$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2af3cff2-866a-4113-89c5-1f4d664924c6.roa File: 2af3cff2-866a-4113-89c5-1f4d664924c6.roa (raw, json) Hash identifier: VBKzzD4hDuiLnGklBa1fEf4OG0YqfleIHAaZ83TAfhI= Subject key identifier: 0B:82:9C:44:5C:A7:D5:D7:CB:26:AC:5E:E5:89:F3:4B:A3:E2:84:F4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 18C45115752795269D53AC1142204109E8DF17A6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2af3cff2-866a-4113-89c5-1f4d664924c6.roa Signing time: Sat 03 May 2025 00:11:52 +0000 ROA not before: Sat 03 May 2025 00:11:52 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f01:4806::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:c4:51:15:75:27:95:26:9d:53:ac:11:42:20:41:09:e8:df:17:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:11:52 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=838ba12da207519d15997cefef6badc3b7284c3b760c4f2c874d970c3bce61a0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:fb:f8:4c:cb:ba:af:aa:ee:8d:73:e0:62:b8: 79:06:ef:b9:12:58:6c:74:d5:db:65:f5:75:03:92: cf:57:cd:9f:67:57:6a:0d:13:f4:f7:51:7a:4f:01: be:92:45:fa:ae:0c:78:31:77:91:3c:32:b7:08:2e: 3b:9b:1f:80:44:d8:f7:b2:fa:42:5d:b3:1c:6b:28: e8:49:e1:d6:07:4e:0b:b2:0f:8f:56:67:67:8c:ae: df:62:93:b2:5d:c0:c3:46:94:ed:7a:ba:92:12:77: 0b:07:52:f1:15:75:88:69:3c:a3:14:d6:54:1f:84: 2f:62:34:94:2f:cf:44:fd:04:f7:65:30:c8:13:b6: f8:0c:b9:45:8f:30:ac:17:bb:e0:7c:89:00:2c:bd: bd:a8:1f:2f:31:7f:4f:9c:cd:98:67:e5:09:43:4f: d3:e7:ac:94:41:c1:b8:2d:16:79:52:17:f1:d5:cd: 21:1e:6e:6a:44:1d:cd:6d:29:75:31:1e:7d:05:41: af:ee:6d:b0:6b:f5:96:91:87:40:66:a1:9b:ec:3d: cf:d1:4a:52:c6:27:7b:3c:30:68:93:82:8d:fb:b9: b8:c8:d5:ff:0c:15:5c:28:3d:d0:ee:a2:b3:87:ef: 85:0f:c3:03:b0:db:1c:24:75:f0:12:ed:21:f8:e2: 9d:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:82:9C:44:5C:A7:D5:D7:CB:26:AC:5E:E5:89:F3:4B:A3:E2:84:F4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2af3cff2-866a-4113-89c5-1f4d664924c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f01:4806::/47 Signature Algorithm: sha256WithRSAEncryption 40:99:0e:e1:2f:45:3c:8a:e4:96:6c:13:e9:56:6c:7d:62:eb: a5:3d:a2:12:a7:b3:37:79:50:4a:34:3f:7a:43:31:5b:fc:a2: 5a:87:f9:c7:8a:2d:9f:c3:36:d4:ad:17:e3:4d:58:a4:c0:48: 7b:13:27:14:4a:0a:f3:28:64:3f:a3:89:33:c7:cb:45:3f:d7: 51:87:69:68:e1:5c:59:5d:ba:1d:62:7f:31:be:a0:f9:ad:10: fb:9a:df:08:14:18:9e:f6:2e:17:31:57:a1:ba:1a:5b:18:06: 1f:c8:c1:c1:f4:8d:30:ab:54:b1:7a:48:59:28:b1:b7:ca:58: 02:5e:14:b4:c8:17:01:5c:3b:c4:a5:60:2a:8d:5e:46:c7:dc: 0e:f3:e5:9d:e1:79:c4:2f:e3:69:8e:a7:ea:77:14:13:39:e1: 44:ba:5e:37:f0:37:e1:92:59:02:d8:e4:64:a0:29:0d:1f:5e: 38:84:de:81:fd:f8:c5:53:bc:51:1f:49:1f:1f:97:37:76:45: 7e:bf:53:aa:17:cf:08:f0:f5:f8:e0:66:5a:23:e6:eb:78:dd: 8c:95:f5:ce:b1:73:a6:47:7c:10:05:31:5d:62:4d:b5:25:5c: c3:2f:27:18:3b:7e:86:52:08:79:3c:36:b3:79:44:61:65:93: 7d:2f:ac:48 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGMRRFXUnlSadU6wRQiBBCejfF6YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDAxMTUyWhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MzhiYTEyZGEyMDc1MTlkMTU5OTdjZWZlZjZiYWRjM2I3 Mjg0YzNiNzYwYzRmMmM4NzRkOTcwYzNiY2U2MWEwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDd+/hMy7qvqu6Nc+BiuHkG77kSWGx01dtl9XUDks9XzZ9n V2oNE/T3UXpPAb6SRfquDHgxd5E8MrcILjubH4BE2Pey+kJdsxxrKOhJ4dYHTguy D49WZ2eMrt9ik7JdwMNGlO16upISdwsHUvEVdYhpPKMU1lQfhC9iNJQvz0T9BPdl MMgTtvgMuUWPMKwXu+B8iQAsvb2oHy8xf0+czZhn5QlDT9PnrJRBwbgtFnlSF/HV zSEebmpEHc1tKXUxHn0FQa/ubbBr9ZaRh0BmoZvsPc/RSlLGJ3s8MGiTgo37ubjI 1f8MFVwoPdDuorOH74UPwwOw2xwkdfAS7SH44p1nAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUC4KcRFyn1dfLJqxe5YnzS6PihPQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJhZjNjZmYyLTg2NmEtNDExMy04OWM1LTFmNGQ2NjQ5MjRjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAB8BSAYwDQYJKoZIhvcNAQELBQADggEBAECZDuEvRTyK5JZsE+lWbH1i 66U9ohKnszd5UEo0P3pDMVv8olqH+ceKLZ/DNtStF+NNWKTASHsTJxRKCvMoZD+j iTPHy0U/11GHaWjhXFlduh1ifzG+oPmtEPua3wgUGJ72LhcxV6G6GlsYBh/IwcH0 jTCrVLF6SFkosbfKWAJeFLTIFwFcO8SlYCqNXkbH3A7z5Z3hecQv42mOp+p3FBM5 4US6XjfwN+GSWQLY5GSgKQ0fXjiE3oH9+MVTvFEfSR8flzd2RX6/U6oXzwjw9fjg Zloj5ut43YyV9c6xc6ZHfBAFMV1iTbUlXMMvJxg7foZSCHk8NrN5RGFlk30vrEg= -----END CERTIFICATE-----Generated at Sun May 11 01:02:11 2025 by rpki-client