$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/998b9d87-46d7-45d1-85e8-62d6d8298271.roa File: 998b9d87-46d7-45d1-85e8-62d6d8298271.roa (raw, json) Hash identifier: tn4i+tn0oaEHZtwULqZONih64OcCkwXfITA5hPtBA5Q= Subject key identifier: C4:C3:9E:1D:16:8B:06:6D:94:97:3D:BE:00:F2:61:F3:34:12:AC:17 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6A519B86E56640105C7CACDDFCCF928F1F431A23 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/998b9d87-46d7-45d1-85e8-62d6d8298271.roa Signing time: Mon 05 May 2025 15:11:43 +0000 ROA not before: Mon 05 May 2025 15:11:43 +0000 ROA not after: Mon 09 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1f32:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:51:9b:86:e5:66:40:10:5c:7c:ac:dd:fc:cf:92:8f:1f:43:1a:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 15:11:43 2025 GMT Not After : Jun 9 23:59:59 2025 GMT Subject: serialNumber=b2038c75abdeeddd1da37d34f585593434a2fae3605c0b386f4f435922658f36, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:3d:a5:fd:a1:2e:22:db:f1:b5:a5:82:e2:49: 24:fb:a9:37:72:68:e7:a5:7b:54:8b:d1:85:7c:f6: b5:24:94:6f:3e:cc:9d:fa:90:a8:db:f7:c0:b0:d3: 86:c6:fd:c9:f8:4e:f0:79:0f:ce:4e:59:b7:19:f7: 30:d4:64:72:0c:be:0d:28:8a:88:81:41:5c:10:43: 42:27:e1:cf:3e:fa:cc:41:0b:10:41:5a:13:f2:e5: db:73:43:ff:16:bc:68:08:27:0b:e6:32:fc:c1:56: 19:c7:fc:a7:fe:e5:ee:9c:9e:14:2c:63:ab:a1:77: 10:a8:6f:6a:72:b6:20:ea:66:34:81:e6:e5:48:08: a3:f8:68:55:74:83:34:e5:6d:01:35:bc:34:80:f0: 4a:12:62:bb:41:0c:e4:73:fe:ff:57:68:2d:24:46: 7f:54:e4:7b:e9:d8:cc:65:6c:6c:b0:ed:e5:11:b3: aa:14:5a:58:1d:59:d0:6f:12:f6:15:b9:cc:d0:a7: 39:2e:94:7a:e9:29:5a:59:00:fc:e3:d4:88:3a:e6: 2b:7e:89:64:0f:3f:15:b5:44:8a:05:a4:0f:cc:21: 63:c1:51:54:35:0a:0c:c4:2b:d0:75:ce:c3:34:5e: 82:d5:02:ff:37:5e:a0:ab:ed:75:19:05:d1:af:ce: 49:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:C3:9E:1D:16:8B:06:6D:94:97:3D:BE:00:F2:61:F3:34:12:AC:17 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/998b9d87-46d7-45d1-85e8-62d6d8298271.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f32:2000::/40 Signature Algorithm: sha256WithRSAEncryption 4b:b9:b1:6e:da:2f:00:0b:36:e5:9b:58:e5:38:3e:05:5a:b5: 70:cc:8e:ce:c7:1c:a4:81:9f:53:15:7d:73:0d:ef:58:c1:0e: 4a:e2:df:8b:74:de:08:4d:a3:71:86:ad:9d:b5:9c:64:8f:96: e6:51:93:ad:1c:5c:0e:56:84:d8:15:49:26:83:76:56:2e:cf: fe:b6:83:d5:1f:e4:ae:7f:be:87:11:ad:f2:06:d1:e3:3f:d6: 37:9b:81:ac:29:b8:14:b0:60:af:92:5c:81:a2:57:e9:b7:7a: 34:57:7f:b2:93:96:58:f5:40:77:90:be:a9:d7:fd:0e:6d:ee: f6:23:91:fa:2a:66:8d:5d:2c:d8:8d:1e:25:31:39:c7:fe:13: 56:40:35:b1:54:ca:76:38:26:0f:24:49:b2:c3:ef:bd:6a:0e: 5e:5e:6c:a1:ce:7a:d9:ae:f5:7e:88:f5:57:94:a3:40:db:2e: 87:b9:f4:34:e5:15:ad:92:43:f8:fe:14:38:87:7e:9b:13:de: d2:9b:8a:d4:d2:00:64:98:dc:b3:5b:2c:07:e0:c1:95:b7:bb: e3:e0:d9:90:26:fe:0e:58:ad:a7:8c:6c:b3:c5:01:18:3c:30: 4a:5a:43:ba:57:62:e8:a3:cc:01:e0:45:ae:fe:32:43:2f:f5: ac:ae:06:bd -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUalGbhuVmQBBcfKzd/M+Sjx9DGiMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA1MTUxMTQzWhcNMjUwNjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMjAzOGM3NWFiZGVlZGRkMWRhMzdkMzRmNTg1NTkzNDM0 YTJmYWUzNjA1YzBiMzg2ZjRmNDM1OTIyNjU4ZjM2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZPaX9oS4i2/G1pYLiSST7qTdyaOele1SL0YV89rUklG8+ zJ36kKjb98Cw04bG/cn4TvB5D85OWbcZ9zDUZHIMvg0oioiBQVwQQ0In4c8++sxB CxBBWhPy5dtzQ/8WvGgIJwvmMvzBVhnH/Kf+5e6cnhQsY6uhdxCob2pytiDqZjSB 5uVICKP4aFV0gzTlbQE1vDSA8EoSYrtBDORz/v9XaC0kRn9U5Hvp2MxlbGyw7eUR s6oUWlgdWdBvEvYVuczQpzkulHrpKVpZAPzj1Ig65it+iWQPPxW1RIoFpA/MIWPB UVQ1CgzEK9B1zsM0XoLVAv83XqCr7XUZBdGvzklrAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUxMOeHRaLBm2Ulz2+APJh8zQSrBcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk5OGI5ZDg3LTQ2ZDctNDVkMS04NWU4LTYyZDZkODI5ODI3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB8yIDANBgkqhkiG9w0BAQsFAAOCAQEAS7mxbtovAAs25ZtY5Tg+BVq1 cMyOzsccpIGfUxV9cw3vWMEOSuLfi3TeCE2jcYatnbWcZI+W5lGTrRxcDlaE2BVJ JoN2Vi7P/raD1R/krn++hxGt8gbR4z/WN5uBrCm4FLBgr5JcgaJX6bd6NFd/spOW WPVAd5C+qdf9Dm3u9iOR+ipmjV0s2I0eJTE5x/4TVkA1sVTKdjgmDyRJssPvvWoO Xl5soc562a71foj1V5SjQNsuh7n0NOUVrZJD+P4UOId+mxPe0puK1NIAZJjcs1ss B+DBlbe74+DZkCb+Dlitp4xss8UBGDwwSlpDuldi6KPMAeBFrv4yQy/1rK4GvQ== -----END CERTIFICATE-----Generated at Mon May 12 01:42:43 2025 by rpki-client