$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8dd8af6-08d5-49b1-8425-477edba3254f.roa File: b8dd8af6-08d5-49b1-8425-477edba3254f.roa (raw, json) Hash identifier: iYkwgHgpmd5V0S3X1zoMkqvlW1JXJ4EnYeShf+6gLfw= Subject key identifier: 74:2F:24:3B:F4:FB:FD:18:BF:2F:E9:EB:60:05:4F:7A:7E:CF:2E:52 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 58B306E6285EDB7C3CE8B22D2908A529A9365013 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8dd8af6-08d5-49b1-8425-477edba3254f.roa Signing time: Sat 03 May 2025 00:21:52 +0000 ROA not before: Sat 03 May 2025 00:21:52 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:4005::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:b3:06:e6:28:5e:db:7c:3c:e8:b2:2d:29:08:a5:29:a9:36:50:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:21:52 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=b97aa9a1f463306bed501f020c277b09d7a2befe8ea28a13cf2b440c443ac5b5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:cd:16:a4:3d:0b:d1:51:ac:02:b3:30:1b:c9: aa:80:3b:59:cc:29:68:c7:90:58:5a:5e:6c:14:1f: 27:1e:5b:b5:46:55:24:c9:60:83:e1:36:9f:f0:fd: 65:3f:3e:72:2f:04:ab:35:40:8a:6d:37:9c:47:43: 32:50:e4:9b:bc:b4:4e:a0:28:06:92:48:d6:36:34: 06:60:0b:37:48:bf:d0:52:f8:2c:13:05:c8:d1:a1: bd:ba:f5:5f:1c:7e:1c:eb:df:ea:71:ac:69:7e:53: 93:af:5a:6a:f4:63:13:6a:71:b3:54:2b:aa:5d:e4: 52:3d:29:7e:42:98:43:d9:0f:1a:44:12:2b:05:12: ef:08:98:d6:9f:53:3b:bc:d0:42:de:ee:0d:30:e1: 94:ea:89:31:a2:99:8b:1e:fb:e2:e1:b0:9a:70:d6: b4:f2:d3:01:99:88:ef:cc:ec:79:d5:af:98:13:26: bb:f2:fd:aa:a9:fe:8f:3e:5b:e7:35:91:2e:bf:11: d0:76:e4:49:b2:28:9f:40:85:a6:c9:1f:00:2b:b5: f0:47:15:a3:3d:a3:1d:d6:40:69:9d:6b:a6:e9:d5: 00:80:56:18:d7:f1:6b:02:5f:8f:75:31:53:94:19: e0:d7:81:fa:70:fe:4f:3a:38:4d:38:37:d5:d7:0c: c4:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:2F:24:3B:F4:FB:FD:18:BF:2F:E9:EB:60:05:4F:7A:7E:CF:2E:52 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8dd8af6-08d5-49b1-8425-477edba3254f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:4005::/48 Signature Algorithm: sha256WithRSAEncryption 7f:f5:0a:f1:8b:e2:95:d0:72:9f:73:70:c8:8f:6b:83:99:20: d8:c1:7f:db:ac:dc:9a:52:ed:fe:fb:c4:e8:2e:5a:45:2c:f1: 96:7a:f7:ec:1f:7f:02:88:17:53:71:74:85:00:1f:23:ae:c1: a0:92:51:8e:a9:6d:79:97:d4:1f:ee:c0:76:62:c5:e5:78:a8: b3:1e:0d:98:c8:b8:fd:c5:c1:00:53:04:89:aa:36:1c:69:c8: c4:29:7d:54:ed:1d:44:1b:34:70:d5:00:25:2d:93:db:3f:80: 71:94:5a:00:0d:0a:75:86:df:3c:b8:e7:4d:f2:96:43:c2:43: 2b:62:d9:91:70:be:73:d4:4a:8a:24:0a:9e:e3:f2:38:89:f7: 9f:9e:ff:01:4d:16:96:1d:f3:19:14:35:52:3a:15:35:d1:25: 24:1c:86:78:84:1f:4a:11:26:2b:e9:13:5f:6d:f8:bb:2d:d2: eb:a1:6b:d5:d7:8e:ba:82:b1:95:c2:52:61:9a:be:2d:d1:d7: ec:ee:ae:02:23:e3:c8:37:39:e9:39:dc:f7:44:4a:8e:97:ca: 19:2b:1a:42:12:1a:51:69:ab:fe:cd:eb:7d:f3:98:62:74:b1: 91:80:b7:64:54:bc:e0:5c:92:a9:cf:c2:d0:b4:de:93:9c:41: 02:29:97:3c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWLMG5ihe23w86LItKQilKak2UBMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDAyMTUyWhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiOTdhYTlhMWY0NjMzMDZiZWQ1MDFmMDIwYzI3N2IwOWQ3 YTJiZWZlOGVhMjhhMTNjZjJiNDQwYzQ0M2FjNWI1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBzRakPQvRUawCszAbyaqAO1nMKWjHkFhaXmwUHyceW7VG VSTJYIPhNp/w/WU/PnIvBKs1QIptN5xHQzJQ5Ju8tE6gKAaSSNY2NAZgCzdIv9BS +CwTBcjRob269V8cfhzr3+pxrGl+U5OvWmr0YxNqcbNUK6pd5FI9KX5CmEPZDxpE EisFEu8ImNafUzu80ELe7g0w4ZTqiTGimYse++LhsJpw1rTy0wGZiO/M7HnVr5gT Jrvy/aqp/o8+W+c1kS6/EdB25EmyKJ9AhabJHwArtfBHFaM9ox3WQGmda6bp1QCA VhjX8WsCX491MVOUGeDXgfpw/k86OE04N9XXDMR7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUdC8kO/T7/Ri/L+nrYAVPen7PLlIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I4ZGQ4YWY2LTA4ZDUtNDliMS04NDI1LTQ3N2VkYmEzMjU0Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmIAEHQAUwDQYJKoZIhvcNAQELBQADggEBAH/1CvGL4pXQcp9zcMiPa4OZ INjBf9us3JpS7f77xOguWkUs8ZZ69+wffwKIF1NxdIUAHyOuwaCSUY6pbXmX1B/u wHZixeV4qLMeDZjIuP3FwQBTBImqNhxpyMQpfVTtHUQbNHDVACUtk9s/gHGUWgAN CnWG3zy4503ylkPCQyti2ZFwvnPUSookCp7j8jiJ95+e/wFNFpYd8xkUNVI6FTXR JSQchniEH0oRJivpE19t+Lst0uuha9XXjrqCsZXCUmGavi3R1+zurgIj48g3Oek5 3PdESo6XyhkrGkISGlFpq/7N633zmGJ0sZGAt2RUvOBckqnPwtC03pOcQQIplzw= -----END CERTIFICATE-----Generated at Sun May 11 15:55:45 2025 by rpki-client