$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e056f55-6a1d-461d-a258-f4c8e81748a1.roa File: 8e056f55-6a1d-461d-a258-f4c8e81748a1.roa (raw, json) Hash identifier: GuNjN7Tqs7EI0deVBnC0cGHZjRJdzG60driancKMmm8= Subject key identifier: DC:E9:FA:3A:91:7F:36:A4:30:0D:CB:79:59:C0:82:E0:33:F3:9B:81 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4E5A5AAD68BE4C701EC95F0AFE7F9F72CEEF45C1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e056f55-6a1d-461d-a258-f4c8e81748a1.roa Signing time: Tue 22 Apr 2025 17:01:12 +0000 ROA not before: Tue 22 Apr 2025 17:01:12 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f15:4000::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 07 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:5a:5a:ad:68:be:4c:70:1e:c9:5f:0a:fe:7f:9f:72:ce:ef:45:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 17:01:12 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=57fbea5652429c5d7f345e8f7ac29dd10cc8472a9635e20b1390697731b3aa2c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:18:11:b4:e7:39:2a:1a:ca:14:f9:1c:78:bd: b6:30:10:51:73:2c:ef:6c:6d:72:65:e1:79:fa:22: 64:74:39:bd:64:02:4f:90:ff:37:ca:dd:73:a6:9f: 68:08:7d:82:12:86:73:e6:19:74:ac:80:de:e1:0c: df:68:05:04:b6:0a:a3:be:81:0b:c7:6d:74:01:cb: 6a:1f:b6:78:3f:fd:f7:f3:06:96:83:dc:ee:df:f1: 68:d4:e0:da:6c:cf:de:51:de:59:17:f3:71:d4:f7: 60:c2:56:de:db:19:e5:49:33:d5:33:c9:0e:09:8f: 78:f8:94:5e:e9:e0:4c:70:35:0d:77:2d:51:df:2c: 23:20:2a:a4:20:9b:8e:d6:86:2d:7a:04:e2:c2:a9: 25:6d:eb:06:02:51:28:c3:4f:85:74:9e:2f:0c:96: 07:17:24:b3:0e:2d:0d:09:a7:b5:ce:82:e0:96:f0: cd:9c:ef:2e:94:89:18:13:c5:3c:ef:df:1c:15:f5: bc:e6:02:c1:da:0d:f8:36:ca:16:9b:ac:25:3d:18: f8:47:1d:e2:c3:00:10:66:32:5b:74:0c:a3:31:37: 9b:04:dd:88:4d:65:61:b3:ba:20:63:9a:4b:b0:dc: c6:b8:dd:fe:e4:26:cc:47:19:bd:36:3d:11:76:4d: 22:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:E9:FA:3A:91:7F:36:A4:30:0D:CB:79:59:C0:82:E0:33:F3:9B:81 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e056f55-6a1d-461d-a258-f4c8e81748a1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f15:4000::/37 Signature Algorithm: sha256WithRSAEncryption 09:7f:1f:0b:08:7e:b0:40:15:06:21:ee:cc:97:fa:59:57:e8: 2f:f0:b4:d1:5c:4f:59:2e:2c:f1:ce:00:a0:c7:3b:0b:14:38: b3:6e:84:66:b4:3a:8c:3f:d9:b5:a7:bf:ef:5e:ee:8b:68:5f: ba:4c:b7:ec:46:4e:cd:df:9a:b0:08:47:39:dd:f5:12:d1:3d: 06:63:f2:dc:45:c5:7d:ff:83:a1:cb:f4:70:9d:ee:6a:89:de: 51:74:16:31:bd:97:e3:6c:b7:89:09:c7:43:9d:ee:93:ea:3d: 7e:68:83:22:a3:d2:26:41:fb:e3:89:d5:06:32:04:64:93:ae: 45:9e:90:fc:77:7f:1c:6f:98:6d:41:3c:95:f9:a2:a5:24:d4: a4:1e:f0:1e:9d:b9:d8:1f:5d:db:ac:d9:02:80:95:0c:2d:a5: b2:55:6c:5b:a7:70:e9:91:bf:41:a4:6e:06:d8:da:e5:46:ea: 59:c2:23:bd:b2:d1:ca:d3:d2:01:65:99:0b:ee:1d:a4:25:ed: 84:26:6f:ab:6e:64:fe:68:5e:4d:2e:c8:07:71:e5:9c:76:b1: b2:8b:6b:37:17:dd:69:f6:2c:3a:1e:4a:f7:36:ca:4f:93:c0: 8d:16:1c:2f:fe:7f:d2:e7:37:c3:5f:78:f6:0a:b8:a2:f7:1d: 3f:e8:7e:59 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUTlparWi+THAeyV8K/n+fcs7vRcEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTcwMTEyWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1N2ZiZWE1NjUyNDI5YzVkN2YzNDVlOGY3YWMyOWRkMTBj Yzg0NzJhOTYzNWUyMGIxMzkwNjk3NzMxYjNhYTJjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqGBG05zkqGsoU+Rx4vbYwEFFzLO9sbXJl4Xn6ImR0Ob1k Ak+Q/zfK3XOmn2gIfYIShnPmGXSsgN7hDN9oBQS2CqO+gQvHbXQBy2oftng//ffz BpaD3O7f8WjU4Npsz95R3lkX83HU92DCVt7bGeVJM9UzyQ4Jj3j4lF7p4ExwNQ13 LVHfLCMgKqQgm47Whi16BOLCqSVt6wYCUSjDT4V0ni8MlgcXJLMOLQ0Jp7XOguCW 8M2c7y6UiRgTxTzv3xwV9bzmAsHaDfg2yhabrCU9GPhHHeLDABBmMlt0DKMxN5sE 3YhNZWGzuiBjmkuw3Ma43f7kJsxHGb02PRF2TSJvAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU3On6OpF/NqQwDct5WcCC4DPzm4EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhlMDU2ZjU1LTZhMWQtNDYxZC1hMjU4LWY0YzhlODE3NDhhMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8VQDANBgkqhkiG9w0BAQsFAAOCAQEACX8fCwh+sEAVBiHuzJf6WVfo L/C00VxPWS4s8c4AoMc7CxQ4s26EZrQ6jD/Ztae/717ui2hfuky37EZOzd+asAhH Od31EtE9BmPy3EXFff+Docv0cJ3uaoneUXQWMb2X42y3iQnHQ53uk+o9fmiDIqPS JkH744nVBjIEZJOuRZ6Q/Hd/HG+YbUE8lfmipSTUpB7wHp252B9d26zZAoCVDC2l slVsW6dw6ZG/QaRuBtja5UbqWcIjvbLRytPSAWWZC+4dpCXthCZvq25k/mheTS7I B3HlnHaxsotrNxfdafYsOh5K9zbKT5PAjRYcL/5/0uc3w1949gq4ovcdP+h+WQ== -----END CERTIFICATE-----Generated at Tue May 6 03:46:07 2025 by rpki-client