$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/334d7931-2517-4a77-808a-686c04c88234.roa File: 334d7931-2517-4a77-808a-686c04c88234.roa (raw, json) Hash identifier: FO7cdio/cukEcrvHD16NEV/IWvz/MucRSOd3Ae8Z34g= Subject key identifier: CD:B6:8A:D6:85:67:0A:F9:4E:BC:FA:12:13:3C:EE:D9:3D:5B:C2:59 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4264908198BD2175EC316098B58AC5B81B848F5B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/334d7931-2517-4a77-808a-686c04c88234.roa Signing time: Sat 10 May 2025 00:10:15 +0000 ROA not before: Sat 10 May 2025 00:10:15 +0000 ROA not after: Sat 14 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff5:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:64:90:81:98:bd:21:75:ec:31:60:98:b5:8a:c5:b8:1b:84:8f:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 10 00:10:15 2025 GMT Not After : Jun 14 23:59:59 2025 GMT Subject: serialNumber=fa23e6c2a61a3be27badaa72dcc27eb9bec95d911e794d069bd29fb7fafc39e2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:bf:03:f3:10:08:8f:0c:b1:a1:6b:f9:c2:7c: 79:2c:75:05:7d:03:f6:f2:87:02:16:ce:89:64:53: 07:76:71:11:25:2e:31:e2:e3:0d:2c:2a:06:f4:44: a6:f7:d8:c0:52:3c:05:ed:17:16:45:1f:98:bd:0e: b1:2a:16:a0:40:a4:5b:27:fa:0a:94:72:21:5d:fe: ce:fd:77:54:4d:53:5f:03:6d:66:bb:7b:a5:b4:7a: 2a:91:53:a9:17:05:77:c7:5d:d2:39:5f:0b:f3:e7: f0:93:b4:bb:b6:65:bc:c4:66:20:72:c0:8a:05:84: be:76:43:89:59:c4:5d:a7:f4:aa:2f:49:94:c3:5a: bc:fd:aa:0c:06:c2:ac:20:dd:54:dc:d0:cd:5a:18: 8e:3c:f3:fd:7a:f2:0a:e2:65:07:7b:d5:04:d9:40: f3:d6:fd:1f:9b:bb:0c:5f:76:16:f1:ed:16:44:41: 89:76:f6:19:ca:d0:27:37:6f:a9:33:73:2b:c6:83: cd:c4:bb:13:ef:b2:b6:4f:8f:a6:48:cb:5b:33:f3: cb:c1:67:4c:5d:0c:1e:73:c5:7a:1a:c0:44:bd:b5: fc:e2:50:1f:a1:45:de:70:5d:80:9f:0b:6e:e2:c4: 3f:ff:20:e1:36:3f:a0:13:b3:88:6a:0d:8d:12:8f: 0a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:B6:8A:D6:85:67:0A:F9:4E:BC:FA:12:13:3C:EE:D9:3D:5B:C2:59 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/334d7931-2517-4a77-808a-686c04c88234.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff5:c000::/40 Signature Algorithm: sha256WithRSAEncryption 32:7a:5e:47:19:29:a7:b5:38:2d:b0:84:68:3a:01:05:78:e3: 0d:83:db:7a:3d:8d:cb:07:d8:37:ae:2c:0b:64:c3:c6:02:cc: da:e6:15:33:af:68:f6:e9:64:20:49:9b:66:db:d2:ec:e9:15: 85:a1:76:8a:d9:35:06:12:4a:0c:53:ed:ef:d3:aa:46:3b:ca: fa:d2:fd:f9:25:8e:c7:b1:c2:77:d4:f6:36:b8:99:cf:61:9d: d0:94:33:d0:a0:1d:fd:19:76:d9:1e:c9:ce:3c:10:ac:47:b4: 84:ab:36:54:4b:8b:ed:e1:cc:7e:d7:fe:fb:09:d4:43:c6:e7: e8:dd:f6:34:58:de:0e:8f:3b:83:19:9a:4a:e8:39:15:9a:a5: bc:2f:94:16:70:d8:7d:06:f1:f4:7d:94:61:34:01:a0:ea:b3: f3:82:16:0d:46:19:34:a9:c3:e5:d8:15:94:27:e3:17:9a:96: ce:77:35:8a:10:1a:44:b7:16:ca:b4:c0:23:64:75:0c:1e:2a: 72:d0:53:3a:71:82:93:5c:e8:1e:32:46:31:11:2f:2c:48:10: f6:48:56:ee:6f:40:96:95:d6:9b:72:f2:c8:19:9b:84:2b:ef: 45:8b:22:3d:6b:b7:1d:4f:ae:04:1d:b6:2b:d8:a5:02:4e:42: 76:72:ec:d5 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUQmSQgZi9IXXsMWCYtYrFuBuEj1swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTEwMDAxMDE1WhcNMjUwNjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYTIzZTZjMmE2MWEzYmUyN2JhZGFhNzJkY2MyN2ViOWJl Yzk1ZDkxMWU3OTRkMDY5YmQyOWZiN2ZhZmMzOWUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnvwPzEAiPDLGha/nCfHksdQV9A/byhwIWzolkUwd2cREl LjHi4w0sKgb0RKb32MBSPAXtFxZFH5i9DrEqFqBApFsn+gqUciFd/s79d1RNU18D bWa7e6W0eiqRU6kXBXfHXdI5Xwvz5/CTtLu2ZbzEZiBywIoFhL52Q4lZxF2n9Kov SZTDWrz9qgwGwqwg3VTc0M1aGI488/168griZQd71QTZQPPW/R+buwxfdhbx7RZE QYl29hnK0Cc3b6kzcyvGg83EuxPvsrZPj6ZIy1sz88vBZ0xdDB5zxXoawES9tfzi UB+hRd5wXYCfC27ixD//IOE2P6ATs4hqDY0SjwqPAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUzbaK1oVnCvlOvPoSEzzu2T1bwlkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMzNGQ3OTMxLTI1MTctNGE3Ny04MDhhLTY4NmMwNGM4ODIzNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/1wDANBgkqhkiG9w0BAQsFAAOCAQEAMnpeRxkpp7U4LbCEaDoBBXjj DYPbej2NywfYN64sC2TDxgLM2uYVM69o9ulkIEmbZtvS7OkVhaF2itk1BhJKDFPt 79OqRjvK+tL9+SWOx7HCd9T2NriZz2Gd0JQz0KAd/Rl22R7JzjwQrEe0hKs2VEuL 7eHMftf++wnUQ8bn6N32NFjeDo87gxmaSug5FZqlvC+UFnDYfQbx9H2UYTQBoOqz 84IWDUYZNKnD5dgVlCfjF5qWznc1ihAaRLcWyrTAI2R1DB4qctBTOnGCk1zoHjJG MREvLEgQ9khW7m9AlpXWm3LyyBmbhCvvRYsiPWu3HU+uBB22K9ilAk5CdnLs1Q== -----END CERTIFICATE-----Generated at Sun May 11 09:08:36 2025 by rpki-client