$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/943694fe-e278-4d76-b786-7df26f151dd9.roa File: 943694fe-e278-4d76-b786-7df26f151dd9.roa (raw, json) Hash identifier: ausTbmzkJLQFClW8N4/PJRs3Uo/LH/6y1OZf/9cvnHU= Subject key identifier: 66:72:23:E0:AA:D6:F6:E7:B0:B5:C1:B6:14:00:07:F4:9B:D9:93:D0 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 4A6C4E6333B436B657901887568230D6C9322028 Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/943694fe-e278-4d76-b786-7df26f151dd9.roa Signing time: Fri 11 Apr 2025 00:20:02 +0000 ROA not before: Fri 11 Apr 2025 00:20:02 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2606:f40:fffe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:6c:4e:63:33:b4:36:b6:57:90:18:87:56:82:30:d6:c9:32:20:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Apr 11 00:20:02 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=10dba5e5a5969f363fc1cce44635c16547cac41df27ee7835c2df24cb19696e3, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:53:7e:cb:27:c5:04:36:24:e6:95:7b:a3:ec: 5e:b2:ff:fa:9a:a6:c9:2e:f6:10:7d:77:79:a8:3d: 07:91:e5:e2:a3:b4:0f:ac:34:af:c9:12:bf:d7:7a: 92:33:cd:60:7a:25:54:dd:72:11:33:ab:2c:1a:3d: b4:5d:bf:a4:ea:18:de:bb:16:e1:98:8e:1f:3e:9c: b7:4b:57:32:eb:db:0c:4e:07:23:36:84:47:b1:87: 60:d3:c2:95:2d:42:0b:4e:7d:66:57:52:2d:a8:32: 71:31:9b:96:45:ec:13:6f:e5:6d:9e:ed:81:a0:4c: 1e:4b:ea:69:eb:0c:61:d2:a7:6e:c8:30:5c:b8:6d: f3:72:e6:ad:0b:a6:37:a8:ff:37:58:50:ad:71:dc: ab:14:ab:42:fa:34:f1:1e:dd:b7:71:37:b9:0d:9c: 05:f0:4c:fb:be:55:06:fd:d7:1a:b1:b2:8a:84:0b: 98:98:44:f1:22:b4:1e:85:30:0b:96:e1:e4:0e:2d: bd:8a:da:c9:3d:25:d6:86:9c:86:25:a0:e9:72:d8: 46:b6:be:50:88:31:a1:d1:99:41:ee:84:54:9b:22: bd:fd:c9:f5:be:fe:f2:6f:0a:bb:5f:61:a1:69:ab: 8a:0f:16:94:5d:b8:47:b0:59:3f:ac:f3:67:53:48: 72:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:72:23:E0:AA:D6:F6:E7:B0:B5:C1:B6:14:00:07:F4:9B:D9:93:D0 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/943694fe-e278-4d76-b786-7df26f151dd9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:fffe::/48 Signature Algorithm: sha256WithRSAEncryption 34:ab:a5:b6:3e:cf:77:88:8f:12:0f:1e:a8:f2:3b:d9:da:22: d7:e1:55:2c:74:77:94:58:67:02:a3:c7:12:7b:e4:06:c8:8b: be:3f:5b:04:f0:09:28:7a:0b:7b:70:88:6c:f9:46:a7:fd:0e: 2b:95:0b:67:07:32:b0:fa:5d:b4:a1:87:cb:b3:8c:7b:fa:18: b7:ba:99:fa:d8:98:66:93:67:51:d2:c6:e4:45:4f:e3:2d:e3: e9:c7:f5:54:2b:f8:88:31:dc:33:34:f6:ae:c9:fe:0c:71:a1: bb:85:8e:49:fc:6c:7c:d9:57:2b:a5:c7:77:df:11:90:10:95: 9f:cd:30:61:5a:13:ac:60:f6:45:0c:c7:cd:6b:05:ec:c9:eb: fb:5d:43:e7:c9:e1:77:d1:18:85:fd:58:06:cd:39:11:84:b3: d3:db:35:26:4a:70:c0:61:27:64:e6:ea:e5:7b:8a:09:f6:86: 4f:25:e0:e0:00:38:ba:c6:dd:03:16:5b:3e:f9:08:a1:0f:06: 4f:9e:f6:ab:da:00:3d:b6:59:d7:9f:87:19:b1:54:c1:63:44: f4:40:8e:bd:d1:ac:f3:28:14:0f:db:7a:ce:d6:9e:dc:be:e1: e7:1a:51:8e:a2:b6:76:42:c5:7a:bc:99:21:2b:d9:70:e7:d6: 71:62:ba:99 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSmxOYzO0NrZXkBiHVoIw1skyICgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUwNDExMDAyMDAyWhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMGRiYTVlNWE1OTY5ZjM2M2ZjMWNjZTQ0NjM1YzE2NTQ3 Y2FjNDFkZjI3ZWU3ODM1YzJkZjI0Y2IxOTY5NmUzMS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4U37LJ8UENiTmlXuj7F6y//qapsku9hB9d3moPQeR5eKj tA+sNK/JEr/XepIzzWB6JVTdchEzqywaPbRdv6TqGN67FuGYjh8+nLdLVzLr2wxO ByM2hEexh2DTwpUtQgtOfWZXUi2oMnExm5ZF7BNv5W2e7YGgTB5L6mnrDGHSp27I MFy4bfNy5q0Lpjeo/zdYUK1x3KsUq0L6NPEe3bdxN7kNnAXwTPu+VQb91xqxsoqE C5iYRPEitB6FMAuW4eQOLb2K2sk9JdaGnIYloOly2Ea2vlCIMaHRmUHuhFSbIr39 yfW+/vJvCrtfYaFpq4oPFpRduEewWT+s82dTSHIxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZnIj4KrW9uewtcG2FAAH9JvZk9AwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjLzk0MzY5NGZlLWUyNzgtNGQ3Ni1iNzg2LTdkZjI2ZjE1MWRkOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBg9A//4wDQYJKoZIhvcNAQELBQADggEBADSrpbY+z3eIjxIPHqjyO9na ItfhVSx0d5RYZwKjxxJ75AbIi74/WwTwCSh6C3twiGz5Rqf9DiuVC2cHMrD6XbSh h8uzjHv6GLe6mfrYmGaTZ1HSxuRFT+Mt4+nH9VQr+Igx3DM09q7J/gxxobuFjkn8 bHzZVyulx3ffEZAQlZ/NMGFaE6xg9kUMx81rBezJ6/tdQ+fJ4XfRGIX9WAbNORGE s9PbNSZKcMBhJ2Tm6uV7ign2hk8l4OAAOLrG3QMWWz75CKEPBk+e9qvaAD22Wdef hxmxVMFjRPRAjr3RrPMoFA/bes7Wnty+4ecaUY6itnZCxXq8mSEr2XDn1nFiupk= -----END CERTIFICATE-----Generated at Sat Apr 26 13:18:10 2025 by rpki-client