$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/66edf542-bd09-43ab-8640-a67a7cbe5a17.roa File: 66edf542-bd09-43ab-8640-a67a7cbe5a17.roa (raw, json) Hash identifier: gRkJFZBipBsn7+sq00aPPGkEV+YWF1Lve+4gKe+7juA= Subject key identifier: 01:8D:A4:1B:D5:08:3D:CA:81:C3:E8:FD:C8:91:B7:F1:25:87:7D:5C Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 078ADD5D71DA46E67F66018FA95560E1F59F62A8 Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/66edf542-bd09-43ab-8640-a67a7cbe5a17.roa Signing time: Wed 16 Apr 2025 00:10:31 +0000 ROA not before: Wed 16 Apr 2025 00:10:31 +0000 ROA not after: Wed 21 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:b140::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:8a:dd:5d:71:da:46:e6:7f:66:01:8f:a9:55:60:e1:f5:9f:62:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: Apr 16 00:10:31 2025 GMT Not After : May 21 23:59:59 2025 GMT Subject: serialNumber=02c168d8b72d32d1dfcd09315a8137bc56b5c4d3730327629869aaff283a084c, CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:df:aa:83:e1:7c:10:14:c0:a5:cd:a1:aa:8e: 00:5d:2f:08:fc:85:aa:09:84:fc:41:56:68:76:71: f4:ef:08:86:71:e7:ca:aa:26:9b:b9:9b:84:d3:4b: f3:e0:e6:7e:09:53:90:1d:67:56:d6:88:d0:b0:de: 98:ff:35:4f:ee:61:23:95:e7:25:93:62:97:b1:b5: fc:97:8b:76:21:5d:f4:59:44:b7:ca:d6:dc:bf:07: 5a:a2:ef:37:fe:3e:0f:93:50:56:8d:eb:44:cd:e9: e1:b0:d1:99:01:18:e4:3f:3d:60:16:47:c9:95:07: 0c:75:f0:50:de:a8:66:b5:e2:89:bb:45:b7:33:3c: 76:ac:ba:09:00:a2:2a:fc:54:e0:28:55:e2:1b:3c: 1d:5c:3a:ab:f3:21:65:11:82:72:7d:a4:9d:f7:a5: 0a:4d:39:26:0d:53:11:ec:77:aa:a8:25:c3:da:0d: 8d:4a:69:14:b1:2b:05:6d:1f:97:c3:d1:e8:5d:56: d0:bc:5e:9c:1d:54:73:53:e9:59:c8:60:12:b6:f3: 21:90:30:2e:96:79:19:f7:31:57:f1:48:d2:c3:03: fa:39:7d:83:bf:7e:e0:4a:44:bf:0d:4e:e8:7d:f2: 55:68:53:30:3d:98:43:f4:01:49:e1:bd:8b:72:7a: 45:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:8D:A4:1B:D5:08:3D:CA:81:C3:E8:FD:C8:91:B7:F1:25:87:7D:5C X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/66edf542-bd09-43ab-8640-a67a7cbe5a17.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:b140::/32 Signature Algorithm: sha256WithRSAEncryption 67:61:76:27:0c:bc:bb:81:6d:62:c0:ab:fd:c7:37:c1:52:08: d9:0a:cd:07:a0:5f:f9:c3:27:30:6f:16:45:5c:9e:c0:72:d8: dd:1c:5a:43:40:4d:fe:29:de:b0:25:ad:6e:b1:34:85:e9:3c: 57:ae:92:b1:1f:2c:fb:16:90:9a:9a:dc:c9:af:e8:fb:a7:e0: 10:21:16:cb:89:d3:26:ae:bd:c9:37:cc:bf:3b:cf:6a:51:12: e5:2b:7a:7b:dc:30:c0:04:27:16:2d:5e:15:ae:69:3c:c8:13: 74:4d:a6:b8:bb:3a:a5:66:42:ca:79:73:d7:0f:0b:45:6c:bc: 03:72:6a:4d:5b:74:7b:31:3b:28:13:b0:16:3f:83:f9:7f:ef: 5a:56:ee:e8:2f:7b:45:b1:73:53:f4:45:0d:d4:37:51:c3:c7: 9a:a6:53:45:b5:86:79:2a:fa:85:3a:40:d3:7f:94:89:24:14: 6e:93:18:56:61:7e:76:60:f9:62:05:bc:a1:fe:3a:e2:cd:59: 32:a2:4f:89:e4:a8:88:d1:77:15:60:ef:9b:d5:7a:48:fc:75: 67:12:23:7e:18:99:1e:39:2f:0e:7d:e4:30:fd:01:73:57:9d: 54:2c:fe:ca:85:74:78:75:2b:bc:02:8b:8a:6f:06:80:e8:9a: 53:09:59:0e -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUB4rdXXHaRuZ/ZgGPqVVg4fWfYqgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjUwNDE2MDAxMDMxWhcNMjUwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMmMxNjhkOGI3MmQzMmQxZGZjZDA5MzE1YTgxMzdiYzU2 YjVjNGQzNzMwMzI3NjI5ODY5YWFmZjI4M2EwODRjMS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCu36qD4XwQFMClzaGqjgBdLwj8haoJhPxBVmh2cfTvCIZx 58qqJpu5m4TTS/Pg5n4JU5AdZ1bWiNCw3pj/NU/uYSOV5yWTYpextfyXi3YhXfRZ RLfK1ty/B1qi7zf+Pg+TUFaN60TN6eGw0ZkBGOQ/PWAWR8mVBwx18FDeqGa14om7 RbczPHasugkAoir8VOAoVeIbPB1cOqvzIWURgnJ9pJ33pQpNOSYNUxHsd6qoJcPa DY1KaRSxKwVtH5fD0ehdVtC8XpwdVHNT6VnIYBK28yGQMC6WeRn3MVfxSNLDA/o5 fYO/fuBKRL8NTuh98lVoUzA9mEP0AUnhvYtyekVNAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUAY2kG9UIPcqBw+j9yJG38SWHfVwwHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4LzY2ZWRmNTQyLWJkMDktNDNhYi04NjQwLWE2N2E3Y2JlNWExNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBbFAMA0GCSqGSIb3DQEBCwUAA4IBAQBnYXYnDLy7gW1iwKv9xzfBUgjZ Cs0HoF/5wycwbxZFXJ7ActjdHFpDQE3+Kd6wJa1usTSF6TxXrpKxHyz7FpCamtzJ r+j7p+AQIRbLidMmrr3JN8y/O89qURLlK3p73DDABCcWLV4Vrmk8yBN0Taa4uzql ZkLKeXPXDwtFbLwDcmpNW3R7MTsoE7AWP4P5f+9aVu7oL3tFsXNT9EUN1DdRw8ea plNFtYZ5KvqFOkDTf5SJJBRukxhWYX52YPliBbyh/jrizVkyok+J5KiI0XcVYO+b 1XpI/HVnEiN+GJkeOS8OfeQw/QFzV51ULP7KhXR4dSu8AouKbwaA6JpTCVkO -----END CERTIFICATE-----Generated at Sat Apr 26 14:51:58 2025 by rpki-client