$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d439b2b-8291-4d7c-8bc8-81770a6741a8.roa File: 4d439b2b-8291-4d7c-8bc8-81770a6741a8.roa (raw, json) Hash identifier: LcKhndmB2ULoHJ5kgGndvuk1psxDyNx1yIZLpP6vJ+0= Subject key identifier: A1:CF:31:51:D0:7E:74:6E:83:11:D1:C6:B7:83:3E:E2:FB:8B:1B:E8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 315066ABAEE590A914960E59A71DEBFA03CDE4A3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d439b2b-8291-4d7c-8bc8-81770a6741a8.roa Signing time: Wed 07 May 2025 00:10:59 +0000 ROA not before: Wed 07 May 2025 00:10:59 +0000 ROA not after: Wed 11 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f22:c000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:50:66:ab:ae:e5:90:a9:14:96:0e:59:a7:1d:eb:fa:03:cd:e4:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:10:59 2025 GMT Not After : Jun 11 23:59:59 2025 GMT Subject: serialNumber=78e5c02e8f96bfa4536450791a6f6aa26442bebd6704908f8ad7149ce6d73f5e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:fd:a9:82:78:3d:eb:71:25:83:a0:36:4a:40: 30:1a:22:17:19:47:2e:75:8a:91:12:16:7e:27:d3: db:20:89:e4:e5:f2:92:9f:51:63:cf:a9:4c:4c:bc: a1:b2:db:e9:99:cd:c5:14:b8:29:75:04:0b:cc:4f: 9e:6b:a7:b7:ac:06:d4:2b:6c:b5:19:ba:27:54:5c: c2:0c:78:9d:b8:4e:5d:d5:73:30:bd:61:54:bb:c8: 4e:1a:ba:41:c9:f4:4b:3e:7c:7e:5a:3b:e7:b7:3b: fd:fc:fe:5c:20:13:81:e6:b9:66:95:10:c7:02:c9: ec:5c:13:f2:b1:bc:eb:91:95:1d:d5:76:eb:dd:8a: 11:a7:80:c5:f6:15:ba:d0:60:a2:b0:56:f6:09:af: 52:91:7c:92:5e:eb:9e:c1:a0:c9:58:47:12:0b:f5: 54:29:a7:c1:d6:bc:88:68:01:4b:bd:73:5f:be:6f: 30:e0:ef:59:e6:82:d3:a4:24:c4:ef:ff:fb:f2:c7: c8:2f:ae:5a:62:78:4c:42:9a:1e:d4:0e:05:0d:97: fa:cb:ae:2b:26:5c:af:3c:32:f0:ba:f1:d0:0a:e4: bc:34:91:b9:71:44:97:dc:11:96:d4:99:eb:2d:fd: 7c:51:0e:6f:1f:1f:48:c9:01:51:27:05:cf:75:8e: 2e:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:CF:31:51:D0:7E:74:6E:83:11:D1:C6:B7:83:3E:E2:FB:8B:1B:E8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d439b2b-8291-4d7c-8bc8-81770a6741a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f22:c000::/36 Signature Algorithm: sha256WithRSAEncryption 56:48:b5:5e:fb:5d:da:2f:2e:1f:ca:cd:5a:4f:26:cf:b7:fd: 8f:74:0d:72:6a:ed:15:99:cf:96:0d:59:4c:7e:0c:ff:d6:0f: b7:7c:f1:a0:be:7e:9b:a9:41:66:e1:b9:61:d8:e1:70:0f:04: 39:55:99:be:85:3f:af:1a:8e:4b:b9:c4:72:ad:08:06:95:e6: 27:b1:ab:3a:2a:6f:3e:90:71:2d:88:1f:3e:c7:7e:63:b4:36: 21:b4:75:b1:40:53:6b:cd:0c:0a:e2:c6:0d:c0:07:69:1d:be: 93:9f:2f:b8:c5:6f:16:52:4a:74:25:29:77:02:4e:35:94:d4: 3f:eb:22:25:92:7a:76:1e:0f:f6:82:59:4a:14:26:79:1b:45: 3a:8e:e3:35:e8:47:b9:53:d6:52:93:8c:04:7b:d2:2a:d0:be: 80:aa:12:7d:e7:09:cf:1a:ff:83:62:1e:ea:af:6d:11:51:a0: 76:f3:a6:10:ef:7e:9e:9c:2a:dc:1b:84:40:22:de:05:36:c1: 41:b1:b2:03:2e:67:6a:1c:1a:f6:e9:1c:36:2b:6e:ef:01:08: 1f:71:a4:38:83:40:67:f1:e3:73:80:af:e5:a5:ce:c6:fa:72: 01:df:5f:a0:88:20:39:74:58:c0:a7:28:bb:90:1b:19:18:d0: 3b:bf:95:4c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMVBmq67lkKkUlg5Zpx3r+gPN5KMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA3MDAxMDU5WhcNMjUwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0A3OGU1YzAyZThmOTZiZmE0NTM2NDUwNzkxYTZmNmFhMjY0 NDJiZWJkNjcwNDkwOGY4YWQ3MTQ5Y2U2ZDczZjVlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCa/amCeD3rcSWDoDZKQDAaIhcZRy51ipESFn4n09sgieTl 8pKfUWPPqUxMvKGy2+mZzcUUuCl1BAvMT55rp7esBtQrbLUZuidUXMIMeJ24Tl3V czC9YVS7yE4aukHJ9Es+fH5aO+e3O/38/lwgE4HmuWaVEMcCyexcE/KxvOuRlR3V duvdihGngMX2FbrQYKKwVvYJr1KRfJJe657BoMlYRxIL9VQpp8HWvIhoAUu9c1++ bzDg71nmgtOkJMTv//vyx8gvrlpieExCmh7UDgUNl/rLrismXK88MvC68dAK5Lw0 kblxRJfcEZbUmest/XxRDm8fH0jJAVEnBc91ji5FAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUoc8xUdB+dG6DEdHGt4M+4vuLG+gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRkNDM5YjJiLTgyOTEtNGQ3Yy04YmM4LTgxNzcwYTY3NDFhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8iwDANBgkqhkiG9w0BAQsFAAOCAQEAVki1Xvtd2i8uH8rNWk8mz7f9 j3QNcmrtFZnPlg1ZTH4M/9YPt3zxoL5+m6lBZuG5YdjhcA8EOVWZvoU/rxqOS7nE cq0IBpXmJ7GrOipvPpBxLYgfPsd+Y7Q2IbR1sUBTa80MCuLGDcAHaR2+k58vuMVv FlJKdCUpdwJONZTUP+siJZJ6dh4P9oJZShQmeRtFOo7jNehHuVPWUpOMBHvSKtC+ gKoSfecJzxr/g2Ie6q9tEVGgdvOmEO9+npwq3BuEQCLeBTbBQbGyAy5nahwa9ukc Nitu7wEIH3GkOINAZ/Hjc4Cv5aXOxvpyAd9foIggOXRYwKcou5AbGRjQO7+VTA== -----END CERTIFICATE-----Generated at Sat May 10 10:23:01 2025 by rpki-client