$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10eee66f-24d2-4d20-b7f1-d2d46838c237.roa File: 10eee66f-24d2-4d20-b7f1-d2d46838c237.roa (raw, json) Hash identifier: HXNTDyAmZMP8ZWTAGDekwrcBkcgAbk4LyW7Zh3yL180= Subject key identifier: 45:08:DD:7B:56:E8:1E:3C:AD:6A:C7:9D:C2:72:EC:E5:C1:58:5A:7E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 586682B72B66394E323F491BCD0579A609CE6378 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10eee66f-24d2-4d20-b7f1-d2d46838c237.roa Signing time: Mon 28 Apr 2025 15:21:53 +0000 ROA not before: Mon 28 Apr 2025 15:21:53 +0000 ROA not after: Mon 02 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fef:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:66:82:b7:2b:66:39:4e:32:3f:49:1b:cd:05:79:a6:09:ce:63:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 15:21:53 2025 GMT Not After : Jun 2 23:59:59 2025 GMT Subject: serialNumber=e5a58c43f1280c133865fcf5e161078a11abcdb5c7499f020a5b0c6c5e17e7ed, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:8e:04:57:74:38:6c:33:3a:bb:5a:d6:fb:91: da:19:bc:e5:0d:d0:74:1c:12:26:ce:6f:4e:f0:e8: aa:0a:27:7f:b9:71:a5:aa:b6:a3:42:6e:12:be:cb: a8:01:aa:36:eb:07:a1:3c:aa:e4:89:b7:a1:df:f8: 56:b4:84:4c:cc:94:f4:bb:52:f3:d2:e8:97:1d:de: 3f:72:e1:0b:2f:ec:f5:d9:fb:56:1e:79:34:d9:c7: ca:ba:cc:3b:96:97:0c:b9:da:72:55:e6:75:2a:b6: 5e:5f:72:d4:c8:9c:8d:94:f1:59:95:53:8c:8f:6e: 46:a6:12:50:b2:0a:64:78:ca:80:51:26:d5:18:59: 35:58:aa:da:f1:3a:af:b4:4c:f7:f9:f4:2d:09:59: 82:cb:71:43:33:cd:78:68:92:a6:83:ff:6f:09:d1: 35:ea:7b:3e:82:ee:aa:a7:63:a4:d3:c7:7c:df:00: 74:fa:e7:d1:45:e2:5b:fc:66:72:b0:d4:fd:bf:2e: 21:f2:60:07:ef:0d:88:02:c5:c4:8e:85:a6:1e:ee: 02:26:16:93:ac:23:ef:1c:8d:37:db:84:a6:3f:38: 75:77:df:e6:fd:26:86:82:a5:68:84:1e:fe:31:96: a5:2e:c9:da:ae:3a:f4:a2:08:5f:5e:bd:4e:49:07: f3:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:08:DD:7B:56:E8:1E:3C:AD:6A:C7:9D:C2:72:EC:E5:C1:58:5A:7E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10eee66f-24d2-4d20-b7f1-d2d46838c237.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fef:2000::/40 Signature Algorithm: sha256WithRSAEncryption 98:cf:37:d3:77:9e:ad:a0:66:43:9a:13:81:51:98:0e:c0:8d: be:a4:02:31:ce:a4:66:4e:f7:4d:5f:2d:7d:56:f3:25:0a:52: 8d:40:dd:d7:75:53:28:be:f9:d6:6d:4d:2d:68:27:b3:ef:ed: eb:30:db:0d:0d:89:c6:f8:67:7c:9f:22:a7:6b:c0:cf:65:1f: 23:03:de:79:b8:54:91:5f:8e:5d:95:2f:59:93:e2:08:c1:d6: 4f:33:31:e7:1f:c1:0b:58:70:d5:b9:d0:31:e5:d8:42:dd:27: 82:56:9f:96:0d:c7:00:c8:9c:9e:8d:da:a7:b4:f0:97:ed:b7: d9:b1:1b:22:b1:60:07:bc:65:62:a2:b7:69:d2:89:da:d2:cd: ab:6c:5f:81:dc:26:19:c6:a1:7b:1f:23:3e:43:c2:54:31:a5: 38:8a:13:82:93:63:fd:10:e6:c2:37:6f:a4:d6:b6:80:32:03: 2a:2f:4f:f0:5f:e4:f9:6f:de:04:51:1a:1a:30:82:d0:ee:5a: 88:31:a5:53:bd:2e:bd:28:35:f7:20:3d:86:ed:5f:bc:aa:eb: b7:a1:80:8f:2f:c8:2f:27:ad:63:9f:a2:5a:10:45:2b:40:e7: cb:b3:37:f7:44:5d:d5:57:8b:2d:44:8f:88:72:b4:0e:66:a0: df:33:aa:5d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUWGaCtytmOU4yP0kbzQV5pgnOY3gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI4MTUyMTUzWhcNMjUwNjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNWE1OGM0M2YxMjgwYzEzMzg2NWZjZjVlMTYxMDc4YTEx YWJjZGI1Yzc0OTlmMDIwYTViMGM2YzVlMTdlN2VkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHjgRXdDhsMzq7Wtb7kdoZvOUN0HQcEibOb07w6KoKJ3+5 caWqtqNCbhK+y6gBqjbrB6E8quSJt6Hf+Fa0hEzMlPS7UvPS6Jcd3j9y4Qsv7PXZ +1YeeTTZx8q6zDuWlwy52nJV5nUqtl5fctTInI2U8VmVU4yPbkamElCyCmR4yoBR JtUYWTVYqtrxOq+0TPf59C0JWYLLcUMzzXhokqaD/28J0TXqez6C7qqnY6TTx3zf AHT659FF4lv8ZnKw1P2/LiHyYAfvDYgCxcSOhaYe7gImFpOsI+8cjTfbhKY/OHV3 3+b9JoaCpWiEHv4xlqUuydquOvSiCF9evU5JB/OfAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQURQjde1boHjytasedwnLs5cFYWn4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEwZWVlNjZmLTI0ZDItNGQyMC1iN2YxLWQyZDQ2ODM4YzIzNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/vIDANBgkqhkiG9w0BAQsFAAOCAQEAmM8303eeraBmQ5oTgVGYDsCN vqQCMc6kZk73TV8tfVbzJQpSjUDd13VTKL751m1NLWgns+/t6zDbDQ2JxvhnfJ8i p2vAz2UfIwPeebhUkV+OXZUvWZPiCMHWTzMx5x/BC1hw1bnQMeXYQt0nglaflg3H AMicno3ap7Twl+232bEbIrFgB7xlYqK3adKJ2tLNq2xfgdwmGcahex8jPkPCVDGl OIoTgpNj/RDmwjdvpNa2gDIDKi9P8F/k+W/eBFEaGjCC0O5aiDGlU70uvSg19yA9 hu1fvKrrt6GAjy/ILyetY5+iWhBFK0Dny7M390Rd1VeLLUSPiHK0Dmag3zOqXQ== -----END CERTIFICATE-----Generated at Mon May 5 09:09:11 2025 by rpki-client