$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/380a04c2-9944-43d6-b6c2-05c0698486d4.roa File: 380a04c2-9944-43d6-b6c2-05c0698486d4.roa (raw, json) Hash identifier: kuFhidEsBpwD1ElU//G/TIeQZSuCDob9dxXg4LPgxO8= Subject key identifier: 5E:B3:23:98:29:D9:0A:DA:F3:A1:B7:14:2D:EB:B2:FF:72:74:42:B4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0E6EA5FA69018ED3D3F1570BC4E5E21B21999E9A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/380a04c2-9944-43d6-b6c2-05c0698486d4.roa Signing time: Fri 28 Mar 2025 15:21:52 +0000 ROA not before: Fri 28 Mar 2025 15:21:52 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffb:6040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:6e:a5:fa:69:01:8e:d3:d3:f1:57:0b:c4:e5:e2:1b:21:99:9e:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 15:21:52 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:fa:36:78:a8:c3:dc:42:c2:78:aa:0b:aa:2c: 88:0a:4f:c1:b4:6d:43:c9:a1:90:dc:d7:77:8d:13: 42:9a:76:b6:b8:9d:d8:16:32:a5:7c:06:70:e4:1a: 9a:1b:cb:d2:13:54:c4:e2:b6:ab:d8:1c:e5:dd:98: 56:5c:66:e8:67:a2:e7:67:fc:e3:bc:71:c8:fb:e8: ae:36:47:6c:b4:52:4b:ae:00:a8:f8:0c:e3:e5:a2: a4:ab:12:b4:af:b9:5d:a1:50:c5:dc:92:23:a9:12: 39:e6:1d:f1:26:d0:67:e9:40:2b:50:fa:71:56:ae: 27:b3:43:5e:59:04:d2:61:6e:2d:05:ec:73:09:f0: 4f:9b:00:16:ac:79:10:7d:63:44:b9:6f:e6:d7:26: 6f:ce:23:a3:df:4b:5e:12:90:d0:22:8b:d6:7e:44: ee:ae:32:8d:b0:d4:f9:fe:6e:75:eb:ce:1e:0a:07: 84:4f:8e:1a:34:cd:3a:ec:72:18:4e:32:0b:b8:2c: 33:23:2e:90:58:34:7d:50:c2:6e:2b:4e:da:78:b7: 92:61:b1:57:3c:95:ab:87:5c:78:7d:a8:22:51:05: 98:c9:50:87:88:d7:02:05:37:af:60:bc:ad:8d:2e: 3f:46:e4:9f:44:45:d8:0b:16:43:e5:a7:57:54:96: a9:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:B3:23:98:29:D9:0A:DA:F3:A1:B7:14:2D:EB:B2:FF:72:74:42:B4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/380a04c2-9944-43d6-b6c2-05c0698486d4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffb:6040::/46 Signature Algorithm: sha256WithRSAEncryption 78:6e:9b:63:23:ed:c6:31:e6:8d:3b:53:c3:c3:f5:66:49:8b: 71:d1:af:ae:ea:62:7d:36:33:36:ca:09:a5:c7:3e:bf:b8:fd: d6:14:31:77:f5:92:7b:4d:e1:5d:55:be:76:3f:a3:55:1c:00: 0b:1d:d4:a0:05:fb:a3:9d:4f:9c:c5:eb:88:92:1d:15:8a:fe: b0:3c:49:28:e9:4f:5a:8c:54:b1:93:f8:f8:bf:54:d3:b7:a7: f7:49:48:a1:5b:1b:c8:99:70:bc:e2:ce:f8:2c:07:46:20:b5: 30:84:18:6c:a6:61:25:07:94:01:87:ae:5d:4b:09:68:fb:f8: 6e:ee:1a:71:d6:2c:4f:24:0d:93:eb:7b:c4:1c:2e:f9:8e:9f: 85:17:c8:9b:eb:3f:a8:31:85:57:6e:d9:c8:cd:bc:3c:da:4f: 18:37:ec:3f:ec:31:82:6c:19:2e:dc:8b:df:3f:b8:d0:3a:8d: f8:65:fe:3f:c1:05:e7:b5:2b:17:f6:4b:3d:6f:74:f1:b2:f4: 4f:dc:c7:e1:4a:0f:35:a0:47:29:5d:6b:75:78:c2:71:e9:f1: 42:e1:86:87:f3:b7:ef:39:1b:6c:d1:9f:d8:62:3d:14:ea:43: 7e:4b:8e:f7:b5:30:2b:0f:3e:88:20:20:a1:05:f9:5d:0a:54: 69:92:85:bf -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDm6l+mkBjtPT8VcLxOXiGyGZnpowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MTUyMTUyWhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMzE3YjllMDYwMTJjNzM1Y2RiZTgzYzJkY2FiMGIxNzBm ODI4ZGU3MjNkYjQwZWNiZDFjNDY2NDZhMDQxYWQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCo+jZ4qMPcQsJ4qguqLIgKT8G0bUPJoZDc13eNE0Kadra4 ndgWMqV8BnDkGpoby9ITVMTitqvYHOXdmFZcZuhnoudn/OO8ccj76K42R2y0Ukuu AKj4DOPloqSrErSvuV2hUMXckiOpEjnmHfEm0GfpQCtQ+nFWriezQ15ZBNJhbi0F 7HMJ8E+bABaseRB9Y0S5b+bXJm/OI6PfS14SkNAii9Z+RO6uMo2w1Pn+bnXrzh4K B4RPjho0zTrschhOMgu4LDMjLpBYNH1Qwm4rTtp4t5JhsVc8lauHXHh9qCJRBZjJ UIeI1wIFN69gvK2NLj9G5J9ERdgLFkPlp1dUlqkHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUXrMjmCnZCtrzobcULeuy/3J0QrQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM4MGEwNGMyLTk5NDQtNDNkNi1iNmMyLTA1YzA2OTg0ODZkNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/7YEAwDQYJKoZIhvcNAQELBQADggEBAHhum2Mj7cYx5o07U8PD9WZJ i3HRr67qYn02MzbKCaXHPr+4/dYUMXf1kntN4V1VvnY/o1UcAAsd1KAF+6OdT5zF 64iSHRWK/rA8SSjpT1qMVLGT+Pi/VNO3p/dJSKFbG8iZcLzizvgsB0YgtTCEGGym YSUHlAGHrl1LCWj7+G7uGnHWLE8kDZPre8QcLvmOn4UXyJvrP6gxhVdu2cjNvDza Txg37D/sMYJsGS7ci98/uNA6jfhl/j/BBee1Kxf2Sz1vdPGy9E/cx+FKDzWgRyld a3V4wnHp8ULhhofzt+85G2zRn9hiPRTqQ35Ljve1MCsPPoggIKEF+V0KVGmShb8= -----END CERTIFICATE-----Generated at Sat Apr 5 11:22:00 2025 by rpki-client