$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/943694fe-e278-4d76-b786-7df26f151dd9.roa File: 943694fe-e278-4d76-b786-7df26f151dd9.roa (raw, json) Hash identifier: GHUY0MuEEaz7j/xVI87UloLtj7jTrf2qzzsvXw5noWk= Subject key identifier: 10:85:AB:A3:12:FD:E6:A3:22:52:F4:A6:64:23:CA:CC:92:DA:9A:D5 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 0ED1CE5156EBE81592D81F50D18F9CFCFB4515E9 Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/943694fe-e278-4d76-b786-7df26f151dd9.roa Signing time: Tue 06 May 2025 00:20:21 +0000 ROA not before: Tue 06 May 2025 00:20:21 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2606:f40:fffe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 08 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:d1:ce:51:56:eb:e8:15:92:d8:1f:50:d1:8f:9c:fc:fb:45:15:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: May 6 00:20:21 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=e6db6f5a06fe0a3956a1f2f2579c978655770cecdae35f1aebf07a5a3c815a22, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:70:96:3c:b9:2c:3a:66:bc:90:88:fe:16:f2: 41:24:89:64:0d:79:5e:b5:4b:db:05:a9:41:ba:e9: 3b:9e:1e:d2:60:52:f8:06:ed:7d:de:e1:1f:93:81: f4:9d:2c:c9:8f:35:e6:de:f0:b0:8d:4a:b9:77:55: 45:01:74:c2:25:33:1c:9a:db:99:3d:ef:a5:5b:12: f4:e1:ab:03:7e:24:81:56:9b:39:eb:a0:1e:6a:08: 22:16:03:b0:a0:ac:db:ca:29:b9:e3:6b:0d:c7:fb: d9:6c:11:73:dd:19:2f:b0:99:93:41:2d:42:2c:19: 04:ce:00:2c:81:83:6c:06:96:be:79:6a:1c:dc:db: 01:87:49:79:45:b1:d8:a7:e7:a2:e5:be:8e:68:d9: 4a:3e:2a:1a:47:0b:a5:e3:94:58:e7:9a:d5:2a:15: f6:70:9a:f4:e0:bc:3a:75:57:08:5e:41:6d:84:a0: 4c:32:6c:e0:71:2a:46:e4:e9:30:4a:23:35:ab:cb: d6:0b:ed:63:21:e7:10:bc:ac:d7:44:6d:ad:36:ca: 45:18:d3:9b:0e:06:65:5e:c9:28:84:44:28:62:9c: 3c:34:ef:ba:c9:d1:a6:4b:01:d9:b7:32:db:e1:5d: 75:0c:f5:73:5a:dd:8f:bc:2e:a6:ea:88:00:35:df: a0:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:85:AB:A3:12:FD:E6:A3:22:52:F4:A6:64:23:CA:CC:92:DA:9A:D5 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/943694fe-e278-4d76-b786-7df26f151dd9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:fffe::/48 Signature Algorithm: sha256WithRSAEncryption 48:5f:47:fa:ae:de:7e:7b:f9:01:50:da:6f:94:07:54:5d:e0: 10:a9:1b:06:07:6e:39:cb:0d:99:00:5b:5f:a5:19:7d:5c:c1: 04:1e:01:b2:c4:0c:bb:a6:a8:61:74:75:cc:66:72:4f:af:3f: 1e:81:eb:22:00:f1:07:e4:ca:75:99:52:da:90:dc:2b:b8:ca: ac:fd:ac:83:85:81:7d:c6:a5:c8:c6:55:db:f3:38:b4:ab:80: 9f:77:00:cc:37:95:b1:50:03:89:7d:c5:00:07:a6:e0:c9:54: 00:b6:6f:7e:87:d7:d9:81:2f:0f:44:f4:b6:65:13:fc:93:58: fb:14:87:6e:84:55:16:17:4b:39:ed:1f:de:3b:ea:89:ce:58: 60:19:a6:fb:4e:b9:c8:22:6c:c5:c2:03:39:da:9a:2e:bf:1d: 7f:97:9d:9f:58:24:4a:8d:1a:e1:69:e2:3b:61:c8:cc:ce:3d: 8e:b8:69:18:6c:cc:c0:a3:3c:f7:3b:5c:02:86:99:99:b4:de: ef:fd:33:14:d5:4c:ce:2e:66:68:74:48:80:25:dc:40:4c:a6: 85:b8:d9:6a:40:a7:10:2b:0a:3f:ce:1a:3c:2e:0b:ad:44:11: 2a:36:21:f5:fc:b0:4b:c7:06:27:b7:04:5c:85:c3:cf:7e:d5: ea:a5:05:31 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDtHOUVbr6BWS2B9Q0Y+c/PtFFekwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUwNTA2MDAyMDIxWhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNmRiNmY1YTA2ZmUwYTM5NTZhMWYyZjI1NzljOTc4NjU1 NzcwY2VjZGFlMzVmMWFlYmYwN2E1YTNjODE1YTIyMS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCMcJY8uSw6ZryQiP4W8kEkiWQNeV61S9sFqUG66TueHtJg UvgG7X3e4R+TgfSdLMmPNebe8LCNSrl3VUUBdMIlMxya25k976VbEvThqwN+JIFW mznroB5qCCIWA7CgrNvKKbnjaw3H+9lsEXPdGS+wmZNBLUIsGQTOACyBg2wGlr55 ahzc2wGHSXlFsdin56Llvo5o2Uo+KhpHC6XjlFjnmtUqFfZwmvTgvDp1VwheQW2E oEwybOBxKkbk6TBKIzWry9YL7WMh5xC8rNdEba02ykUY05sOBmVeySiERChinDw0 77rJ0aZLAdm3MtvhXXUM9XNa3Y+8LqbqiAA136C7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUEIWroxL95qMiUvSmZCPKzJLamtUwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjLzk0MzY5NGZlLWUyNzgtNGQ3Ni1iNzg2LTdkZjI2ZjE1MWRkOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBg9A//4wDQYJKoZIhvcNAQELBQADggEBAEhfR/qu3n57+QFQ2m+UB1Rd 4BCpGwYHbjnLDZkAW1+lGX1cwQQeAbLEDLumqGF0dcxmck+vPx6B6yIA8QfkynWZ UtqQ3Cu4yqz9rIOFgX3GpcjGVdvzOLSrgJ93AMw3lbFQA4l9xQAHpuDJVAC2b36H 19mBLw9E9LZlE/yTWPsUh26EVRYXSzntH9476onOWGAZpvtOucgibMXCAznami6/ HX+XnZ9YJEqNGuFp4jthyMzOPY64aRhszMCjPPc7XAKGmZm03u/9MxTVTM4uZmh0 SIAl3EBMpoW42WpApxArCj/OGjwuC61EESo2IfX8sEvHBie3BFyFw89+1eqlBTE= -----END CERTIFICATE-----Generated at Wed May 7 10:40:49 2025 by rpki-client