$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79a08982-5194-4b4d-8be7-6d940279e284.roa File: 79a08982-5194-4b4d-8be7-6d940279e284.roa (raw, json) Hash identifier: KGt6VD/5KAelZvubA9+kElCiO0e9I7l7+yntrqORWJc= Subject key identifier: F6:F6:10:FA:F7:F9:F6:59:29:CD:B8:88:54:F2:4F:4F:FC:2F:B3:75 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 206C7F16AF9A4266B7C6F12A183C99D252DD3A3D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79a08982-5194-4b4d-8be7-6d940279e284.roa Signing time: Wed 16 Apr 2025 19:07:17 +0000 ROA not before: Wed 16 Apr 2025 19:07:17 +0000 ROA not after: Wed 21 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ff4:4000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:6c:7f:16:af:9a:42:66:b7:c6:f1:2a:18:3c:99:d2:52:dd:3a:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 19:07:17 2025 GMT Not After : May 21 23:59:59 2025 GMT Subject: serialNumber=7c3ed085f41269e96c3b86f1c8f2e59a8b28493ffd584a7f409a8bc5fdf8b17d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:bd:62:09:ad:b7:9d:f2:b2:2a:71:c0:ac:37: 08:de:55:3d:d6:b3:36:3d:7e:20:e2:a5:3a:eb:06: 83:43:49:f2:20:7f:ef:3d:fd:ea:1d:3d:7d:8f:aa: 56:ea:e8:96:96:b6:97:c0:ba:e1:6c:41:95:73:9a: ba:9d:48:b5:d6:3d:4c:a5:89:5a:43:88:b0:c2:39: f1:b5:50:41:08:08:e8:ba:24:8c:82:94:55:78:8b: 9e:5a:b8:05:b4:6c:ab:0e:22:b5:7e:06:af:7b:55: da:41:25:f8:f8:ef:db:47:96:d6:93:86:93:ca:5e: 8d:54:a7:08:df:6c:6b:58:c7:75:ab:dc:ff:37:7e: 29:b7:83:0c:4f:71:a4:3f:39:2b:61:5d:d4:aa:5c: 25:45:0d:f8:d6:11:60:e6:6c:8d:a4:21:1c:bc:bc: 72:61:81:1f:e7:d1:07:84:69:5f:a1:24:94:4a:a6: 15:3a:2d:3b:c0:d7:a2:1e:cf:c6:f9:4f:81:61:b4: fd:f1:33:9a:87:b6:83:a7:27:47:c2:5c:72:a1:a3: d6:92:27:79:d1:66:4b:5a:6a:48:0a:f6:16:72:8f: 45:fe:a6:bc:ed:f3:22:a8:11:9b:1e:b0:7d:34:ac: 0b:13:92:8d:ae:38:59:da:89:8d:19:e5:76:cb:f1: 1c:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:F6:10:FA:F7:F9:F6:59:29:CD:B8:88:54:F2:4F:4F:FC:2F:B3:75 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79a08982-5194-4b4d-8be7-6d940279e284.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff4:4000::/39 Signature Algorithm: sha256WithRSAEncryption 98:e8:3b:fa:78:ac:db:49:9a:16:d7:64:49:b2:6b:38:a8:f7: fa:29:b9:69:ce:9c:03:e5:b6:43:4c:9d:7c:a8:d2:54:44:f2: 67:e0:17:3a:b8:a7:6b:82:ec:ce:0c:24:77:66:ee:ba:94:a8: 55:2d:74:37:27:dc:04:d6:f7:07:c3:d9:23:14:fd:30:ed:e1: a3:cf:8d:8c:09:82:24:86:49:85:88:c2:91:21:91:8d:6d:eb: 80:7f:ce:58:c0:f7:45:6a:79:75:86:72:ed:41:71:5c:50:67: 82:ce:11:e5:86:6d:87:4d:d2:c9:00:f5:97:16:aa:a3:ac:91: ce:30:e5:be:21:22:0c:e3:fa:20:2f:ab:b7:4c:e0:1e:54:a0: d8:cd:eb:3b:4a:a0:09:b3:54:c7:f3:50:5e:c9:fe:36:70:fe: 57:a7:d4:e7:4c:79:22:65:07:f2:14:fa:ef:f7:4d:fd:a6:1f: 2d:60:54:34:5c:02:5a:d9:c4:92:8d:ac:65:c8:74:a1:59:65: 49:26:32:d4:39:c9:b4:48:b8:34:ce:0a:4a:26:96:a5:ad:b6: b0:cf:e5:b2:92:41:01:14:cb:59:ca:d9:40:8b:41:5e:e2:e2: 6b:1d:be:9c:5b:1a:2c:be:dc:3d:68:a6:96:eb:50:be:b2:2c: fb:7e:de:a2 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUIGx/Fq+aQma3xvEqGDyZ0lLdOj0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE2MTkwNzE3WhcNMjUwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3YzNlZDA4NWY0MTI2OWU5NmMzYjg2ZjFjOGYyZTU5YThi Mjg0OTNmZmQ1ODRhN2Y0MDlhOGJjNWZkZjhiMTdkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0vWIJrbed8rIqccCsNwjeVT3WszY9fiDipTrrBoNDSfIg f+89/eodPX2Pqlbq6JaWtpfAuuFsQZVzmrqdSLXWPUyliVpDiLDCOfG1UEEICOi6 JIyClFV4i55auAW0bKsOIrV+Bq97VdpBJfj479tHltaThpPKXo1UpwjfbGtYx3Wr 3P83fim3gwxPcaQ/OSthXdSqXCVFDfjWEWDmbI2kIRy8vHJhgR/n0QeEaV+hJJRK phU6LTvA16Iez8b5T4FhtP3xM5qHtoOnJ0fCXHKho9aSJ3nRZktaakgK9hZyj0X+ przt8yKoEZsesH00rAsTko2uOFnaiY0Z5XbL8Rx7AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU9vYQ+vf59lkpzbiIVPJPT/wvs3UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc5YTA4OTgyLTUxOTQtNGI0ZC04YmU3LTZkOTQwMjc5ZTI4NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/0QDANBgkqhkiG9w0BAQsFAAOCAQEAmOg7+nis20maFtdkSbJrOKj3 +im5ac6cA+W2Q0ydfKjSVETyZ+AXOrina4Lszgwkd2buupSoVS10NyfcBNb3B8PZ IxT9MO3ho8+NjAmCJIZJhYjCkSGRjW3rgH/OWMD3RWp5dYZy7UFxXFBngs4R5YZt h03SyQD1lxaqo6yRzjDlviEiDOP6IC+rt0zgHlSg2M3rO0qgCbNUx/NQXsn+NnD+ V6fU50x5ImUH8hT67/dN/aYfLWBUNFwCWtnEko2sZch0oVllSSYy1DnJtEi4NM4K SiaWpa22sM/lspJBARTLWcrZQItBXuLiax2+nFsaLL7cPWimlutQvrIs+37eog== -----END CERTIFICATE-----Generated at Mon May 12 07:32:42 2025 by rpki-client