$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/a8ff9337-21d8-4d5e-b988-d1a983d73aea.roa File: a8ff9337-21d8-4d5e-b988-d1a983d73aea.roa (raw, json) Hash identifier: uaj6GLTCaWtWOZYLvsoZgVaca0GEkkldPA3YspVjxfI= Subject key identifier: 6F:65:21:1A:FE:B6:C0:88:D9:6B:82:E2:32:D4:DD:3B:96:81:A4:D4 Certificate issuer: /CN=6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267 Certificate serial: 779D2B10C1B7AFB576CB0D6EC21793FB55BE07C9 Authority key identifier: 6D:CA:65:D0:71:4D:7E:F2:56:90:BC:09:13:D3:54:DB:AC:89:2A:5E Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/a8ff9337-21d8-4d5e-b988-d1a983d73aea.roa Signing time: Fri 25 Apr 2025 17:40:02 +0000 ROA not before: Fri 25 Apr 2025 17:40:02 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:c940::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/5d7wm5lPjPYLrYyQKcAGV3ULImc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/5d7wm5lPjPYLrYyQKcAGV3ULImc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/7276b2fa-548d-4970-8314-8d73945c34d8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/7276b2fa-548d-4970-8314-8d73945c34d8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:9d:2b:10:c1:b7:af:b5:76:cb:0d:6e:c2:17:93:fb:55:be:07:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267 Validity Not Before: Apr 25 17:40:02 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=1dca04f954bd5cae56789db1ca8118675a5e7b766745f673138c9f57415e329b, CN=15f1683a-c0c2-4266-9a96-ecf9eba3239c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:e8:4f:9e:e9:fd:06:ad:2f:bc:07:1c:79:42: 46:25:dd:65:2a:af:18:b4:04:91:75:55:95:b6:43: fe:1c:64:6e:a9:35:42:1e:20:4a:d8:9e:f2:88:15: ae:08:ec:25:e7:b3:c6:ec:2c:53:e9:b8:c8:e0:37: e8:c8:7a:16:b4:27:11:7c:07:a8:a4:3d:1c:1f:f1: 9c:0d:7f:9c:27:86:39:24:96:4a:d0:c8:2d:8d:04: c3:77:87:94:d3:46:0c:73:82:82:70:15:2a:c6:84: 4a:e2:3f:f1:31:fc:30:7c:3e:75:b6:cf:75:95:23: 95:9c:f1:0d:d5:ac:29:0c:59:3f:88:09:27:56:61: 70:fd:5e:b4:6e:80:ca:ee:6d:d0:d0:2e:a5:37:f7: 3c:55:78:87:d2:de:4c:9b:d0:2f:2c:6c:c7:9d:b8: 3d:01:a4:af:33:57:10:f4:cd:83:d0:e5:92:f1:f9: 52:ba:00:09:34:6b:a6:ee:57:9c:ce:12:a3:65:67: 0d:4b:36:23:6a:24:a9:6c:e7:f4:e3:72:9b:ed:41: f5:32:cc:b3:11:6d:fa:95:76:09:e7:73:26:eb:66: fc:37:6e:83:b4:b7:f3:8d:9f:58:46:0b:20:72:2d: 36:72:f6:46:d9:cc:06:12:5a:89:9b:03:f9:4b:cd: 57:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:65:21:1A:FE:B6:C0:88:D9:6B:82:E2:32:D4:DD:3B:96:81:A4:D4 X509v3 Authority Key Identifier: keyid:6D:CA:65:D0:71:4D:7E:F2:56:90:BC:09:13:D3:54:DB:AC:89:2A:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/a8ff9337-21d8-4d5e-b988-d1a983d73aea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/5d7wm5lPjPYLrYyQKcAGV3ULImc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:c940::/32 