$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/60fa1316-489c-4c2e-9ecb-e5a60a70777e.roa File: 60fa1316-489c-4c2e-9ecb-e5a60a70777e.roa (raw, json) Hash identifier: 4yOdwShIm+GRteTownKPZ94u1wBuHXAeXE2HsCE6JTg= Subject key identifier: 22:C6:61:A3:4C:B7:50:91:90:85:72:D3:02:23:59:33:D9:04:DE:82 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1AC4549227CAF3FAF949736E13F7EB3D140D20C3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/60fa1316-489c-4c2e-9ecb-e5a60a70777e.roa Signing time: Sat 03 May 2025 00:11:45 +0000 ROA not before: Sat 03 May 2025 00:11:45 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:80a7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:c4:54:92:27:ca:f3:fa:f9:49:73:6e:13:f7:eb:3d:14:0d:20:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:11:45 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=90cfca2a28ecc3927066a544012a255b9d7aacb695af141a04b7ecd36400c15b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:3f:01:f6:9e:80:09:5e:5f:8a:ae:8f:08:ac: 1b:04:73:c5:75:40:c3:33:71:53:e2:86:51:74:1b: 66:a6:6b:88:89:2a:33:e1:04:4d:b3:6e:be:f3:72: bd:aa:86:8b:57:4a:a3:70:84:c0:41:e3:3e:37:9f: a8:f1:00:61:4f:ee:31:e9:cc:bb:91:40:ca:be:55: bb:7c:d2:3d:18:c7:d8:1a:a0:1f:11:6c:34:90:f8: b7:8d:62:db:15:1d:de:f3:81:86:5e:f2:d9:8f:11: d6:53:45:4f:cb:33:13:2d:e9:49:0b:4e:3d:3f:93: b1:7a:15:8c:43:d3:b6:46:80:35:5d:22:f6:e4:a6: aa:23:7e:ff:51:58:a1:38:d2:3d:52:a8:e7:98:39: 41:53:3b:74:9f:d5:86:5d:ba:0b:f4:fd:15:05:0d: 24:81:e2:7e:93:b6:4a:27:28:65:6d:b4:22:34:77: b3:ba:71:45:48:f7:66:32:ed:d6:aa:0c:91:d0:ff: dc:26:59:a4:a0:c0:e2:f8:ae:60:07:89:7c:07:33: e6:d0:40:f9:b2:1a:f0:ab:91:3c:65:4d:0e:90:6a: 44:58:04:b6:7e:e9:f9:2b:97:2c:04:15:8b:76:ae: 14:e2:48:81:8c:24:57:d3:9e:b7:f0:e5:23:8a:c6: 1b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:C6:61:A3:4C:B7:50:91:90:85:72:D3:02:23:59:33:D9:04:DE:82 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/60fa1316-489c-4c2e-9ecb-e5a60a70777e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:80a7::/48 Signature Algorithm: sha256WithRSAEncryption 0a:fd:b3:1e:51:eb:f8:8a:5d:fe:05:2f:bd:48:9c:2e:b9:a8: 11:56:9f:33:3f:49:45:40:9d:bd:19:0e:6e:5e:8c:a8:d4:fd: 8c:79:93:15:f5:3f:bb:9b:9e:57:12:77:fa:eb:3f:d9:63:7d: a7:d5:df:0d:2b:01:5c:c8:f1:7b:3f:cd:12:d0:1d:2f:28:c4: f7:73:e1:dd:3e:91:7d:b1:5c:56:a7:61:cb:d8:c5:e5:42:7a: 71:8e:31:ac:0e:23:df:11:ad:39:dc:29:78:94:59:9a:ff:28: e8:fe:45:d4:99:1a:ac:97:b4:41:7f:4c:71:61:b4:f8:c7:96: 03:32:3c:59:3d:c1:83:0c:f8:25:19:a4:2a:70:5f:86:c1:69: 61:d8:f3:c1:5e:db:77:66:00:a5:04:06:e7:df:41:4a:f7:64: c2:6f:47:58:d5:ad:b5:1b:95:67:55:90:b1:b5:13:63:72:c4: f0:2c:f5:b6:bb:af:bb:58:97:2c:48:62:72:34:72:7d:8a:00: 82:c1:5f:b8:e2:a5:12:c0:a9:68:83:f0:95:64:24:4e:bf:64: 8e:8d:a5:0b:a4:a3:c1:7c:46:c0:5c:bd:be:c8:c0:aa:18:90: a6:54:8d:98:9c:a6:22:cd:e1:eb:50:04:53:4e:da:0b:07:0d: b3:03:20:72 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGsRUkifK8/r5SXNuE/frPRQNIMMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDAxMTQ1WhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MGNmY2EyYTI4ZWNjMzkyNzA2NmE1NDQwMTJhMjU1Yjlk N2FhY2I2OTVhZjE0MWEwNGI3ZWNkMzY0MDBjMTViMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuPwH2noAJXl+Kro8IrBsEc8V1QMMzcVPihlF0G2ama4iJ KjPhBE2zbr7zcr2qhotXSqNwhMBB4z43n6jxAGFP7jHpzLuRQMq+Vbt80j0Yx9ga oB8RbDSQ+LeNYtsVHd7zgYZe8tmPEdZTRU/LMxMt6UkLTj0/k7F6FYxD07ZGgDVd Ivbkpqojfv9RWKE40j1SqOeYOUFTO3Sf1YZdugv0/RUFDSSB4n6TtkonKGVttCI0 d7O6cUVI92Yy7daqDJHQ/9wmWaSgwOL4rmAHiXwHM+bQQPmyGvCrkTxlTQ6QakRY BLZ+6fkrlywEFYt2rhTiSIGMJFfTnrfw5SOKxhs7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUIsZho0y3UJGQhXLTAiNZM9kE3oIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYwZmExMzE2LTQ4OWMtNGMyZS05ZWNiLWU1YTYwYTcwNzc3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9gKcwDQYJKoZIhvcNAQELBQADggEBAAr9sx5R6/iKXf4FL71InC65 qBFWnzM/SUVAnb0ZDm5ejKjU/Yx5kxX1P7ubnlcSd/rrP9ljfafV3w0rAVzI8Xs/ zRLQHS8oxPdz4d0+kX2xXFanYcvYxeVCenGOMawOI98RrTncKXiUWZr/KOj+RdSZ GqyXtEF/THFhtPjHlgMyPFk9wYMM+CUZpCpwX4bBaWHY88Fe23dmAKUEBuffQUr3 ZMJvR1jVrbUblWdVkLG1E2NyxPAs9ba7r7tYlyxIYnI0cn2KAILBX7jipRLAqWiD 8JVkJE6/ZI6NpQuko8F8RsBcvb7IwKoYkKZUjZicpiLN4etQBFNO2gsHDbMDIHI= -----END CERTIFICATE-----Generated at Sat May 10 16:16:49 2025 by rpki-client