$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4c6cd78-6139-435b-a258-a601228d052a.roa File: b4c6cd78-6139-435b-a258-a601228d052a.roa (raw, json) Hash identifier: TBjRWBiDe32Flpt9+XekYhWqPebE8xlo2QI47hOJgXE= Subject key identifier: 1B:6C:AD:26:20:CF:14:BA:04:91:06:2B:F6:32:B4:5F:12:ED:72:57 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1B3324CFF0090295042ED1C7CC475EF96A8A8FF3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4c6cd78-6139-435b-a258-a601228d052a.roa Signing time: Tue 22 Apr 2025 16:21:08 +0000 ROA not before: Tue 22 Apr 2025 16:21:08 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f36:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:33:24:cf:f0:09:02:95:04:2e:d1:c7:cc:47:5e:f9:6a:8a:8f:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 16:21:08 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=1ca60ee7adbf81ab4db02883847e49fad876c125d6616656131fd8c5b91c6071, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:81:01:b7:3b:30:3c:ad:fc:0f:72:9a:fa:71: f3:a4:af:31:6d:d0:6c:ab:9a:62:f8:c3:8f:c1:55: cc:ca:26:3e:eb:72:e6:e6:84:f7:0e:39:2f:9a:67: d7:0f:b9:b7:f8:61:6f:fa:df:d7:d6:20:8e:ec:72: 30:9c:ea:f4:e3:ce:8b:00:3e:e5:61:75:39:ed:60: 1e:e7:6a:1b:aa:68:20:f3:07:5b:6a:60:3c:da:c8: f6:37:33:53:1f:b8:c5:06:10:fb:4b:ee:c1:58:df: 3f:a5:f7:51:49:8c:42:c2:6d:1b:7b:59:3b:38:d9: 22:78:a4:e2:e2:c0:75:44:25:04:9b:89:2c:46:47: 5a:f1:08:95:ab:56:7a:25:8d:a6:82:c1:8b:e6:34: d5:a7:b0:dd:84:0c:3b:4f:15:52:37:ef:ce:92:86: fa:0d:89:c9:56:ec:50:64:fa:68:87:85:9e:f9:04: 93:87:36:7b:68:f6:a1:6b:5f:e6:30:09:5c:37:39: c2:71:2e:d8:bf:4f:62:f7:f6:cf:9d:4a:75:4d:fa: a7:8f:b9:10:8e:bd:77:3e:58:45:33:6d:00:9c:63: 28:aa:5d:42:14:a6:a6:b9:5a:a2:51:d6:a6:ec:82: 4d:d2:78:a8:ad:7d:21:13:21:c9:03:60:2c:33:f1: 06:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:6C:AD:26:20:CF:14:BA:04:91:06:2B:F6:32:B4:5F:12:ED:72:57 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4c6cd78-6139-435b-a258-a601228d052a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f36:6000::/40 Signature Algorithm: sha256WithRSAEncryption 5d:c1:7f:9f:7c:7c:fa:49:c8:e7:9f:bf:b8:fd:4a:56:b7:ca: 81:1b:8f:30:e9:c1:e3:fa:29:1f:97:86:d8:25:c3:20:e2:a1: 10:02:3c:bf:25:18:00:eb:0e:69:3c:8b:e5:44:d1:19:86:4a: 76:39:2a:0c:6d:97:c2:cd:e5:7b:93:32:ed:08:a8:05:5e:cf: c2:9e:5c:70:b3:74:d8:66:09:8a:4c:69:f4:92:fe:e5:bb:87: ee:45:66:4c:cb:60:76:98:8d:59:f8:26:69:b7:38:da:5c:d7: 55:74:8b:e5:f7:6e:47:b7:d6:f7:c0:f5:2c:68:76:be:37:cc: d2:0e:2b:9f:7f:a2:a5:c5:3c:9b:27:da:eb:6f:53:b7:1b:6f: a8:1a:9d:bd:b7:01:06:40:05:60:ec:10:2c:de:97:45:ee:56: ba:07:ef:7a:e0:48:84:14:80:be:51:55:a6:a2:44:6d:35:6a: 0b:8e:69:ff:bd:ff:27:a5:30:cc:97:71:db:d5:e9:69:ff:f2: e2:91:55:7e:ce:15:f0:76:5f:9a:7f:15:df:6b:7f:3c:ed:9a: fc:8c:56:80:77:91:e7:e8:84:42:6c:e0:15:e0:5a:ce:86:f9: 0f:03:58:6a:fb:ae:6b:24:54:8f:09:a3:89:70:5a:2b:41:f0: d7:e9:4e:4a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUGzMkz/AJApUELtHHzEde+WqKj/MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTYyMTA4WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxY2E2MGVlN2FkYmY4MWFiNGRiMDI4ODM4NDdlNDlmYWQ4 NzZjMTI1ZDY2MTY2NTYxMzFmZDhjNWI5MWM2MDcxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCogQG3OzA8rfwPcpr6cfOkrzFt0GyrmmL4w4/BVczKJj7r cubmhPcOOS+aZ9cPubf4YW/639fWII7scjCc6vTjzosAPuVhdTntYB7nahuqaCDz B1tqYDzayPY3M1MfuMUGEPtL7sFY3z+l91FJjELCbRt7WTs42SJ4pOLiwHVEJQSb iSxGR1rxCJWrVnoljaaCwYvmNNWnsN2EDDtPFVI3786ShvoNiclW7FBk+miHhZ75 BJOHNnto9qFrX+YwCVw3OcJxLti/T2L39s+dSnVN+qePuRCOvXc+WEUzbQCcYyiq XUIUpqa5WqJR1qbsgk3SeKitfSETIckDYCwz8QZ1AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUG2ytJiDPFLoEkQYr9jK0XxLtclcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I0YzZjZDc4LTYxMzktNDM1Yi1hMjU4LWE2MDEyMjhkMDUyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB82YDANBgkqhkiG9w0BAQsFAAOCAQEAXcF/n3x8+knI55+/uP1KVrfK gRuPMOnB4/opH5eG2CXDIOKhEAI8vyUYAOsOaTyL5UTRGYZKdjkqDG2Xws3le5My 7QioBV7Pwp5ccLN02GYJikxp9JL+5buH7kVmTMtgdpiNWfgmabc42lzXVXSL5fdu R7fW98D1LGh2vjfM0g4rn3+ipcU8myfa629TtxtvqBqdvbcBBkAFYOwQLN6XRe5W ugfveuBIhBSAvlFVpqJEbTVqC45p/73/J6UwzJdx29Xpaf/y4pFVfs4V8HZfmn8V 32t/PO2a/IxWgHeR5+iEQmzgFeBazob5DwNYavuuayRUjwmjiXBaK0Hw1+lOSg== -----END CERTIFICATE-----Generated at Sat May 10 18:55:41 2025 by rpki-client