$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/67f40a44-f534-4bd5-82d5-3d7ba1d41e1d.roa File: 67f40a44-f534-4bd5-82d5-3d7ba1d41e1d.roa (raw, json) Hash identifier: 2iV/uqx5dyjnB+kr/LL539arJ+mxe2HwsEMP4rNLyGE= Subject key identifier: 54:2B:E4:71:8A:F4:22:C7:EF:D3:26:38:39:F5:23:12:8A:F4:1F:DE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 72A8AD312F53D451568E76E54FBE05DAA3DCD538 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/67f40a44-f534-4bd5-82d5-3d7ba1d41e1d.roa Signing time: Sat 03 May 2025 00:21:18 +0000 ROA not before: Sat 03 May 2025 00:21:18 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f26:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:a8:ad:31:2f:53:d4:51:56:8e:76:e5:4f:be:05:da:a3:dc:d5:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:21:18 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=8b238cff68c15548e32cb1e6411ada0c6741f1265a8305355b97f4e35cbfd48c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:c7:4f:09:70:94:f4:bd:bd:64:37:21:0d:38: b4:8e:23:50:1e:4e:a9:6a:43:84:67:dc:f0:de:c5: 55:6b:c2:84:91:2a:c2:88:39:e1:06:42:36:2c:8b: ac:0d:52:eb:8f:b8:38:88:4b:e4:1f:ca:1a:fb:43: a4:d4:c6:5e:c4:47:0a:3a:9c:34:3a:34:db:40:87: 30:c2:26:f8:d6:66:ad:a3:8f:cc:6c:fc:3d:4c:68: 03:e9:33:e4:99:05:36:7e:b4:a1:f3:ac:7a:b3:64: 5f:da:0a:19:3c:52:f5:d5:10:ae:08:99:bc:97:50: 3c:44:c5:87:5d:e5:c0:d8:e4:66:d7:72:ab:0f:27: a2:1d:ac:59:67:42:65:d4:57:2c:b8:1e:49:82:e1: 66:b8:27:88:02:93:2d:1d:c8:9e:a0:fe:87:17:aa: 04:da:5e:ca:95:84:b0:68:af:1d:27:cb:04:37:32: 86:07:9b:ec:24:5a:85:c1:57:06:64:54:32:a0:9e: da:1c:e9:56:8c:3a:2e:65:5a:03:f5:57:02:28:63: 24:b5:58:6b:1c:3a:8b:d4:ed:7e:be:d8:1b:28:b8: 3e:0b:1c:9f:96:64:7e:cf:48:20:0c:36:bf:c5:32: ae:6a:3e:af:4d:ec:66:73:fe:18:90:7c:fc:c0:69: 37:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:2B:E4:71:8A:F4:22:C7:EF:D3:26:38:39:F5:23:12:8A:F4:1F:DE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/67f40a44-f534-4bd5-82d5-3d7ba1d41e1d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f26:8000::/36 Signature Algorithm: sha256WithRSAEncryption 13:ff:e1:5e:de:de:15:13:83:35:56:02:89:b0:a0:a1:0f:19: a3:af:40:3a:cc:c6:0e:c1:34:9d:79:fb:d2:e7:f9:6c:e7:54: f8:06:7c:c9:44:ec:22:4a:a9:61:1e:b6:6a:7a:6f:14:6e:8c: 1f:e7:fe:89:03:8e:a7:fa:7d:70:44:c9:29:a4:64:eb:20:13: 61:29:06:d5:7a:0a:1a:9e:b1:be:0f:8c:74:51:3b:f3:04:5d: a9:29:8b:33:f2:6b:71:5c:7a:82:46:85:b1:1e:80:aa:25:7e: e3:b5:7c:c6:56:f7:1c:4a:76:ea:f8:2f:e3:43:b4:d3:c5:75: 5f:aa:b6:93:d8:b1:e5:93:fb:a8:bd:26:6c:e4:ae:02:e9:ae: 48:00:33:1a:d1:cf:bc:77:76:6f:c1:6a:b1:bb:68:3b:5b:6c: f0:09:d9:23:3f:37:e9:82:12:aa:e3:91:1c:92:6e:a1:75:94: 4d:1a:13:35:f2:cb:f4:b8:39:22:bf:e8:c7:bb:68:12:e5:c8: 6b:a3:37:61:bb:04:14:2f:41:23:d8:f8:fd:20:99:0d:9f:d1: 40:d6:9b:15:4e:85:41:f8:4e:ed:b0:32:bf:6f:76:0b:53:a6: 63:13:1e:bf:db:25:aa:d5:39:4f:7e:97:ed:18:55:d6:f3:42: 7b:40:24:2b -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUcqitMS9T1FFWjnblT74F2qPc1TgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDAyMTE4WhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YjIzOGNmZjY4YzE1NTQ4ZTMyY2IxZTY0MTFhZGEwYzY3 NDFmMTI2NWE4MzA1MzU1Yjk3ZjRlMzVjYmZkNDhjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDux08JcJT0vb1kNyENOLSOI1AeTqlqQ4Rn3PDexVVrwoSR KsKIOeEGQjYsi6wNUuuPuDiIS+Qfyhr7Q6TUxl7ERwo6nDQ6NNtAhzDCJvjWZq2j j8xs/D1MaAPpM+SZBTZ+tKHzrHqzZF/aChk8UvXVEK4ImbyXUDxExYdd5cDY5GbX cqsPJ6IdrFlnQmXUVyy4HkmC4Wa4J4gCky0dyJ6g/ocXqgTaXsqVhLBorx0nywQ3 MoYHm+wkWoXBVwZkVDKgntoc6VaMOi5lWgP1VwIoYyS1WGscOovU7X6+2BsouD4L HJ+WZH7PSCAMNr/FMq5qPq9N7GZz/hiQfPzAaTdfAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUVCvkcYr0Isfv0yY4OfUjEor0H94wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY3ZjQwYTQ0LWY1MzQtNGJkNS04MmQ1LTNkN2JhMWQ0MWUxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8mgDANBgkqhkiG9w0BAQsFAAOCAQEAE//hXt7eFRODNVYCibCgoQ8Z o69AOszGDsE0nXn70uf5bOdU+AZ8yUTsIkqpYR62anpvFG6MH+f+iQOOp/p9cETJ KaRk6yATYSkG1XoKGp6xvg+MdFE78wRdqSmLM/JrcVx6gkaFsR6AqiV+47V8xlb3 HEp26vgv40O008V1X6q2k9ix5ZP7qL0mbOSuAumuSAAzGtHPvHd2b8FqsbtoO1ts 8AnZIz836YISquORHJJuoXWUTRoTNfLL9Lg5Ir/ox7toEuXIa6M3YbsEFC9BI9j4 /SCZDZ/RQNabFU6FQfhO7bAyv292C1OmYxMev9slqtU5T36X7RhV1vNCe0AkKw== -----END CERTIFICATE-----Generated at Mon May 5 10:23:22 2025 by rpki-client