$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f21f3ab6-5c32-4a28-ab46-a813ba9034e1.roa File: f21f3ab6-5c32-4a28-ab46-a813ba9034e1.roa (raw, json) Hash identifier: n/3rLffDuD7Wp3ftwI3gQ+2rN5+2Yal+/RGTnId/F24= Subject key identifier: 68:B6:91:58:C4:83:05:54:58:3C:63:29:B4:30:48:53:35:59:31:4E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 65C8E1340195F5C9128B38C819721B03A45BCCA6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f21f3ab6-5c32-4a28-ab46-a813ba9034e1.roa Signing time: Mon 21 Apr 2025 17:10:10 +0000 ROA not before: Mon 21 Apr 2025 17:10:10 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fff:8050::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:c8:e1:34:01:95:f5:c9:12:8b:38:c8:19:72:1b:03:a4:5b:cc:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 21 17:10:10 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=2c4e897616b2befd18f39d516695e38a017e29ae5de10b32ead9fc254ff3a5fc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:57:3a:82:a7:b4:a8:a2:9b:0a:10:fa:68:26: 45:49:b3:0c:a0:44:7d:e2:b0:b8:ad:9b:36:0f:e5: 90:65:4e:84:f1:36:18:d0:c8:28:af:b9:3d:3c:e9: 8f:8b:b2:73:78:72:39:f9:16:a6:0f:b3:52:13:74: 2c:a7:cd:d7:b8:1c:a7:02:20:c6:f2:ed:21:4d:17: 1b:dd:b3:4f:6f:bd:be:df:42:20:dc:1c:08:37:8c: 55:c9:b9:9d:01:61:6a:21:64:33:f0:b3:04:05:6b: aa:9b:4e:eb:74:ac:fa:fe:00:d6:a9:39:74:70:76: 4d:bc:6e:c5:aa:a1:d2:e0:ce:73:a4:59:7d:5b:b8: 9e:3c:0c:2b:fa:b5:81:3e:f0:67:9b:87:36:f8:3b: a1:68:3f:cf:18:39:26:af:6e:8b:e0:35:fe:25:ad: 18:80:c2:a4:db:4d:c8:93:d0:7b:45:70:9c:a9:e2: 6b:97:3a:e6:d7:36:04:95:c3:8d:35:a4:b4:1c:9f: d4:c0:33:db:95:e0:dd:ff:35:1e:ca:97:bd:ec:95: c2:ab:b4:6d:97:a2:26:89:18:fa:68:69:95:c3:12: ca:3f:de:f5:31:d0:44:a0:58:58:4a:04:88:4c:35: d7:24:97:8b:bf:81:4a:c0:6f:44:0b:67:f0:98:bd: 2a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:B6:91:58:C4:83:05:54:58:3C:63:29:B4:30:48:53:35:59:31:4E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f21f3ab6-5c32-4a28-ab46-a813ba9034e1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:8050::/48 Signature Algorithm: sha256WithRSAEncryption c8:05:d2:0f:9e:6a:6f:8e:5e:c9:a5:93:1d:a9:61:33:c3:bd: e9:04:db:b3:bf:e8:43:b6:16:4f:11:8d:d6:b5:75:45:4f:7f: c0:66:fa:11:e4:83:6f:24:bd:d0:be:05:6b:16:66:76:68:67: 0e:94:44:52:1e:06:66:ef:6f:f4:27:1b:44:be:9e:94:1d:c5: af:a1:53:e1:2f:1e:e3:88:3a:ac:eb:b5:9a:27:66:fb:19:62: f2:d3:77:b5:a0:99:32:93:8a:02:93:20:ba:65:44:ca:5e:a0: bc:6d:f0:0b:c4:c9:d5:97:8c:06:a6:c4:9f:3e:aa:e8:87:d0: 1b:3e:b4:77:22:55:1f:da:61:ad:11:c6:d3:2e:74:5f:13:10: 23:3c:81:46:9f:37:b2:a3:db:ef:bd:91:35:a9:cd:fb:57:6e: 54:83:75:04:3c:9d:c1:1b:0d:1e:ed:75:24:7e:83:87:d2:ea: 08:71:59:7a:d7:87:fc:fb:35:93:34:7e:2d:cb:b2:e8:ed:74: 20:09:3a:89:1a:b7:ac:98:d8:fc:93:e5:7b:2e:65:f9:9b:be: 2d:91:fe:59:44:3c:6f:9d:88:95:59:53:cc:d7:58:b9:18:f0: e6:e8:2c:31:a1:5a:eb:ec:b4:9d:6c:60:38:74:09:4b:26:b8: d4:b9:b4:12 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZcjhNAGV9ckSizjIGXIbA6RbzKYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIxMTcxMDEwWhcNMjUwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYzRlODk3NjE2YjJiZWZkMThmMzlkNTE2Njk1ZTM4YTAx N2UyOWFlNWRlMTBiMzJlYWQ5ZmMyNTRmZjNhNWZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDaVzqCp7SoopsKEPpoJkVJswygRH3isLitmzYP5ZBlToTx NhjQyCivuT086Y+LsnN4cjn5FqYPs1ITdCynzde4HKcCIMby7SFNFxvds09vvb7f QiDcHAg3jFXJuZ0BYWohZDPwswQFa6qbTut0rPr+ANapOXRwdk28bsWqodLgznOk WX1buJ48DCv6tYE+8Gebhzb4O6FoP88YOSavbovgNf4lrRiAwqTbTciT0HtFcJyp 4muXOubXNgSVw401pLQcn9TAM9uV4N3/NR7Kl73slcKrtG2XoiaJGPpoaZXDEso/ 3vUx0ESgWFhKBIhMNdckl4u/gUrAb0QLZ/CYvSoBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUaLaRWMSDBVRYPGMptDBIUzVZMU4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyMWYzYWI2LTVjMzItNGEyOC1hYjQ2LWE4MTNiYTkwMzRlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//gFAwDQYJKoZIhvcNAQELBQADggEBAMgF0g+eam+OXsmlkx2pYTPD vekE27O/6EO2Fk8Rjda1dUVPf8Bm+hHkg28kvdC+BWsWZnZoZw6URFIeBmbvb/Qn G0S+npQdxa+hU+EvHuOIOqzrtZonZvsZYvLTd7WgmTKTigKTILplRMpeoLxt8AvE ydWXjAamxJ8+quiH0Bs+tHciVR/aYa0RxtMudF8TECM8gUafN7Kj2++9kTWpzftX blSDdQQ8ncEbDR7tdSR+g4fS6ghxWXrXh/z7NZM0fi3LsujtdCAJOokat6yY2PyT 5XsuZfmbvi2R/llEPG+diJVZU8zXWLkY8OboLDGhWuvstJ1sYDh0CUsmuNS5tBI= -----END CERTIFICATE-----Generated at Sat Apr 26 13:26:23 2025 by rpki-client