$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d97c3616-0d82-4524-945b-08ee314efd7b.roa File: d97c3616-0d82-4524-945b-08ee314efd7b.roa (raw, json) Hash identifier: FBZnhcGmww5qWybx64Np6bOv9aMI8/ELbLmovj8P+aI= Subject key identifier: 2E:A5:0E:32:C4:84:B4:C7:CA:7E:60:18:D2:9B:60:88:4C:62:8B:13 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 42EDA52E7A44430F4B99B02120A4BF0A30A397DF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d97c3616-0d82-4524-945b-08ee314efd7b.roa Signing time: Mon 05 May 2025 15:11:06 +0000 ROA not before: Mon 05 May 2025 15:11:06 +0000 ROA not after: Mon 09 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff0:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:ed:a5:2e:7a:44:43:0f:4b:99:b0:21:20:a4:bf:0a:30:a3:97:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 15:11:06 2025 GMT Not After : Jun 9 23:59:59 2025 GMT Subject: serialNumber=70666db1146542a58dc576b21288d897980110bc72506128b6c571b7c4a82c97, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:e7:b4:aa:ff:86:a6:73:0d:0a:44:ed:67:d0: 22:07:35:79:4e:09:e2:48:70:c0:d7:be:0e:3f:97: 91:91:fd:91:e9:f0:a8:00:28:d9:6e:6a:f5:c7:44: ca:a4:91:e5:9b:e9:96:cf:08:51:ba:ef:9e:c0:2b: a5:a6:bd:9d:af:55:74:75:11:c4:69:0e:17:79:97: d6:d7:42:11:c2:20:b0:78:63:2e:f8:79:17:3d:0f: db:63:fe:c7:1d:ce:5d:ee:43:5d:82:6e:61:ea:6f: 61:41:e8:da:03:0a:b0:22:fc:63:fc:24:7a:48:1a: e0:97:a3:c0:ec:5f:5b:09:e7:84:76:d4:03:40:6c: b2:06:50:c1:35:35:35:4e:0d:6a:ff:4a:8a:a7:2f: ae:19:b8:55:5e:39:43:72:22:c3:c0:59:bd:16:0e: 0b:ec:a9:50:3c:00:a4:5a:76:80:a7:e9:7b:c3:6d: 53:58:c8:6b:1b:b4:9e:77:77:9d:54:b1:fc:ad:ec: 12:35:7b:9c:69:f9:fb:82:e5:c7:3e:e1:4a:c3:24: 9d:b4:5d:90:69:e6:09:ed:e5:9d:a6:d2:ff:47:a0: 7d:64:97:cb:c4:02:59:7d:36:8f:3c:ae:eb:e2:e7: db:5f:de:88:d8:ee:fb:51:b8:ae:12:e8:b2:01:9e: 69:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:A5:0E:32:C4:84:B4:C7:CA:7E:60:18:D2:9B:60:88:4C:62:8B:13 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d97c3616-0d82-4524-945b-08ee314efd7b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff0:2000::/40 Signature Algorithm: sha256WithRSAEncryption cb:d8:cf:9e:70:0f:8c:19:19:de:7d:10:1b:59:88:53:0f:4b: c2:e6:4a:a9:d9:00:4f:bb:b9:5e:31:31:db:30:ba:cf:3c:d9: 92:f1:a6:49:85:95:65:bc:4c:e7:3d:95:08:8e:56:97:4e:e9: 9f:5a:5a:32:56:b0:02:0b:12:89:f9:f8:9b:90:aa:b3:d4:f2: b8:f4:39:2b:d2:15:94:cb:a0:cc:39:5e:b7:94:8d:cd:45:03: ab:6a:d0:eb:10:ec:a0:b1:bc:7c:94:73:8e:99:24:d6:02:eb: 2a:5f:96:b6:f2:9d:06:90:fb:2e:c3:17:29:b8:02:a3:c3:73: 93:b5:2f:1c:82:a0:53:0f:86:58:9d:ab:01:2d:92:4a:ad:91: a4:9f:d4:67:98:72:d3:88:ec:fe:ff:b7:b5:a0:3e:54:d6:29: 9e:fc:20:e5:2f:3d:7e:92:00:32:2d:06:ca:bf:b5:e9:ae:59: da:9b:75:6e:3e:47:e7:55:9e:be:63:5b:ac:2f:0d:52:5b:22: eb:2c:bf:bb:a2:ab:ca:f6:19:02:2d:b1:9a:1c:f1:fa:58:13: 61:e9:a6:aa:cf:b4:50:f7:30:4d:13:ee:88:ac:6d:3b:89:55: 1e:d5:a3:ff:f8:40:26:78:6a:b7:65:27:11:e5:b1:7f:a2:72: 8b:57:74:3a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUQu2lLnpEQw9LmbAhIKS/CjCjl98wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA1MTUxMTA2WhcNMjUwNjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MDY2NmRiMTE0NjU0MmE1OGRjNTc2YjIxMjg4ZDg5Nzk4 MDExMGJjNzI1MDYxMjhiNmM1NzFiN2M0YTgyYzk3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCT57Sq/4amcw0KRO1n0CIHNXlOCeJIcMDXvg4/l5GR/ZHp 8KgAKNluavXHRMqkkeWb6ZbPCFG6757AK6WmvZ2vVXR1EcRpDhd5l9bXQhHCILB4 Yy74eRc9D9tj/scdzl3uQ12CbmHqb2FB6NoDCrAi/GP8JHpIGuCXo8DsX1sJ54R2 1ANAbLIGUME1NTVODWr/SoqnL64ZuFVeOUNyIsPAWb0WDgvsqVA8AKRadoCn6XvD bVNYyGsbtJ53d51Usfyt7BI1e5xp+fuC5cc+4UrDJJ20XZBp5gnt5Z2m0v9HoH1k l8vEAll9No88ruvi59tf3ojY7vtRuK4S6LIBnmlzAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQULqUOMsSEtMfKfmAY0ptgiExiixMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q5N2MzNjE2LTBkODItNDUyNC05NDViLTA4ZWUzMTRlZmQ3Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/wIDANBgkqhkiG9w0BAQsFAAOCAQEAy9jPnnAPjBkZ3n0QG1mIUw9L wuZKqdkAT7u5XjEx2zC6zzzZkvGmSYWVZbxM5z2VCI5Wl07pn1paMlawAgsSifn4 m5Cqs9TyuPQ5K9IVlMugzDlet5SNzUUDq2rQ6xDsoLG8fJRzjpkk1gLrKl+WtvKd BpD7LsMXKbgCo8Nzk7UvHIKgUw+GWJ2rAS2SSq2RpJ/UZ5hy04js/v+3taA+VNYp nvwg5S89fpIAMi0Gyr+16a5Z2pt1bj5H51WevmNbrC8NUlsi6yy/u6KryvYZAi2x mhzx+lgTYemmqs+0UPcwTRPuiKxtO4lVHtWj//hAJnhqt2UnEeWxf6Jyi1d0Og== -----END CERTIFICATE-----Generated at Fri May 9 07:13:32 2025 by rpki-client