$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6baafec9-b3ce-4971-834e-d8978a089162.roa File: 6baafec9-b3ce-4971-834e-d8978a089162.roa (raw, json) Hash identifier: vpVoOY5G+OOjaIZ9CMCcGmyvF7hwIK7aSuFEU9OKTUA= Subject key identifier: 91:32:02:D6:B7:A9:C6:EB:5F:BB:93:28:9D:77:ED:18:4E:30:65:97 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 314DBCCD62DE961A990F00E81290D5AAB952114F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6baafec9-b3ce-4971-834e-d8978a089162.roa Signing time: Tue 22 Apr 2025 00:32:04 +0000 ROA not before: Tue 22 Apr 2025 00:32:04 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff4:e080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:4d:bc:cd:62:de:96:1a:99:0f:00:e8:12:90:d5:aa:b9:52:11:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 00:32:04 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=b07e2a765ae1a8b19d2559d3a1854d1542364c2917b555c52286cd171bb9567c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4a:cb:b7:a7:7c:19:0b:b2:2a:03:6a:19:41: cf:bf:74:df:42:d5:af:ea:9c:09:6e:db:59:7f:da: 7c:c6:55:b1:7e:a0:2e:f6:f5:35:d0:4b:cd:b8:78: df:36:73:85:f2:5b:0e:3c:65:a0:87:1d:28:36:87: 8f:6c:f4:a5:aa:6c:24:c1:5f:01:b0:e3:1a:66:5d: 18:a1:0f:9e:80:6d:f2:97:0f:f9:91:49:ec:e2:98: 26:d7:d3:33:d8:5f:95:9a:57:51:8b:d0:a8:d9:6f: 15:46:63:c3:eb:05:9c:b3:0e:6c:78:ee:08:2d:0c: 49:9f:4a:55:a4:94:13:36:45:f6:00:89:b9:16:0b: 6a:09:d8:06:ca:0d:e4:d9:38:28:1b:01:3d:61:b3: 77:6e:91:aa:e5:ea:68:d5:20:0d:78:b1:9a:c9:cf: 18:dc:58:1b:9c:b2:28:b0:bc:9a:b2:00:b9:19:ac: 73:f0:4e:0b:af:b0:f0:24:37:0e:a3:39:6a:f8:19: 0a:e4:8c:fe:a7:fc:5c:3c:1f:2b:87:6a:84:ec:60: a4:2f:63:9b:85:1a:99:dc:40:11:4f:1b:9c:e2:50: 06:cd:44:e1:e1:3a:96:83:33:06:03:f1:4a:bb:60: ee:52:a0:c0:96:0c:6c:e2:60:65:9a:75:86:09:b9: 77:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:32:02:D6:B7:A9:C6:EB:5F:BB:93:28:9D:77:ED:18:4E:30:65:97 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6baafec9-b3ce-4971-834e-d8978a089162.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff4:e080::/48 Signature Algorithm: sha256WithRSAEncryption 22:a3:82:92:cb:c7:c8:d7:bf:43:ff:2a:01:f1:4c:bb:42:2f: 8c:58:33:d4:4b:ac:83:2b:27:4f:f8:9e:3e:da:80:7e:52:eb: 33:8b:58:aa:4d:11:70:37:8a:31:09:db:bb:1b:95:4a:b6:5c: b0:7b:37:1f:6b:41:b1:50:bb:21:f4:dc:63:d4:40:63:61:46: 48:27:14:0e:d0:60:1d:52:4c:c0:ad:cc:51:1e:78:3c:9a:07: c0:e3:b8:94:29:83:b4:a2:4e:74:98:1c:e0:e1:f5:fc:54:31: 8d:d6:54:9a:26:88:1d:38:f4:f2:d1:fd:60:59:71:91:51:b1: d9:cc:bc:5c:bb:69:cc:15:26:82:77:c1:85:3c:d5:95:b1:cf: 75:61:ef:41:ee:c2:86:24:e1:59:02:8d:c9:ef:79:f7:cf:c7: af:4d:a5:fb:2a:52:a7:17:b9:3c:45:aa:a0:fb:85:a4:8c:8f: 2e:f3:32:94:94:c1:1c:95:ed:9a:99:36:a4:be:55:dd:e0:01: bb:57:80:23:b9:67:fe:f7:03:ba:50:d0:02:84:6d:89:81:69: 04:14:d6:0a:e5:e2:e3:f6:ce:90:7a:ef:56:22:43:95:c5:a0: 0f:33:b3:eb:6d:10:38:79:73:2c:da:24:ee:38:49:92:a0:e6: 3c:48:fb:ca -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMU28zWLelhqZDwDoEpDVqrlSEU8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMDAzMjA0WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMDdlMmE3NjVhZTFhOGIxOWQyNTU5ZDNhMTg1NGQxNTQy MzY0YzI5MTdiNTU1YzUyMjg2Y2QxNzFiYjk1NjdjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/Ssu3p3wZC7IqA2oZQc+/dN9C1a/qnAlu21l/2nzGVbF+ oC729TXQS824eN82c4XyWw48ZaCHHSg2h49s9KWqbCTBXwGw4xpmXRihD56AbfKX D/mRSezimCbX0zPYX5WaV1GL0KjZbxVGY8PrBZyzDmx47ggtDEmfSlWklBM2RfYA ibkWC2oJ2AbKDeTZOCgbAT1hs3dukarl6mjVIA14sZrJzxjcWBucsiiwvJqyALkZ rHPwTguvsPAkNw6jOWr4GQrkjP6n/Fw8HyuHaoTsYKQvY5uFGpncQBFPG5ziUAbN ROHhOpaDMwYD8Uq7YO5SoMCWDGziYGWadYYJuXdtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUkTIC1repxutfu5MonXftGE4wZZcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZiYWFmZWM5LWIzY2UtNDk3MS04MzRlLWQ4OTc4YTA4OTE2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/04IAwDQYJKoZIhvcNAQELBQADggEBACKjgpLLx8jXv0P/KgHxTLtC L4xYM9RLrIMrJ0/4nj7agH5S6zOLWKpNEXA3ijEJ27sblUq2XLB7Nx9rQbFQuyH0 3GPUQGNhRkgnFA7QYB1STMCtzFEeeDyaB8DjuJQpg7SiTnSYHODh9fxUMY3WVJom iB049PLR/WBZcZFRsdnMvFy7acwVJoJ3wYU81ZWxz3Vh70HuwoYk4VkCjcnveffP x69NpfsqUqcXuTxFqqD7haSMjy7zMpSUwRyV7ZqZNqS+Vd3gAbtXgCO5Z/73A7pQ 0AKEbYmBaQQU1grl4uP2zpB671YiQ5XFoA8zs+ttEDh5cyzaJO44SZKg5jxI+8o= -----END CERTIFICATE-----Generated at Mon May 12 16:46:34 2025 by rpki-client