$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d1922148-0081-4f06-b9be-a02446d66975.roa File: d1922148-0081-4f06-b9be-a02446d66975.roa (raw, json) Hash identifier: avrqVgjJKWgeJEhZ8cLAU+JBZ63qa/FySdSRya668eA= Subject key identifier: D5:92:10:98:9A:63:8A:F9:DD:9F:8B:9E:27:CE:9C:2D:86:D5:C3:7D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3DE477501A86082E2F1F5C743A07233E7474C698 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d1922148-0081-4f06-b9be-a02446d66975.roa Signing time: Sat 03 May 2025 00:21:11 +0000 ROA not before: Sat 03 May 2025 00:21:11 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f2c:4000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:e4:77:50:1a:86:08:2e:2f:1f:5c:74:3a:07:23:3e:74:74:c6:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:21:11 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=84e3e71b5c139cefc77faa702f19ef50d72e58b3fdcca44a5e6ac4c63311ee1c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f3:d8:f9:04:e6:63:bd:cd:ce:10:f6:80:7f: 07:8a:ab:85:2f:2a:cb:68:2a:06:52:6c:81:bb:59: d9:1a:97:27:d6:a8:c0:76:1b:31:5e:d3:bc:5e:da: 9b:62:72:fa:9c:9d:c4:9f:f2:d7:45:21:ef:5c:0f: 18:c7:3a:cf:c4:dc:63:82:a8:fd:5b:55:13:25:bf: 4b:15:3e:58:45:c5:4b:f9:7c:64:1e:64:d2:8c:2c: 9d:9a:77:f4:20:0b:8d:e0:94:39:04:09:97:44:40: 18:67:33:34:65:cb:e9:d5:87:e8:12:01:2f:90:46: 4f:fd:27:60:82:2e:a0:bf:70:55:7b:73:08:0a:ac: 5e:59:73:a3:56:29:d8:50:32:ec:7b:b7:18:15:bb: d4:bc:6b:e2:2f:3e:a5:5d:ff:ef:39:5c:77:14:2c: 46:5d:a9:1d:4b:c1:c9:f4:6b:53:c4:ca:12:a6:b7: 83:f8:1b:6e:4d:df:6b:3e:44:22:46:29:ce:af:8e: ae:d0:c8:ba:28:82:2a:da:56:95:c9:9a:43:2b:27: 38:c1:7e:ae:a8:2a:83:05:69:ba:53:4f:26:8b:a1: 64:3d:e9:ca:84:fc:0a:cb:f1:60:93:78:77:97:cf: b6:c2:d1:5e:08:ea:87:ef:d9:51:6b:11:5a:20:49: 7f:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:92:10:98:9A:63:8A:F9:DD:9F:8B:9E:27:CE:9C:2D:86:D5:C3:7D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d1922148-0081-4f06-b9be-a02446d66975.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f2c:4000::/36 Signature Algorithm: sha256WithRSAEncryption 8d:d7:ce:ba:f9:e9:9c:fa:12:b6:7d:e7:16:c3:f0:c6:79:fb: b9:f2:2e:56:5b:ee:25:46:0c:22:c8:1b:58:90:05:57:9c:96: 33:7e:99:37:75:c4:ee:7a:53:06:d5:d3:62:be:d2:7d:92:99: b4:e7:a0:e6:fc:93:78:43:17:a1:11:0a:ac:55:c3:24:77:2f: 0a:47:71:27:69:b7:16:b0:44:e0:37:29:c4:0a:6f:f4:99:95: 96:78:95:8b:a8:70:f8:4f:33:11:79:8c:e2:bb:8c:07:68:14: 1b:c9:53:0f:30:4d:0a:47:2a:b2:6c:49:33:9b:83:bf:be:22: 94:fe:4a:4d:f9:92:c1:b4:f6:3f:42:d0:02:b6:a4:f6:03:f9: be:44:5f:b9:21:0f:b4:1b:3b:a5:7d:ca:7f:f3:e0:2f:73:58: 9b:51:19:d3:5d:dd:7d:db:8c:f9:86:a3:06:59:34:b7:ba:1c: 97:7a:44:67:10:ef:4e:3f:06:a4:9d:3b:4c:cf:8a:80:e5:78: 9a:66:d8:a5:55:92:b0:9e:22:23:a5:52:f8:a6:e7:9b:1d:6c: 9d:5f:f9:4b:67:0a:d6:8c:9f:21:53:97:a4:65:24:9b:0c:92: 39:97:08:ba:2d:5f:84:db:89:2f:7d:02:08:74:e4:e1:b5:2b: 26:bc:0a:44 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUPeR3UBqGCC4vH1x0OgcjPnR0xpgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDAyMTExWhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NGUzZTcxYjVjMTM5Y2VmYzc3ZmFhNzAyZjE5ZWY1MGQ3 MmU1OGIzZmRjY2E0NGE1ZTZhYzRjNjMzMTFlZTFjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDO89j5BOZjvc3OEPaAfweKq4UvKstoKgZSbIG7WdkalyfW qMB2GzFe07xe2pticvqcncSf8tdFIe9cDxjHOs/E3GOCqP1bVRMlv0sVPlhFxUv5 fGQeZNKMLJ2ad/QgC43glDkECZdEQBhnMzRly+nVh+gSAS+QRk/9J2CCLqC/cFV7 cwgKrF5Zc6NWKdhQMux7txgVu9S8a+IvPqVd/+85XHcULEZdqR1Lwcn0a1PEyhKm t4P4G25N32s+RCJGKc6vjq7QyLoogiraVpXJmkMrJzjBfq6oKoMFabpTTyaLoWQ9 6cqE/ArL8WCTeHeXz7bC0V4I6ofv2VFrEVogSX+LAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU1ZIQmJpjivndn4ueJ86cLYbVw30wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QxOTIyMTQ4LTAwODEtNGYwNi1iOWJlLWEwMjQ0NmQ2Njk3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8sQDANBgkqhkiG9w0BAQsFAAOCAQEAjdfOuvnpnPoStn3nFsPwxnn7 ufIuVlvuJUYMIsgbWJAFV5yWM36ZN3XE7npTBtXTYr7SfZKZtOeg5vyTeEMXoREK rFXDJHcvCkdxJ2m3FrBE4DcpxApv9JmVlniVi6hw+E8zEXmM4ruMB2gUG8lTDzBN CkcqsmxJM5uDv74ilP5KTfmSwbT2P0LQArak9gP5vkRfuSEPtBs7pX3Kf/PgL3NY m1EZ013dfduM+YajBlk0t7ocl3pEZxDvTj8GpJ07TM+KgOV4mmbYpVWSsJ4iI6VS +Kbnmx1snV/5S2cK1oyfIVOXpGUkmwySOZcIui1fhNuJL30CCHTk4bUrJrwKRA== -----END CERTIFICATE-----Generated at Sun May 11 12:12:35 2025 by rpki-client