$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9df526d6-2843-463e-9ea7-c558b6deb39e.roa File: 9df526d6-2843-463e-9ea7-c558b6deb39e.roa (raw, json) Hash identifier: AM1gChwHznFSFw03IElwvcW10Oq6v1XWmDfQON1diJo= Subject key identifier: 04:DF:6B:DC:D6:65:A0:4B:78:C4:30:64:41:A0:CF:78:7C:01:18:E8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 16906A869EE158A1A6D5477749C6EB1F62B00BF8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9df526d6-2843-463e-9ea7-c558b6deb39e.roa Signing time: Tue 22 Apr 2025 16:01:27 +0000 ROA not before: Tue 22 Apr 2025 16:01:27 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f38:4000::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:90:6a:86:9e:e1:58:a1:a6:d5:47:77:49:c6:eb:1f:62:b0:0b:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:01:27 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=2dcca2762123bd9acddfec0167a0565a5bff628538d44ba4bafb9c5d3807d7aa, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f9:00:72:77:0f:c5:88:41:08:6e:bc:20:c8: f8:a2:e5:21:e1:bd:83:eb:08:9f:4a:ef:19:93:9e: 13:3c:f5:6e:cf:ce:7c:6a:6d:0d:84:8b:0d:c0:f1: a8:be:5e:6f:b7:fd:2d:bf:10:8c:59:ab:eb:5f:2a: 98:d7:c1:56:55:7a:d1:a0:65:6e:32:da:7b:c1:8f: c1:f3:10:bf:10:2c:0e:77:a7:93:92:a0:1c:e5:bd: f4:cf:ef:7e:20:f3:f0:f2:59:be:33:5d:c2:0b:0e: 54:01:48:54:e4:46:d7:27:ee:5b:71:f5:d0:25:cd: 21:8e:1a:de:a6:1d:54:ef:8a:78:cb:53:cc:e2:91: a6:71:f5:d6:73:76:73:f4:a6:23:96:f2:27:24:4f: 01:61:54:e8:5b:95:8d:b2:9e:3b:76:e4:b1:86:54: 6e:d0:fd:be:1b:c0:8d:59:d7:a3:19:a6:90:cc:31: dc:2e:2a:32:f1:4a:b4:d0:d0:3d:c6:86:60:36:35: dc:08:d2:b1:e3:39:df:aa:a9:0b:db:33:2c:f6:18: 76:79:35:f7:22:fe:19:0b:85:09:0d:ec:d0:4c:cc: 51:d3:cb:d9:e0:30:47:ca:77:a8:a3:6b:38:3f:de: 35:d3:07:09:ce:4b:a9:36:b0:cf:42:86:6a:dc:1a: c1:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:DF:6B:DC:D6:65:A0:4B:78:C4:30:64:41:A0:CF:78:7C:01:18:E8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9df526d6-2843-463e-9ea7-c558b6deb39e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f38:4000::/39 Signature Algorithm: sha256WithRSAEncryption 20:53:4d:42:81:ff:44:ef:29:50:6a:19:c8:d1:44:8f:b5:98: 67:35:a4:c2:6c:76:6e:63:ef:a1:ef:62:90:19:66:d1:3a:9b: 39:b3:19:71:0c:61:78:a8:80:09:16:79:f2:38:e8:c1:92:9c: 56:87:98:c9:55:2c:e9:63:ee:1b:48:54:5d:65:fa:c9:49:dd: 34:81:75:85:e3:23:21:8c:31:7f:a5:26:a9:aa:02:14:50:a8: 43:70:80:11:5a:89:4a:ce:d2:14:fa:88:e9:0f:51:e7:6f:62: 21:cd:ba:7b:9f:90:32:98:ff:a5:20:0d:bc:49:fe:df:4f:04: 5e:c8:fa:28:f2:11:cd:e1:21:5c:1e:f6:c8:85:db:80:51:67: 1a:c1:f1:22:46:a6:dc:9f:0c:9b:e8:4c:6a:a9:ed:73:88:32: a8:e5:3c:59:98:80:d0:47:c1:ba:6e:7e:80:8c:c2:45:4d:2e: c2:f6:a1:56:b6:0b:a1:34:9f:00:63:96:5e:c7:65:9c:21:94: 9d:90:c7:43:9f:02:89:fa:0d:3d:39:54:a0:7c:96:29:fe:d3: 74:8d:84:d1:b5:4c:19:a1:8d:aa:9e:46:5c:5c:8c:44:8a:82: 3a:d4:79:44:8b:b9:27:7b:84:e9:2f:e5:b5:f6:c7:f7:e8:6d: 3f:ba:23:2b -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUFpBqhp7hWKGm1Ud3ScbrH2KwC/gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTYwMTI3WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZGNjYTI3NjIxMjNiZDlhY2RkZmVjMDE2N2EwNTY1YTVi ZmY2Mjg1MzhkNDRiYTRiYWZiOWM1ZDM4MDdkN2FhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDS+QBydw/FiEEIbrwgyPii5SHhvYPrCJ9K7xmTnhM89W7P znxqbQ2Eiw3A8ai+Xm+3/S2/EIxZq+tfKpjXwVZVetGgZW4y2nvBj8HzEL8QLA53 p5OSoBzlvfTP734g8/DyWb4zXcILDlQBSFTkRtcn7ltx9dAlzSGOGt6mHVTvinjL U8zikaZx9dZzdnP0piOW8ickTwFhVOhblY2ynjt25LGGVG7Q/b4bwI1Z16MZppDM MdwuKjLxSrTQ0D3GhmA2NdwI0rHjOd+qqQvbMyz2GHZ5Nfci/hkLhQkN7NBMzFHT y9ngMEfKd6ijazg/3jXTBwnOS6k2sM9ChmrcGsHJAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUBN9r3NZloEt4xDBkQaDPeHwBGOgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlkZjUyNmQ2LTI4NDMtNDYzZS05ZWE3LWM1NThiNmRlYjM5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB84QDANBgkqhkiG9w0BAQsFAAOCAQEAIFNNQoH/RO8pUGoZyNFEj7WY ZzWkwmx2bmPvoe9ikBlm0TqbObMZcQxheKiACRZ58jjowZKcVoeYyVUs6WPuG0hU XWX6yUndNIF1heMjIYwxf6UmqaoCFFCoQ3CAEVqJSs7SFPqI6Q9R529iIc26e5+Q Mpj/pSANvEn+308EXsj6KPIRzeEhXB72yIXbgFFnGsHxIkam3J8Mm+hMaqntc4gy qOU8WZiA0EfBum5+gIzCRU0uwvahVrYLoTSfAGOWXsdlnCGUnZDHQ58CifoNPTlU oHyWKf7TdI2E0bVMGaGNqp5GXFyMRIqCOtR5RIu5J3uE6S/ltfbH9+htP7ojKw== -----END CERTIFICATE-----Generated at Sun May 11 12:06:01 2025 by rpki-client