Signature Algorithm: sha256WithRSAEncryption 36:49:53:2a:86:84:2e:d4:b5:d5:76:6a:92:6e:0e:91:c6:f5: d0:7f:3f:81:3d:69:3c:29:b6:71:56:6d:9a:ef:56:fe:6e:85: 7e:82:b6:cf:5e:d8:c3:a0:d7:2d:bd:5b:8d:19:a6:99:b7:d3: 0d:a7:cb:c7:0c:ab:75:d8:ad:6c:a1:b6:0e:51:dd:13:ab:b5: 4c:eb:c3:a7:ef:12:09:d1:2d:e6:96:a9:99:c7:74:dc:5a:f6: 40:c7:40:3d:b2:d1:a2:23:2b:f4:87:7b:08:0b:7c:20:92:e0: 08:1d:97:94:17:1f:f9:c3:42:d8:3d:dc:a7:9c:24:d5:05:86: f9:dd:f0:c1:14:68:3c:42:46:08:af:36:7a:e5:9d:34:e3:9a: 74:48:62:d5:48:75:4c:d8:df:bb:44:a5:ed:c2:83:82:ca:15: b2:25:59:ec:a8:c2:86:89:58:29:6f:ce:cd:46:47:ab:45:6c: 53:5e:63:46:bd:be:46:ce:80:21:8a:fc:ca:0e:2a:91:4d:bb: f3:e8:53:91:d6:aa:e6:e4:ac:bb:a3:0b:cf:f6:32:02:c3:e9: 16:90:af:c6:78:f5:26:ad:94:45:eb:50:8e:54:a7:03:c1:61: bb:22:fa:e0:ac:be:08:71:96:89:78:42:2d:ff:0b:1c:83:e7: 31:12:5a:78 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUd50rEMG3r7V2yw1uwheT+1W+B8kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmY5Yjk4NWIwZmU1ZGVmMDliOTk0ZjhjZjYwYmFkOGM5 MDI5YzAwNjU3NzUwYjIyNjcwHhcNMjUwNDI1MTc0MDAyWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZGNhMDRmOTU0YmQ1Y2FlNTY3ODlkYjFjYTgxMTg2NzVh NWU3Yjc2Njc0NWY2NzMxMzhjOWY1NzQxNWUzMjliMS0wKwYDVQQDEyQxNWYxNjgz YS1jMGMyLTQyNjYtOWE5Ni1lY2Y5ZWJhMzIzOWMwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDj6E+e6f0GrS+8Bxx5QkYl3WUqrxi0BJF1VZW2Q/4cZG6p NUIeIErYnvKIFa4I7CXns8bsLFPpuMjgN+jIeha0JxF8B6ikPRwf8ZwNf5wnhjkk lkrQyC2NBMN3h5TTRgxzgoJwFSrGhEriP/Ex/DB8PnW2z3WVI5Wc8Q3VrCkMWT+I CSdWYXD9XrRugMrubdDQLqU39zxVeIfS3kyb0C8sbMeduD0BpK8zVxD0zYPQ5ZLx +VK6AAk0a6buV5zOEqNlZw1LNiNqJKls5/TjcpvtQfUyzLMRbfqVdgnncybrZvw3 boO0t/ONn1hGCyByLTZy9kbZzAYSWombA/lLzVdhAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUb2UhGv62wIjZa4LiMtTdO5aBpNQwHwYDVR0jBBgwFoAUbcpl0HFNfvJW kLwJE9NU26yJKl4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC83Mjc2YjJmYS01 NDhkLTQ5NzAtODMxNC04ZDczOTQ1YzM0ZDgvNmY5Yjk4NWIwZmU1ZGVmMDliOTk0 ZjhjZjYwYmFkOGM5MDI5YzAwNjU3NzUwYjIyNjcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjNmNmI2ODgtY2ZmNC00MDJmLTk3ZDUtMDJm NmYxODg2YjdlL2E4ZmY5MzM3LTIxZDgtNGQ1ZS1iOTg4LWQxYTk4M2Q3M2FlYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2IzZjZiNjg4LWNmZjQtNDAyZi05N2Q1 LTAyZjZmMTg4NmI3ZS81ZDd3bTVsUGpQWUxyWXlRS2NBR1YzVUxJbWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBclAMA0GCSqGSIb3DQEBCwUAA4IBAQA2SVMqhoQu1LXVdmqSbg6RxvXQ fz+BPWk8KbZxVm2a71b+boV+grbPXtjDoNctvVuNGaaZt9MNp8vHDKt12K1sobYO Ud0Tq7VM68On7xIJ0S3mlqmZx3TcWvZAx0A9stGiIyv0h3sIC3wgkuAIHZeUFx/5 w0LYPdynnCTVBYb53fDBFGg8QkYIrzZ65Z0045p0SGLVSHVM2N+7RKXtwoOCyhWy JVnsqMKGiVgpb87NRkerRWxTXmNGvb5GzoAhivzKDiqRTbvz6FOR1qrm5Ky7owvP 9jICw+kWkK/GePUmrZRF61COVKcDwWG7IvrgrL4IcZaJeEIt/wscg+cxElp4 -----END CERTIFICATE-----Generated at Sat Apr 26 17:44:14 2025 by rpki-client