$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/efc992f9-00af-49f7-9474-d7a5b0a4a931.roa File: efc992f9-00af-49f7-9474-d7a5b0a4a931.roa (raw, json) Hash identifier: fOuBZ+zp6j2ZufiU4i4aUPrZ0/aX+w+HOdXK/+7o9nc= Subject key identifier: 78:9D:2E:F3:6A:A9:45:6D:6D:1E:43:4A:66:0B:06:2C:65:6E:33:ED Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7809310FC2177B04AFFC325562987388A0F04692 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/efc992f9-00af-49f7-9474-d7a5b0a4a931.roa Signing time: Mon 05 May 2025 15:11:34 +0000 ROA not before: Mon 05 May 2025 15:11:34 +0000 ROA not after: Mon 09 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f01:4850::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:09:31:0f:c2:17:7b:04:af:fc:32:55:62:98:73:88:a0:f0:46:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 15:11:34 2025 GMT Not After : Jun 9 23:59:59 2025 GMT Subject: serialNumber=e6b3b0aae865047242952906149d9848a1b741fd60b37b9e7140ef387ffac6c4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:f8:b2:38:a5:63:50:84:1b:90:30:8a:88:15: 27:ec:70:dd:24:7f:37:52:f4:61:d7:88:ef:cc:3b: 0c:93:e5:40:07:87:ca:8b:93:15:90:2c:55:56:9c: c4:8b:24:f7:7d:fe:c1:da:39:e0:7f:e0:41:ad:5a: 4f:40:63:9f:78:e2:6a:dd:37:a7:10:91:b0:49:d4: 85:25:9d:fb:e0:1e:dc:1c:ac:30:ee:08:a8:d0:e7: 73:1b:a3:fa:f7:d7:79:a8:4c:29:96:87:f4:7c:08: 2d:ad:91:df:4e:8b:68:a7:64:26:da:97:c2:ba:03: 2d:47:7a:80:f3:a8:e6:03:e1:87:94:c6:75:a0:a5: f6:29:c3:b9:bd:fe:56:ac:91:16:c7:94:ed:f5:35: 24:9a:1e:ac:09:4a:d2:52:de:0f:1e:f0:70:55:54: 1f:74:2c:5a:5c:96:29:ca:7d:b5:77:70:98:ab:07: b7:94:4c:c9:42:b5:93:ec:dc:47:14:7a:af:e9:a3: 7d:16:2c:15:9a:2f:e1:29:7a:d6:d6:c7:de:5d:e4: c7:ff:72:5e:34:e7:15:ec:ef:51:bb:f6:26:b1:fc: c4:2a:aa:0d:fb:2d:7e:b8:ee:d9:73:49:44:b5:73: 94:a7:22:9c:fc:50:f4:d2:e4:79:88:53:e8:fb:3a: cd:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:9D:2E:F3:6A:A9:45:6D:6D:1E:43:4A:66:0B:06:2C:65:6E:33:ED X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/efc992f9-00af-49f7-9474-d7a5b0a4a931.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f01:4850::/47 Signature Algorithm: sha256WithRSAEncryption 1b:c9:91:e7:ff:11:8f:19:5a:ad:ee:44:b8:72:db:eb:d5:f3: e8:b5:49:02:10:8b:ed:92:00:b1:14:59:77:10:03:04:bf:b8: 70:59:a8:e8:58:34:d6:ae:9e:36:d7:6f:ca:7a:99:8c:65:6c: b3:3b:0d:bf:14:37:c6:7b:f2:74:90:57:2b:18:45:ed:51:d2: 36:a7:a8:c3:7e:75:33:d0:4d:8f:38:2a:c1:b8:fb:08:56:2c: 08:83:73:6b:68:79:ec:ab:2e:4a:5f:2c:8b:52:ca:4c:f4:89: 90:be:c3:f0:11:10:47:34:d3:35:78:65:40:5a:14:29:04:23: 6d:96:90:57:bd:d6:7a:99:80:1b:0f:d1:c4:fb:36:ab:17:58: 32:44:1e:be:d8:45:c3:30:f0:d3:d7:3b:e4:63:82:18:c1:45: b3:7c:69:06:cd:9b:7f:69:87:62:c4:2d:b2:68:38:5f:f7:82: 5c:94:37:03:65:67:03:69:b9:5c:e9:c7:a2:c6:1d:05:0f:50: 4c:93:0a:30:e9:ff:0f:95:ea:0f:7c:aa:1e:e6:29:91:b2:4e: 87:22:e3:f9:f6:ea:e7:ca:9a:dc:c7:dd:7e:a4:43:d7:55:39: 52:20:8f:d4:d5:41:f3:97:82:a6:85:7e:e7:37:58:0f:62:88: b8:6b:9f:9d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUeAkxD8IXewSv/DJVYphziKDwRpIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA1MTUxMTM0WhcNMjUwNjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNmIzYjBhYWU4NjUwNDcyNDI5NTI5MDYxNDlkOTg0OGEx Yjc0MWZkNjBiMzdiOWU3MTQwZWYzODdmZmFjNmM0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCj+LI4pWNQhBuQMIqIFSfscN0kfzdS9GHXiO/MOwyT5UAH h8qLkxWQLFVWnMSLJPd9/sHaOeB/4EGtWk9AY5944mrdN6cQkbBJ1IUlnfvgHtwc rDDuCKjQ53Mbo/r313moTCmWh/R8CC2tkd9Oi2inZCbal8K6Ay1HeoDzqOYD4YeU xnWgpfYpw7m9/laskRbHlO31NSSaHqwJStJS3g8e8HBVVB90LFpclinKfbV3cJir B7eUTMlCtZPs3EcUeq/po30WLBWaL+EpetbWx95d5Mf/cl405xXs71G79iax/MQq qg37LX647tlzSUS1c5SnIpz8UPTS5HmIU+j7Os0PAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUeJ0u82qpRW1tHkNKZgsGLGVuM+0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VmYzk5MmY5LTAwYWYtNDlmNy05NDc0LWQ3YTViMGE0YTkzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAB8BSFAwDQYJKoZIhvcNAQELBQADggEBABvJkef/EY8ZWq3uRLhy2+vV 8+i1SQIQi+2SALEUWXcQAwS/uHBZqOhYNNaunjbXb8p6mYxlbLM7Db8UN8Z78nSQ VysYRe1R0janqMN+dTPQTY84KsG4+whWLAiDc2toeeyrLkpfLItSykz0iZC+w/AR EEc00zV4ZUBaFCkEI22WkFe91nqZgBsP0cT7NqsXWDJEHr7YRcMw8NPXO+RjghjB RbN8aQbNm39ph2LELbJoOF/3glyUNwNlZwNpuVzpx6LGHQUPUEyTCjDp/w+V6g98 qh7mKZGyToci4/n26ufKmtzH3X6kQ9dVOVIgj9TVQfOXgqaFfuc3WA9iiLhrn50= -----END CERTIFICATE-----Generated at Sun May 11 16:47:09 2025 by rpki-client