$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1c25f49-463e-4031-8326-5279365c1126.roa File: b1c25f49-463e-4031-8326-5279365c1126.roa (raw, json) Hash identifier: 4hhi9M2sttaQwMsNsOYKIEOga0E56WGu+tvYbNPfze8= Subject key identifier: 2C:44:AE:E7:AF:FC:8B:51:DB:06:B6:29:87:C1:FA:8C:3B:F7:04:1B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2C3B8F22217ABCE39009FCF0D4DEBDD5904ADCFE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1c25f49-463e-4031-8326-5279365c1126.roa Signing time: Sat 03 May 2025 00:10:48 +0000 ROA not before: Sat 03 May 2025 00:10:48 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1fa0:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 16 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:3b:8f:22:21:7a:bc:e3:90:09:fc:f0:d4:de:bd:d5:90:4a:dc:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:10:48 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=6b429f945b4d29c50a6639d377d921fcda4e436aa744f3b3c8fd9557f97575f0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:6e:e9:8b:ca:de:fb:3f:14:88:cb:c1:18:47: 3f:a8:e4:d9:3c:7c:0c:01:a1:ac:3b:e4:f1:05:d2: c2:ff:54:48:0e:e6:a1:eb:1e:5f:3e:ea:35:dc:b3: 08:aa:eb:e0:3f:dd:d1:b3:05:bb:bd:71:c8:7b:26: fb:2f:e7:ad:b6:db:a0:90:35:ec:12:0a:8f:37:ec: 94:88:34:1e:13:ba:2c:43:51:55:0d:84:d8:5d:5d: bc:24:5c:f9:7d:c6:70:dc:3c:c5:a4:9b:4f:14:33: 52:1c:19:1b:6b:5a:24:73:95:96:b4:6f:be:fe:31: 4b:99:06:e4:2b:90:f9:b4:4c:90:72:1a:a8:8a:fc: 44:f7:61:f3:e5:c1:19:9f:80:25:c3:85:02:55:80: 4b:15:b0:a3:92:62:91:eb:3c:45:7b:a2:95:31:11: f0:72:87:5b:85:ed:0b:8c:19:96:3c:7e:c0:44:dc: ea:3d:ea:bb:07:f6:ff:0e:d9:df:d2:05:eb:f0:ac: ca:0c:a3:63:39:df:7e:62:f4:2f:83:2c:f0:bf:d0: 7e:ad:a8:18:fa:87:af:d8:cd:1d:75:d5:48:4b:01: db:8c:5e:ea:f7:1a:88:ff:e7:af:f6:94:7d:b8:0a: ca:9a:81:4b:84:d3:60:7a:a3:b9:4b:e3:77:ef:36: 5a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:44:AE:E7:AF:FC:8B:51:DB:06:B6:29:87:C1:FA:8C:3B:F7:04:1B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1c25f49-463e-4031-8326-5279365c1126.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fa0:2000::/40 Signature Algorithm: sha256WithRSAEncryption 9d:ee:f9:56:75:13:38:8e:30:6e:c1:5e:28:2c:da:f1:4b:2c: 28:fd:59:9d:9f:b9:49:d7:d9:65:7d:3b:06:a0:1b:11:b5:f8: 43:d4:df:52:58:e9:ef:f4:59:e4:e2:8c:82:52:66:45:ff:fc: ce:f6:1a:69:b9:62:67:74:46:ad:9b:f6:91:b0:68:07:b8:fa: 11:88:ff:f3:31:ac:b3:c9:e3:7a:34:8e:5e:46:4b:07:83:42: 09:c6:cb:df:bb:18:26:d6:0b:87:11:ff:e2:5a:3a:d2:6d:b7: db:0d:ea:f5:31:32:d5:2b:7e:3b:85:aa:82:cd:8e:47:e3:2e: f5:0d:b9:20:15:86:58:5a:0b:4f:fa:79:d0:74:37:8a:e3:89: 96:f7:b9:fc:09:39:55:6f:3b:7b:b7:1f:2e:39:9c:85:03:c4: 12:21:de:19:34:44:cd:91:a0:82:ed:aa:98:a4:79:94:42:e4: 70:88:9d:ff:41:56:e8:a9:c5:ee:1f:87:fa:a8:0e:b4:20:08: 2f:61:52:2f:f6:18:ad:ab:af:f4:cb:f6:af:76:53:68:b8:0b: ad:35:71:68:91:e0:8c:f3:54:25:79:15:6e:80:f5:3f:cd:22: 92:b1:43:3b:e8:b5:46:27:8e:6e:c1:68:c9:de:81:7f:c7:f0: 1e:61:c6:5d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIULDuPIiF6vOOQCfzw1N691ZBK3P4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDAxMDQ4WhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YjQyOWY5NDViNGQyOWM1MGE2NjM5ZDM3N2Q5MjFmY2Rh NGU0MzZhYTc0NGYzYjNjOGZkOTU1N2Y5NzU3NWYwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCJbumLyt77PxSIy8EYRz+o5Nk8fAwBoaw75PEF0sL/VEgO 5qHrHl8+6jXcswiq6+A/3dGzBbu9cch7Jvsv562226CQNewSCo837JSINB4TuixD UVUNhNhdXbwkXPl9xnDcPMWkm08UM1IcGRtrWiRzlZa0b77+MUuZBuQrkPm0TJBy GqiK/ET3YfPlwRmfgCXDhQJVgEsVsKOSYpHrPEV7opUxEfByh1uF7QuMGZY8fsBE 3Oo96rsH9v8O2d/SBevwrMoMo2M5335i9C+DLPC/0H6tqBj6h6/YzR111UhLAduM Xur3Goj/56/2lH24CsqagUuE02B6o7lL43fvNlpPAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQULESu56/8i1HbBrYph8H6jDv3BBswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IxYzI1ZjQ5LTQ2M2UtNDAzMS04MzI2LTUyNzkzNjVjMTEyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+gIDANBgkqhkiG9w0BAQsFAAOCAQEAne75VnUTOI4wbsFeKCza8Uss KP1ZnZ+5SdfZZX07BqAbEbX4Q9TfUljp7/RZ5OKMglJmRf/8zvYaabliZ3RGrZv2 kbBoB7j6EYj/8zGss8njejSOXkZLB4NCCcbL37sYJtYLhxH/4lo60m232w3q9TEy 1St+O4Wqgs2OR+Mu9Q25IBWGWFoLT/p50HQ3iuOJlve5/Ak5VW87e7cfLjmchQPE EiHeGTREzZGggu2qmKR5lELkcIid/0FW6KnF7h+H+qgOtCAIL2FSL/YYrauv9Mv2 r3ZTaLgLrTVxaJHgjPNUJXkVboD1P80ikrFDO+i1RieObsFoyd6Bf8fwHmHGXQ== -----END CERTIFICATE-----Generated at Wed May 14 22:59:27 2025 by rpki-client