$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43963ea9-c865-4cb5-b075-eea3df535429.roa File: 43963ea9-c865-4cb5-b075-eea3df535429.roa (raw, json) Hash identifier: waiPiBeTD9P8nzP+hgRzWsT5oXhu+4U3xCzzKJFt/9k= Subject key identifier: E6:DB:9A:81:D4:B8:00:1B:BE:D3:D9:AE:73:EE:18:75:92:84:97:C8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6D2B9773E1550D65BC4EA5F5B062D90D0B801534 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43963ea9-c865-4cb5-b075-eea3df535429.roa Signing time: Sat 03 May 2025 00:11:39 +0000 ROA not before: Sat 03 May 2025 00:11:39 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:83d2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:2b:97:73:e1:55:0d:65:bc:4e:a5:f5:b0:62:d9:0d:0b:80:15:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:11:39 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=2c5d4f7aa96aaa0d1b2b6812b272faf38cad5906b127032b1ffaf7c4f90d0357, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6c:d5:b8:f4:3a:77:35:96:e6:35:5c:e8:be: ba:84:9d:1d:04:49:ed:c4:a0:5c:9f:43:9e:89:dd: 02:ba:bb:b7:c2:d4:19:86:54:a9:d2:25:88:13:dd: a4:be:f1:ab:d6:91:de:cc:02:f8:d2:ff:d7:bc:df: f1:10:d4:db:d4:7a:6e:6b:29:e6:0e:85:f7:98:a2: d3:a2:b0:48:88:d7:83:ae:eb:a2:90:b9:fb:a3:15: 83:96:ac:74:c6:21:fc:33:ff:79:98:44:c4:4b:89: 3d:02:38:28:79:ef:e5:3b:20:15:e6:b0:f6:fb:da: 28:f4:d5:e1:c7:56:c2:e5:a4:f7:55:37:01:ca:77: b7:50:53:1b:62:31:ea:36:c6:61:80:82:44:95:af: 43:b3:bc:85:03:6d:38:dc:28:14:60:50:a8:96:7c: c2:08:d5:70:39:c4:c1:1e:2e:16:a0:6b:73:9f:10: 24:04:cb:8c:74:f1:c0:26:82:ee:20:ca:35:9c:a0: a5:0f:3f:ec:02:9c:77:b8:40:2c:b5:9a:74:7b:66: 62:34:5b:76:af:7e:fc:74:11:e8:f3:0f:69:3c:61: 1c:74:4e:9c:bc:5f:d5:97:f6:52:d4:01:8a:f2:f3: ad:43:78:15:5c:b2:1e:66:2f:23:9c:35:17:c0:af: 56:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:DB:9A:81:D4:B8:00:1B:BE:D3:D9:AE:73:EE:18:75:92:84:97:C8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43963ea9-c865-4cb5-b075-eea3df535429.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:83d2::/48 Signature Algorithm: sha256WithRSAEncryption 4d:8c:20:69:23:e6:fa:da:99:db:9b:68:25:37:c9:37:37:25: e3:9c:1b:3a:f6:52:83:59:5d:fa:9c:06:78:84:c2:b3:66:e9: c1:c4:89:fe:31:db:46:b6:49:c8:bd:c6:01:2f:2a:c9:22:e9: d4:9b:0f:43:b3:a2:5f:59:f2:17:43:34:c4:61:d5:f0:fd:78: 39:67:74:c3:56:b8:b5:7f:72:11:a3:e2:0e:8c:5f:4b:69:f3: 2f:6f:14:f1:6c:07:be:c6:0b:10:81:d9:e6:a9:4c:3a:af:47: 18:c2:12:00:b3:5a:b6:d5:e3:a5:b7:03:25:77:a8:9b:c2:ae: 7a:4c:78:0a:48:1d:0b:ac:06:ac:80:6a:22:52:01:6c:d2:ad: 19:28:18:49:00:01:e9:5c:80:6d:25:6a:7b:30:f6:44:2c:e8: c2:5c:25:e7:94:9f:8f:42:b9:62:42:bd:6b:ff:2d:00:49:22: 34:e5:3c:fe:45:7c:43:ca:46:90:85:15:e5:03:c3:80:a6:75: 5a:3c:7c:f9:cd:96:2c:da:c2:8a:80:d9:a2:6a:82:ef:bb:1c: 05:89:82:28:9f:fb:0f:57:6f:e4:2e:40:e2:a9:d5:13:aa:b7: 1c:25:ab:f9:56:d5:9a:b3:a9:17:59:f3:ce:ad:bb:28:47:c9: de:20:8f:59 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbSuXc+FVDWW8TqX1sGLZDQuAFTQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDAxMTM5WhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYzVkNGY3YWE5NmFhYTBkMWIyYjY4MTJiMjcyZmFmMzhj YWQ1OTA2YjEyNzAzMmIxZmZhZjdjNGY5MGQwMzU3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4bNW49Dp3NZbmNVzovrqEnR0ESe3EoFyfQ56J3QK6u7fC 1BmGVKnSJYgT3aS+8avWkd7MAvjS/9e83/EQ1NvUem5rKeYOhfeYotOisEiI14Ou 66KQufujFYOWrHTGIfwz/3mYRMRLiT0COCh57+U7IBXmsPb72ij01eHHVsLlpPdV NwHKd7dQUxtiMeo2xmGAgkSVr0OzvIUDbTjcKBRgUKiWfMII1XA5xMEeLhaga3Of ECQEy4x08cAmgu4gyjWcoKUPP+wCnHe4QCy1mnR7ZmI0W3avfvx0EejzD2k8YRx0 Tpy8X9WX9lLUAYry861DeBVcsh5mLyOcNRfAr1Z7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5tuagdS4ABu+09muc+4YdZKEl8gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzOTYzZWE5LWM4NjUtNGNiNS1iMDc1LWVlYTNkZjUzNTQyOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9g9IwDQYJKoZIhvcNAQELBQADggEBAE2MIGkj5vramdubaCU3yTc3 JeOcGzr2UoNZXfqcBniEwrNm6cHEif4x20a2Sci9xgEvKski6dSbD0Ozol9Z8hdD NMRh1fD9eDlndMNWuLV/chGj4g6MX0tp8y9vFPFsB77GCxCB2eapTDqvRxjCEgCz WrbV46W3AyV3qJvCrnpMeApIHQusBqyAaiJSAWzSrRkoGEkAAelcgG0lansw9kQs 6MJcJeeUn49CuWJCvWv/LQBJIjTlPP5FfEPKRpCFFeUDw4CmdVo8fPnNlizawoqA 2aJqgu+7HAWJgiif+w9Xb+QuQOKp1ROqtxwlq/lW1ZqzqRdZ886tuyhHyd4gj1k= -----END CERTIFICATE-----Generated at Sun May 11 12:38:42 2025 by rpki-client