$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4504c80e-4ba3-448e-ae5e-bd057f790c27.roa File: 4504c80e-4ba3-448e-ae5e-bd057f790c27.roa (raw, json) Hash identifier: 6itFxtqGpS6NR7j2jBTeDFduoRJmOrLRloExA4hTQSg= Subject key identifier: 29:AA:20:22:E7:EC:C4:F3:7A:9C:C7:A2:A0:3E:FA:58:BA:86:E9:F7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 33567720DCD4FA3C98C5A2D7A3C9D0686C6CDE26 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4504c80e-4ba3-448e-ae5e-bd057f790c27.roa Signing time: Sat 03 May 2025 00:20:21 +0000 ROA not before: Sat 03 May 2025 00:20:21 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fa0:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:56:77:20:dc:d4:fa:3c:98:c5:a2:d7:a3:c9:d0:68:6c:6c:de:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:20:21 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=6860fee8fbae891e9ed24cdc01eb377790938de382a2e15558dc218c4da8fe43, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:32:37:0b:4e:94:cd:cd:f1:fd:d9:e3:e9:6c: 30:1d:e9:83:cd:b0:a9:0b:fb:73:68:83:aa:86:b7: 93:c5:a9:1e:62:be:51:1a:8e:09:68:47:6f:4e:f9: 20:53:d6:fc:b0:93:03:ba:9b:47:07:91:de:e5:ac: 78:36:ca:fc:8e:8b:ed:77:6f:b3:2e:86:ad:f3:ea: 30:eb:2a:00:ff:d8:c2:cf:e5:da:e9:5b:2c:a5:15: 8e:75:22:8c:7e:a8:e3:19:2c:e5:2e:e2:38:64:94: 11:d5:84:8d:79:25:d4:21:33:33:ec:25:04:6a:7e: b6:93:63:24:3c:c7:26:f3:06:98:3b:6b:57:4b:3c: 26:19:59:9e:68:bd:30:94:eb:31:5a:63:68:b4:bb: ee:2a:3e:07:59:57:0c:d0:3c:49:55:f8:d4:62:31: cf:9d:6c:e3:50:4b:4d:9b:88:d7:bd:be:e7:6f:e0: 6a:85:c1:0f:8d:c6:b0:b5:46:fc:a5:04:5b:53:2c: 75:1e:0d:c8:e7:34:eb:bb:89:1e:87:92:5d:cf:21: 19:4a:02:16:b3:99:a6:5a:bb:b7:75:25:6f:49:7b: 47:a4:55:43:1e:5b:a7:49:f9:3f:fd:ac:79:f9:a3: 33:cf:95:b1:cc:bf:87:d7:ca:15:53:96:11:3c:2c: ab:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:AA:20:22:E7:EC:C4:F3:7A:9C:C7:A2:A0:3E:FA:58:BA:86:E9:F7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4504c80e-4ba3-448e-ae5e-bd057f790c27.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fa0:e000::/40 Signature Algorithm: sha256WithRSAEncryption 4c:4c:e0:d7:6e:03:30:1a:20:e8:0b:a8:37:d6:35:c2:eb:9a: ea:24:80:88:c7:48:03:89:e1:38:3a:50:4d:15:3a:90:cf:f8: 30:c1:83:bd:9d:83:8a:54:00:49:02:e4:ba:af:77:99:74:4e: 01:fb:14:6d:54:d9:cd:09:aa:12:40:61:38:8f:9e:66:2f:1e: a4:1e:9a:2c:ed:60:30:3c:07:c8:70:eb:13:47:9f:eb:42:88: a6:9f:f6:1f:b6:ab:47:67:17:16:ce:a0:a3:6e:0e:2c:67:99: c3:f2:c4:01:65:81:8f:dc:a3:d3:62:40:7c:37:20:1e:a7:d8: 51:ce:ef:17:9d:ba:99:14:b9:ee:e7:3e:98:70:37:b5:0a:21: 9f:e1:e4:53:5d:ad:ec:6d:3b:1f:ce:c3:d6:78:30:46:f2:ba: e1:f7:ab:45:e1:0e:17:5b:43:75:f5:23:77:66:9c:8b:22:f2: a3:fb:53:77:aa:ad:09:7a:f6:55:31:97:93:91:5c:d3:02:14: d7:63:48:ae:0d:53:3a:09:eb:36:f6:2f:98:98:bc:b3:85:f1: 73:b4:57:3a:c2:ec:56:59:12:b2:01:31:42:41:06:5d:94:d9: bc:14:df:0d:e5:8a:45:73:ff:ff:e2:15:67:9a:9a:ce:2e:57: 32:6d:b8:f2 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUM1Z3INzU+jyYxaLXo8nQaGxs3iYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDAyMDIxWhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ODYwZmVlOGZiYWU4OTFlOWVkMjRjZGMwMWViMzc3Nzkw OTM4ZGUzODJhMmUxNTU1OGRjMjE4YzRkYThmZTQzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3MjcLTpTNzfH92ePpbDAd6YPNsKkL+3Nog6qGt5PFqR5i vlEajgloR29O+SBT1vywkwO6m0cHkd7lrHg2yvyOi+13b7Muhq3z6jDrKgD/2MLP 5drpWyylFY51Iox+qOMZLOUu4jhklBHVhI15JdQhMzPsJQRqfraTYyQ8xybzBpg7 a1dLPCYZWZ5ovTCU6zFaY2i0u+4qPgdZVwzQPElV+NRiMc+dbONQS02biNe9vudv 4GqFwQ+NxrC1RvylBFtTLHUeDcjnNOu7iR6Hkl3PIRlKAhazmaZau7d1JW9Je0ek VUMeW6dJ+T/9rHn5ozPPlbHMv4fXyhVTlhE8LKtFAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUKaogIufsxPN6nMeioD76WLqG6fcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ1MDRjODBlLTRiYTMtNDQ4ZS1hZTVlLWJkMDU3Zjc5MGMyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+g4DANBgkqhkiG9w0BAQsFAAOCAQEATEzg124DMBog6AuoN9Y1wuua 6iSAiMdIA4nhODpQTRU6kM/4MMGDvZ2DilQASQLkuq93mXROAfsUbVTZzQmqEkBh OI+eZi8epB6aLO1gMDwHyHDrE0ef60KIpp/2H7arR2cXFs6go24OLGeZw/LEAWWB j9yj02JAfDcgHqfYUc7vF526mRS57uc+mHA3tQohn+HkU12t7G07H87D1ngwRvK6 4ferReEOF1tDdfUjd2aciyLyo/tTd6qtCXr2VTGXk5Fc0wIU12NIrg1TOgnrNvYv mJi8s4Xxc7RXOsLsVlkSsgExQkEGXZTZvBTfDeWKRXP//+IVZ5qazi5XMm248g== -----END CERTIFICATE-----Generated at Sat May 10 16:00:46 2025 by rpki-client