$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ceb67e80-419a-468c-9de9-477adbe51133.roa File: ceb67e80-419a-468c-9de9-477adbe51133.roa (raw, json) Hash identifier: Ivb+8/w2hLxxSGvtPEfy/gKb/6VceNp469ama19EH9s= Subject key identifier: 10:D6:6F:76:C3:A0:50:4A:9F:CC:F7:3B:4C:8A:FC:B3:90:9A:85:55 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 38EF282B78ACD26A3FBFD89472C82A2B8D692373 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ceb67e80-419a-468c-9de9-477adbe51133.roa Signing time: Sat 03 May 2025 00:10:49 +0000 ROA not before: Sat 03 May 2025 00:10:49 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffa:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:ef:28:2b:78:ac:d2:6a:3f:bf:d8:94:72:c8:2a:2b:8d:69:23:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:10:49 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=bac265eecc4efa06f2fb0a35f009b8304aa9a2f77d81cd6e8a742a26e7c00f95, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:63:d4:08:6b:e0:1e:f5:9c:19:26:3c:3e:da: c5:99:44:8d:62:bc:9e:5f:08:6f:46:32:58:a7:2c: fd:7d:eb:33:4e:6e:e5:54:1f:57:04:c6:15:13:1e: df:49:f3:8b:d5:08:ac:2e:2e:2e:e5:c3:77:03:9b: 30:36:09:29:f2:b2:e8:9b:1b:9b:96:ea:71:db:e2: 9f:c9:05:91:c3:53:55:e8:62:9f:94:09:70:7e:8f: 83:29:24:37:d0:f9:dd:7c:76:5a:9c:06:28:71:8c: a0:d4:dc:7f:0e:ff:f9:23:a3:d5:9a:7d:50:8e:64: d0:9f:02:60:25:c6:87:d4:89:e7:e3:ec:32:55:ad: ec:0c:d2:60:31:84:ea:45:23:34:b9:e9:08:19:4f: d6:d6:ac:1d:23:19:a3:d8:86:88:fa:75:7c:f9:a2: 96:1d:06:ba:bf:68:a9:cb:8e:0c:c6:4e:f0:ef:b3: a6:35:5c:cc:9b:0a:71:74:3c:09:ad:b2:d7:d3:e1: 7b:62:6f:ac:fb:b3:b8:a3:8d:cc:b4:1c:bb:38:8c: 96:c5:49:99:7a:2d:e0:7b:57:23:af:f9:05:d8:e3: 42:a3:5f:5b:67:a3:e6:63:8d:cc:8a:b0:7e:89:e3: 92:e2:78:f2:fa:c9:5e:03:cc:07:c9:7b:0c:09:c2: 94:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:D6:6F:76:C3:A0:50:4A:9F:CC:F7:3B:4C:8A:FC:B3:90:9A:85:55 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ceb67e80-419a-468c-9de9-477adbe51133.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffa:5000::/40 Signature Algorithm: sha256WithRSAEncryption d7:df:22:52:8a:4f:97:bc:1d:79:88:fb:aa:c6:d7:ea:66:90: 58:05:22:3d:f4:57:73:ac:5e:f9:4b:53:e5:54:52:6d:06:d0: f6:fd:aa:d3:e4:7d:5c:02:6b:13:e8:d1:a6:77:d3:58:28:7a: b4:7b:f7:2e:3e:3a:39:cd:da:23:b0:c8:d8:38:63:ba:0f:25: 94:5c:e0:90:f0:af:fc:ab:27:b9:52:98:e6:79:18:92:c1:26: 7c:82:84:f5:4f:5d:fd:8c:0b:9b:cf:13:4a:9e:55:9b:a7:ba: e0:ce:ad:18:25:6f:f0:64:fa:a0:56:dd:f1:2c:f4:00:f0:d5: ae:c5:a8:74:7c:86:a8:98:16:a9:24:ec:24:f1:2a:87:75:51: 32:e4:ac:c9:0d:95:eb:e1:a0:54:ab:85:68:06:9d:ec:5c:fb: 8a:64:e9:e8:19:fc:08:36:1e:51:1e:6e:21:41:5c:19:2e:a4: 4d:80:b8:63:f7:da:5b:ea:31:76:65:f5:bb:ce:fa:02:34:3a: 48:7e:a2:95:e4:25:b2:ee:55:db:ee:28:a2:11:f8:7a:1a:20: d3:ee:9a:3f:d1:d6:80:a2:33:c5:b4:1b:d9:4a:19:fa:54:61: 0a:3b:a2:0f:ce:3c:50:a8:07:54:d5:f4:0d:25:8c:a1:3d:00: 37:ee:15:91 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUOO8oK3is0mo/v9iUcsgqK41pI3MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDAxMDQ5WhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYWMyNjVlZWNjNGVmYTA2ZjJmYjBhMzVmMDA5YjgzMDRh YTlhMmY3N2Q4MWNkNmU4YTc0MmEyNmU3YzAwZjk1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChY9QIa+Ae9ZwZJjw+2sWZRI1ivJ5fCG9GMlinLP196zNO buVUH1cExhUTHt9J84vVCKwuLi7lw3cDmzA2CSnysuibG5uW6nHb4p/JBZHDU1Xo Yp+UCXB+j4MpJDfQ+d18dlqcBihxjKDU3H8O//kjo9WafVCOZNCfAmAlxofUiefj 7DJVrewM0mAxhOpFIzS56QgZT9bWrB0jGaPYhoj6dXz5opYdBrq/aKnLjgzGTvDv s6Y1XMybCnF0PAmtstfT4Xtib6z7s7ijjcy0HLs4jJbFSZl6LeB7VyOv+QXY40Kj X1tno+ZjjcyKsH6J45LiePL6yV4DzAfJewwJwpQvAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUENZvdsOgUEqfzPc7TIr8s5CahVUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NlYjY3ZTgwLTQxOWEtNDY4Yy05ZGU5LTQ3N2FkYmU1MTEzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/6UDANBgkqhkiG9w0BAQsFAAOCAQEA198iUopPl7wdeYj7qsbX6maQ WAUiPfRXc6xe+UtT5VRSbQbQ9v2q0+R9XAJrE+jRpnfTWCh6tHv3Lj46Oc3aI7DI 2Dhjug8llFzgkPCv/KsnuVKY5nkYksEmfIKE9U9d/YwLm88TSp5Vm6e64M6tGCVv 8GT6oFbd8Sz0APDVrsWodHyGqJgWqSTsJPEqh3VRMuSsyQ2V6+GgVKuFaAad7Fz7 imTp6Bn8CDYeUR5uIUFcGS6kTYC4Y/faW+oxdmX1u876AjQ6SH6ileQlsu5V2+4o ohH4ehog0+6aP9HWgKIzxbQb2UoZ+lRhCjuiD848UKgHVNX0DSWMoT0AN+4VkQ== -----END CERTIFICATE-----Generated at Fri May 9 07:56:33 2025 by rpki-client