$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/026d9e0e-e9f3-4245-8184-2f5a17b3204e.roa File: 026d9e0e-e9f3-4245-8184-2f5a17b3204e.roa (raw, json) Hash identifier: dNN/XWgi41bWOje8UxluLiu1ABEH1cHfk4kJ2jsZ6XA= Subject key identifier: 08:74:E6:DD:90:C5:4A:36:CC:B1:DA:42:45:55:2F:A1:7D:68:48:1D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 014BD480FF5843260B809F8D085E79B4B6CCD2B6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/026d9e0e-e9f3-4245-8184-2f5a17b3204e.roa Signing time: Mon 05 May 2025 15:10:52 +0000 ROA not before: Mon 05 May 2025 15:10:52 +0000 ROA not after: Mon 09 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f32:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:4b:d4:80:ff:58:43:26:0b:80:9f:8d:08:5e:79:b4:b6:cc:d2:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 15:10:52 2025 GMT Not After : Jun 9 23:59:59 2025 GMT Subject: serialNumber=11203e19b2082e8adb4583807e73ffcca410cd7f1223a764e0e600eb1e642882, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a3:47:33:cf:d4:f8:61:37:10:2e:50:41:4d: 49:77:e2:74:ae:8f:48:3a:c4:cb:64:54:ea:4a:01: ca:88:78:57:dc:aa:dd:32:b7:5a:88:7c:08:66:24: c7:d8:c5:60:df:e0:95:85:57:16:bb:cf:16:0d:a5: 69:d4:90:d2:74:68:aa:f7:1f:eb:12:8b:68:c6:c1: 1a:a7:ed:2b:d3:5b:c8:53:b1:5c:2b:49:78:b1:b1: 9f:04:8e:0e:dc:4a:c1:84:7f:e9:a1:0c:0d:35:6d: 19:da:13:08:b3:b7:c8:36:56:65:3a:be:ff:1f:2b: 26:98:4f:7f:9c:73:5e:c8:c2:6c:46:a7:e5:bd:d4: ee:48:05:7c:79:a9:5c:a9:15:8d:41:4a:b0:ab:44: 72:d4:09:7c:57:f6:f0:d7:71:10:f6:e0:00:ed:b1: dc:4d:cf:c3:73:e2:46:c5:94:dc:4b:43:70:cf:26: 86:92:91:9c:40:65:36:41:07:e1:e2:24:c2:bc:ed: fa:7c:da:b7:19:a8:c7:8a:8f:84:56:f3:7a:fd:57: 49:af:c0:bd:cb:3d:9b:48:2e:8c:af:60:fd:f5:48: b1:af:22:69:fc:ad:89:06:43:99:d1:7f:7c:ce:8b: 38:6f:c5:ff:9f:0c:87:2b:a8:37:d0:d2:60:a3:2c: ca:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:74:E6:DD:90:C5:4A:36:CC:B1:DA:42:45:55:2F:A1:7D:68:48:1D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/026d9e0e-e9f3-4245-8184-2f5a17b3204e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f32:e000::/40 Signature Algorithm: sha256WithRSAEncryption 74:de:f4:6a:a5:f0:c2:53:ea:37:a5:b4:35:28:fb:19:bd:56: 09:cb:54:39:ea:d5:1c:63:90:e7:6f:c3:2a:55:e9:03:b2:fc: 73:64:38:56:00:f9:69:ea:e8:8f:e8:3a:4e:17:81:af:c0:59: aa:80:7c:ae:06:97:fe:bd:d8:8c:ac:aa:fc:48:80:3b:4b:11: c3:61:79:68:2f:d2:37:c0:f9:2a:0a:9d:d2:40:4a:71:d4:34: 87:20:a9:38:64:d8:1d:ca:3c:0c:5d:39:66:10:a2:ae:04:47: 93:fd:06:ce:7e:7e:59:8e:54:0b:20:f8:b0:4a:f1:af:cd:f1: da:88:a6:58:e3:24:37:f1:c1:b3:b8:f5:c3:95:b8:aa:e7:50: 27:e7:c3:8e:96:4e:1f:aa:60:3b:0c:6b:97:21:2e:11:53:2d: ef:9a:c3:64:f4:8a:26:c4:ca:7e:5a:b7:a6:10:25:34:0a:c5: 51:19:fe:fa:87:da:5f:ff:50:70:03:56:10:ee:25:29:01:ee: 4b:8e:d7:00:77:3f:c8:f0:a3:36:f9:b6:d4:bd:69:94:e7:a3: c8:32:1b:78:df:93:b2:b0:c9:86:be:1a:b8:74:ec:ca:77:af: 13:02:12:c9:d9:ca:57:6c:2a:1a:fc:b0:cf:82:55:27:80:56: ab:a0:1a:3d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUAUvUgP9YQyYLgJ+NCF55tLbM0rYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA1MTUxMDUyWhcNMjUwNjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMTIwM2UxOWIyMDgyZThhZGI0NTgzODA3ZTczZmZjY2E0 MTBjZDdmMTIyM2E3NjRlMGU2MDBlYjFlNjQyODgyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBo0czz9T4YTcQLlBBTUl34nSuj0g6xMtkVOpKAcqIeFfc qt0yt1qIfAhmJMfYxWDf4JWFVxa7zxYNpWnUkNJ0aKr3H+sSi2jGwRqn7SvTW8hT sVwrSXixsZ8Ejg7cSsGEf+mhDA01bRnaEwizt8g2VmU6vv8fKyaYT3+cc17IwmxG p+W91O5IBXx5qVypFY1BSrCrRHLUCXxX9vDXcRD24ADtsdxNz8Nz4kbFlNxLQ3DP JoaSkZxAZTZBB+HiJMK87fp82rcZqMeKj4RW83r9V0mvwL3LPZtILoyvYP31SLGv Imn8rYkGQ5nRf3zOizhvxf+fDIcrqDfQ0mCjLMrvAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUCHTm3ZDFSjbMsdpCRVUvoX1oSB0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAyNmQ5ZTBlLWU5ZjMtNDI0NS04MTg0LTJmNWExN2IzMjA0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB8y4DANBgkqhkiG9w0BAQsFAAOCAQEAdN70aqXwwlPqN6W0NSj7Gb1W CctUOerVHGOQ52/DKlXpA7L8c2Q4VgD5aeroj+g6TheBr8BZqoB8rgaX/r3YjKyq /EiAO0sRw2F5aC/SN8D5Kgqd0kBKcdQ0hyCpOGTYHco8DF05ZhCirgRHk/0Gzn5+ WY5UCyD4sErxr83x2oimWOMkN/HBs7j1w5W4qudQJ+fDjpZOH6pgOwxrlyEuEVMt 75rDZPSKJsTKflq3phAlNArFURn++ofaX/9QcANWEO4lKQHuS47XAHc/yPCjNvm2 1L1plOejyDIbeN+TsrDJhr4auHTsynevEwISydnKV2wqGvywz4JVJ4BWq6AaPQ== -----END CERTIFICATE-----Generated at Fri May 9 07:19:30 2025 by rpki-client