$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/d904f993-5ca9-4bad-8c47-2d2c6ef58b2e.roa File: d904f993-5ca9-4bad-8c47-2d2c6ef58b2e.roa (raw, json) Hash identifier: gn4BXSY8PHuhkHoVS1fZR9O5jCuzU6z21l6LGVOg8j0= Subject key identifier: E6:F2:29:C4:12:89:86:94:B3:17:60:35:BD:FE:E6:41:6D:F7:95:6F Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 4526CA015AA7AFB54D5C9D29E314EB217C3DA148 Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/d904f993-5ca9-4bad-8c47-2d2c6ef58b2e.roa Signing time: Wed 16 Apr 2025 00:10:10 +0000 ROA not before: Wed 16 Apr 2025 00:10:10 +0000 ROA not after: Wed 21 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2606:f40::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:26:ca:01:5a:a7:af:b5:4d:5c:9d:29:e3:14:eb:21:7c:3d:a1:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Apr 16 00:10:10 2025 GMT Not After : May 21 23:59:59 2025 GMT Subject: serialNumber=2f18d0429f0142c107c2850eacbe3b6eb681a5e8d06880abec46c2726a1f25ce, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9f:cd:5f:0f:e8:d7:e6:ac:c9:30:db:e8:c7: bb:0d:db:09:0a:de:f0:54:1e:f5:f8:5c:81:e0:f6: 67:02:bc:d6:9f:ed:29:0f:59:f3:fd:f1:dc:de:e8: be:73:ee:c9:35:9b:91:9c:74:12:30:8e:e1:8c:7d: a6:29:52:94:63:04:69:ce:cf:81:7d:a3:43:7d:cc: f9:cc:db:5e:52:56:9f:67:4c:eb:ca:74:95:a8:63: 05:b4:79:b6:e1:02:df:e4:d1:b4:be:ab:64:24:0e: 49:50:81:04:ed:74:3d:5c:eb:75:74:6c:43:65:2a: f9:ca:cc:70:90:3f:b5:24:cc:1d:c4:b9:89:ad:af: 2f:5a:6b:27:8b:8c:83:1b:f0:ef:57:a6:6f:99:50: 71:b0:80:11:5d:3f:33:72:ed:46:a3:0f:d7:30:16: 25:f6:bc:1f:01:ad:d7:2c:34:e0:d2:d1:5b:e6:89: 43:d0:22:96:01:2d:1e:63:69:21:96:29:c6:e4:d9: 06:ab:7b:63:ba:7e:53:03:55:1a:5b:35:c2:af:8b: 5c:b0:a3:8e:3d:23:cc:15:e5:e1:92:c2:51:18:43: 4c:81:c2:df:05:69:31:4e:00:a4:75:13:b0:d5:6a: 9f:33:5e:12:44:ee:0a:3f:a4:99:d1:42:e9:b0:21: a2:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:F2:29:C4:12:89:86:94:B3:17:60:35:BD:FE:E6:41:6D:F7:95:6F X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/d904f993-5ca9-4bad-8c47-2d2c6ef58b2e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40::/39 Signature Algorithm: sha256WithRSAEncryption 8c:d1:e7:32:a5:d8:3c:91:81:d4:0e:9d:d8:f0:12:a0:fa:ee: 79:71:3b:13:69:a4:86:ed:c0:2d:6e:d6:45:f9:c0:2a:dd:16: 6f:ea:24:08:02:5c:f2:8a:74:e3:d1:bc:ff:49:ae:20:da:aa: e2:0a:bc:97:99:5c:d8:20:e7:b9:b5:fa:9e:09:ed:f5:e0:88: 18:fe:a9:6b:85:5f:db:d0:25:0c:ab:cf:01:54:72:ae:05:e4: e7:14:d1:4e:e7:ec:0f:f6:8b:5f:e3:71:85:1d:d2:61:d1:ba: 2e:6e:57:36:5a:7a:12:0e:0b:3e:1c:61:eb:f7:40:6b:27:17: 49:e1:22:58:ce:65:4e:3b:70:e4:ba:28:2b:4f:33:2b:e9:44: c1:2e:38:8f:b5:e2:97:d3:b5:c7:2e:61:40:27:65:52:62:48: f3:f7:a1:47:54:17:b4:56:df:3d:b1:11:9b:8f:a2:45:fe:91: c1:6e:d5:39:d9:f3:19:d5:e3:a6:56:1d:39:21:88:a3:ed:e2: 57:37:49:7b:7a:ae:53:e0:1c:ce:48:58:cc:83:ca:cd:55:7f: 21:a8:4d:b8:31:a0:be:7f:60:9d:c7:45:2b:9f:60:58:0a:2a: 18:12:e8:5d:70:b8:bd:ce:e9:11:89:36:08:ef:bc:45:3a:9b: 49:a8:ab:60 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIURSbKAVqnr7VNXJ0p4xTrIXw9oUgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUwNDE2MDAxMDEwWhcNMjUwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZjE4ZDA0MjlmMDE0MmMxMDdjMjg1MGVhY2JlM2I2ZWI2 ODFhNWU4ZDA2ODgwYWJlYzQ2YzI3MjZhMWYyNWNlMS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6n81fD+jX5qzJMNvox7sN2wkK3vBUHvX4XIHg9mcCvNaf 7SkPWfP98dze6L5z7sk1m5GcdBIwjuGMfaYpUpRjBGnOz4F9o0N9zPnM215SVp9n TOvKdJWoYwW0ebbhAt/k0bS+q2QkDklQgQTtdD1c63V0bENlKvnKzHCQP7UkzB3E uYmtry9aayeLjIMb8O9Xpm+ZUHGwgBFdPzNy7UajD9cwFiX2vB8BrdcsNODS0Vvm iUPQIpYBLR5jaSGWKcbk2Qare2O6flMDVRpbNcKvi1ywo449I8wV5eGSwlEYQ0yB wt8FaTFOAKR1E7DVap8zXhJE7go/pJnRQumwIaJZAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU5vIpxBKJhpSzF2A1vf7mQW33lW8wHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjL2Q5MDRmOTkzLTVjYTktNGJhZC04YzQ3LTJkMmM2ZWY1OGIyZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmBg9AADANBgkqhkiG9w0BAQsFAAOCAQEAjNHnMqXYPJGB1A6d2PASoPru eXE7E2mkhu3ALW7WRfnAKt0Wb+okCAJc8op049G8/0muINqq4gq8l5lc2CDnubX6 ngnt9eCIGP6pa4Vf29AlDKvPAVRyrgXk5xTRTufsD/aLX+NxhR3SYdG6Lm5XNlp6 Eg4LPhxh6/dAaycXSeEiWM5lTjtw5LooK08zK+lEwS44j7Xil9O1xy5hQCdlUmJI 8/ehR1QXtFbfPbERm4+iRf6RwW7VOdnzGdXjplYdOSGIo+3iVzdJe3quU+AczkhY zIPKzVV/IahNuDGgvn9gncdFK59gWAoqGBLoXXC4vc7pEYk2CO+8RTqbSairYA== -----END CERTIFICATE-----Generated at Sat Apr 26 14:48:07 2025 by rpki-client