$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b3bdeab-6b13-4a28-80ed-0fe2a5fa4dfd.roa File: 3b3bdeab-6b13-4a28-80ed-0fe2a5fa4dfd.roa (raw, json) Hash identifier: VTC/IwnOLUboseL4YclY+YnXGJaCl5zje7eoW0J75kI= Subject key identifier: BD:61:A2:5D:4F:63:8E:F3:39:0F:4F:39:73:7B:39:F4:1C:1E:82:D3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 46002D08461851F9206B2EEA1071B9A0CF70F9A4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b3bdeab-6b13-4a28-80ed-0fe2a5fa4dfd.roa Signing time: Tue 22 Apr 2025 16:12:15 +0000 ROA not before: Tue 22 Apr 2025 16:12:15 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:e000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 07 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:00:2d:08:46:18:51:f9:20:6b:2e:ea:10:71:b9:a0:cf:70:f9:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:12:15 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=7670f372a7d6b2d7601aa6e28a1fa4c0ed6273541be3fabd378d7c832455888a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:00:f6:ed:08:e8:d2:f6:48:a0:6d:a0:2a:5d: 1e:fc:7d:12:9c:7e:43:5c:56:c2:ce:be:3d:22:bd: 9f:bf:09:7f:1f:f3:da:7d:af:fc:f0:84:a2:58:9b: b2:c2:85:61:69:1e:5f:bf:12:40:29:66:c9:fd:1f: 4f:ba:a5:8a:5c:41:e7:e8:2d:8c:77:60:3f:7a:15: 08:23:4b:a8:72:d1:1b:0c:ce:df:8d:79:66:6e:01: 72:06:d9:85:25:6a:bf:f6:31:fe:95:aa:6b:f1:c0: 82:3b:80:08:4f:17:46:7a:9f:9b:e4:e6:be:69:4d: 36:87:a0:e4:2d:09:69:f3:57:0e:d6:bc:34:32:43: 50:91:76:aa:73:84:8e:29:9d:09:68:49:10:31:38: 7c:7c:89:29:73:96:7b:25:8c:ff:4a:ad:40:50:98: e0:08:ce:15:5c:f4:2a:d8:9b:b9:4b:8d:80:09:cd: 05:49:95:b9:ef:d9:2a:07:36:33:e8:39:50:fc:93: 64:da:5a:3c:b8:92:1d:f8:b3:7b:03:18:0c:00:cb: ec:fc:91:93:35:08:e8:ae:88:1f:4a:e9:08:b6:95: a5:2e:c5:dd:2e:ba:42:fa:40:81:9c:34:48:f4:ae: d2:7e:67:d8:3c:a6:53:14:1b:72:b7:87:2f:2c:77: 58:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:61:A2:5D:4F:63:8E:F3:39:0F:4F:39:73:7B:39:F4:1C:1E:82:D3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b3bdeab-6b13-4a28-80ed-0fe2a5fa4dfd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:e000::/40 Signature Algorithm: sha256WithRSAEncryption 4e:c0:7a:2a:35:e2:3e:dd:52:ff:62:aa:d6:3b:58:7e:3c:4d: 4a:30:fb:e7:20:9e:2b:9a:9e:ac:65:14:53:2e:de:27:d1:2d: 3a:8c:be:b6:1a:1f:99:e1:17:81:44:38:2d:86:19:20:26:46: 9e:f3:cf:3e:40:45:bc:b8:1b:31:16:b0:40:b7:cc:05:8b:32: 6c:11:ba:11:05:4a:f9:c5:97:5f:12:e0:81:44:a2:e6:84:b8: b5:0c:d3:5b:44:d1:e9:d4:cb:d3:55:0e:21:b6:49:7c:e5:fd: 3b:3c:43:fc:eb:f3:4a:03:ee:3f:c2:85:1f:f7:cb:48:52:25: ec:53:04:f2:10:af:27:63:9a:28:32:10:94:f2:4e:9e:ce:1a: 5e:23:52:49:96:53:9c:00:d8:23:88:c5:0f:34:8d:a7:1a:25: f6:c4:a3:6a:99:d4:f2:a0:42:dd:51:84:45:79:99:fd:6f:e8: d1:3f:fc:5f:73:d9:69:eb:27:61:d9:45:10:b0:eb:14:e8:05: 80:7c:bc:14:e5:30:a9:45:26:f0:ac:ed:34:68:53:3b:8d:b8: d0:3e:79:a4:4b:93:96:f0:d7:43:7e:4e:16:07:10:83:e0:cf: db:5a:68:9b:39:8f:b8:24:a6:31:4e:d0:0c:78:1a:25:18:1b: 05:5c:42:1e -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIURgAtCEYYUfkgay7qEHG5oM9w+aQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTYxMjE1WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NjcwZjM3MmE3ZDZiMmQ3NjAxYWE2ZTI4YTFmYTRjMGVk NjI3MzU0MWJlM2ZhYmQzNzhkN2M4MzI0NTU4ODhhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuAPbtCOjS9kigbaAqXR78fRKcfkNcVsLOvj0ivZ+/CX8f 89p9r/zwhKJYm7LChWFpHl+/EkApZsn9H0+6pYpcQefoLYx3YD96FQgjS6hy0RsM zt+NeWZuAXIG2YUlar/2Mf6VqmvxwII7gAhPF0Z6n5vk5r5pTTaHoOQtCWnzVw7W vDQyQ1CRdqpzhI4pnQloSRAxOHx8iSlzlnsljP9KrUBQmOAIzhVc9CrYm7lLjYAJ zQVJlbnv2SoHNjPoOVD8k2TaWjy4kh34s3sDGAwAy+z8kZM1COiuiB9K6Qi2laUu xd0uukL6QIGcNEj0rtJ+Z9g8plMUG3K3hy8sd1gfAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUvWGiXU9jjvM5D085c3s59BwegtMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNiM2JkZWFiLTZiMTMtNGEyOC04MGVkLTBmZTJhNWZhNGRmZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB//4DANBgkqhkiG9w0BAQsFAAOCAQEATsB6KjXiPt1S/2Kq1jtYfjxN SjD75yCeK5qerGUUUy7eJ9EtOoy+thofmeEXgUQ4LYYZICZGnvPPPkBFvLgbMRaw QLfMBYsybBG6EQVK+cWXXxLggUSi5oS4tQzTW0TR6dTL01UOIbZJfOX9OzxD/Ovz SgPuP8KFH/fLSFIl7FME8hCvJ2OaKDIQlPJOns4aXiNSSZZTnADYI4jFDzSNpxol 9sSjapnU8qBC3VGERXmZ/W/o0T/8X3PZaesnYdlFELDrFOgFgHy8FOUwqUUm8Kzt NGhTO4240D55pEuTlvDXQ35OFgcQg+DP21pomzmPuCSmMU7QDHgaJRgbBVxCHg== -----END CERTIFICATE-----Generated at Mon May 5 18:15:36 2025 by rpki-client