:3e:42: d0:b8:61:9f:9d:61:af:81:15:38:7e:8f:33:87:f1:d1:1f:80: a3:5a:3a:43 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUdTGlFTulmmdfSyirIVXLxqMtY4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMDA0MDE2WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZWM3NzA3NDVmZTdlZTI0YTRmZjA0NGYxMTQ2YjllNzMz ZThkMzRhMjAxNGRmNjBiMzFkNTRlOWEyMGJjOTQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDS+H74M8D2EIMG8y90WIYvcoU0lhAQBDaVbWbRamSii3kv VVx5WJL5WLOLVBAPSjA4LkXlmYxAzFzV9aZk0OFQ3g0g5H/gOl102M+rdxCFNnS2 r9stpKsw1gFztC7GG3aYH5B36GWOvOHsZm3eW0eiNXxfoRqm+q0G3PVuPF+DxBwK 4sT5SCmsZGbRbP3j5WfCnSVk235HWiQ+m2wZeDXzu1AATKb7p3A9vMVkM+DBV7tD J1B9ODGIG+Dlf1Tz5l/FDYLnXERxlH/x8jWbELy4++ok2ZhyWplXPtYmfBDZTwOS uVmTrm8TODqKu2Itf0nSIbHWmgyzHdUfXIShswTHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUY5mYOi+obdZU2nRrVzhfpNynZoIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VhZjgyOTQ5LWMyNzctNDhlYi1hNjBlLTVhNDJlNTg0MDM2NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AgdAwDQYJKoZIhvcNAQELBQADggEBAAs9D0MsHig7jm+79XwJ0uid x24zX4MHuGeb8Vo8xHukBH9lqLBDgd3p5rsFD9j6CR4CsH0CbuiVSodfydUmvfsn wSjfg8MVzqrShdEE65L/8GZE9qg5flmUN8dMqlq/KusMcTgJSI8Iy1HBhGZ3seva 5SN/sz0B9LWperRlWZ8aFjY3xvfEZkLzW7JJsKQUimTl98Rm28KG8/xRPHZfOHXs lW3qAIaoWrUWr6z2qroY/HLd3IZUWsItlXDoAtS9oQ9JUiWG0dGCn9fSgN5KtbQY WSFY8oo2yh27tIDbRDIPY9UseAW7sx0+QtC4YZ+dYa+BFTh+jzOH8dEfgKNaOkM= -----END CERTIFICATE-----Generated at Sat Apr 26 13:30:30 2025 by rpki-client