$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab98bfdb-9af4-412f-87c6-d3448c52456d.roa File: ab98bfdb-9af4-412f-87c6-d3448c52456d.roa (raw, json) Hash identifier: I9pC7Yl1mdeDzLkMIfsQC1OZX3YlN4SdOoEai+eNcAk= Subject key identifier: BB:E2:10:46:73:FC:A5:88:3A:66:6F:9B:06:9E:52:3F:32:DA:70:86 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 565253D5E90BF6472B6741B673AEA709AD7FEE9F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab98bfdb-9af4-412f-87c6-d3448c52456d.roa Signing time: Sat 03 May 2025 00:11:47 +0000 ROA not before: Sat 03 May 2025 00:11:47 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:8143::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:52:53:d5:e9:0b:f6:47:2b:67:41:b6:73:ae:a7:09:ad:7f:ee:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:11:47 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=2419762b8a4777ffba1aed046f0eb32730d84b4ed3085e64bc1abe8ef776eedf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e4:29:9f:22:1d:4d:0e:69:bd:02:be:00:15: 29:54:4d:c4:ef:8e:c9:ba:fd:01:d9:06:80:45:0a: 95:a3:fb:27:ef:87:fe:3c:80:02:a4:7f:38:8d:1d: c1:8b:ef:f2:dc:82:55:44:60:66:52:f0:65:09:43: 4f:8d:1f:ab:5a:50:54:4c:95:9c:ca:13:70:65:45: 26:9c:01:5b:cc:1e:15:11:48:6d:7f:05:34:0c:eb: 4b:f1:15:1a:17:f0:df:6c:36:fc:86:00:04:59:f7: 83:27:9d:a1:ae:eb:15:4c:58:5e:4e:b0:21:10:0f: 90:16:6e:80:3c:5d:48:00:c0:e2:82:1e:03:f9:a8: 7f:48:e0:7b:81:92:99:42:2d:fe:10:28:b9:13:52: c5:50:a4:69:e1:b3:4a:47:58:51:c1:7d:09:73:b9: ae:7c:6e:16:9a:f4:ac:41:34:da:4c:9a:2d:9a:6a: 5f:41:a0:2c:15:c3:99:30:2a:ac:21:0c:ab:91:0f: 8b:a5:6f:4c:81:1f:dc:ce:8d:83:42:e3:e3:98:ac: 7f:92:b1:08:cf:5c:58:c9:64:6b:78:f4:ff:ee:d2: de:82:04:34:3f:68:58:b6:b0:8f:53:fe:e0:3e:03: 89:3b:72:93:39:28:95:66:6c:52:4c:f8:6a:4a:11: 61:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:E2:10:46:73:FC:A5:88:3A:66:6F:9B:06:9E:52:3F:32:DA:70:86 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab98bfdb-9af4-412f-87c6-d3448c52456d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:8143::/48 Signature Algorithm: sha256WithRSAEncryption 26:04:7e:33:3b:38:53:24:38:f9:d6:70:f1:29:21:2b:9f:0f: 77:0c:52:e1:95:05:c3:d5:68:90:87:30:ea:ed:0d:66:4e:bf: 00:fe:78:d9:37:2d:40:8a:f1:88:63:25:ab:1a:49:1a:f9:68: d8:62:e0:3b:37:97:f1:f0:3e:d3:80:a8:a3:b5:fe:75:4e:bc: 02:67:8f:74:e0:39:1d:13:88:42:86:d2:e2:84:bf:df:9f:98: be:70:80:7d:00:34:01:ec:8e:40:33:d0:f4:dc:cc:93:87:b0: 87:19:3f:12:11:7b:33:2e:a7:a4:88:3c:64:35:c1:a8:b7:39: 52:f2:15:9c:aa:fc:da:8e:e3:0b:80:4b:b6:69:46:35:19:37: 92:ac:4c:41:56:a7:b8:93:10:38:c4:db:59:74:37:c7:e7:5f: 64:a7:ff:70:fc:b8:0e:a1:fa:1b:d5:2a:6d:32:da:2f:5f:ac: f4:7d:c5:8c:f3:33:47:51:ec:ca:27:ff:0e:6d:24:6f:a3:7a: 00:95:40:fd:63:2a:dc:c8:5f:42:42:36:73:76:33:fd:a6:94: f7:ed:7f:21:fb:77:7b:8a:32:3d:f3:d2:28:bf:be:11:df:19: 1b:c4:a8:a3:70:1c:9f:2b:08:87:ad:64:d3:b0:f2:6f:85:80: ab:22:b9:3a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVlJT1ekL9kcrZ0G2c66nCa1/7p8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDAxMTQ3WhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNDE5NzYyYjhhNDc3N2ZmYmExYWVkMDQ2ZjBlYjMyNzMw ZDg0YjRlZDMwODVlNjRiYzFhYmU4ZWY3NzZlZWRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDA5CmfIh1NDmm9Ar4AFSlUTcTvjsm6/QHZBoBFCpWj+yfv h/48gAKkfziNHcGL7/LcglVEYGZS8GUJQ0+NH6taUFRMlZzKE3BlRSacAVvMHhUR SG1/BTQM60vxFRoX8N9sNvyGAARZ94MnnaGu6xVMWF5OsCEQD5AWboA8XUgAwOKC HgP5qH9I4HuBkplCLf4QKLkTUsVQpGnhs0pHWFHBfQlzua58bhaa9KxBNNpMmi2a al9BoCwVw5kwKqwhDKuRD4ulb0yBH9zOjYNC4+OYrH+SsQjPXFjJZGt49P/u0t6C BDQ/aFi2sI9T/uA+A4k7cpM5KJVmbFJM+GpKEWEZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUu+IQRnP8pYg6Zm+bBp5SPzLacIYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FiOThiZmRiLTlhZjQtNDEyZi04N2M2LWQzNDQ4YzUyNDU2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9gUMwDQYJKoZIhvcNAQELBQADggEBACYEfjM7OFMkOPnWcPEpISuf D3cMUuGVBcPVaJCHMOrtDWZOvwD+eNk3LUCK8YhjJasaSRr5aNhi4Ds3l/HwPtOA qKO1/nVOvAJnj3TgOR0TiEKG0uKEv9+fmL5wgH0ANAHsjkAz0PTczJOHsIcZPxIR ezMup6SIPGQ1wai3OVLyFZyq/NqO4wuAS7ZpRjUZN5KsTEFWp7iTEDjE21l0N8fn X2Sn/3D8uA6h+hvVKm0y2i9frPR9xYzzM0dR7Mon/w5tJG+jegCVQP1jKtzIX0JC NnN2M/2mlPftfyH7d3uKMj3z0ii/vhHfGRvEqKNwHJ8rCIetZNOw8m+FgKsiuTo= -----END CERTIFICATE-----Generated at Mon May 5 05:03:20 2025 by rpki-client