$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/03ae4e74-5acd-4e00-b992-05190479b91d.roa File: 03ae4e74-5acd-4e00-b992-05190479b91d.roa (raw, json) Hash identifier: Wbs3VYaVK9n6gpNkZI0vD0vuHKpZZs9ZtBYDfJnCM/Q= Subject key identifier: E2:32:F7:F6:F2:E7:60:A1:01:14:2B:EF:AA:0C:29:DC:57:A9:34:4E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4972003A440A5EF749A4DB6CA1C0FA28665B48FE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/03ae4e74-5acd-4e00-b992-05190479b91d.roa Signing time: Sat 03 May 2025 00:20:33 +0000 ROA not before: Sat 03 May 2025 00:20:33 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f12:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 15 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:72:00:3a:44:0a:5e:f7:49:a4:db:6c:a1:c0:fa:28:66:5b:48:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:20:33 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=04333cc950e847a2060dfc134f05ac1e933b5d9d40695eee1e47f5ded5d0dab0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:da:0f:bb:02:f2:d8:76:10:b8:f9:b0:9a:8a: c8:02:11:12:ed:ef:31:56:10:4d:62:2c:b4:c6:b5: 0f:7c:d4:0e:23:5f:7e:82:18:8c:a9:72:3f:dd:e7: d6:90:65:c4:52:5c:60:cc:24:83:3d:e6:93:01:10: 6c:26:29:ce:07:46:77:90:fa:dd:42:f6:7b:4c:a5: 74:25:6c:61:83:88:cd:d4:21:57:96:0b:18:f4:db: 3d:95:f9:37:36:20:65:01:54:7c:f5:be:67:6f:72: 0f:2b:83:49:12:1c:ff:b0:57:b8:82:8d:19:01:c1: 75:26:69:17:70:62:c8:5c:0e:41:7c:5b:95:ee:d1: a0:ea:ba:d4:e8:a4:37:08:f9:93:76:15:63:76:14: a3:35:63:85:81:3b:29:dd:27:4d:33:bb:70:d0:57: 92:dc:0d:18:f6:b1:8a:28:c1:33:84:7e:57:ee:1a: bf:3e:04:26:fd:e5:86:24:e0:00:c2:e1:fd:bc:86: 29:db:77:7e:fc:64:3d:a1:62:91:1b:74:25:03:38: 8f:c9:88:a1:ab:e8:fa:e8:9b:85:ee:f6:ad:c2:81: ad:b1:2a:ce:4b:66:03:46:54:89:25:d3:0a:19:9a: 90:e7:e7:75:a3:f4:25:56:50:0e:0b:5c:04:0b:d0: 2e:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:32:F7:F6:F2:E7:60:A1:01:14:2B:EF:AA:0C:29:DC:57:A9:34:4E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/03ae4e74-5acd-4e00-b992-05190479b91d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f12:8000::/36 Signature Algorithm: sha256WithRSAEncryption 22:6c:f5:7e:7f:7a:c1:6b:c7:38:39:8d:b3:00:84:02:4e:6b: 90:c8:12:f5:74:a9:10:74:21:86:b9:35:99:4d:52:5b:75:7b: 78:8a:12:a5:31:ab:5a:5f:c7:84:06:ef:8e:d2:50:8e:78:1c: c7:b6:e4:51:95:2a:84:be:3b:60:13:42:37:83:7e:4b:1a:19: 7a:81:af:b9:9b:4d:91:ab:52:bf:71:19:d0:d9:46:a9:57:fe: cb:35:1e:69:0d:a5:16:ce:f9:ee:6e:a9:17:17:18:5c:92:ef: 62:76:28:c6:df:74:0e:56:81:b3:4d:b6:26:c3:d1:ce:93:a8: 63:2e:5c:9c:9c:b4:b7:63:8a:df:7c:57:6e:f2:b6:d2:e1:bd: 2b:24:c9:26:d5:ff:ca:f3:bf:64:15:75:62:12:8e:03:a4:5c: a4:cf:bd:9c:84:dd:2e:64:d4:0b:e5:13:ce:a3:ab:9c:5f:f6: 2e:25:c5:f3:67:9f:6b:6c:4d:8d:ad:97:26:11:9f:0b:f4:34: 2b:bb:b4:65:14:24:4f:da:75:cc:ac:3d:ca:b9:26:98:9e:87: 80:29:9a:0e:3b:33:0d:d6:d3:4d:c4:b6:ad:16:a8:26:0a:d9: 2d:6f:80:fe:82:b0:53:65:32:36:72:ae:f8:4d:12:9e:99:23: ec:72:f6:cc -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUSXIAOkQKXvdJpNtsocD6KGZbSP4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDAyMDMzWhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNDMzM2NjOTUwZTg0N2EyMDYwZGZjMTM0ZjA1YWMxZTkz M2I1ZDlkNDA2OTVlZWUxZTQ3ZjVkZWQ1ZDBkYWIwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCL2g+7AvLYdhC4+bCaisgCERLt7zFWEE1iLLTGtQ981A4j X36CGIypcj/d59aQZcRSXGDMJIM95pMBEGwmKc4HRneQ+t1C9ntMpXQlbGGDiM3U IVeWCxj02z2V+Tc2IGUBVHz1vmdvcg8rg0kSHP+wV7iCjRkBwXUmaRdwYshcDkF8 W5Xu0aDqutTopDcI+ZN2FWN2FKM1Y4WBOyndJ00zu3DQV5LcDRj2sYoowTOEflfu Gr8+BCb95YYk4ADC4f28hinbd378ZD2hYpEbdCUDOI/JiKGr6Prom4Xu9q3Cga2x Ks5LZgNGVIkl0woZmpDn53Wj9CVWUA4LXAQL0C4HAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU4jL39vLnYKEBFCvvqgwp3FepNE4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAzYWU0ZTc0LTVhY2QtNGUwMC1iOTkyLTA1MTkwNDc5YjkxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8SgDANBgkqhkiG9w0BAQsFAAOCAQEAImz1fn96wWvHODmNswCEAk5r kMgS9XSpEHQhhrk1mU1SW3V7eIoSpTGrWl/HhAbvjtJQjngcx7bkUZUqhL47YBNC N4N+SxoZeoGvuZtNkatSv3EZ0NlGqVf+yzUeaQ2lFs757m6pFxcYXJLvYnYoxt90 DlaBs022JsPRzpOoYy5cnJy0t2OK33xXbvK20uG9KyTJJtX/yvO/ZBV1YhKOA6Rc pM+9nITdLmTUC+UTzqOrnF/2LiXF82efa2xNja2XJhGfC/Q0K7u0ZRQkT9p1zKw9 yrkmmJ6HgCmaDjszDdbTTcS2rRaoJgrZLW+A/oKwU2UyNnKu+E0Snpkj7HL2zA== -----END CERTIFICATE-----Generated at Wed May 14 05:02:45 2025 by rpki-client