$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/616e4134-09a6-4be2-bb0a-458670061cbd.roa File: 616e4134-09a6-4be2-bb0a-458670061cbd.roa (raw, json) Hash identifier: lYP5SiQrzE+mD2hNyA9juph1Y8RdIriFeMnIO2tFth8= Subject key identifier: E3:2F:28:C9:60:FA:A0:35:B4:FA:04:0C:62:AC:2A:F2:A9:13:5B:69 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0124A4BFB89712216441AA0BD19FA4526F0D9D2F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/616e4134-09a6-4be2-bb0a-458670061cbd.roa Signing time: Tue 29 Apr 2025 00:11:19 +0000 ROA not before: Tue 29 Apr 2025 00:11:19 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1f25::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:24:a4:bf:b8:97:12:21:64:41:aa:0b:d1:9f:a4:52:6f:0d:9d:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:11:19 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=d1d80fb65bebde927369171f3bc71c6201ba8572b27b03912c8f70bca53f6b43, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d7:c2:65:b6:bb:cf:f4:d1:4d:b6:69:a1:13: ed:48:4d:d1:68:be:a2:6d:27:bc:43:df:16:31:d2: 0d:2d:1b:38:6b:6a:35:63:86:62:9e:83:dc:0e:e1: c2:98:79:91:49:54:ed:f8:00:ed:2d:55:91:34:c8: 25:02:1b:bb:9d:7c:07:d2:e8:8e:92:56:89:e0:7d: 94:22:1f:93:1a:4b:73:48:cd:6d:03:1e:1a:0f:60: ce:69:dc:37:24:fe:44:1f:56:4a:c3:aa:3d:61:d2: 44:92:33:f8:92:58:6a:68:e9:18:ce:8a:45:bb:79: 06:c0:6f:bd:cc:27:bd:8e:fc:a8:ae:6d:4c:84:9b: d4:5a:7e:07:5c:64:68:50:83:85:55:01:8e:09:c4: 6d:34:7d:ff:4f:74:12:06:ba:66:92:44:c5:78:fd: bb:fe:97:e9:aa:8a:30:14:9e:97:06:ae:b1:b7:38: ea:67:3d:54:77:99:fa:51:8a:94:0c:45:7e:6f:7c: cf:e9:05:92:38:62:67:71:e4:cc:eb:5d:3f:c0:67: 66:fb:31:af:6f:73:85:5e:cb:d5:a7:f9:20:05:cd: 63:51:b2:9b:d6:9b:1f:9c:48:eb:6a:38:bc:7c:eb: 0f:97:67:c0:98:ac:30:be:c2:07:e3:31:f6:46:0b: e7:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:2F:28:C9:60:FA:A0:35:B4:FA:04:0C:62:AC:2A:F2:A9:13:5B:69 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/616e4134-09a6-4be2-bb0a-458670061cbd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f25::/36 Signature Algorithm: sha256WithRSAEncryption 6b:bc:8d:b0:f3:01:00:94:3c:22:8b:fe:ca:7a:a2:59:75:89: 16:1d:37:cc:cd:62:23:d1:f5:80:fa:9a:0a:5e:5d:81:2e:ab: 63:04:d4:e9:b6:3c:ef:b1:0b:4a:89:58:14:7b:c7:18:eb:a6: d4:ce:0a:e4:33:ec:0d:8f:63:1e:77:b3:56:5d:a3:52:77:f3: 86:5d:b0:fe:ec:63:b6:48:20:e5:bb:4a:08:90:e2:d9:f6:c3: 7e:b2:a2:51:64:09:dc:29:1c:24:b2:5a:61:54:5a:08:a5:7a: 62:0a:79:9e:4b:fe:ea:bc:58:58:90:5b:b3:99:81:99:0e:b0: 60:62:ae:0f:bb:2c:d1:ed:5b:85:00:23:0e:a5:37:95:40:7f: 81:36:0c:6c:41:5a:a9:43:45:bf:d3:21:19:22:af:a7:28:c3: 75:f6:51:b2:53:e4:ac:a9:fa:48:99:39:06:c2:c4:09:78:5a: bb:d0:ac:bd:02:d5:6c:42:bc:79:dd:96:0e:d9:72:28:bd:aa: dd:04:c0:dc:a8:fc:6b:32:c0:11:75:4f:54:9e:40:53:2c:51: cc:6b:7e:c1:4a:15:98:a2:66:58:e1:8d:80:4a:d6:17:b5:f3: df:4f:b9:db:4c:31:4d:c8:fb:ef:8a:47:88:5e:e0:e2:f2:2d: 76:ff:a1:94 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUASSkv7iXEiFkQaoL0Z+kUm8NnS8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI5MDAxMTE5WhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMWQ4MGZiNjViZWJkZTkyNzM2OTE3MWYzYmM3MWM2MjAx YmE4NTcyYjI3YjAzOTEyYzhmNzBiY2E1M2Y2YjQzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+18JltrvP9NFNtmmhE+1ITdFovqJtJ7xD3xYx0g0tGzhr ajVjhmKeg9wO4cKYeZFJVO34AO0tVZE0yCUCG7udfAfS6I6SVongfZQiH5MaS3NI zW0DHhoPYM5p3Dck/kQfVkrDqj1h0kSSM/iSWGpo6RjOikW7eQbAb73MJ72O/Kiu bUyEm9RafgdcZGhQg4VVAY4JxG00ff9PdBIGumaSRMV4/bv+l+mqijAUnpcGrrG3 OOpnPVR3mfpRipQMRX5vfM/pBZI4Ymdx5MzrXT/AZ2b7Ma9vc4Vey9Wn+SAFzWNR spvWmx+cSOtqOLx86w+XZ8CYrDC+wgfjMfZGC+frAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU4y8oyWD6oDW0+gQMYqwq8qkTW2kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYxNmU0MTM0LTA5YTYtNGJlMi1iYjBhLTQ1ODY3MDA2MWNiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8lADANBgkqhkiG9w0BAQsFAAOCAQEAa7yNsPMBAJQ8Iov+ynqiWXWJ Fh03zM1iI9H1gPqaCl5dgS6rYwTU6bY877ELSolYFHvHGOum1M4K5DPsDY9jHnez Vl2jUnfzhl2w/uxjtkgg5btKCJDi2fbDfrKiUWQJ3CkcJLJaYVRaCKV6Ygp5nkv+ 6rxYWJBbs5mBmQ6wYGKuD7ss0e1bhQAjDqU3lUB/gTYMbEFaqUNFv9MhGSKvpyjD dfZRslPkrKn6SJk5BsLECXhau9CsvQLVbEK8ed2WDtlyKL2q3QTA3Kj8azLAEXVP VJ5AUyxRzGt+wUoVmKJmWOGNgErWF7Xz30+520wxTcj774pHiF7g4vItdv+hlA== -----END CERTIFICATE-----Generated at Sun May 11 13:31:57 2025 by rpki-client