$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c17927ec-d59b-47e8-b4fb-ae7a2ef74d14.roa File: c17927ec-d59b-47e8-b4fb-ae7a2ef74d14.roa (raw, json) Hash identifier: 5iyb0+dLFRerUuBF2VMW0VD3KjNdjcJpWBjSaJnOmgc= Subject key identifier: 9E:14:6F:0A:5D:63:15:C7:50:F0:B7:B1:78:9A:BA:4E:F3:08:48:28 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5B9FB9731DAAC9A65214FE06A4EBC857A63842F4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c17927ec-d59b-47e8-b4fb-ae7a2ef74d14.roa Signing time: Tue 22 Apr 2025 00:51:40 +0000 ROA not before: Tue 22 Apr 2025 00:51:40 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:8080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 07 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:9f:b9:73:1d:aa:c9:a6:52:14:fe:06:a4:eb:c8:57:a6:38:42:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 00:51:40 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=099974f4390204c55410c981d80f59387f81a1ce71037d7f90524bcf3e095064, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:1d:5a:b3:c2:cf:db:7c:09:d0:99:a0:17:28: 4c:b6:98:bd:1d:3c:0a:a5:b7:c2:ec:40:ec:4f:3d: 27:08:e0:47:95:82:86:a2:ef:e0:51:98:27:57:d7: 71:01:58:b3:30:e6:27:d8:1d:e8:2d:d3:88:94:fa: 95:b1:50:2b:7c:86:01:67:49:aa:05:f9:f2:14:0f: 78:0a:a0:01:25:23:0a:a5:99:22:cd:97:cb:ef:e9: 2c:fd:75:a0:8b:87:87:bc:e8:1b:2b:20:6e:f2:40: d0:75:fc:61:6e:24:f3:58:06:67:b9:d3:4d:2e:dc: 2e:fb:8a:9f:5e:59:48:18:3d:ff:7d:9d:56:d7:82: 06:a1:a2:75:da:53:47:02:bb:e5:1f:56:c9:dc:5f: d1:95:e5:c5:63:55:31:57:96:33:ef:4b:67:38:30: 33:f6:9f:6d:ed:74:f1:c1:7c:79:5e:b1:74:f9:74: 8e:f6:8b:de:96:a2:e4:7d:ba:48:c1:71:e9:d9:4a: ae:eb:86:66:68:41:b9:61:41:8e:86:26:71:d6:5a: 99:86:5f:d3:a8:cf:2b:08:ab:67:fd:a7:3d:2f:18: f0:fa:5b:88:6f:e2:eb:77:bc:de:84:b0:90:9a:b7: ab:d4:be:67:6e:c0:4c:ed:3e:df:43:45:73:a9:ad: 4f:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:14:6F:0A:5D:63:15:C7:50:F0:B7:B1:78:9A:BA:4E:F3:08:48:28 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c17927ec-d59b-47e8-b4fb-ae7a2ef74d14.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:8080::/48 Signature Algorithm: sha256WithRSAEncryption 94:9e:ad:0b:d4:c4:5a:68:8b:81:27:0f:19:7e:3d:6d:ef:ca: 7b:03:36:17:9f:db:6a:13:72:e5:55:6a:42:64:7d:64:72:fe: ee:5b:ce:98:83:f0:62:6d:a7:d1:3f:36:76:40:fb:0f:fd:6e: 33:c1:d8:d1:48:8a:b6:bd:f7:d0:82:65:73:bf:45:03:75:12: a8:13:c3:12:64:5e:91:cb:32:80:ec:ca:41:90:fc:f4:a9:4e: 88:c2:d5:23:a0:e7:ff:de:1f:cb:2f:52:b9:af:f7:8a:d2:ea: 0f:8a:01:be:7f:7c:84:58:43:38:c0:0c:7e:50:87:1c:8d:b0: 86:55:59:00:b0:74:c8:2d:4f:69:69:b2:e2:6a:33:9e:a4:4e: 87:f8:b7:68:4b:cd:cc:0b:84:3e:f9:83:1c:68:fe:d4:f2:7f: 30:c7:ea:6f:73:87:77:56:5a:e1:a3:6c:30:ab:87:e9:ae:34: cd:39:19:5f:13:a4:57:c6:d1:54:01:21:1f:9e:a6:e3:72:23: 06:3d:e8:be:ff:88:51:a4:a7:ee:5b:23:b1:7e:f9:03:c7:12: e1:39:38:26:48:62:3e:22:12:98:f6:9e:6f:90:9c:8c:a3:47: 9c:a2:17:96:1e:f6:d1:d1:df:06:d6:e7:30:4a:2d:6a:60:44: be:fa:50:ce -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUW5+5cx2qyaZSFP4GpOvIV6Y4QvQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMDA1MTQwWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOTk5NzRmNDM5MDIwNGM1NTQxMGM5ODFkODBmNTkzODdm ODFhMWNlNzEwMzdkN2Y5MDUyNGJjZjNlMDk1MDY0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2HVqzws/bfAnQmaAXKEy2mL0dPAqlt8LsQOxPPScI4EeV goai7+BRmCdX13EBWLMw5ifYHegt04iU+pWxUCt8hgFnSaoF+fIUD3gKoAElIwql mSLNl8vv6Sz9daCLh4e86BsrIG7yQNB1/GFuJPNYBme5000u3C77ip9eWUgYPf99 nVbXggahonXaU0cCu+UfVsncX9GV5cVjVTFXljPvS2c4MDP2n23tdPHBfHlesXT5 dI72i96WouR9ukjBcenZSq7rhmZoQblhQY6GJnHWWpmGX9OozysIq2f9pz0vGPD6 W4hv4ut3vN6EsJCat6vUvmduwEztPt9DRXOprU/DAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUnhRvCl1jFcdQ8LexeJq6TvMISCgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MxNzkyN2VjLWQ1OWItNDdlOC1iNGZiLWFlN2EyZWY3NGQxNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AgIAwDQYJKoZIhvcNAQELBQADggEBAJSerQvUxFpoi4EnDxl+PW3v ynsDNhef22oTcuVVakJkfWRy/u5bzpiD8GJtp9E/NnZA+w/9bjPB2NFIira999CC ZXO/RQN1EqgTwxJkXpHLMoDsykGQ/PSpTojC1SOg5//eH8svUrmv94rS6g+KAb5/ fIRYQzjADH5QhxyNsIZVWQCwdMgtT2lpsuJqM56kTof4t2hLzcwLhD75gxxo/tTy fzDH6m9zh3dWWuGjbDCrh+muNM05GV8TpFfG0VQBIR+epuNyIwY96L7/iFGkp+5b I7F++QPHEuE5OCZIYj4iEpj2nm+QnIyjR5yiF5Ye9tHR3wbW5zBKLWpgRL76UM4= -----END CERTIFICATE-----Generated at Tue May 6 02:59:15 2025 by rpki-client