$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/c518c762-ddbf-4352-b9b9-1484318adaa8.roa File: c518c762-ddbf-4352-b9b9-1484318adaa8.roa (raw, json) Hash identifier: 1z9ac+kxKh16qodYIl5LkYNtLzCtjKNFn32/qUmuXn0= Subject key identifier: 45:A8:82:F8:B6:22:AC:CF:99:E6:4C:26:47:61:23:03:19:2F:A2:5F Certificate issuer: /CN=6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267 Certificate serial: 152C182ADFAB36C2B1DE1C1DC29DDC770536C326 Authority key identifier: 6D:CA:65:D0:71:4D:7E:F2:56:90:BC:09:13:D3:54:DB:AC:89:2A:5E Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/c518c762-ddbf-4352-b9b9-1484318adaa8.roa Signing time: Fri 25 Apr 2025 17:40:01 +0000 ROA not before: Fri 25 Apr 2025 17:40:01 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:c940::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/5d7wm5lPjPYLrYyQKcAGV3ULImc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/5d7wm5lPjPYLrYyQKcAGV3ULImc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/7276b2fa-548d-4970-8314-8d73945c34d8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/7276b2fa-548d-4970-8314-8d73945c34d8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:2c:18:2a:df:ab:36:c2:b1:de:1c:1d:c2:9d:dc:77:05:36:c3:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267 Validity Not Before: Apr 25 17:40:01 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=c1f198aeb6c869f24229556de05e954abdc151366fdde48cc0d49f6cb3a3d386, CN=15f1683a-c0c2-4266-9a96-ecf9eba3239c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:00:02:c3:74:f8:85:d2:32:2b:a4:36:a2:67: 0b:7d:2f:3b:11:97:68:50:92:da:1a:34:28:e5:73: 0d:b4:85:99:d4:57:e3:c8:de:12:25:2f:d6:be:8e: 4d:63:e9:bf:80:61:87:f4:37:71:9f:92:96:6d:ce: dc:3d:10:7f:43:51:57:5e:e5:9c:f3:06:f2:1b:77: fb:1c:28:98:26:40:7f:8e:5f:75:4a:4d:fc:3f:0c: 0e:0e:ac:9d:04:ed:9e:33:1d:6e:35:8f:bd:53:9a: c6:41:1e:47:07:ca:fd:35:a6:07:1b:13:72:d0:0d: 8d:46:78:c5:a6:83:61:57:b7:e6:29:72:20:63:9d: 3d:7b:30:dd:b4:47:f2:c4:eb:fe:28:62:db:f2:88: 23:1b:50:94:6c:a4:98:a0:a2:9b:dd:b6:65:f8:b1: 40:05:4d:4b:72:e0:37:89:5e:56:b4:58:b3:a6:90: 19:18:7f:cf:d1:16:69:53:1b:83:80:be:ed:89:9f: b0:47:cf:15:5e:51:45:e4:2e:5a:be:09:0b:c0:22: 82:f6:28:b7:aa:b3:dc:c2:b6:f8:2b:0d:f9:e1:87: 72:6e:16:61:b8:b1:67:72:fc:9d:77:e4:8a:c0:79: 23:e0:7a:ed:2a:f2:6f:c2:98:be:ec:d3:41:31:d3: 5c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:A8:82:F8:B6:22:AC:CF:99:E6:4C:26:47:61:23:03:19:2F:A2:5F X509v3 Authority Key Identifier: keyid:6D:CA:65:D0:71:4D:7E:F2:56:90:BC:09:13:D3:54:DB:AC:89:2A:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/c518c762-ddbf-4352-b9b9-1484318adaa8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/5d7wm5lPjPYLrYyQKcAGV3ULImc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:c940::/32 