$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8f71b7e-9974-4779-8c24-e352d24c707e.roa File: c8f71b7e-9974-4779-8c24-e352d24c707e.roa (raw, json) Hash identifier: j36hAFiEg+7Y7pvgYL0oiZnZyEHYGSacZgMgkqQm50A= Subject key identifier: 70:73:D9:C9:89:52:90:00:D5:CE:A7:20:91:65:D3:C4:98:83:7B:04 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 31A207D1E91F2D6460575D643486FDE0C10282A2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8f71b7e-9974-4779-8c24-e352d24c707e.roa Signing time: Sat 03 May 2025 00:21:16 +0000 ROA not before: Sat 03 May 2025 00:21:16 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff8:5000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 07 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:a2:07:d1:e9:1f:2d:64:60:57:5d:64:34:86:fd:e0:c1:02:82:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:21:16 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=fd0659ddc56f1a7ab74ae65c48fbb209084e691e340a1399ab57ae489c2fbbc6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:85:1c:d4:fa:c2:3c:34:3f:88:c9:b6:10:71: 66:82:3f:0d:bd:cc:2f:83:a5:4f:c2:81:d2:1a:71: 89:40:b4:5c:6d:a4:25:64:52:33:68:e9:9a:cb:fb: a6:48:02:7e:08:71:aa:c5:b2:f5:51:5a:58:82:cb: bc:ca:13:f9:89:43:c5:2b:f0:34:33:fa:f2:b6:fd: 9a:90:0e:d6:93:65:64:96:29:ab:d5:6c:bd:57:b2: 82:ff:ad:ef:a4:9b:bb:73:c0:dc:9b:9c:e4:dd:1f: 90:ce:3f:be:28:b6:0f:ed:73:e6:86:db:3a:a8:6d: 77:88:10:e2:e6:26:98:fd:20:2a:3b:5c:82:24:3d: 1e:60:7c:11:8d:b6:26:08:39:f2:2a:f6:bd:8e:66: bd:e3:5e:8b:97:80:60:da:f7:bb:ef:88:a7:3f:5d: b1:33:89:32:d2:b9:49:1d:af:fb:05:2b:16:61:0f: 9d:51:13:6c:8d:77:9c:cf:1f:76:66:c2:1e:82:75: 49:8f:8a:46:36:e7:ad:e4:59:de:eb:88:5a:6c:ce: d3:5d:3a:56:68:72:ae:1c:a0:b5:39:5b:61:bd:10: 9a:91:7b:eb:f4:07:13:3e:11:b6:0e:0c:f5:fd:77: 16:a0:89:cc:c9:2a:0e:a1:d8:f6:1f:02:02:f5:f7: 42:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:73:D9:C9:89:52:90:00:D5:CE:A7:20:91:65:D3:C4:98:83:7B:04 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8f71b7e-9974-4779-8c24-e352d24c707e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff8:5000::/36 Signature Algorithm: sha256WithRSAEncryption ba:ce:66:b1:1d:4f:e8:17:6f:12:bc:d2:4e:dd:47:e2:ed:c9: 49:ee:d1:c8:9e:53:23:65:29:73:d5:c9:f6:cb:d4:f6:4a:5a: 03:14:84:00:e8:72:0c:b7:c5:83:c6:f2:5e:b0:38:10:8c:26: 47:a2:9f:b8:31:39:81:56:26:90:dc:48:91:32:a0:54:6e:d0: 28:b9:66:0e:c3:61:04:37:2f:d5:7c:b2:82:60:73:d9:cd:6a: e7:df:f6:0c:c0:bc:92:f1:dd:50:85:69:5c:51:94:22:2b:38: 27:19:cc:aa:12:05:7e:c0:2a:27:0b:26:19:45:67:5b:b4:91: 01:71:26:ed:97:58:c4:9b:f6:2e:ff:4a:46:22:b7:c0:b5:f1: 95:c7:23:9e:04:ab:06:04:62:3d:65:37:3e:a0:a0:03:0b:1f: e7:c7:18:7b:93:0f:34:80:ba:d8:c3:4e:71:be:fd:62:68:5f: ba:30:af:5e:bb:18:1f:cb:e3:3c:ba:d9:68:e8:c7:79:cb:68: 49:4c:12:11:da:b2:2f:72:c2:53:c1:77:72:e8:4e:ce:af:2d: cd:c0:21:6b:48:61:25:dc:ad:c9:ec:da:d0:fe:8c:b4:aa:be: 0b:0a:ae:e3:6c:bf:ea:84:c6:20:91:01:e3:ca:3d:63:62:41: be:21:67:81 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMaIH0ekfLWRgV11kNIb94MECgqIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDAyMTE2WhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZDA2NTlkZGM1NmYxYTdhYjc0YWU2NWM0OGZiYjIwOTA4 NGU2OTFlMzQwYTEzOTlhYjU3YWU0ODljMmZiYmM2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZhRzU+sI8ND+IybYQcWaCPw29zC+DpU/CgdIacYlAtFxt pCVkUjNo6ZrL+6ZIAn4IcarFsvVRWliCy7zKE/mJQ8Ur8DQz+vK2/ZqQDtaTZWSW KavVbL1XsoL/re+km7tzwNybnOTdH5DOP74otg/tc+aG2zqobXeIEOLmJpj9ICo7 XIIkPR5gfBGNtiYIOfIq9r2OZr3jXouXgGDa97vviKc/XbEziTLSuUkdr/sFKxZh D51RE2yNd5zPH3Zmwh6CdUmPikY2563kWd7riFpsztNdOlZocq4coLU5W2G9EJqR e+v0BxM+EbYODPX9dxagiczJKg6h2PYfAgL190KZAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUcHPZyYlSkADVzqcgkWXTxJiDewQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M4ZjcxYjdlLTk5NzQtNDc3OS04YzI0LWUzNTJkMjRjNzA3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB/4UDANBgkqhkiG9w0BAQsFAAOCAQEAus5msR1P6BdvErzSTt1H4u3J Se7RyJ5TI2Upc9XJ9svU9kpaAxSEAOhyDLfFg8byXrA4EIwmR6KfuDE5gVYmkNxI kTKgVG7QKLlmDsNhBDcv1XyygmBz2c1q59/2DMC8kvHdUIVpXFGUIis4JxnMqhIF fsAqJwsmGUVnW7SRAXEm7ZdYxJv2Lv9KRiK3wLXxlccjngSrBgRiPWU3PqCgAwsf 58cYe5MPNIC62MNOcb79YmhfujCvXrsYH8vjPLrZaOjHectoSUwSEdqyL3LCU8F3 cuhOzq8tzcAha0hhJdytyeza0P6MtKq+Cwqu42y/6oTGIJEB48o9Y2JBviFngQ== -----END CERTIFICATE-----Generated at Tue May 6 13:11:01 2025 by rpki-client