$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/6ba0c1f3-2b2e-4d8a-bef1-52e07a4a5a4e.roa File: 6ba0c1f3-2b2e-4d8a-bef1-52e07a4a5a4e.roa (raw, json) Hash identifier: sNvbormN4Q/4OWF9/hvGUQ2XA3FN4m+1i5iMzvbH7do= Subject key identifier: 39:AD:2C:FA:1F:CC:C8:D6:0F:E8:CB:DE:04:89:39:4F:02:3F:A4:A4 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 0FD13F0DC3236558A1700D4A39006E5C23322872 Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/6ba0c1f3-2b2e-4d8a-bef1-52e07a4a5a4e.roa Signing time: Tue 06 May 2025 00:20:23 +0000 ROA not before: Tue 06 May 2025 00:20:23 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2606:f40:fffe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 08 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:d1:3f:0d:c3:23:65:58:a1:70:0d:4a:39:00:6e:5c:23:32:28:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: May 6 00:20:23 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=c5ae6a55cdf6d2466f153bacb45a29e632c5a3d92449e8011dcc02c1d4b2a658, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:9a:08:c0:67:18:c0:74:e9:0a:90:f2:97:fc: 2e:73:eb:48:6f:cb:6f:dd:40:00:6f:7d:a0:08:b3: 9d:00:5b:14:b2:cb:03:b1:3f:d8:18:83:5c:41:fb: 7e:db:d5:25:71:92:45:6b:92:2e:c7:d4:08:5c:5c: 41:09:84:ac:fb:29:0a:3f:ea:79:51:46:0d:b3:6c: bd:ac:56:c4:8a:ec:d9:66:db:e3:0c:2b:5a:fe:44: 1a:5f:e8:24:ef:53:82:89:cd:7a:32:0b:8e:93:a4: b5:0d:2e:7a:7b:8b:ee:cf:aa:51:39:ab:6d:58:d1: 4e:92:41:fa:82:ab:94:91:19:cf:b0:fa:86:9e:a6: b5:fc:f0:9e:55:86:c0:05:90:ae:72:cf:fe:5c:3c: 37:62:4a:08:6c:ab:d7:ad:30:18:64:8e:95:58:d2: c4:52:7b:1f:21:3f:ce:e7:c3:bf:bb:2f:bd:42:fb: a8:61:e6:a0:a7:d4:64:99:a3:a7:3a:be:44:9f:39: 6e:14:ba:7e:3e:6c:6c:03:71:0c:3c:ac:0c:b5:6f: 3a:49:65:cf:0a:25:ca:2d:08:e1:7f:97:5c:23:9d: 02:4e:43:8d:5c:7c:60:71:99:72:df:ab:42:43:68: bc:7e:cc:31:4a:9a:66:bf:25:83:e7:7a:3a:62:bb: c0:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:AD:2C:FA:1F:CC:C8:D6:0F:E8:CB:DE:04:89:39:4F:02:3F:A4:A4 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/6ba0c1f3-2b2e-4d8a-bef1-52e07a4a5a4e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:fffe::/48 Signature Algorithm: sha256WithRSAEncryption ca:d1:9b:21:ef:67:f0:99:5e:57:12:d0:e9:4b:11:7a:71:a9: de:ae:27:b9:25:7d:a7:54:24:07:03:ca:5d:22:42:41:e4:c7: 4c:46:ee:10:3b:5a:52:60:00:c0:8a:bd:f7:c6:f4:cf:28:bf: 52:ab:e6:8f:bf:4c:a8:08:d1:dc:f0:86:a0:8f:6b:66:80:d5: 31:2c:1f:31:85:bd:3b:26:45:06:88:9c:06:b6:59:1c:ce:d9: 9a:2f:91:5f:4b:dd:4d:3f:46:47:3f:30:00:cf:59:f4:bf:4f: e8:2c:c8:42:7d:29:d0:7c:c7:ba:12:8c:8d:ea:66:8c:3e:a3: 22:07:11:ec:a5:54:6a:0f:d2:2f:3b:6e:5e:51:a0:d4:c1:f6: 90:e1:07:8b:f9:21:87:e5:b8:99:b3:fd:b5:44:aa:85:01:6f: 3d:16:9a:1e:2b:f8:c0:74:4a:c6:96:73:9c:20:a3:c9:69:65: 16:00:de:1d:46:75:ce:b8:11:28:7b:0c:b2:7b:9c:81:22:21: 22:fa:7e:54:0a:33:2b:72:79:fb:8a:da:57:72:30:0a:ea:46: 01:f0:9a:9b:be:b8:09:d9:ac:ca:fc:f5:b7:bc:0d:43:ad:bc: 79:42:57:71:5b:f7:e3:01:70:db:64:37:92:4a:c8:14:8a:78: 44:ae:3e:ce -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUD9E/DcMjZVihcA1KOQBuXCMyKHIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUwNTA2MDAyMDIzWhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNWFlNmE1NWNkZjZkMjQ2NmYxNTNiYWNiNDVhMjllNjMy YzVhM2Q5MjQ0OWU4MDExZGNjMDJjMWQ0YjJhNjU4MS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxmgjAZxjAdOkKkPKX/C5z60hvy2/dQABvfaAIs50AWxSy ywOxP9gYg1xB+37b1SVxkkVrki7H1AhcXEEJhKz7KQo/6nlRRg2zbL2sVsSK7Nlm 2+MMK1r+RBpf6CTvU4KJzXoyC46TpLUNLnp7i+7PqlE5q21Y0U6SQfqCq5SRGc+w +oaeprX88J5VhsAFkK5yz/5cPDdiSghsq9etMBhkjpVY0sRSex8hP87nw7+7L71C +6hh5qCn1GSZo6c6vkSfOW4Uun4+bGwDcQw8rAy1bzpJZc8KJcotCOF/l1wjnQJO Q41cfGBxmXLfq0JDaLx+zDFKmma/JYPnejpiu8DPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUOa0s+h/MyNYP6MveBIk5TwI/pKQwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjLzZiYTBjMWYzLTJiMmUtNGQ4YS1iZWYxLTUyZTA3YTRhNWE0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBg9A//4wDQYJKoZIhvcNAQELBQADggEBAMrRmyHvZ/CZXlcS0OlLEXpx qd6uJ7klfadUJAcDyl0iQkHkx0xG7hA7WlJgAMCKvffG9M8ov1Kr5o+/TKgI0dzw hqCPa2aA1TEsHzGFvTsmRQaInAa2WRzO2ZovkV9L3U0/Rkc/MADPWfS/T+gsyEJ9 KdB8x7oSjI3qZow+oyIHEeylVGoP0i87bl5RoNTB9pDhB4v5IYfluJmz/bVEqoUB bz0Wmh4r+MB0SsaWc5wgo8lpZRYA3h1Gdc64ESh7DLJ7nIEiISL6flQKMytyefuK 2ldyMArqRgHwmpu+uAnZrMr89be8DUOtvHlCV3Fb9+MBcNtkN5JKyBSKeESuPs4= -----END CERTIFICATE-----Generated at Wed May 7 13:18:28 2025 by rpki-client