Signature Algorithm: sha256WithRSAEncryption 72:24:ca:1c:4d:60:07:43:be:80:78:b8:88:36:91:6d:1f:06: fc:4c:44:bd:75:59:fa:bd:c9:d6:24:db:25:b4:80:44:67:9b: b9:68:82:4c:ee:83:6f:86:d4:5a:90:2e:48:cc:9c:5a:23:64: 7d:e9:ea:82:35:55:79:73:e3:59:3f:f9:30:3a:d0:90:4d:40: 63:55:f9:f9:66:f4:0b:81:ed:25:3d:5f:1c:79:e6:02:23:e8: 59:64:14:7e:a6:c9:82:77:fe:a9:50:75:10:ff:1f:f5:f2:07: ea:58:2c:57:f4:04:0f:87:60:f2:63:2e:a0:f2:62:dc:3c:14: fc:8a:1f:3f:3b:05:e7:d6:b5:f6:b6:fb:ac:57:bf:1b:53:49: 0b:9a:dd:6c:f0:ee:73:4a:c2:5d:26:f4:d5:2b:fe:ec:f2:d5: 57:85:40:9b:c3:3b:3b:ed:52:81:32:2a:5c:00:c5:fa:3c:4f: 6c:62:bd:63:f7:13:60:f2:21:c4:13:b9:4f:56:d2:31:12:2a: 53:01:5d:19:89:37:8e:f4:db:b6:b6:c4:20:5a:cb:c1:9d:43: d0:57:5b:35:12:85:06:56:e1:1d:4b:f7:d4:b8:03:24:23:df: 28:2a:ba:09:ca:3d:ed:41:fd:f6:62:11:6c:04:51:ed:03:df: d9:8e:4f:04 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUFSwYKt+rNsKx3hwdwp3cdwU2wyYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmY5Yjk4NWIwZmU1ZGVmMDliOTk0ZjhjZjYwYmFkOGM5 MDI5YzAwNjU3NzUwYjIyNjcwHhcNMjUwNDI1MTc0MDAxWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMWYxOThhZWI2Yzg2OWYyNDIyOTU1NmRlMDVlOTU0YWJk YzE1MTM2NmZkZGU0OGNjMGQ0OWY2Y2IzYTNkMzg2MS0wKwYDVQQDEyQxNWYxNjgz YS1jMGMyLTQyNjYtOWE5Ni1lY2Y5ZWJhMzIzOWMwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLAALDdPiF0jIrpDaiZwt9LzsRl2hQktoaNCjlcw20hZnU V+PI3hIlL9a+jk1j6b+AYYf0N3GfkpZtztw9EH9DUVde5ZzzBvIbd/scKJgmQH+O X3VKTfw/DA4OrJ0E7Z4zHW41j71TmsZBHkcHyv01pgcbE3LQDY1GeMWmg2FXt+Yp ciBjnT17MN20R/LE6/4oYtvyiCMbUJRspJigopvdtmX4sUAFTUty4DeJXla0WLOm kBkYf8/RFmlTG4OAvu2Jn7BHzxVeUUXkLlq+CQvAIoL2KLeqs9zCtvgrDfnhh3Ju FmG4sWdy/J135IrAeSPgeu0q8m/CmL7s00Ex01xNAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQURaiC+LYirM+Z5kwmR2EjAxkvol8wHwYDVR0jBBgwFoAUbcpl0HFNfvJW kLwJE9NU26yJKl4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC83Mjc2YjJmYS01 NDhkLTQ5NzAtODMxNC04ZDczOTQ1YzM0ZDgvNmY5Yjk4NWIwZmU1ZGVmMDliOTk0 ZjhjZjYwYmFkOGM5MDI5YzAwNjU3NzUwYjIyNjcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjNmNmI2ODgtY2ZmNC00MDJmLTk3ZDUtMDJm NmYxODg2YjdlL2M1MThjNzYyLWRkYmYtNDM1Mi1iOWI5LTE0ODQzMThhZGFhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2IzZjZiNjg4LWNmZjQtNDAyZi05N2Q1 LTAyZjZmMTg4NmI3ZS81ZDd3bTVsUGpQWUxyWXlRS2NBR1YzVUxJbWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBclAMA0GCSqGSIb3DQEBCwUAA4IBAQByJMocTWAHQ76AeLiINpFtHwb8 TES9dVn6vcnWJNsltIBEZ5u5aIJM7oNvhtRakC5IzJxaI2R96eqCNVV5c+NZP/kw OtCQTUBjVfn5ZvQLge0lPV8ceeYCI+hZZBR+psmCd/6pUHUQ/x/18gfqWCxX9AQP h2DyYy6g8mLcPBT8ih8/OwXn1rX2tvusV78bU0kLmt1s8O5zSsJdJvTVK/7s8tVX hUCbwzs77VKBMipcAMX6PE9sYr1j9xNg8iHEE7lPVtIxEipTAV0ZiTeO9Nu2tsQg WsvBnUPQV1s1EoUGVuEdS/fUuAMkI98oKroJyj3tQf32YhFsBFHtA9/Zjk8E -----END CERTIFICATE-----Generated at Sat Apr 26 13:30:00 2025 by rpki-client