$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e26cb5df-5e86-4ccb-a96a-cb08ad75a489.roa File: e26cb5df-5e86-4ccb-a96a-cb08ad75a489.roa (raw, json) Hash identifier: 4+FK8+7GyQltob6sXOaNODJ3SbF5J+/7FJnhFU2DnI4= Subject key identifier: 53:87:BB:74:04:10:D0:2B:76:95:35:99:14:A8:5D:70:6C:F2:7A:CC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4E9065B5C0D7B452B1C8324B848687072E4E7F20 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e26cb5df-5e86-4ccb-a96a-cb08ad75a489.roa Signing time: Mon 28 Apr 2025 15:20:25 +0000 ROA not before: Mon 28 Apr 2025 15:20:25 +0000 ROA not after: Mon 02 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fef:a400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:90:65:b5:c0:d7:b4:52:b1:c8:32:4b:84:86:87:07:2e:4e:7f:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 15:20:25 2025 GMT Not After : Jun 2 23:59:59 2025 GMT Subject: serialNumber=07bbfdcf0cedb5e2a7d33d94cba31b90559a5d694795f689dc1fec432e5f6896, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2f:ce:3a:e2:d0:27:88:6b:7a:1f:94:5f:ce: 04:9f:7f:14:b6:69:a6:44:1f:27:b2:6f:0f:3a:76: 8e:c8:e4:69:2a:a4:55:ca:90:fd:f5:cd:60:f2:85: f8:0f:49:70:32:0f:34:f7:8c:c6:be:e9:02:63:bc: e5:7a:52:f6:3b:1d:9f:09:1e:86:c5:69:b6:40:37: d3:4d:dc:f7:68:b6:53:b9:fe:c0:33:8b:7c:05:9a: 17:25:a8:47:a6:43:8a:87:64:a1:8e:e1:7a:81:25: 95:aa:7d:bb:ef:06:82:eb:f4:51:c1:f7:82:d3:3c: 6b:0f:aa:9c:ed:f2:82:b5:57:8c:eb:ad:ac:2c:cf: 1e:4b:54:9f:9b:5b:48:f6:0c:e6:1a:94:e6:cf:fd: 37:2e:91:94:11:a3:c4:c3:4e:ae:e1:94:0a:82:7a: 3b:e3:b2:b6:2c:17:f3:75:ad:ff:4c:85:04:ca:cb: 50:eb:20:d7:0c:6f:97:a0:8f:8f:5f:b3:d0:21:da: 1e:94:56:d0:2a:66:9a:f2:c2:e6:49:80:4e:a9:8e: b0:c7:c2:d6:17:14:10:08:b1:52:73:5d:fb:04:70: e7:30:b5:f9:52:4b:ec:a1:15:13:e3:8c:a2:58:ac: 6c:1d:a4:33:6e:55:07:ea:5f:23:4d:6d:93:78:d0: de:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:87:BB:74:04:10:D0:2B:76:95:35:99:14:A8:5D:70:6C:F2:7A:CC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e26cb5df-5e86-4ccb-a96a-cb08ad75a489.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fef:a400::/40 Signature Algorithm: sha256WithRSAEncryption 04:82:d6:3e:19:fa:ef:18:1f:52:a4:90:34:99:bc:2f:b2:7b: cb:b6:8f:75:13:74:da:41:d9:bd:e3:b5:47:ac:8d:a0:37:91: 70:35:49:d8:2c:d0:12:3f:b8:0e:34:6a:47:de:86:fb:73:5b: 74:82:ed:75:04:b8:b9:23:af:b6:8a:d2:fe:a1:05:9a:c2:e9: 1a:28:79:89:86:89:61:94:c9:e8:7f:2c:44:ef:b7:d3:bf:4a: 1e:d5:6f:75:cc:ce:18:03:ca:8c:0d:f6:6f:ba:fb:2b:f9:8f: 8f:9b:4e:13:03:ec:69:08:5c:ff:f5:7b:22:7c:84:88:4d:be: ca:43:58:75:4b:78:ac:c5:04:bc:de:26:1c:db:6b:41:0b:da: 84:ee:da:e8:db:96:27:bf:43:5d:d1:36:3c:3c:4a:6e:00:7d: eb:a6:31:2f:46:c2:c8:6d:db:b9:e6:f9:45:2d:91:e8:80:f4: 02:0c:ff:d3:80:5c:7a:39:84:88:99:6a:b0:41:b9:48:6f:1e: 8a:9a:f0:62:5d:62:9e:0e:6d:5e:a2:68:a8:02:ff:97:23:76: a6:f2:77:23:a3:bd:b9:17:c1:c8:28:49:b9:a0:85:66:e6:02: fb:ae:45:41:49:82:0e:61:75:59:a4:b6:c6:e7:65:ec:cd:04: f8:6c:ad:38 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUTpBltcDXtFKxyDJLhIaHBy5OfyAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI4MTUyMDI1WhcNMjUwNjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwN2JiZmRjZjBjZWRiNWUyYTdkMzNkOTRjYmEzMWI5MDU1 OWE1ZDY5NDc5NWY2ODlkYzFmZWM0MzJlNWY2ODk2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLL8464tAniGt6H5RfzgSffxS2aaZEHyeybw86do7I5Gkq pFXKkP31zWDyhfgPSXAyDzT3jMa+6QJjvOV6UvY7HZ8JHobFabZAN9NN3PdotlO5 /sAzi3wFmhclqEemQ4qHZKGO4XqBJZWqfbvvBoLr9FHB94LTPGsPqpzt8oK1V4zr rawszx5LVJ+bW0j2DOYalObP/TcukZQRo8TDTq7hlAqCejvjsrYsF/N1rf9MhQTK y1DrINcMb5egj49fs9Ah2h6UVtAqZprywuZJgE6pjrDHwtYXFBAIsVJzXfsEcOcw tflSS+yhFRPjjKJYrGwdpDNuVQfqXyNNbZN40N5HAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUU4e7dAQQ0Ct2lTWZFKhdcGzyeswwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UyNmNiNWRmLTVlODYtNGNjYi1hOTZhLWNiMDhhZDc1YTQ4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/vpDANBgkqhkiG9w0BAQsFAAOCAQEABILWPhn67xgfUqSQNJm8L7J7 y7aPdRN02kHZveO1R6yNoDeRcDVJ2CzQEj+4DjRqR96G+3NbdILtdQS4uSOvtorS /qEFmsLpGih5iYaJYZTJ6H8sRO+3079KHtVvdczOGAPKjA32b7r7K/mPj5tOEwPs aQhc//V7InyEiE2+ykNYdUt4rMUEvN4mHNtrQQvahO7a6NuWJ79DXdE2PDxKbgB9 66YxL0bCyG3bueb5RS2R6ID0Agz/04BcejmEiJlqsEG5SG8eiprwYl1ing5tXqJo qAL/lyN2pvJ3I6O9uRfByChJuaCFZuYC+65FQUmCDmF1WaS2xudl7M0E+GytOA== -----END CERTIFICATE-----Generated at Sun May 11 18:50:54 2025 by rpki-client