$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/298f7a82-24b8-4c48-8005-46f4c30ff875.roa File: 298f7a82-24b8-4c48-8005-46f4c30ff875.roa (raw, json) Hash identifier: k9Vz7tBeex0B5l4mEok9Qvpxnp2LNk7VkqWzRbWuUYM= Subject key identifier: 37:AA:89:7A:44:36:DD:F7:3F:71:8B:AB:A0:7E:D6:59:89:3B:44:84 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 48F75A1D5A853634DC205A6C91000087ACAAF2FD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/298f7a82-24b8-4c48-8005-46f4c30ff875.roa Signing time: Mon 05 May 2025 15:10:52 +0000 ROA not before: Mon 05 May 2025 15:10:52 +0000 ROA not after: Mon 09 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1fa0:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:f7:5a:1d:5a:85:36:34:dc:20:5a:6c:91:00:00:87:ac:aa:f2:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 15:10:52 2025 GMT Not After : Jun 9 23:59:59 2025 GMT Subject: serialNumber=2e5213e8424047b33a76e918334898f8f41334685287614679d1364fe51fe4b1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5f:6e:2b:55:16:29:c0:f6:bd:f9:a7:b8:ae: 5b:b9:19:e6:21:3d:83:64:70:51:7e:1f:f7:6a:aa: f6:de:29:aa:d2:0a:44:ac:c1:4a:a0:40:7f:b8:58: 0c:c9:b2:e7:42:80:3c:d3:3a:86:b0:8b:8d:41:e2: eb:64:97:02:b0:f1:fc:06:92:bb:37:2a:e9:6f:5e: d6:04:0f:5c:47:13:df:c7:55:36:eb:ba:d6:a3:bc: 2c:49:ba:cf:0e:bf:95:30:7c:0d:ff:42:45:2c:8d: 3b:c2:63:d9:b7:15:6a:51:fc:fe:c4:c9:12:c0:a6: c4:9b:d5:7f:bd:f1:3c:fc:37:dd:a1:3f:16:a8:3f: 0b:19:01:0a:13:07:ef:70:1a:2d:63:a9:ac:32:aa: 36:e4:37:d2:6a:85:4e:ed:c2:a1:f8:21:7b:8c:f2: 0c:90:34:10:2b:ba:48:c0:21:f0:21:bc:e1:f5:2a: 5a:d2:f2:bc:08:48:61:0b:d6:b6:10:58:e3:29:63: 69:13:0b:00:69:64:14:f3:fe:d3:45:45:f6:5d:64: 3d:40:ee:f1:58:f7:5c:9e:e4:8a:bb:b3:ba:51:7d: 86:4d:3f:fe:dd:30:99:c2:df:d4:4a:39:2f:d2:78: dc:73:ca:ae:75:98:7a:c0:50:a6:1a:80:f2:ff:ca: 41:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:AA:89:7A:44:36:DD:F7:3F:71:8B:AB:A0:7E:D6:59:89:3B:44:84 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/298f7a82-24b8-4c48-8005-46f4c30ff875.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fa0:5000::/40 Signature Algorithm: sha256WithRSAEncryption 1a:9c:24:fb:db:24:25:b9:0a:a3:6a:17:6a:66:09:a2:03:e1: d0:b7:ac:cb:67:e4:78:fd:d2:be:e7:85:d8:37:4b:0d:04:da: 33:d4:56:88:b7:b6:73:6d:a4:67:7f:fa:c5:0f:3e:c3:ee:3e: 0b:6b:a3:13:04:eb:a4:b9:8d:9b:e7:8c:74:b8:dd:db:01:7c: d1:c0:ed:13:00:48:90:2f:7f:d1:26:ec:10:ee:c5:61:8d:c9: 8c:7b:82:cb:ed:f6:15:ff:e3:16:05:08:d2:25:39:05:ae:99: 2d:a5:f1:c8:fe:72:ca:71:2c:ce:61:19:14:ec:24:9e:20:9c: d9:80:35:f3:fb:f5:a9:75:96:92:06:d0:2f:b8:c0:5d:d4:1c: 96:25:88:d8:df:45:9d:7f:77:5b:23:7e:18:98:ef:f4:5b:43: 10:04:f9:1f:ec:e8:a3:c0:07:e7:10:1c:7a:fd:cd:c0:61:5d: c6:ac:95:22:b8:a0:6b:a3:15:53:c1:8c:c5:02:39:99:ec:a0: 86:ba:06:88:d4:ce:a3:9a:85:5e:b2:9c:23:bf:b9:e7:d8:22: aa:b9:d6:9b:bf:70:66:73:72:30:20:c8:14:b2:2e:96:6a:10: 2c:46:fb:b4:32:05:16:09:55:ec:ee:72:24:47:70:2b:8c:c7: 2d:83:05:dc -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUSPdaHVqFNjTcIFpskQAAh6yq8v0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA1MTUxMDUyWhcNMjUwNjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZTUyMTNlODQyNDA0N2IzM2E3NmU5MTgzMzQ4OThmOGY0 MTMzNDY4NTI4NzYxNDY3OWQxMzY0ZmU1MWZlNGIxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3X24rVRYpwPa9+ae4rlu5GeYhPYNkcFF+H/dqqvbeKarS CkSswUqgQH+4WAzJsudCgDzTOoawi41B4utklwKw8fwGkrs3KulvXtYED1xHE9/H VTbrutajvCxJus8Ov5UwfA3/QkUsjTvCY9m3FWpR/P7EyRLApsSb1X+98Tz8N92h PxaoPwsZAQoTB+9wGi1jqawyqjbkN9JqhU7twqH4IXuM8gyQNBArukjAIfAhvOH1 KlrS8rwISGEL1rYQWOMpY2kTCwBpZBTz/tNFRfZdZD1A7vFY91ye5Iq7s7pRfYZN P/7dMJnC39RKOS/SeNxzyq51mHrAUKYagPL/ykElAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUN6qJekQ23fc/cYuroH7WWYk7RIQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI5OGY3YTgyLTI0YjgtNGM0OC04MDA1LTQ2ZjRjMzBmZjg3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+gUDANBgkqhkiG9w0BAQsFAAOCAQEAGpwk+9skJbkKo2oXamYJogPh 0Lesy2fkeP3SvueF2DdLDQTaM9RWiLe2c22kZ3/6xQ8+w+4+C2ujEwTrpLmNm+eM dLjd2wF80cDtEwBIkC9/0SbsEO7FYY3JjHuCy+32Ff/jFgUI0iU5Ba6ZLaXxyP5y ynEszmEZFOwkniCc2YA18/v1qXWWkgbQL7jAXdQcliWI2N9FnX93WyN+GJjv9FtD EAT5H+zoo8AH5xAcev3NwGFdxqyVIriga6MVU8GMxQI5meyghroGiNTOo5qFXrKc I7+559giqrnWm79wZnNyMCDIFLIulmoQLEb7tDIFFglV7O5yJEdwK4zHLYMF3A== -----END CERTIFICATE-----Generated at Sun May 11 13:02:57 2025 by rpki-client